$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b8e8988d-131d-4d71-8592-32ba54d2aaac.roa File: b8e8988d-131d-4d71-8592-32ba54d2aaac.roa (raw, json) Hash identifier: i7ISKKd54uUMbQAF+FoccRtxL+151KNdeWDBdwExD1Q= Subject key identifier: 64:1B:B1:0C:C1:F8:D3:50:C6:07:2A:A4:C6:2F:9E:E5:58:A8:6C:FD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 352C428A94FE893FA677CE2089C65ECBA60007 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b8e8988d-131d-4d71-8592-32ba54d2aaac.roa Signing time: Tue 17 Feb 2026 01:20:50 +0000 ROA not before: Tue 17 Feb 2026 01:20:50 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 18.60.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:2c:42:8a:94:fe:89:3f:a6:77:ce:20:89:c6:5e:cb:a6:00:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 17 01:20:50 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=df42d3178017b557cf2894c47310e53399f325aa6aae9137bb5db0560f5e2f4c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9f:73:84:c1:d4:b8:d1:47:9b:ea:69:9a:f1: 82:48:44:e5:f6:11:e5:7e:69:4e:57:f4:a6:c5:6b: 56:a3:7e:6f:78:ca:58:be:c2:82:3f:46:73:75:7e: a4:fd:1d:89:fa:b7:2d:16:1f:f1:a0:33:b5:15:96: 7d:be:24:a3:46:d0:3f:c8:ad:72:83:da:44:dc:d8: 58:f3:33:d8:d4:8a:63:b9:96:5e:f5:3d:c7:cc:c2: 81:44:61:2c:fa:92:ff:34:eb:95:da:30:87:8b:0f: 15:e5:94:37:56:a7:45:61:06:e2:a8:8e:57:25:04: 2d:e6:f9:ad:44:9a:d0:87:aa:80:57:4e:51:b7:28: 30:82:89:e2:51:4d:cd:0b:95:ff:a8:e5:c6:ec:2f: 40:c4:e5:fc:28:c2:3f:a9:bc:d3:db:c0:c7:b8:67: e9:34:d1:fd:f4:19:41:f1:00:ee:ef:0b:e5:89:b4: 0f:52:d4:61:cd:92:b9:99:28:dd:10:9b:62:a9:22: 4f:70:43:eb:36:33:06:8f:c0:90:71:81:40:14:a4: 39:38:a4:a2:d4:f3:df:98:78:fa:00:6d:50:15:24: d1:0d:c8:ef:82:f4:3e:f4:39:67:6e:7e:b4:c9:3b: e1:79:e2:36:e6:8d:a6:43:1e:0e:8a:ce:a6:ef:eb: 4c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1B:B1:0C:C1:F8:D3:50:C6:07:2A:A4:C6:2F:9E:E5:58:A8:6C:FD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b8e8988d-131d-4d71-8592-32ba54d2aaac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.60.0.0/15 Signature Algorithm: sha256WithRSAEncryption 23:da:0d:ca:49:9d:8c:8a:32:85:7a:8d:e2:7c:64:04:15:8f: 6d:15:73:a2:bf:d5:db:31:b8:94:be:e7:b3:82:d2:8c:ec:bf: 92:45:4f:4b:69:ea:df:be:18:ff:09:14:c1:1c:fc:f0:76:b3: 1e:b8:7d:db:2d:31:9d:ab:5b:42:12:a5:2a:66:e4:70:44:ac: 55:e5:0d:57:7d:3d:10:f3:41:e2:21:3f:dd:06:34:7b:d9:0d: 6c:f9:22:99:f9:37:64:59:a3:b6:d7:71:85:a9:bd:b6:a1:9d: 80:c7:67:fd:75:e7:b8:4f:a7:48:66:c1:ed:dc:2f:c4:a2:9f: 91:65:fb:77:2c:62:2d:61:be:5c:0c:66:59:ba:25:4b:e3:25: a6:3c:7c:f2:cb:17:27:68:5c:d6:2a:9f:2d:49:ac:16:69:87: 39:d2:87:90:cc:72:2f:10:3e:70:72:98:19:40:74:f3:ce:4e: 2c:7b:71:9e:1d:7b:cf:03:c3:99:8d:db:e7:39:e3:10:31:c8: 03:2f:70:31:4c:ef:2e:32:53:36:0e:ba:35:2d:b3:aa:03:50: 14:84:08:59:30:fd:27:2d:f6:ac:e5:7f:29:c8:64:61:76:73: 88:10:18:3c:b0:5c:ea:6d:09:96:89:21:36:5c:f9:bf:3e:8a: fc:31:20:2c -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITNSxCipT+iT+md84gicZey6YABzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNjAyMTcwMTIwNTBaFw0yNjA1MTgyMzU5NTla MHoxSTBHBgNVBAUTQGRmNDJkMzE3ODAxN2I1NTdjZjI4OTRjNDczMTBlNTMzOTlm MzI1YWE2YWFlOTEzN2JiNWRiMDU2MGY1ZTJmNGMxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANWfc4TB1LjRR5vqaZrxgkhE5fYR5X5pTlf0psVrVqN+b3jK WL7Cgj9Gc3V+pP0difq3LRYf8aAztRWWfb4ko0bQP8itcoPaRNzYWPMz2NSKY7mW XvU9x8zCgURhLPqS/zTrldowh4sPFeWUN1anRWEG4qiOVyUELeb5rUSa0IeqgFdO UbcoMIKJ4lFNzQuV/6jlxuwvQMTl/CjCP6m809vAx7hn6TTR/fQZQfEA7u8L5Ym0 D1LUYc2SuZko3RCbYqkiT3BD6zYzBo/AkHGBQBSkOTikotTz35h4+gBtUBUk0Q3I 74L0PvQ5Z25+tMk74XniNuaNpkMeDorOpu/rTNsCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBRkG7EMwfjTUMYHKqTGL57lWKhs/TAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvYjhlODk4OGQtMTMxZC00ZDcxLTg1OTItMzJiYTU0ZDJhYWFjLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDARI8MA0GCSqGSIb3DQEBCwUAA4IBAQAj2g3KSZ2MijKFeo3ifGQEFY9tFXOi v9XbMbiUvuezgtKM7L+SRU9Laerfvhj/CRTBHPzwdrMeuH3bLTGdq1tCEqUqZuRw RKxV5Q1XfT0Q80HiIT/dBjR72Q1s+SKZ+TdkWaO213GFqb22oZ2Ax2f9dee4T6dI ZsHt3C/Eop+RZft3LGItYb5cDGZZuiVL4yWmPHzyyxcnaFzWKp8tSawWaYc50oeQ zHIvED5wcpgZQHTzzk4se3GeHXvPA8OZjdvnOeMQMcgDL3AxTO8uMlM2Dro1LbOq A1AUhAhZMP0nLfas5X8pyGRhdnOIEBg8sFzqbQmWiSE2XPm/Por8MSAs -----END CERTIFICATE-----Generated at Sun Mar 1 23:20:57 2026 by rpki-client