$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa File: 00476d6f-40ff-4135-9a46-906f4f8898c0.roa (raw, json) Hash identifier: 3UjQQxhJq4LjDhcMMCfzb+kfSdKxAhKyPDWQYs3h9sk= Subject key identifier: 8F:D5:79:0F:14:40:8D:0D:00:3B:F9:9B:CF:55:E9:F4:62:5D:FC:E4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 327F8E1D08BC7E53B42B9E179749EF3AD09DC76E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa Signing time: Tue 17 Feb 2026 01:10:08 +0000 ROA not before: Tue 17 Feb 2026 01:10:08 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 3.236.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Feb 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:7f:8e:1d:08:bc:7e:53:b4:2b:9e:17:97:49:ef:3a:d0:9d:c7:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 17 01:10:08 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=7ab4b936bfeb52595c11b1035d2a0a771b01b01350608077b61f42859268ddca, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d9:5b:00:e9:63:af:25:6d:4d:2c:f2:9c:72: cb:aa:6a:75:59:69:38:92:f3:73:25:84:7b:51:94: e1:1a:e8:96:af:ea:db:bc:0d:31:b3:a3:9a:cc:72: 22:fb:a8:6f:58:1f:c4:d6:6a:cd:a0:83:2d:1d:37: da:f2:ac:08:92:0c:e9:fc:9b:40:cd:db:24:bc:3a: 2c:9f:1e:0f:9a:33:19:27:87:a0:7a:1c:dd:52:e3: 17:87:3b:ac:29:c2:83:ed:d1:a9:58:15:53:47:62: e6:aa:33:dd:14:40:52:f9:cd:fd:6c:13:c7:a4:10: 3b:b7:5c:21:bb:67:68:ee:66:6a:f0:e4:41:ee:f8: db:38:7f:3b:fc:03:18:83:83:2d:e8:3d:c0:04:1d: d5:fe:c7:d9:13:fd:15:ef:3b:51:b3:a7:0d:b9:fe: 12:a1:c0:74:81:34:dc:de:82:44:35:91:8d:e9:27: 62:35:17:f0:d4:d6:21:cd:aa:e5:c0:a5:35:50:dc: 4d:0a:b9:94:37:df:5a:fd:db:6e:f3:a5:d7:f8:28: f0:64:47:e1:fb:cf:0d:4b:31:3f:e8:ff:c7:10:99: 18:ad:5a:33:5c:f7:4c:b4:c6:55:9c:36:72:2e:47: f9:f8:8c:84:48:32:12:74:39:21:cb:2d:77:df:10: 87:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D5:79:0F:14:40:8D:0D:00:3B:F9:9B:CF:55:E9:F4:62:5D:FC:E4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.236.32.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:a3:7d:5d:b9:77:19:bf:94:bc:0a:5e:06:83:60:bd:bc:31: 1d:18:d0:10:0d:e8:91:32:dc:d4:c0:07:03:c0:61:5a:3a:72: 1c:44:33:40:d6:ee:c6:9b:c3:02:b4:c4:8b:85:0d:36:b8:fc: 1e:12:82:3c:9a:4f:af:5f:24:fd:90:96:61:39:8a:c1:b2:1c: 67:51:1f:c8:09:99:90:1f:67:ce:9f:3a:02:b6:14:27:18:c5: 6c:ec:69:31:30:69:1a:37:da:d7:d9:13:c0:56:f6:5e:35:ab: 02:91:5a:95:52:5c:79:9f:11:dc:ab:51:9d:4b:0e:70:fb:57: 1d:2a:e5:ff:c0:4f:66:cb:0e:07:f6:57:85:04:eb:8c:e1:46: 3c:6a:ae:95:4d:e2:8c:87:c3:90:a9:28:02:8e:0c:5a:ff:2b: 45:57:bf:53:55:2a:bc:0c:27:8e:14:a8:cd:f4:95:ed:03:4a: b5:9b:85:72:0f:e5:cb:b9:3d:e7:24:f7:c9:b8:70:3a:0a:cd: d7:3c:8a:ec:9c:ad:10:92:94:2d:96:4f:47:6a:3d:14:51:9c: 1d:1b:8d:de:4b:a2:bb:03:b9:0a:7d:c9:9f:31:3f:b8:f5:4d: 84:a5:0f:4a:40:71:2d:e4:67:c5:1c:fd:d4:7f:12:45:f2:eb: 64:7f:95:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMn+OHQi8flO0K54Xl0nvOtCdx24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjE3MDExMDA4WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWI0YjkzNmJmZWI1MjU5NWMxMWIxMDM1ZDJhMGE3NzFi MDFiMDEzNTA2MDgwNzdiNjFmNDI4NTkyNjhkZGNhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY2VsA6WOvJW1NLPKccsuqanVZaTiS83MlhHtRlOEa6Jav 6tu8DTGzo5rMciL7qG9YH8TWas2ggy0dN9ryrAiSDOn8m0DN2yS8OiyfHg+aMxkn h6B6HN1S4xeHO6wpwoPt0alYFVNHYuaqM90UQFL5zf1sE8ekEDu3XCG7Z2juZmrw 5EHu+Ns4fzv8AxiDgy3oPcAEHdX+x9kT/RXvO1Gzpw25/hKhwHSBNNzegkQ1kY3p J2I1F/DU1iHNquXApTVQ3E0KuZQ331r9227zpdf4KPBkR+H7zw1LMT/o/8cQmRit WjNc90y0xlWcNnIuR/n4jIRIMhJ0OSHLLXffEIcrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj9V5DxRAjQ0AO/mbz1Xp9GJd/OQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwNDc2ZDZmLTQwZmYtNDEzNS05YTQ2LTkwNmY0Zjg4OThjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAID7CAwDQYJKoZIhvcNAQELBQADggEBAF6jfV25dxm/lLwKXgaDYL28MR0Y 0BAN6JEy3NTABwPAYVo6chxEM0DW7sabwwK0xIuFDTa4/B4SgjyaT69fJP2QlmE5 isGyHGdRH8gJmZAfZ86fOgK2FCcYxWzsaTEwaRo32tfZE8BW9l41qwKRWpVSXHmf EdyrUZ1LDnD7Vx0q5f/AT2bLDgf2V4UE64zhRjxqrpVN4oyHw5CpKAKODFr/K0VX v1NVKrwMJ44UqM30le0DSrWbhXIP5cu5Peck98m4cDoKzdc8iuycrRCSlC2WT0dq PRRRnB0bjd5LorsDuQp9yZ8xP7j1TYSlD0pAcS3kZ8Uc/dR/EkXy62R/lSs= -----END CERTIFICATE-----Generated at Thu Feb 26 02:08:27 2026 by rpki-client