$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2bb4d61-f510-4dfd-a676-e78fce1d19d7.roa File: d2bb4d61-f510-4dfd-a676-e78fce1d19d7.roa (raw, json) Hash identifier: vtdi/IS/9C8SdnXvu5rNDAydzYlhUTVXowOpDLTgRWs= Subject key identifier: D9:3F:35:8C:61:46:F9:3E:A1:F9:D3:CF:7F:ED:82:08:FE:94:37:D8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2B0BFF59AA2DFEAF14F08AF5C67C4CA165EEC2D3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2bb4d61-f510-4dfd-a676-e78fce1d19d7.roa Signing time: Tue 17 Feb 2026 01:31:07 +0000 ROA not before: Tue 17 Feb 2026 01:31:07 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 34.253.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:0b:ff:59:aa:2d:fe:af:14:f0:8a:f5:c6:7c:4c:a1:65:ee:c2:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 17 01:31:07 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=8063734d5fa0a808939fa66b55b94f19ce4c035511431824fa025119092ad90f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9d:2b:97:d1:c9:8a:ef:21:76:d7:62:4f:5b: a2:b2:ba:2b:d4:e1:66:e9:37:01:c1:f4:c6:2c:4d: 86:7a:65:9b:14:f5:1c:9e:b6:99:16:83:1f:c2:3b: 63:71:57:8e:c7:1f:6c:68:f5:48:b9:6c:38:44:5d: 5f:8c:fd:7a:41:ce:54:11:2a:4f:39:f8:2f:7d:d1: 88:4b:1c:a1:6c:f1:f9:98:09:0e:3b:d1:66:bc:1e: 9e:37:19:93:f4:b8:08:19:36:3b:8c:80:93:db:ae: 41:7c:a2:eb:b7:4d:c1:17:e7:eb:d7:b5:cd:f6:75: ad:30:04:cb:05:9c:8c:87:0d:19:74:f6:ad:33:95: e1:c9:03:93:43:63:ee:20:76:13:66:d0:bc:48:9b: e2:56:e0:0d:b3:74:e2:a8:96:72:ae:5f:cb:ff:da: 5c:fc:45:c0:95:b3:93:43:8c:50:0d:58:1d:31:f9: c8:cd:a8:77:4b:62:39:53:33:f3:73:0c:39:14:8c: 85:4f:c1:31:79:f1:3f:7d:ea:02:5a:3f:7d:69:ed: 3e:44:fa:61:fc:85:12:4c:60:6d:ba:d2:84:4e:a2: 53:4c:27:a9:0c:03:3c:7c:69:39:8a:26:03:79:00: f7:05:ac:d9:85:0c:2d:14:3d:ef:50:96:6b:9e:a8: ca:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:3F:35:8C:61:46:F9:3E:A1:F9:D3:CF:7F:ED:82:08:FE:94:37:D8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2bb4d61-f510-4dfd-a676-e78fce1d19d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.253.64.0/18 Signature Algorithm: sha256WithRSAEncryption 94:5e:90:f4:95:fa:43:7c:bd:fc:02:7a:70:ef:f0:93:45:69: db:f1:39:21:f7:b5:c0:bc:5b:42:72:b3:3f:00:91:5c:6e:ae: 02:ae:ff:80:80:72:2f:96:48:95:3e:b0:d0:86:b3:e6:2e:70: e5:16:8e:29:98:4a:ce:f9:9d:9a:a2:cf:6a:69:f6:49:97:f9: 6b:87:c0:fa:74:af:7b:0e:43:d4:9e:0d:3b:7e:17:6b:b1:db: 6b:7d:ce:94:20:e9:79:20:51:6f:b3:18:fc:17:6c:11:c1:c6: 23:25:f9:f3:f6:2a:2e:48:0c:15:02:d0:08:04:cd:5f:67:cb: 79:6a:42:b2:97:ea:52:76:92:c1:34:c5:ed:37:ae:cc:07:92: b6:da:6b:e2:4d:75:73:dc:30:f3:8f:7f:91:18:15:43:6d:0f: 0c:6b:58:d2:85:45:14:cd:80:fe:5c:70:97:e3:c8:f8:b9:d4: 68:b7:f5:31:0d:27:52:f1:2c:1c:d0:50:f9:40:68:8f:38:ff: 02:b8:4e:47:75:2f:4c:73:08:e4:15:93:33:12:ff:d7:6a:63: d9:cc:50:b8:1f:42:77:0c:a1:f5:cf:66:39:15:8a:2f:be:e6: f6:aa:5e:6a:86:d3:22:5d:ed:41:4c:c1:65:2e:51:17:9d:ec: c1:70:02:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKwv/Waot/q8U8Ir1xnxMoWXuwtMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjE3MDEzMTA3WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDYzNzM0ZDVmYTBhODA4OTM5ZmE2NmI1NWI5NGYxOWNl NGMwMzU1MTE0MzE4MjRmYTAyNTExOTA5MmFkOTBmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+nSuX0cmK7yF212JPW6KyuivU4WbpNwHB9MYsTYZ6ZZsU 9RyetpkWgx/CO2NxV47HH2xo9Ui5bDhEXV+M/XpBzlQRKk85+C990YhLHKFs8fmY CQ470Wa8Hp43GZP0uAgZNjuMgJPbrkF8ouu3TcEX5+vXtc32da0wBMsFnIyHDRl0 9q0zleHJA5NDY+4gdhNm0LxIm+JW4A2zdOKolnKuX8v/2lz8RcCVs5NDjFANWB0x +cjNqHdLYjlTM/NzDDkUjIVPwTF58T996gJaP31p7T5E+mH8hRJMYG260oROolNM J6kMAzx8aTmKJgN5APcFrNmFDC0UPe9QlmueqMr/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2T81jGFG+T6h+dPPf+2CCP6UN9gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QyYmI0ZDYxLWY1MTAtNGRmZC1hNjc2LWU3OGZjZTFkMTlkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYi/UAwDQYJKoZIhvcNAQELBQADggEBAJRekPSV+kN8vfwCenDv8JNFadvx OSH3tcC8W0Jysz8AkVxurgKu/4CAci+WSJU+sNCGs+YucOUWjimYSs75nZqiz2pp 9kmX+WuHwPp0r3sOQ9SeDTt+F2ux22t9zpQg6XkgUW+zGPwXbBHBxiMl+fP2Ki5I DBUC0AgEzV9ny3lqQrKX6lJ2ksE0xe03rswHkrbaa+JNdXPcMPOPf5EYFUNtDwxr WNKFRRTNgP5ccJfjyPi51Gi39TENJ1LxLBzQUPlAaI84/wK4Tkd1L0xzCOQVkzMS /9dqY9nMULgfQncMofXPZjkVii++5vaqXmqG0yJd7UFMwWUuURed7MFwAto= -----END CERTIFICATE-----Generated at Sun Mar 1 21:40:54 2026 by rpki-client