$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/5c882412-eebd-4cab-aa4f-3b6f821cbb86.roa File: 5c882412-eebd-4cab-aa4f-3b6f821cbb86.roa (raw, json) Hash identifier: XeCFnDK8qZHvblWgDiKA1VBc6BDiCAhC9dSsGKXGvbg= Subject key identifier: B8:39:AE:7C:9E:29:08:25:73:3E:22:89:10:A8:CF:7E:6D:7F:2C:12 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 1F7C539334F140CEB1E2FD90B690E9C5CBEAB07D Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/5c882412-eebd-4cab-aa4f-3b6f821cbb86.roa Signing time: Wed 01 Apr 2026 18:36:53 +0000 ROA not before: Wed 01 Apr 2026 18:36:53 +0000 ROA not after: Tue 30 Jun 2026 23:59:59 +0000 asID: 402154 IP address blocks: 64.27.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 08 Apr 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:7c:53:93:34:f1:40:ce:b1:e2:fd:90:b6:90:e9:c5:cb:ea:b0:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Apr 1 18:36:53 2026 GMT Not After : Jun 30 23:59:59 2026 GMT Subject: serialNumber=a684030ac7d69bcfd122d90c77f9ad68fe8ad335a0a71719d76bef128590afe4, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:81:ad:e7:1b:8e:7c:3a:24:91:3a:a5:50:57: 3d:19:b2:d0:69:ee:c9:c1:6e:5b:a8:7c:1e:74:f1: 5f:ef:02:35:ef:83:9c:64:64:ff:11:7c:dc:e2:23: d4:fa:5f:b7:eb:e3:df:2d:84:2b:d9:49:bc:f7:7a: c6:0a:0b:3e:23:f2:fb:a8:f0:00:60:8d:01:d0:eb: 2d:76:b8:13:0b:f7:9d:9b:87:40:95:49:b1:b1:da: 03:78:ac:c3:1e:19:19:bd:63:a9:19:e0:a0:77:3a: d6:f0:38:e6:67:da:94:df:04:ba:22:a2:07:9e:e4: 05:9a:7d:fb:2a:38:12:46:38:c5:94:ba:d2:cb:3e: 5f:87:a7:0c:c6:b3:7c:b7:80:17:99:79:9b:73:4f: 0f:29:be:c5:0a:b4:3d:9b:fe:dd:96:f5:f8:5a:40: a0:2a:a1:fe:23:94:39:92:43:25:8c:fb:51:58:98: 13:26:16:f4:3b:c0:5c:73:07:38:b9:32:0a:a3:42: cc:db:fd:b5:78:9e:c7:4e:44:3d:57:34:23:1c:6b: ea:5d:76:c1:16:5b:29:de:80:c3:3c:9f:1b:72:26: 4a:d0:f2:fc:58:8f:ce:84:ee:c8:e6:cd:6c:ce:5f: 6a:44:fb:74:a5:dc:b4:39:e3:73:85:2c:26:1c:5d: 49:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:39:AE:7C:9E:29:08:25:73:3E:22:89:10:A8:CF:7E:6D:7F:2C:12 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/5c882412-eebd-4cab-aa4f-3b6f821cbb86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.27.0.0/19 Signature Algorithm: sha256WithRSAEncryption 3a:98:02:d7:ee:21:ce:46:3e:f9:aa:90:ed:46:b1:b0:26:30: 65:fd:4a:51:86:2d:77:53:4b:9b:f6:9e:7e:0a:b6:43:32:e4: 2e:55:08:8b:e5:96:b7:49:a2:21:33:4e:06:9e:02:e9:2a:ea: 69:9d:ca:f1:44:4a:9e:8d:38:07:7a:1f:2a:42:bc:fa:1f:6d: 05:0c:f3:95:d2:1b:3e:c2:c0:e5:51:9f:28:69:33:e7:b4:89: fe:98:f8:2b:65:12:d3:4c:56:1c:f2:d2:97:c3:93:c1:bb:33: e0:8d:ca:f4:e7:a1:02:89:5e:61:95:48:04:2f:47:1b:ef:af: 73:13:d3:bc:3a:65:63:b3:43:99:e8:23:fb:f3:15:7e:dc:f1: 3c:9d:d2:bb:8d:73:f1:a1:9c:47:92:40:73:e6:a4:1a:77:9c: f0:9e:17:37:fc:b9:40:a0:aa:d9:da:28:f1:78:7f:b8:7b:c8: b4:bb:d8:0d:77:bb:7c:f3:60:fc:7d:45:c5:7e:97:0d:dd:59: ea:ba:72:2c:94:f6:aa:ea:16:ca:a3:87:19:9e:d9:dd:3c:78: 01:34:4b:92:97:d6:02:c4:80:27:92:04:ad:5f:8f:71:f1:93: 54:9b:0e:04:9f:6f:6b:bb:c1:8a:37:b9:a4:93:ea:4c:47:55: 55:dc:33:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH3xTkzTxQM6x4v2QtpDpxcvqsH0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNDAxMTgzNjUzWhcNMjYwNjMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjg0MDMwYWM3ZDY5YmNmZDEyMmQ5MGM3N2Y5YWQ2OGZl OGFkMzM1YTBhNzE3MTlkNzZiZWYxMjg1OTBhZmU0MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjga3nG458OiSROqVQVz0ZstBp7snBbluofB508V/vAjXv g5xkZP8RfNziI9T6X7fr498thCvZSbz3esYKCz4j8vuo8ABgjQHQ6y12uBML952b h0CVSbGx2gN4rMMeGRm9Y6kZ4KB3OtbwOOZn2pTfBLoiogee5AWaffsqOBJGOMWU utLLPl+HpwzGs3y3gBeZeZtzTw8pvsUKtD2b/t2W9fhaQKAqof4jlDmSQyWM+1FY mBMmFvQ7wFxzBzi5MgqjQszb/bV4nsdORD1XNCMca+pddsEWWynegMM8nxtyJkrQ 8vxYj86E7sjmzWzOX2pE+3Sl3LQ543OFLCYcXUmTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuDmufJ4pCCVzPiKJEKjPfm1/LBIwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzVjODgyNDEyLWVlYmQtNGNhYi1hYTRmLTNiNmY4MjFjYmI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVAGwAwDQYJKoZIhvcNAQELBQADggEBADqYAtfuIc5GPvmqkO1GsbAmMGX9 SlGGLXdTS5v2nn4KtkMy5C5VCIvllrdJoiEzTgaeAukq6mmdyvFESp6NOAd6HypC vPofbQUM85XSGz7CwOVRnyhpM+e0if6Y+CtlEtNMVhzy0pfDk8G7M+CNyvTnoQKJ XmGVSAQvRxvvr3MT07w6ZWOzQ5noI/vzFX7c8Tyd0ruNc/GhnEeSQHPmpBp3nPCe Fzf8uUCgqtnaKPF4f7h7yLS72A13u3zzYPx9RcV+lw3dWeq6ciyU9qrqFsqjhxme 2d08eAE0S5KX1gLEgCeSBK1fj3Hxk1SbDgSfb2u7wYo3uaST6kxHVVXcM7Q= -----END CERTIFICATE-----Generated at Tue Apr 7 13:25:06 2026 by rpki-client