$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd0b7de5-603e-4b95-890f-8f7da1ece5f6.roa File: cd0b7de5-603e-4b95-890f-8f7da1ece5f6.roa (raw, json) Hash identifier: Mq0thg8wZ6wunrT8b5xt1OH5ClPSZgGyNqCMkWzmzA4= Subject key identifier: 9F:6B:02:B2:AA:CC:1F:AE:B0:4E:18:18:7C:12:51:FF:BB:BB:CA:89 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7C3422BEB00DAD30756709EB4B39298594F55CC4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd0b7de5-603e-4b95-890f-8f7da1ece5f6.roa Signing time: Wed 25 Feb 2026 02:50:09 +0000 ROA not before: Wed 25 Feb 2026 02:50:09 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.251.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:34:22:be:b0:0d:ad:30:75:67:09:eb:4b:39:29:85:94:f5:5c:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 25 02:50:09 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=204b1db1a6107ba570438ec2984c8a478416ab3461ffba75ac6ef7eaa544280b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c4:91:e3:c1:7f:c8:ee:0a:57:8d:a1:9b:4a: a0:0b:5c:8c:cf:8a:fe:a8:46:06:0e:c5:89:b3:d5: ac:84:7c:12:76:44:1d:54:df:71:65:90:5d:ce:8e: 8a:fd:58:07:fb:46:17:7a:5c:d4:c2:c7:ec:ef:08: 6f:89:8a:03:a7:da:bd:3d:2a:4a:0d:ce:02:e0:ff: 09:c4:69:6e:ec:44:e3:12:ff:f5:50:9b:40:01:63: 98:65:89:fe:f9:b7:e6:d2:9a:e1:23:91:17:47:12: e5:d8:78:68:a8:91:57:02:b3:4f:f9:e0:e0:a2:b3: ae:aa:07:b0:2a:7e:79:53:85:3a:bf:a2:98:a4:04: f0:94:f5:78:27:48:43:a6:a6:72:46:25:0c:b9:b8: 7e:b1:83:7f:55:18:0e:31:24:04:9b:9c:9f:8c:fc: 77:67:a3:9c:70:65:4d:19:bc:09:b7:0b:6e:ac:e5: 7f:c3:51:46:6b:a4:cd:f9:5f:ef:25:78:77:1a:66: d7:84:d4:d2:e6:1b:02:18:32:2d:43:b2:28:b2:60: 80:33:26:54:20:dc:6d:d3:d0:55:f7:fa:05:4d:3e: 3a:66:bc:a4:1a:8f:91:3c:86:6c:2f:72:de:80:07: d5:5e:17:5f:4d:2c:85:07:95:63:94:bb:11:b8:cb: 12:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:6B:02:B2:AA:CC:1F:AE:B0:4E:18:18:7C:12:51:FF:BB:BB:CA:89 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd0b7de5-603e-4b95-890f-8f7da1ece5f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.251.160.0/19 Signature Algorithm: sha256WithRSAEncryption 3b:a7:f3:f3:6c:6c:41:4a:72:91:28:b5:6d:58:0f:04:e8:f5: 99:1d:2c:9a:0a:5a:c8:71:e4:1f:a4:84:a9:56:b0:30:2f:d3: 3d:f6:5b:36:c9:fa:97:57:78:db:ce:b0:6b:1e:9f:90:a8:22: 2b:0f:02:55:62:7f:d8:10:94:6f:70:00:36:48:a7:c3:e6:c3: 0c:a4:af:ea:3c:7a:97:80:ac:f0:70:c5:5e:1c:81:7c:d6:92: 79:23:d1:44:a4:88:51:12:6e:0f:b2:9e:b1:9f:82:61:c0:5a: 95:19:d0:ee:65:91:58:fb:96:e7:e4:53:81:8a:2f:d6:3e:43: 8f:83:ad:2a:59:7f:c5:b0:87:c4:75:0d:9c:53:4c:f5:1e:30: 91:ed:21:13:fd:9e:66:82:8c:f7:74:e7:0f:e5:73:70:5c:c1: 94:e0:35:f6:e7:aa:e0:7a:f7:c6:26:f1:a7:06:85:8b:b7:bd: 68:48:b2:e2:b9:a9:8c:7b:4d:9b:a1:85:02:5c:0d:bb:f5:f3: db:31:5c:bc:2e:69:b5:a5:1a:15:23:0d:eb:73:8e:87:24:d5: 04:0f:bf:df:f1:37:b5:34:ce:c8:8e:e8:5f:b4:8a:ad:18:7f: 26:93:ad:7f:04:b8:8f:50:1b:c6:31:15:de:08:bb:b4:65:a1: 27:01:e4:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfDQivrANrTB1ZwnrSzkphZT1XMQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI1MDI1MDA5WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDRiMWRiMWE2MTA3YmE1NzA0MzhlYzI5ODRjOGE0Nzg0 MTZhYjM0NjFmZmJhNzVhYzZlZjdlYWE1NDQyODBiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFxJHjwX/I7gpXjaGbSqALXIzPiv6oRgYOxYmz1ayEfBJ2 RB1U33FlkF3Ojor9WAf7Rhd6XNTCx+zvCG+JigOn2r09KkoNzgLg/wnEaW7sROMS //VQm0ABY5hlif75t+bSmuEjkRdHEuXYeGiokVcCs0/54OCis66qB7AqfnlThTq/ opikBPCU9XgnSEOmpnJGJQy5uH6xg39VGA4xJASbnJ+M/Hdno5xwZU0ZvAm3C26s 5X/DUUZrpM35X+8leHcaZteE1NLmGwIYMi1DsiiyYIAzJlQg3G3T0FX3+gVNPjpm vKQaj5E8hmwvct6AB9VeF19NLIUHlWOUuxG4yxIhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUn2sCsqrMH66wThgYfBJR/7u7yokwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NkMGI3ZGU1LTYwM2UtNGI5NS04OTBmLThmN2RhMWVjZTVmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2+6AwDQYJKoZIhvcNAQELBQADggEBADun8/NsbEFKcpEotW1YDwTo9Zkd LJoKWshx5B+khKlWsDAv0z32WzbJ+pdXeNvOsGsen5CoIisPAlVif9gQlG9wADZI p8Pmwwykr+o8epeArPBwxV4cgXzWknkj0USkiFESbg+ynrGfgmHAWpUZ0O5lkVj7 lufkU4GKL9Y+Q4+DrSpZf8Wwh8R1DZxTTPUeMJHtIRP9nmaCjPd05w/lc3BcwZTg NfbnquB698Ym8acGhYu3vWhIsuK5qYx7TZuhhQJcDbv189sxXLwuabWlGhUjDetz jock1QQPv9/xN7U0zsiO6F+0iq0YfyaTrX8EuI9QG8YxFd4Iu7RloScB5Fo= -----END CERTIFICATE-----Generated at Sun Mar 1 21:43:02 2026 by rpki-client