$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ceb48abc-00bf-4136-afb7-4416d65fd3f8.roa File: ceb48abc-00bf-4136-afb7-4416d65fd3f8.roa (raw, json) Hash identifier: ghgMVgBTQa6/vuZsFoPBkG0Y+rD0VWQV2CyWAXY1KCw= Subject key identifier: ED:B3:65:A4:5F:BD:52:03:DE:6F:94:46:55:EE:E9:81:BF:76:94:CC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4822D3EE59995681E3F3553F9DFD8ECAAE130944 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ceb48abc-00bf-4136-afb7-4416d65fd3f8.roa Signing time: Mon 23 Feb 2026 01:11:00 +0000 ROA not before: Mon 23 Feb 2026 01:11:00 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.150.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:22:d3:ee:59:99:56:81:e3:f3:55:3f:9d:fd:8e:ca:ae:13:09:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 23 01:11:00 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=06fa3b75d832219701541294aeb8871aef2c3b092cfe7cf1adf629b77fe56172, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f2:46:31:86:f7:fe:67:ca:ce:8a:53:cc:2f: 25:d8:9d:4c:70:a6:07:1f:6a:3e:a1:6c:dd:0a:9c: 29:fa:32:57:8a:20:58:82:e1:d9:0c:27:5a:9c:fc: 3e:ae:60:ee:6d:77:80:60:77:3b:03:7f:4f:4e:34: 19:70:48:a2:a5:cf:52:b7:22:ad:38:f0:36:55:b3: db:d1:02:7e:1b:d2:1a:72:f7:80:44:1a:66:d5:ab: 85:3e:da:1b:11:50:81:6c:4c:d3:d8:9b:84:2c:67: e6:8d:a6:9b:53:55:51:d1:30:5c:73:63:a4:8f:c1: ab:e0:86:e5:de:a5:e0:b1:42:87:ed:fd:de:fb:e5: 44:9e:41:cc:f9:fd:86:95:d8:d3:6f:c6:74:0a:8f: e4:c5:dd:09:f2:df:a4:69:be:e0:cf:11:f5:23:a2: 9e:12:82:a5:b5:f2:0b:a2:06:3b:d8:33:28:4f:27: d0:36:96:84:ca:1c:1d:b1:0d:b6:cd:47:40:12:41: 13:6c:fe:6f:30:af:b9:96:fa:62:ae:f6:7a:a1:e9: 16:27:bb:f1:9d:f4:26:c5:bd:76:9d:29:4b:10:46: a2:24:ba:55:26:67:01:04:a3:6d:bf:1d:35:78:22: e6:2f:f0:c8:55:b9:e8:15:7f:04:37:99:77:39:69: a2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B3:65:A4:5F:BD:52:03:DE:6F:94:46:55:EE:E9:81:BF:76:94:CC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ceb48abc-00bf-4136-afb7-4416d65fd3f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.150.130.0/23 Signature Algorithm: sha256WithRSAEncryption 51:8a:93:8c:2c:fd:d4:08:01:f9:b8:9b:72:a7:83:80:e9:55: 7f:52:34:3e:9c:89:14:c9:e2:0a:93:34:88:50:c0:33:64:d5: e3:bc:06:37:95:fa:54:7e:f9:87:f4:c7:0a:7f:78:bd:ec:ff: 91:89:0c:67:a1:ed:35:81:79:c1:df:3e:0d:1f:d4:f5:e4:19: 71:a7:32:e3:6e:68:ea:f4:a2:8b:6b:7c:e6:4b:e9:f7:65:3e: e1:f8:d2:51:e8:30:c3:cd:b8:8d:ab:4b:63:85:f1:9e:12:0c: 66:2e:bf:88:ec:49:68:4b:de:18:1c:02:68:30:66:51:f7:8e: a9:44:67:c4:0d:b6:aa:f0:c1:0f:cb:8f:2e:37:e9:c2:56:81: a6:8d:3d:9d:3a:14:73:3f:91:34:45:27:f0:48:a2:df:55:3e: 31:a9:8c:7b:65:d5:7b:27:48:93:c6:b6:86:62:a0:c3:c8:6f: 43:01:08:07:78:f8:19:26:6a:ce:a4:83:c2:69:7f:ba:67:a0: a2:e2:a2:bb:c2:c8:20:f0:9f:6b:9a:3b:3e:a1:b3:e4:43:ff: f2:22:67:dd:9c:e8:d6:15:12:d3:55:6c:de:ca:b9:fc:90:c6: d1:91:7c:07:ae:33:db:51:b9:b9:16:fe:1a:4e:52:e2:1e:10: ac:77:ee:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSCLT7lmZVoHj81U/nf2Oyq4TCUQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjIzMDExMTAwWhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmZhM2I3NWQ4MzIyMTk3MDE1NDEyOTRhZWI4ODcxYWVm MmMzYjA5MmNmZTdjZjFhZGY2MjliNzdmZTU2MTcyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw8kYxhvf+Z8rOilPMLyXYnUxwpgcfaj6hbN0KnCn6MleK IFiC4dkMJ1qc/D6uYO5td4BgdzsDf09ONBlwSKKlz1K3Iq048DZVs9vRAn4b0hpy 94BEGmbVq4U+2hsRUIFsTNPYm4QsZ+aNpptTVVHRMFxzY6SPwavghuXepeCxQoft /d775USeQcz5/YaV2NNvxnQKj+TF3Qny36RpvuDPEfUjop4SgqW18guiBjvYMyhP J9A2loTKHB2xDbbNR0ASQRNs/m8wr7mW+mKu9nqh6RYnu/Gd9CbFvXadKUsQRqIk ulUmZwEEo22/HTV4IuYv8MhVuegVfwQ3mXc5aaINAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7bNlpF+9UgPeb5RGVe7pgb92lMwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NlYjQ4YWJjLTAwYmYtNDEzNi1hZmI3LTQ0MTZkNjVmZDNmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE2loIwDQYJKoZIhvcNAQELBQADggEBAFGKk4ws/dQIAfm4m3Kng4DpVX9S ND6ciRTJ4gqTNIhQwDNk1eO8BjeV+lR++Yf0xwp/eL3s/5GJDGeh7TWBecHfPg0f 1PXkGXGnMuNuaOr0ootrfOZL6fdlPuH40lHoMMPNuI2rS2OF8Z4SDGYuv4jsSWhL 3hgcAmgwZlH3jqlEZ8QNtqrwwQ/Ljy436cJWgaaNPZ06FHM/kTRFJ/BIot9VPjGp jHtl1XsnSJPGtoZioMPIb0MBCAd4+Bkmas6kg8Jpf7pnoKLiorvCyCDwn2uaOz6h s+RD//IiZ92c6NYVEtNVbN7KufyQxtGRfAeuM9tRubkW/hpOUuIeEKx37tg= -----END CERTIFICATE-----Generated at Sun Mar 1 21:43:56 2026 by rpki-client