$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbb2c05d-a62f-48bf-92eb-7334e4a7e202.roa File: bbb2c05d-a62f-48bf-92eb-7334e4a7e202.roa (raw, json) Hash identifier: KlJ2/KIDlnt9MpMTiSdKz8LNvAHfk4T/KRVSKtPF15o= Subject key identifier: EB:8E:2A:87:E6:42:C4:F3:3D:60:75:13:AF:5B:0A:83:01:FB:BE:0B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 03D5BD259673A48526D0FACE9E8D86F2A6CD661D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbb2c05d-a62f-48bf-92eb-7334e4a7e202.roa Signing time: Tue 17 Feb 2026 01:52:14 +0000 ROA not before: Tue 17 Feb 2026 01:52:14 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.18.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:d5:bd:25:96:73:a4:85:26:d0:fa:ce:9e:8d:86:f2:a6:cd:66:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 17 01:52:14 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=326e11f31b20d8d6e1c4d73c4946127d0924bc52226a5b548375d3b8ebbbb09f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c9:1d:65:aa:18:fc:e7:0e:f7:77:8c:6e:22: 00:e7:9f:cd:1d:71:df:71:29:61:f3:5e:d9:b9:17: 95:18:54:5d:c0:5e:ea:fe:fe:88:4c:37:11:50:a7: fd:fc:14:cb:aa:d2:f7:97:6f:68:d1:40:bc:df:98: 90:bc:6d:4f:3f:3b:68:04:27:3a:d3:d6:2c:7e:2d: bf:da:23:9f:e7:82:fa:db:4f:eb:26:66:81:8a:18: b3:7a:9e:d8:9f:68:0d:ab:73:ae:fb:a2:bf:dc:fd: e1:fe:d5:7c:5c:3a:4d:0f:2f:30:3b:f4:55:c5:f9: e3:39:18:b4:a5:56:38:2b:38:50:d3:e6:b4:de:36: 01:0b:68:1b:c8:ea:af:f2:4a:79:00:eb:18:af:67: 6d:4d:6f:61:f4:28:ef:38:18:01:5f:12:b5:c9:13: fd:3d:c2:66:22:60:86:f0:da:7b:cc:f7:97:43:19: 87:4e:ce:97:57:d5:69:24:91:1a:d0:59:ab:ae:06: c4:39:ff:aa:d5:cf:5c:b4:46:18:0f:52:8a:4c:63: 4d:4f:33:b0:87:a6:2a:74:0e:49:76:31:3a:ef:3b: f5:16:26:30:be:ac:11:1f:5a:bd:ea:eb:6e:06:79: ae:3c:45:27:63:d9:f4:5b:f6:4d:07:a6:fd:b9:87: 7a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8E:2A:87:E6:42:C4:F3:3D:60:75:13:AF:5B:0A:83:01:FB:BE:0B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbb2c05d-a62f-48bf-92eb-7334e4a7e202.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.18.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:ed:8d:b1:1c:ae:27:c5:d8:20:89:6b:2d:79:cc:95:49:33: d9:33:e5:e2:b9:17:49:67:a7:f6:f0:71:d9:70:e3:40:09:3f: 8c:41:16:a8:e7:a0:b9:8d:11:6c:28:a1:d3:ff:e1:2d:8f:5a: 72:30:2b:59:01:74:4a:ea:f2:52:04:04:db:30:07:c6:7b:90: aa:8b:1f:e9:d5:71:68:e5:ad:c2:a4:31:3a:c8:d0:fb:22:6b: dd:df:54:89:42:c2:98:2a:5e:65:b2:08:f3:d1:95:a5:fd:ca: 3d:68:cd:0c:28:10:8c:89:68:f1:bf:6a:39:41:a2:0a:57:cf: 42:a7:7f:84:a7:5a:d1:e7:94:75:32:eb:93:ac:46:f2:89:24: f0:c6:8a:75:4f:23:b1:36:10:a5:9e:11:83:60:e7:c2:30:eb: cb:aa:0d:27:4c:1f:2a:0b:ba:da:73:b3:4a:c8:13:9b:2a:6f: 37:55:fe:d7:b3:30:86:c7:52:e9:45:9b:ea:0d:5f:17:0f:a1: e2:82:e8:b4:ad:66:0d:6b:9a:fb:04:e8:b5:e3:eb:a5:67:a9: 5c:31:5d:8a:5e:b2:3d:ec:7f:66:db:87:1c:e6:c7:76:24:06: 23:43:9d:77:94:2e:68:ae:8f:68:af:97:de:64:b3:85:1e:3e: cb:3b:3a:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA9W9JZZzpIUm0PrOno2G8qbNZh0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjE3MDE1MjE0WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjZlMTFmMzFiMjBkOGQ2ZTFjNGQ3M2M0OTQ2MTI3ZDA5 MjRiYzUyMjI2YTViNTQ4Mzc1ZDNiOGViYmJiMDlmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwyR1lqhj85w73d4xuIgDnn80dcd9xKWHzXtm5F5UYVF3A Xur+/ohMNxFQp/38FMuq0veXb2jRQLzfmJC8bU8/O2gEJzrT1ix+Lb/aI5/ngvrb T+smZoGKGLN6ntifaA2rc677or/c/eH+1XxcOk0PLzA79FXF+eM5GLSlVjgrOFDT 5rTeNgELaBvI6q/ySnkA6xivZ21Nb2H0KO84GAFfErXJE/09wmYiYIbw2nvM95dD GYdOzpdX1WkkkRrQWauuBsQ5/6rVz1y0RhgPUopMY01PM7CHpip0Dkl2MTrvO/UW JjC+rBEfWr3q624Gea48RSdj2fRb9k0Hpv25h3q1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU644qh+ZCxPM9YHUTr1sKgwH7vgswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JiYjJjMDVkLWE2MmYtNDhiZi05MmViLTczMzRlNGE3ZTIwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA0EjANBgkqhkiG9w0BAQsFAAOCAQEADu2NsRyuJ8XYIIlrLXnMlUkz2TPl 4rkXSWen9vBx2XDjQAk/jEEWqOeguY0RbCih0//hLY9acjArWQF0SuryUgQE2zAH xnuQqosf6dVxaOWtwqQxOsjQ+yJr3d9UiULCmCpeZbII89GVpf3KPWjNDCgQjIlo 8b9qOUGiClfPQqd/hKda0eeUdTLrk6xG8okk8MaKdU8jsTYQpZ4Rg2DnwjDry6oN J0wfKgu62nOzSsgTmypvN1X+17MwhsdS6UWb6g1fFw+h4oLotK1mDWua+wTotePr pWepXDFdil6yPex/ZtuHHObHdiQGI0Odd5QuaK6PaK+X3mSzhR4+yzs6aA== -----END CERTIFICATE-----Generated at Mon Mar 2 01:01:07 2026 by rpki-client