$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d531a7ea-3563-42ed-ae6a-31d3498f1cec.roa File: d531a7ea-3563-42ed-ae6a-31d3498f1cec.roa (raw, json) Hash identifier: h5sfs2/3ZRUtEzr56zPAmh8tkqiQ9e1FBwBJdYHg410= Subject key identifier: A1:56:10:17:F8:2A:52:A6:E7:1E:2A:27:0B:C7:E6:B1:AE:2D:A0:D4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7E0F2818A7BF398509BCF5F3BE52ECDDAE4C1BB9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d531a7ea-3563-42ed-ae6a-31d3498f1cec.roa Signing time: Fri 20 Feb 2026 01:00:03 +0000 ROA not before: Fri 20 Feb 2026 01:00:03 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.151.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0f:28:18:a7:bf:39:85:09:bc:f5:f3:be:52:ec:dd:ae:4c:1b:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 20 01:00:03 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=13965ddf88a42ff0e9c2c1a9b9276bd52efad73c39b253177c057e6e8c642e36, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:af:2a:95:e4:5f:79:87:67:4a:3e:26:a1:35: 60:a3:2b:9f:c2:6b:7d:2e:fe:d1:72:e0:6e:4e:3a: 60:d7:32:cc:6d:c5:1a:6b:8b:10:28:20:d1:bd:90: 26:5d:86:f2:ec:c1:fb:34:a8:ef:e2:fb:4d:f7:90: 52:f7:72:b3:26:9d:c9:92:49:87:f7:7c:43:9e:94: e1:cd:3b:b5:a4:1f:8b:e3:55:c8:b8:ff:60:e2:c3: 0c:e0:d9:ab:9b:e8:5c:77:e1:1a:65:ec:07:5c:36: a1:44:f6:3c:1e:95:3e:77:86:0d:6c:d6:9a:5b:a5: dd:db:c9:90:21:9d:12:6d:a5:dd:a9:4b:c3:a7:7c: 17:25:d0:72:8d:5b:93:a6:c5:ec:ce:8f:73:7a:36: 67:9a:a0:97:b8:a3:9e:e5:19:e2:a0:03:0e:56:e1: c8:da:c3:2d:16:63:c5:fa:da:b9:4b:03:6b:66:1e: 3e:41:17:9d:45:83:6e:17:a0:c6:12:bf:6b:b4:9d: d1:64:c1:98:f4:95:8a:b5:04:33:17:67:64:69:fb: 82:03:1d:16:c5:ee:80:b4:8f:5c:9a:77:84:e6:95: 9e:75:a2:7b:d8:e2:09:e9:d0:58:5d:93:3b:da:bf: a0:ef:4f:5d:f4:d6:28:e4:10:be:69:64:54:db:f7: 01:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:56:10:17:F8:2A:52:A6:E7:1E:2A:27:0B:C7:E6:B1:AE:2D:A0:D4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d531a7ea-3563-42ed-ae6a-31d3498f1cec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.151.232.0/21 Signature Algorithm: sha256WithRSAEncryption 50:36:73:e0:f5:e3:2c:62:53:e7:08:ca:d0:d8:26:cd:15:12: fe:b9:d5:13:4a:25:93:17:ae:50:3a:4f:04:2a:c8:8a:d6:6a: 90:93:40:73:5c:78:0a:96:6c:c4:ce:8f:65:80:a5:3a:35:8a: d0:e7:90:50:67:49:04:5d:a6:02:1d:c0:4e:86:66:2a:36:5e: 09:3a:87:a6:5f:bc:41:e2:4a:b2:4a:56:d9:e1:26:d3:0b:80: 6a:0d:99:12:bd:3c:90:91:e7:7f:12:38:74:b0:f1:10:f2:54: 3e:fb:6b:d1:ab:88:97:e0:7e:13:f7:39:8f:2a:e3:6c:29:22: 6f:3f:b8:3f:be:cf:3e:c5:24:9f:9c:c6:36:83:8d:79:96:19: 66:59:67:12:1e:fa:0a:00:f7:f0:93:2c:a0:6e:08:b1:c0:6b: 43:18:89:8e:37:b5:4d:80:83:8e:d0:2d:b2:89:ac:02:ca:7e: 37:ce:1c:f9:85:18:6b:99:cb:22:bc:ab:4b:5c:8c:d2:78:be: 15:16:5e:e1:99:a9:41:68:b4:99:30:9c:f2:31:d6:1c:9f:6f: 63:7e:1b:d6:35:20:68:a1:91:5d:80:d7:00:4c:5e:db:2a:79: 49:cd:1b:39:db:74:01:75:9e:bf:7e:a4:b7:7b:1b:07:72:e9: 1a:46:f1:12 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfg8oGKe/OYUJvPXzvlLs3a5MG7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjIwMDEwMDAzWhcNMjYwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzk2NWRkZjg4YTQyZmYwZTljMmMxYTliOTI3NmJkNTJl ZmFkNzNjMzliMjUzMTc3YzA1N2U2ZThjNjQyZTM2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFryqV5F95h2dKPiahNWCjK5/Ca30u/tFy4G5OOmDXMsxt xRprixAoING9kCZdhvLswfs0qO/i+033kFL3crMmncmSSYf3fEOelOHNO7WkH4vj Vci4/2Diwwzg2aub6Fx34Rpl7AdcNqFE9jwelT53hg1s1ppbpd3byZAhnRJtpd2p S8OnfBcl0HKNW5OmxezOj3N6NmeaoJe4o57lGeKgAw5W4cjawy0WY8X62rlLA2tm Hj5BF51Fg24XoMYSv2u0ndFkwZj0lYq1BDMXZ2Rp+4IDHRbF7oC0j1yad4TmlZ51 onvY4gnp0Fhdkzvav6DvT1301ijkEL5pZFTb9wHpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoVYQF/gqUqbnHionC8fmsa4toNQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q1MzFhN2VhLTM1NjMtNDJlZC1hZTZhLTMxZDM0OThmMWNlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM2l+gwDQYJKoZIhvcNAQELBQADggEBAFA2c+D14yxiU+cIytDYJs0VEv65 1RNKJZMXrlA6TwQqyIrWapCTQHNceAqWbMTOj2WApTo1itDnkFBnSQRdpgIdwE6G Zio2Xgk6h6ZfvEHiSrJKVtnhJtMLgGoNmRK9PJCR538SOHSw8RDyVD77a9GriJfg fhP3OY8q42wpIm8/uD++zz7FJJ+cxjaDjXmWGWZZZxIe+goA9/CTLKBuCLHAa0MY iY43tU2Ag47QLbKJrALKfjfOHPmFGGuZyyK8q0tcjNJ4vhUWXuGZqUFotJkwnPIx 1hyfb2N+G9Y1IGihkV2A1wBMXtsqeUnNGznbdAF1nr9+pLd7Gwdy6RpG8RI= -----END CERTIFICATE-----Generated at Mon Mar 2 01:07:38 2026 by rpki-client