$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b98925de-9365-44a3-b92a-7513903b1b53.roa File: b98925de-9365-44a3-b92a-7513903b1b53.roa (raw, json) Hash identifier: O7lpHS0dGNTaRedCWCwlqptWOsb6EoSnSzyPQkefbGk= Subject key identifier: 48:26:50:83:3D:04:7B:9D:51:95:D9:1D:39:86:73:49:FF:6A:39:98 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6DB61845ACDDC81911958D2D0BAD3FC327A890C3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b98925de-9365-44a3-b92a-7513903b1b53.roa Signing time: Tue 17 Feb 2026 00:30:13 +0000 ROA not before: Tue 17 Feb 2026 00:30:13 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 34.252.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b6:18:45:ac:dd:c8:19:11:95:8d:2d:0b:ad:3f:c3:27:a8:90:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 17 00:30:13 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=8e4f306407d5f33702589b91d776f3e1ce50f67540647dcb811a4610d4f6f3e4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ac:8c:7b:b8:71:cf:1d:af:f4:1f:66:7e:4c: e6:dd:e0:1b:74:b1:42:b8:b6:31:36:ed:0b:5d:8d: 6e:6d:40:9e:fe:77:f5:60:99:94:a5:1b:d3:7d:70: ff:05:d0:3c:0b:9a:22:10:83:db:07:88:fe:0d:6c: 4e:c7:b1:65:96:f6:cd:73:8b:bc:26:92:e8:cb:f5: ac:d7:b3:44:d7:01:ff:43:9b:e6:e8:91:57:73:4c: 64:96:78:6b:51:59:0a:25:d2:0e:83:cd:76:de:c8: 2c:da:19:3e:e3:4f:d7:52:aa:09:fc:ab:a2:cf:e2: 1e:11:ca:86:a4:e0:5c:ca:3a:0a:e1:5f:aa:17:33: 44:59:cb:db:2f:16:91:61:86:16:5a:8a:f7:32:8c: ad:56:ff:5a:75:7a:a8:b0:aa:d6:4d:b9:d0:ea:98: 34:4e:6c:da:1b:eb:ee:7a:6e:4a:c9:3f:4d:23:5e: e8:d3:f5:95:fb:a1:7e:45:9b:01:69:13:2a:48:12: 86:a2:64:98:6e:07:df:90:49:1a:a6:ba:2c:bf:ce: e9:ac:f0:4b:c5:96:d2:a7:9c:0d:57:3a:c6:1c:73: ba:04:01:dd:d4:21:d9:0a:49:1d:a5:aa:08:72:33: 2f:5b:8c:18:c8:9c:04:4f:bf:31:d1:c2:1b:1f:95: 7f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:26:50:83:3D:04:7B:9D:51:95:D9:1D:39:86:73:49:FF:6A:39:98 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b98925de-9365-44a3-b92a-7513903b1b53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.252.192.0/18 Signature Algorithm: sha256WithRSAEncryption b1:a6:f6:e9:4a:da:7e:8f:45:d2:13:f2:f3:55:fe:18:34:fc: a7:11:12:89:ec:40:8d:87:75:53:ca:56:60:a0:ea:20:24:42: 0e:63:35:80:f8:c4:7b:cf:d4:29:d9:69:68:72:27:b1:85:c3: e5:fc:e5:e0:da:62:d0:9e:22:5a:01:19:3d:b8:78:ff:b8:0b: d0:ba:ca:51:78:96:1f:0c:cb:da:ca:f6:0f:ee:0a:69:95:18: 4b:7e:b7:78:5f:04:ea:57:b4:98:9b:92:98:2a:29:1e:a7:09: a3:e0:ad:88:33:9d:14:eb:52:93:30:3a:62:07:e0:f3:4d:aa: 6d:f7:42:39:d8:f3:ee:1a:b6:51:24:15:da:21:cc:7a:72:f0: f3:e2:29:53:0e:ab:28:39:8a:e4:2b:ba:2a:58:dd:fa:6c:4c: 83:4d:b2:9b:86:e6:e5:c9:5d:93:51:03:49:a8:0c:5b:63:98: 46:15:87:5c:84:86:42:88:cc:e5:97:fd:6f:e8:db:06:e0:e2: 70:45:1f:04:11:8b:15:6e:11:6d:98:9c:8c:e5:4c:8e:2c:72: 9c:f1:08:b2:40:d4:a9:b0:6f:a8:c3:ef:63:1f:3a:3f:cb:51: 9b:8a:e0:b9:f0:17:fe:cc:fd:5f:0b:b3:7c:8d:2f:2f:dd:0d: 32:47:1c:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbbYYRazdyBkRlY0tC60/wyeokMMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjE3MDAzMDEzWhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTRmMzA2NDA3ZDVmMzM3MDI1ODliOTFkNzc2ZjNlMWNl NTBmNjc1NDA2NDdkY2I4MTFhNDYxMGQ0ZjZmM2U0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTrIx7uHHPHa/0H2Z+TObd4Bt0sUK4tjE27QtdjW5tQJ7+ d/VgmZSlG9N9cP8F0DwLmiIQg9sHiP4NbE7HsWWW9s1zi7wmkujL9azXs0TXAf9D m+bokVdzTGSWeGtRWQol0g6DzXbeyCzaGT7jT9dSqgn8q6LP4h4Ryoak4FzKOgrh X6oXM0RZy9svFpFhhhZaivcyjK1W/1p1eqiwqtZNudDqmDRObNob6+56bkrJP00j XujT9ZX7oX5FmwFpEypIEoaiZJhuB9+QSRqmuiy/zums8EvFltKnnA1XOsYcc7oE Ad3UIdkKSR2lqghyMy9bjBjInARPvzHRwhsflX+RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSCZQgz0Ee51RldkdOYZzSf9qOZgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I5ODkyNWRlLTkzNjUtNDRhMy1iOTJhLTc1MTM5MDNiMWI1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYi/MAwDQYJKoZIhvcNAQELBQADggEBALGm9ulK2n6PRdIT8vNV/hg0/KcR EonsQI2HdVPKVmCg6iAkQg5jNYD4xHvP1CnZaWhyJ7GFw+X85eDaYtCeIloBGT24 eP+4C9C6ylF4lh8My9rK9g/uCmmVGEt+t3hfBOpXtJibkpgqKR6nCaPgrYgznRTr UpMwOmIH4PNNqm33QjnY8+4atlEkFdohzHpy8PPiKVMOqyg5iuQruipY3fpsTINN spuG5uXJXZNRA0moDFtjmEYVh1yEhkKIzOWX/W/o2wbg4nBFHwQRixVuEW2YnIzl TI4scpzxCLJA1Kmwb6jD72MfOj/LUZuK4LnwF/7M/V8Ls3yNLy/dDTJHHEk= -----END CERTIFICATE-----Generated at Sun Mar 1 21:54:11 2026 by rpki-client