$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c3ed2fe9-6233-424b-a8a5-2b3a76206a02.roa File: c3ed2fe9-6233-424b-a8a5-2b3a76206a02.roa (raw, json) Hash identifier: QJa2WchHutvZyhNsez+31HmLc/HC6VjNG/dsn8wMc2o= Subject key identifier: 4C:49:E5:D7:AD:1C:37:E7:BD:98:8B:42:8F:AE:1C:63:B9:95:6D:1B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 09DCDF87BF859F66D828380DCCAFAC7D3A904269 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c3ed2fe9-6233-424b-a8a5-2b3a76206a02.roa Signing time: Sat 28 Feb 2026 01:50:52 +0000 ROA not before: Sat 28 Feb 2026 01:50:52 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.248.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:dc:df:87:bf:85:9f:66:d8:28:38:0d:cc:af:ac:7d:3a:90:42:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 01:50:52 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=d676d1419b83e770c9369e124ed0af5f3d529310abafb99672a8101d302dd2a5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8d:ac:ec:7c:28:57:89:24:23:af:9e:4f:dc: 27:f6:09:03:20:08:c4:c0:20:4d:60:19:ed:18:cb: 69:9f:9b:4d:1c:10:f3:8b:7c:3d:12:57:71:a4:c4: 13:c9:11:89:de:12:7f:60:c8:b1:a6:86:c4:39:db: e0:e6:a5:cc:9f:e6:4a:9c:d7:56:ba:f3:0d:f5:36: cc:ad:a8:a2:3c:8f:db:15:c4:78:6a:3e:45:7f:af: 85:d0:7e:18:f9:33:ac:c7:37:b3:fb:e1:2a:73:15: db:d6:9e:2d:c6:5c:2c:7c:fc:b6:fd:95:51:07:65: 26:89:87:46:90:bc:da:46:1f:45:d3:da:e5:79:59: 99:d0:1f:26:af:36:83:46:f3:ed:44:98:7b:ad:e0: d4:7e:3a:4d:7e:8e:47:0f:50:fa:31:f2:7c:0b:06: d9:80:94:e0:c7:75:ff:9a:97:9c:71:fd:12:0e:da: fd:69:07:8f:f0:f7:b5:80:c3:72:09:84:b0:cf:59: 9f:c6:a9:0c:c5:33:36:9a:32:d9:82:be:14:5f:b9: ca:70:42:2a:fe:e0:62:01:bf:5f:dd:2c:2b:b4:62: b7:13:ec:53:05:57:f0:da:d5:8f:b5:d9:7d:af:b4: 6c:cc:47:f3:5f:cf:65:ab:f0:71:11:ef:62:04:6d: 05:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:49:E5:D7:AD:1C:37:E7:BD:98:8B:42:8F:AE:1C:63:B9:95:6D:1B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c3ed2fe9-6233-424b-a8a5-2b3a76206a02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.99.0/24 Signature Algorithm: sha256WithRSAEncryption 97:e5:5f:55:ab:2f:97:c6:0a:87:30:52:c8:89:f1:62:dc:d4: 54:23:d2:06:2a:6f:f2:d8:a2:c0:89:b1:38:0a:cb:d0:46:14: 69:89:16:ef:c6:1d:b7:ec:f7:d8:5a:de:3e:b2:80:37:44:14: 96:c1:a1:89:a2:bd:13:dd:2f:e7:a7:c9:7e:b9:89:f0:ca:2a: 44:47:b1:b9:5d:ba:c0:3c:00:cc:97:60:d5:e0:c2:d6:0b:70: b0:06:4b:e0:b4:e2:60:f4:ae:e7:d5:69:95:31:07:f3:19:b6: bf:5e:7e:35:30:7d:d8:f7:88:d8:2f:94:e6:8f:ff:f0:cb:f6: 1f:27:e6:40:ec:7b:fa:bc:85:8c:44:1d:ac:13:c5:c3:3c:e8: 5b:cc:e3:80:68:aa:64:96:79:3a:dd:77:00:4b:20:7e:b5:8c: 6a:a3:58:39:9f:35:15:3e:40:52:5f:1c:42:b3:e6:c8:98:0b: f8:45:9e:17:94:be:db:5a:74:d5:5d:24:fc:02:a7:33:98:e7: b8:0a:fb:b3:56:6e:67:d0:31:45:4e:2b:6d:be:31:57:78:ea: 8f:e0:71:8c:bc:c0:af:98:43:02:06:03:82:e2:9b:b8:42:bc: 1b:5b:99:45:7a:a8:e0:bf:3b:36:a0:35:36:16:d9:83:3d:08: 95:a6:61:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCdzfh7+Fn2bYKDgNzK+sfTqQQmkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDE1MDUyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjc2ZDE0MTliODNlNzcwYzkzNjllMTI0ZWQwYWY1ZjNk NTI5MzEwYWJhZmI5OTY3MmE4MTAxZDMwMmRkMmE1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrjazsfChXiSQjr55P3Cf2CQMgCMTAIE1gGe0Yy2mfm00c EPOLfD0SV3GkxBPJEYneEn9gyLGmhsQ52+Dmpcyf5kqc11a68w31NsytqKI8j9sV xHhqPkV/r4XQfhj5M6zHN7P74SpzFdvWni3GXCx8/Lb9lVEHZSaJh0aQvNpGH0XT 2uV5WZnQHyavNoNG8+1EmHut4NR+Ok1+jkcPUPox8nwLBtmAlODHdf+al5xx/RIO 2v1pB4/w97WAw3IJhLDPWZ/GqQzFMzaaMtmCvhRfucpwQir+4GIBv1/dLCu0YrcT 7FMFV/Da1Y+12X2vtGzMR/Nfz2Wr8HER72IEbQWHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTEnl160cN+e9mItCj64cY7mVbRswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MzZWQyZmU5LTYyMzMtNDI0Yi1hOGE1LTJiM2E3NjIwNmEwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+GMwDQYJKoZIhvcNAQELBQADggEBAJflX1WrL5fGCocwUsiJ8WLc1FQj 0gYqb/LYosCJsTgKy9BGFGmJFu/GHbfs99ha3j6ygDdEFJbBoYmivRPdL+enyX65 ifDKKkRHsbldusA8AMyXYNXgwtYLcLAGS+C04mD0rufVaZUxB/MZtr9efjUwfdj3 iNgvlOaP//DL9h8n5kDse/q8hYxEHawTxcM86FvM44BoqmSWeTrddwBLIH61jGqj WDmfNRU+QFJfHEKz5siYC/hFnheUvttadNVdJPwCpzOY57gK+7NWbmfQMUVOK22+ MVd46o/gcYy8wK+YQwIGA4Lim7hCvBtbmUV6qOC/OzagNTYW2YM9CJWmYQE= -----END CERTIFICATE-----Generated at Mon Mar 2 09:38:03 2026 by rpki-client