$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa File: 05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa (raw, json) Hash identifier: y0NwhJ4oMBvsn3fOd+aclOt9YfOpxGbJkFJ8ldILOvU= Subject key identifier: 5A:FE:46:FD:6F:2A:D5:C3:89:73:45:80:34:3D:B0:17:2E:82:25:CF Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 55CE8FC3FD2E5D56DE6A16368003BFDC12CEEBB2 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa Signing time: Sat 16 May 2026 00:10:12 +0000 ROA not before: Sat 16 May 2026 00:10:12 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ce:8f:c3:fd:2e:5d:56:de:6a:16:36:80:03:bf:dc:12:ce:eb:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:12 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=7ad420a29cf8c190a974e28eac76ece3b7d24c3259d47e1ee149dde57a809d2d, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:80:24:40:49:62:b8:72:fe:26:0e:c7:93:3d: fd:6b:fe:2e:51:11:0a:42:89:80:79:96:98:6f:94: 83:c6:98:c3:2b:c1:50:04:24:45:bb:9a:36:8e:37: bc:e0:54:68:25:80:d6:be:a2:db:09:c9:c2:9a:ed: 2d:28:6d:9b:4e:01:1c:48:18:3e:46:84:b8:87:c3: 7a:8d:ba:9c:27:b4:9d:97:4c:ca:b3:19:1e:6a:22: 9e:00:fb:ba:94:ad:90:23:e3:4c:90:21:37:36:52: e9:4f:a3:8b:7b:24:4e:4e:32:cb:f7:4b:eb:94:d3: 45:fa:ab:88:fe:50:0b:4e:e5:42:3b:36:8b:1a:56: 48:56:ff:80:0e:e5:2a:5d:ed:7c:2f:73:2a:52:18: 99:f8:1a:35:15:98:d2:dd:45:25:61:64:4a:bb:43: 53:7f:d7:8b:f0:77:f4:d7:96:70:73:e2:cb:f0:f2: ab:ec:71:3a:31:1e:30:eb:0e:bb:b4:71:a5:bd:76: 26:80:b9:02:4b:e4:25:65:d2:a6:c5:e7:a7:89:2d: 79:b8:f5:bb:d2:3e:f2:53:a6:1f:eb:b6:eb:2c:e1: 7d:00:e3:e0:53:c9:48:4c:3b:1c:e8:37:bb:ae:9c: 3b:fa:e3:9f:df:69:2b:6b:8c:14:2b:e2:29:37:bc: ab:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:FE:46:FD:6F:2A:D5:C3:89:73:45:80:34:3D:B0:17:2E:82:25:CF X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption ad:13:4c:7e:59:de:57:55:5b:2f:7d:3b:0c:d2:26:85:0a:50: 0d:04:22:3a:01:06:a7:b7:8c:b3:1f:81:71:85:bb:34:fc:78: bf:ef:1b:f8:c2:7d:cc:a9:cb:2d:64:1b:56:c4:56:6d:63:28: 48:58:6f:47:f2:0e:54:54:18:20:91:70:83:45:95:28:21:a8: 3b:68:9c:02:fa:3d:31:7a:b6:7f:6d:eb:5a:4c:ef:eb:66:a4: a5:5a:84:ec:a8:3c:81:5b:47:92:20:76:93:e8:ac:8a:78:a3: 0b:9e:3a:81:48:1a:64:f5:cd:43:e8:c7:32:b7:7a:9e:1c:bd: 9b:b5:ca:d3:a8:a7:68:51:1f:c0:f6:73:ce:e6:df:ec:57:54: 32:00:60:40:5a:ce:c8:e8:d2:1d:5e:93:d2:1d:6a:74:fc:e3: 17:25:cc:98:27:c6:33:9a:e5:e7:1e:b9:3b:a3:6b:8c:7a:44: 85:9f:97:f8:4c:35:48:8e:25:67:9e:f6:b9:75:bc:fa:59:53: 48:25:e9:b7:30:d6:70:94:d1:fb:ca:42:91:f5:83:3b:bd:96: 99:6d:8c:35:66:23:92:c8:ac:1b:7f:f2:77:6d:b6:80:23:e9: f9:56:8a:0d:bd:eb:59:32:96:b7:b4:c4:15:f9:71:12:ac:cc: a5:1a:0f:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVc6Pw/0uXVbeahY2gAO/3BLO67IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDEyWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWQ0MjBhMjljZjhjMTkwYTk3NGUyOGVhYzc2ZWNlM2I3 ZDI0YzMyNTlkNDdlMWVlMTQ5ZGRlNTdhODA5ZDJkMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZgCRASWK4cv4mDseTPf1r/i5REQpCiYB5lphvlIPGmMMr wVAEJEW7mjaON7zgVGglgNa+otsJycKa7S0obZtOARxIGD5GhLiHw3qNupwntJ2X TMqzGR5qIp4A+7qUrZAj40yQITc2UulPo4t7JE5OMsv3S+uU00X6q4j+UAtO5UI7 NosaVkhW/4AO5Spd7XwvcypSGJn4GjUVmNLdRSVhZEq7Q1N/14vwd/TXlnBz4svw 8qvscToxHjDrDru0caW9diaAuQJL5CVl0qbF56eJLXm49bvSPvJTph/rtuss4X0A 4+BTyUhMOxzoN7uunDv645/faStrjBQr4ik3vKvXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWv5G/W8q1cOJc0WAND2wFy6CJc8wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzA1YmE5Y2E1LWE5YTktNGRlZi05YzcxLTBjZjQ3ZDA2ZmUyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAK0TTH5Z3ldVWy99OwzSJoUKUA0E IjoBBqe3jLMfgXGFuzT8eL/vG/jCfcypyy1kG1bEVm1jKEhYb0fyDlRUGCCRcINF lSghqDtonAL6PTF6tn9t61pM7+tmpKVahOyoPIFbR5IgdpPorIp4owueOoFIGmT1 zUPoxzK3ep4cvZu1ytOop2hRH8D2c87m3+xXVDIAYEBazsjo0h1ek9IdanT84xcl zJgnxjOa5eceuTuja4x6RIWfl/hMNUiOJWee9rl1vPpZU0gl6bcw1nCU0fvKQpH1 gzu9lpltjDVmI5LIrBt/8ndttoAj6flWig2961kylre0xBX5cRKszKUaD5E= -----END CERTIFICATE-----Generated at Fri May 22 14:19:05 2026 by rpki-client