$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/21367ddd-c241-44a2-a6e6-1387b1e1fc6f.roa File: 21367ddd-c241-44a2-a6e6-1387b1e1fc6f.roa (raw, json) Hash identifier: 58XXQG7MUYx1fhY5hQknmIaDWNJVK6rETQTcxRlDpjc= Subject key identifier: 7F:EA:3D:F6:3A:E3:7B:3C:DF:DB:26:4F:68:2D:BB:C2:29:39:5D:8D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4591E7A0DE2F7FC09AB6D21878DE865314FD0F4E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/21367ddd-c241-44a2-a6e6-1387b1e1fc6f.roa Signing time: Fri 20 Feb 2026 00:50:48 +0000 ROA not before: Fri 20 Feb 2026 00:50:48 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 54.146.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Feb 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:91:e7:a0:de:2f:7f:c0:9a:b6:d2:18:78:de:86:53:14:fd:0f:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 20 00:50:48 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=58cdf491710dafe2e6d73c2ccd20c7791a352b20dddb9b9ff12aea9b1b0ea19a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0b:7f:06:6d:e4:6d:62:60:a0:bf:71:a0:43: da:aa:5c:1a:97:f3:ef:67:55:29:04:fb:95:ff:21: 04:2c:0f:d0:14:60:1b:09:6b:ef:9b:8b:17:ba:35: 93:2d:5f:c9:49:92:e1:a3:2c:7f:21:f9:c4:97:cf: 01:27:bb:d2:ae:3b:69:ba:de:16:da:0c:9a:aa:b7: 2b:54:fc:12:53:78:2e:42:cd:e2:67:3c:7d:73:14: f5:60:7c:81:10:8c:96:84:34:7c:6d:f5:5d:5f:00: d7:98:25:8b:ee:8e:01:fd:18:d5:ea:dc:89:e8:62: ba:6a:23:47:2e:83:b2:6a:37:91:cd:57:d5:75:34: f5:d6:75:b8:0b:d3:3d:18:39:51:b5:a9:2b:82:bb: 73:d6:bc:43:cb:d6:76:cc:9f:bb:54:4e:46:e2:f8: 22:e7:01:aa:f2:08:b1:44:6f:20:29:95:e4:21:16: 8c:6e:b0:19:83:b9:b2:0e:e9:d6:fe:b5:00:38:b5: 5a:8e:dc:52:af:fb:0a:d0:7c:24:31:2e:a0:b2:fe: 74:80:0e:30:2b:5c:ce:ca:b0:bc:c3:e0:99:68:66: 1a:96:6a:62:b9:c8:46:9f:f2:4c:21:3a:6f:0d:04: 98:c5:6a:1b:c6:c1:20:be:79:18:07:8a:be:2e:99: a2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:EA:3D:F6:3A:E3:7B:3C:DF:DB:26:4F:68:2D:BB:C2:29:39:5D:8D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/21367ddd-c241-44a2-a6e6-1387b1e1fc6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.146.96.0/19 Signature Algorithm: sha256WithRSAEncryption 3c:83:c3:5f:75:0f:d3:74:30:27:21:16:ac:64:b5:73:70:61: 68:58:29:c2:78:5d:a2:78:ab:47:82:0d:1f:12:b7:d5:87:88: 8c:03:50:9a:30:cf:2c:d4:3b:f9:d0:33:66:01:98:1c:91:b2: 9e:06:96:17:28:9c:60:b4:f4:c2:42:be:59:d0:16:78:20:7d: 9f:e8:e4:b2:c0:1b:7c:b0:33:57:b9:58:dc:11:4b:40:04:74: a4:39:7b:61:ca:26:5c:f2:70:6e:1c:20:e5:ab:9f:10:9c:65: 56:50:a9:3d:8f:1e:76:1a:07:ee:59:dd:09:42:f4:f8:93:80: bc:29:f9:0e:a6:f8:45:9b:2a:4a:38:ae:69:d8:ec:59:be:42: 18:a3:dd:e3:b7:e7:72:bb:3c:36:08:82:a5:30:8b:19:12:bd: 65:8e:0e:b5:cc:f6:8c:bc:d4:54:15:09:c3:92:c8:74:af:1d: 4d:df:62:c7:81:a0:c9:27:10:3c:07:22:98:a5:86:d3:6f:18: c9:0b:c3:3e:6f:1f:50:74:35:76:45:64:31:3f:f9:c3:f5:bd: c1:1c:9f:2f:de:88:a4:3d:f8:1a:92:90:e1:64:cd:bd:73:f8: a3:78:e9:21:02:c7:4a:3b:90:2c:6e:19:24:49:75:b4:48:ae: 3d:e5:3f:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURZHnoN4vf8CattIYeN6GUxT9D04wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjIwMDA1MDQ4WhcNMjYwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGNkZjQ5MTcxMGRhZmUyZTZkNzNjMmNjZDIwYzc3OTFh MzUyYjIwZGRkYjliOWZmMTJhZWE5YjFiMGVhMTlhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhC38GbeRtYmCgv3GgQ9qqXBqX8+9nVSkE+5X/IQQsD9AU YBsJa++bixe6NZMtX8lJkuGjLH8h+cSXzwEnu9KuO2m63hbaDJqqtytU/BJTeC5C zeJnPH1zFPVgfIEQjJaENHxt9V1fANeYJYvujgH9GNXq3InoYrpqI0cug7JqN5HN V9V1NPXWdbgL0z0YOVG1qSuCu3PWvEPL1nbMn7tUTkbi+CLnAaryCLFEbyApleQh FoxusBmDubIO6db+tQA4tVqO3FKv+wrQfCQxLqCy/nSADjArXM7KsLzD4JloZhqW amK5yEaf8kwhOm8NBJjFahvGwSC+eRgHir4umaL1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf+o99jrjezzf2yZPaC27wik5XY0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIxMzY3ZGRkLWMyNDEtNDRhMi1hNmU2LTEzODdiMWUxZmM2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2kmAwDQYJKoZIhvcNAQELBQADggEBADyDw191D9N0MCchFqxktXNwYWhY KcJ4XaJ4q0eCDR8St9WHiIwDUJowzyzUO/nQM2YBmByRsp4GlhconGC09MJCvlnQ FnggfZ/o5LLAG3ywM1e5WNwRS0AEdKQ5e2HKJlzycG4cIOWrnxCcZVZQqT2PHnYa B+5Z3QlC9PiTgLwp+Q6m+EWbKko4rmnY7Fm+Qhij3eO353K7PDYIgqUwixkSvWWO DrXM9oy81FQVCcOSyHSvHU3fYseBoMknEDwHIpilhtNvGMkLwz5vH1B0NXZFZDE/ +cP1vcEcny/eiKQ9+BqSkOFkzb1z+KN46SECx0o7kCxuGSRJdbRIrj3lPws= -----END CERTIFICATE-----Generated at Thu Feb 26 02:08:17 2026 by rpki-client