$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaae616-0457-40ae-9037-643180e0b128.roa File: 2aaae616-0457-40ae-9037-643180e0b128.roa (raw, json) Hash identifier: KqnMq3liKdCl7Sbbt5WhHOuohsjrTaW0ene/mKDxbkw= Subject key identifier: 30:94:B4:2A:CA:F2:98:DD:95:08:16:53:EF:EE:B7:0E:C6:33:E1:82 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2C867AC6342D56B027EF0E871CAB9CE05BB5CCA2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaae616-0457-40ae-9037-643180e0b128.roa Signing time: Tue 17 Feb 2026 00:50:07 +0000 ROA not before: Tue 17 Feb 2026 00:50:07 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 15.230.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Feb 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:86:7a:c6:34:2d:56:b0:27:ef:0e:87:1c:ab:9c:e0:5b:b5:cc:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 17 00:50:07 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=1a28d95a0d1f0ac607ce1b1438f22e496a355c3d62ac5d7e2d73cdbcc27576f2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e0:93:7e:d6:67:db:99:7d:c0:b8:bf:52:ea: 90:9a:21:93:ff:3e:8f:70:03:d0:0f:f0:87:74:1e: c6:45:6d:92:9b:7e:7c:fb:db:a1:e8:88:9a:e8:98: 00:9d:b9:81:85:e7:18:75:1c:1b:ba:6d:ca:de:60: 9f:4d:ab:c1:01:22:22:64:5f:1d:01:76:e8:37:7c: d1:02:57:17:6d:ea:5a:64:1f:f3:f5:98:49:ea:62: 67:e0:74:8a:e3:fb:6b:2a:9d:63:10:72:6a:0c:da: d1:a2:f7:2b:18:46:ac:e4:56:1c:b9:d9:8a:78:c5: 54:b4:b2:37:f4:e2:a0:ec:b5:ff:08:05:c0:81:b3: c7:0a:d8:96:16:e4:b9:eb:72:56:fa:aa:74:ac:1b: 08:e3:d0:96:5c:0f:00:b9:bf:6d:ff:f3:c7:9a:67: 01:d2:c8:c7:d5:d2:f7:6f:a9:e3:2b:26:5b:3a:68: 95:65:61:48:74:ff:ea:8b:86:d7:1b:20:89:54:03: 01:8a:59:6b:23:72:01:91:ce:d5:b6:6f:ca:82:7b: cd:dc:b7:ec:1e:67:29:04:e7:d8:13:d1:05:d8:dd: 42:aa:84:d4:d8:7b:89:c9:2d:8e:d2:21:23:bd:49: 10:04:f8:b2:73:1b:bd:b0:26:25:aa:a7:1f:68:3e: 80:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:94:B4:2A:CA:F2:98:DD:95:08:16:53:EF:EE:B7:0E:C6:33:E1:82 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaae616-0457-40ae-9037-643180e0b128.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.248.0/24 Signature Algorithm: sha256WithRSAEncryption 69:91:3c:3f:ff:13:e4:a1:c2:be:6e:77:8c:71:ad:7d:13:27: 25:85:08:a1:18:bf:3d:dd:0d:6c:9d:11:ef:85:3d:76:f8:4a: 9b:19:1d:25:85:ca:53:3d:82:19:bf:db:01:31:11:90:ec:aa: d1:82:39:ee:e7:4f:ce:df:b8:5b:13:c0:89:eb:7e:78:4e:c1: f0:a2:25:12:e5:90:ed:ee:44:01:6e:c4:a0:2d:1e:be:19:e5: 95:3b:0e:e2:26:1b:02:21:b0:3c:d3:04:3a:3e:ec:29:8d:15: 78:f9:ac:62:9d:36:e8:63:6b:bb:e2:d4:90:40:ea:1e:af:86: b7:29:1f:42:16:64:7c:94:75:82:d2:2e:45:37:83:50:21:44: 4f:c7:2b:36:45:0b:ca:a9:ff:e0:64:f9:1e:82:5c:70:99:5a: a2:f4:d8:43:1d:31:38:74:3b:a5:a9:03:44:16:4a:43:6b:47: 78:ac:97:1e:99:91:f1:be:b4:4d:3e:6e:51:f0:41:3c:b4:c5: 20:bf:85:5c:db:cb:fc:67:6e:d3:f0:e1:f2:fe:2f:21:16:60: b1:85:cf:60:85:d9:f1:ae:ab:01:98:75:b6:f8:b0:83:a8:21: a9:c2:b6:92:ba:09:eb:82:53:95:0f:bc:81:18:67:e7:2e:73: 9d:ab:dd:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULIZ6xjQtVrAn7w6HHKuc4Fu1zKIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjE3MDA1MDA3WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTI4ZDk1YTBkMWYwYWM2MDdjZTFiMTQzOGYyMmU0OTZh MzU1YzNkNjJhYzVkN2UyZDczY2RiY2MyNzU3NmYyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ4JN+1mfbmX3AuL9S6pCaIZP/Po9wA9AP8Id0HsZFbZKb fnz726HoiJromACduYGF5xh1HBu6bcreYJ9Nq8EBIiJkXx0Bdug3fNECVxdt6lpk H/P1mEnqYmfgdIrj+2sqnWMQcmoM2tGi9ysYRqzkVhy52Yp4xVS0sjf04qDstf8I BcCBs8cK2JYW5Lnrclb6qnSsGwjj0JZcDwC5v23/88eaZwHSyMfV0vdvqeMrJls6 aJVlYUh0/+qLhtcbIIlUAwGKWWsjcgGRztW2b8qCe83ct+weZykE59gT0QXY3UKq hNTYe4nJLY7SISO9SRAE+LJzG72wJiWqpx9oPoARAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMJS0KsrymN2VCBZT7+63DsYz4YIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJhYWFlNjE2LTA0NTctNDBhZS05MDM3LTY0MzE4MGUwYjEyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5vgwDQYJKoZIhvcNAQELBQADggEBAGmRPD//E+Shwr5ud4xxrX0TJyWF CKEYvz3dDWydEe+FPXb4SpsZHSWFylM9ghm/2wExEZDsqtGCOe7nT87fuFsTwInr fnhOwfCiJRLlkO3uRAFuxKAtHr4Z5ZU7DuImGwIhsDzTBDo+7CmNFXj5rGKdNuhj a7vi1JBA6h6vhrcpH0IWZHyUdYLSLkU3g1AhRE/HKzZFC8qp/+Bk+R6CXHCZWqL0 2EMdMTh0O6WpA0QWSkNrR3islx6ZkfG+tE0+blHwQTy0xSC/hVzby/xnbtPw4fL+ LyEWYLGFz2CF2fGuqwGYdbb4sIOoIanCtpK6CeuCU5UPvIEYZ+cuc52r3aE= -----END CERTIFICATE-----Generated at Thu Feb 26 02:08:15 2026 by rpki-client