$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa File: 809b8de9-35a6-4f5e-b327-c96f51b0a969.roa (raw, json) Hash identifier: xxd9UU9kOmyKReepDCYYBqTR5WARBDRvxamre6WEz/0= Subject key identifier: AB:AD:3E:89:C2:B4:9A:F0:67:04:C0:92:7D:CB:60:68:19:05:C0:26 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2B190734181FB449FC1BC8E0E85EAD325405D241 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa Signing time: Mon 23 Feb 2026 01:21:46 +0000 ROA not before: Mon 23 Feb 2026 01:21:46 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 54.157.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Feb 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:19:07:34:18:1f:b4:49:fc:1b:c8:e0:e8:5e:ad:32:54:05:d2:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 23 01:21:46 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=b70764b4e19ae22883b84633b54ce47779b297cb2aa08f2fa04086d44e5d9bb0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:b1:b4:32:ee:71:ca:52:37:89:5d:cd:36: d4:54:92:f3:6a:b2:5c:7f:8b:53:77:1d:02:02:f1: 0d:b3:c0:d8:b6:e8:9a:69:f6:0e:bc:49:43:9a:9d: 26:69:b0:7e:cc:9c:90:24:e9:b3:6c:0a:c6:65:e6: 0a:57:33:65:f1:39:0b:8f:24:15:65:67:38:6f:70: 0f:e9:e4:38:4c:94:74:65:56:82:b0:d6:66:8f:65: 4f:fc:cb:32:3b:47:db:92:8e:0f:96:70:92:12:b4: 77:d3:ec:1e:f7:73:da:be:06:fa:d0:13:bf:e5:0d: dd:17:3f:a0:4a:d7:81:3b:85:45:9a:a3:a1:6c:39: 00:7b:21:89:6c:01:ec:a9:6e:a8:0c:06:31:82:4f: fa:56:9d:0c:98:b6:6d:d4:d0:42:a0:8a:ea:21:56: 6a:4f:ba:1d:a5:f0:ad:0c:35:54:00:74:ae:26:be: 54:db:41:46:17:a3:c5:f1:50:05:6f:21:de:9c:c0: 69:0f:6e:58:53:f6:e9:52:80:8c:36:a0:a2:61:51: 87:c2:ca:4d:49:e3:fd:5e:f0:3b:fa:90:32:24:3f: 3a:f2:49:63:b9:fa:35:9c:1e:b6:fb:8b:1b:5a:81: 04:aa:c4:bd:a7:3d:f2:76:85:cd:1b:f8:dd:c9:58: 5e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:AD:3E:89:C2:B4:9A:F0:67:04:C0:92:7D:CB:60:68:19:05:C0:26 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.157.192.0/18 Signature Algorithm: sha256WithRSAEncryption 74:32:98:fe:75:45:42:12:12:a5:57:74:5c:32:4d:ab:db:16: 17:0b:b4:74:c8:60:b7:ac:67:1f:53:6c:93:32:75:4e:45:81: c4:f9:2b:fd:46:83:63:cd:c3:27:da:b6:7e:f5:00:06:b8:3a: e1:3e:7c:9f:79:4b:38:43:d4:32:f1:a8:96:b0:04:4c:3a:7b: 9c:f8:a4:38:d4:55:68:dd:9a:f1:f3:74:57:b0:18:29:e9:a1: 46:17:72:a7:d4:25:99:e9:52:ba:23:4f:d4:43:24:d6:4b:7d: 4b:2c:42:a0:d9:cf:eb:a5:de:83:24:1f:74:c2:72:62:1c:d0: 64:48:9f:63:e7:d0:8c:7f:c5:77:87:f6:6c:6f:d1:4d:eb:45: a7:54:e2:8e:ff:06:7b:1a:82:52:07:58:58:75:8b:6a:48:c3: e2:d6:a8:56:8c:76:21:a0:c9:8e:9c:10:f3:16:f1:f1:07:e3: 02:5a:42:11:af:1f:53:77:11:b9:63:29:dc:9c:b4:6a:08:36: 70:48:b7:5c:ab:d5:e2:25:e7:23:de:ac:39:c0:01:29:75:04: 5c:4f:60:f7:e8:f6:5a:98:a4:d8:d2:33:05:63:ea:34:cf:fa: 22:02:f1:56:4f:07:93:00:bd:1c:4e:64:50:b7:3f:f1:59:c1: a8:24:c4:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKxkHNBgftEn8G8jg6F6tMlQF0kEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjIzMDEyMTQ2WhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzA3NjRiNGUxOWFlMjI4ODNiODQ2MzNiNTRjZTQ3Nzc5 YjI5N2NiMmFhMDhmMmZhMDQwODZkNDRlNWQ5YmIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6f7G0Mu5xylI3iV3NNtRUkvNqslx/i1N3HQIC8Q2zwNi2 6Jpp9g68SUOanSZpsH7MnJAk6bNsCsZl5gpXM2XxOQuPJBVlZzhvcA/p5DhMlHRl VoKw1maPZU/8yzI7R9uSjg+WcJIStHfT7B73c9q+BvrQE7/lDd0XP6BK14E7hUWa o6FsOQB7IYlsAeypbqgMBjGCT/pWnQyYtm3U0EKgiuohVmpPuh2l8K0MNVQAdK4m vlTbQUYXo8XxUAVvId6cwGkPblhT9ulSgIw2oKJhUYfCyk1J4/1e8Dv6kDIkPzry SWO5+jWcHrb7ixtagQSqxL2nPfJ2hc0b+N3JWF7hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq60+icK0mvBnBMCSfctgaBkFwCYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzgwOWI4ZGU5LTM1YTYtNGY1ZS1iMzI3LWM5NmY1MWIwYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2ncAwDQYJKoZIhvcNAQELBQADggEBAHQymP51RUISEqVXdFwyTavbFhcL tHTIYLesZx9TbJMydU5FgcT5K/1Gg2PNwyfatn71AAa4OuE+fJ95SzhD1DLxqJaw BEw6e5z4pDjUVWjdmvHzdFewGCnpoUYXcqfUJZnpUrojT9RDJNZLfUssQqDZz+ul 3oMkH3TCcmIc0GRIn2Pn0Ix/xXeH9mxv0U3rRadU4o7/BnsaglIHWFh1i2pIw+LW qFaMdiGgyY6cEPMW8fEH4wJaQhGvH1N3EbljKdyctGoINnBIt1yr1eIl5yPerDnA ASl1BFxPYPfo9lqYpNjSMwVj6jTP+iIC8VZPB5MAvRxOZFC3P/FZwagkxAc= -----END CERTIFICATE-----Generated at Thu Feb 26 02:08:01 2026 by rpki-client