$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa File: ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa (raw, json) Hash identifier: gvz6Osi+bNAvOoaiCld/PezGhW7PdolmJDZCJM5boN8= Subject key identifier: EC:3A:7C:F7:30:08:EF:97:81:16:E0:B2:0D:11:F0:AB:F6:89:F4:B4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 487F381017F3AA16560C3337E75262BFC5FDDE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa Signing time: Tue 17 Feb 2026 00:50:42 +0000 ROA not before: Tue 17 Feb 2026 00:50:42 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:7f:38:10:17:f3:aa:16:56:0c:33:37:e7:52:62:bf:c5:fd:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 17 00:50:42 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=73b2635f996e6d56f60dc86066c6ea735822913f6e758c904301e3730bc445fa, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b2:9d:72:05:a8:78:46:4a:24:b5:55:36:e4: 92:a4:15:c5:7e:b6:cf:f6:5e:06:20:9a:5b:79:78: 99:7f:4d:c1:c8:67:b8:36:42:00:a3:3a:f3:02:0c: 41:ff:99:ca:ff:6c:72:4d:30:82:37:dd:71:4c:6a: 29:c9:26:97:39:15:32:13:0a:90:a9:2f:83:63:5c: 00:1d:35:32:4c:3b:c5:55:f8:aa:94:ae:99:73:82: 54:4e:d1:e7:0c:0d:e2:5c:5c:14:62:0b:9d:8b:0a: ae:fc:c2:9c:13:ca:33:cc:78:a1:89:e9:22:ef:07: c1:a2:f2:a7:20:a9:a1:7a:fc:f2:90:49:98:05:e9: 5e:96:63:a1:ad:ba:0d:59:ad:c4:4e:cf:d2:ec:9b: 63:1c:4a:37:6c:a2:ab:44:f2:d2:dd:ae:f4:55:a9: 52:df:9b:fc:b7:be:f6:58:62:5d:58:79:8a:17:91: f8:70:5f:7f:97:f7:6c:16:66:ab:b5:66:da:c6:ef: 5d:b8:48:b1:8c:f2:56:1e:07:01:10:2b:c6:9f:3d: 7d:c3:85:f9:0e:74:f6:40:5f:e5:9e:45:ff:b1:8e: 91:52:ce:15:7b:4b:61:28:88:97:e8:11:e9:60:7d: 00:53:7a:d2:e9:da:96:5e:59:25:6e:79:2b:6c:04: 7b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:3A:7C:F7:30:08:EF:97:81:16:E0:B2:0D:11:F0:AB:F6:89:F4:B4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.146.0/23 Signature Algorithm: sha256WithRSAEncryption 85:21:de:c0:39:88:1d:23:ae:95:d3:4c:21:df:63:78:7c:92: a3:c4:fe:e5:2c:fa:51:ed:9d:50:04:b5:78:03:86:4d:d7:f6: ad:c9:9d:8a:50:01:75:e5:6d:82:d7:50:55:98:39:e9:3e:0d: 38:d3:99:d1:a6:b4:82:da:b1:b4:3a:1f:a2:bd:24:44:5b:ce: 17:7b:06:5b:bc:21:61:1b:07:80:f8:c2:82:16:f7:6d:f1:6d: 62:a7:d6:4a:04:d8:d8:e6:e0:a4:3d:bd:4f:a5:6d:6a:e7:f6: 62:bd:d1:f4:78:a6:8b:20:90:89:17:06:bd:a9:2b:1f:de:63: a1:7c:20:18:29:de:cb:3c:87:fe:d3:0d:64:44:00:2f:08:c7: 9c:a8:2d:88:a8:25:46:7b:b5:01:85:4e:b2:ce:02:38:d4:63: f2:69:ed:09:3c:eb:3e:62:25:f3:86:82:e9:67:11:65:de:04: 18:e9:d2:04:33:ec:11:34:d0:00:7c:5d:0b:d4:e1:b9:8f:9b: a4:ba:ea:f5:80:48:98:69:0d:fa:a6:63:f4:b8:ad:d1:40:52: f7:dd:7b:da:81:e7:a2:1c:5c:ca:12:15:dc:9c:66:31:dd:31: 23:b6:86:3d:dd:fc:4f:d2:08:49:30:4a:47:40:16:7c:91:8c: 9b:81:78:fa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITSH84EBfzqhZWDDM351Jiv8X93jANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNjAyMTcwMDUwNDJaFw0yNjA1MTgyMzU5NTla MHoxSTBHBgNVBAUTQDczYjI2MzVmOTk2ZTZkNTZmNjBkYzg2MDY2YzZlYTczNTgy MjkxM2Y2ZTc1OGM5MDQzMDFlMzczMGJjNDQ1ZmExLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAN+ynXIFqHhGSiS1VTbkkqQVxX62z/ZeBiCaW3l4mX9Nwchn uDZCAKM68wIMQf+Zyv9sck0wgjfdcUxqKckmlzkVMhMKkKkvg2NcAB01Mkw7xVX4 qpSumXOCVE7R5wwN4lxcFGILnYsKrvzCnBPKM8x4oYnpIu8HwaLypyCpoXr88pBJ mAXpXpZjoa26DVmtxE7P0uybYxxKN2yiq0Ty0t2u9FWpUt+b/Le+9lhiXVh5iheR +HBff5f3bBZmq7Vm2sbvXbhIsYzyVh4HARArxp89fcOF+Q509kBf5Z5F/7GOkVLO FXtLYSiIl+gR6WB9AFN60unall5ZJW55K2wEe2sCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTsOnz3MAjvl4EW4LINEfCr9on0tDAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvYmE5ZGZlNTktZTJhMi00MDc0LWIzYTctOTk4ZmQ5NzM4YmQ5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAQ/ckjANBgkqhkiG9w0BAQsFAAOCAQEAhSHewDmIHSOuldNMId9jeHySo8T+ 5Sz6Ue2dUAS1eAOGTdf2rcmdilABdeVtgtdQVZg56T4NONOZ0aa0gtqxtDofor0k RFvOF3sGW7whYRsHgPjCghb3bfFtYqfWSgTY2ObgpD29T6Vtauf2Yr3R9HimiyCQ iRcGvakrH95joXwgGCneyzyH/tMNZEQALwjHnKgtiKglRnu1AYVOss4CONRj8mnt CTzrPmIl84aC6WcRZd4EGOnSBDPsETTQAHxdC9ThuY+bpLrq9YBImGkN+qZj9Lit 0UBS99172oHnohxcyhIV3JxmMd0xI7aGPd38T9IISTBKR0AWfJGMm4F4+g== -----END CERTIFICATE-----Generated at Sun Mar 1 21:40:50 2026 by rpki-client