$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa File: 2dde36c0-2f63-460e-82c0-69cf2908a539.roa (raw, json) Hash identifier: q/ZSBXAIEstRFxPJtG2ZCRrCpNjgkKOe1XRnKeGwxOQ= Subject key identifier: BD:92:48:2B:26:2B:4D:BC:A1:91:E0:2E:2F:4A:C9:3B:57:AA:00:34 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 6F25E864B6BA9C5D98134C222E545AA205F7643C Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa Signing time: Sat 16 May 2026 00:10:08 +0000 ROA not before: Sat 16 May 2026 00:10:08 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:25:e8:64:b6:ba:9c:5d:98:13:4c:22:2e:54:5a:a2:05:f7:64:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:08 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a552b0d1cbe67c5d48c161b747526147333a38ac21bd480e7b5ab1a1b4f94e68, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:ee:73:b7:16:c6:f9:f4:ef:e0:3a:f9:6c: f5:af:83:58:8c:5d:5a:c2:d2:c4:2f:cf:cb:2c:2c: be:dc:31:95:4c:c3:ac:e7:95:a9:a1:6e:cd:d0:c8: 4b:f4:56:02:76:ba:0c:16:6a:da:b4:65:53:b2:4d: f5:10:61:c4:cf:f5:d2:a7:78:a3:5f:41:55:49:b9: 4b:3e:74:c7:02:a3:77:4c:20:64:91:bb:e1:47:a1: 6a:e1:66:e3:7c:ed:f1:4f:fb:c9:27:8e:ae:20:8b: 59:49:67:72:34:ec:48:71:36:2f:96:4f:b6:e7:73: e9:8b:71:29:f2:c8:ab:80:3d:b5:8f:05:7f:62:01: 21:0f:39:32:eb:a2:7f:c7:8e:2a:54:6e:08:21:fd: 8a:dd:32:85:fc:b7:3c:5a:99:ec:dc:a7:d9:55:ad: 36:fc:5d:00:f7:ff:a6:fc:d9:09:cb:aa:c7:96:e6: 46:8a:cf:61:55:c1:90:91:50:a4:ba:f7:18:aa:19: b3:59:a7:19:43:22:08:f0:63:3b:45:91:7d:79:58: b4:1d:4a:d1:57:76:cb:91:19:60:15:d3:6f:e8:84: 22:c8:48:ee:82:af:22:b9:29:f8:fb:9b:b6:a8:e1: 48:8d:8a:a5:42:df:a6:a6:81:a3:7e:82:c7:a7:a0: c5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:92:48:2B:26:2B:4D:BC:A1:91:E0:2E:2F:4A:C9:3B:57:AA:00:34 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption a0:b3:59:7b:9e:6b:26:8c:e2:bb:94:c6:57:d8:72:d2:43:26: d8:d4:56:f9:2c:bc:f2:73:86:b0:04:77:b3:23:5c:f3:aa:2f: d8:29:cd:99:1a:c5:ca:9a:f2:ed:bc:03:1e:f2:84:8b:e8:69: 0c:22:9f:17:bd:48:f2:0b:40:99:d7:98:15:92:be:0e:0e:6c: 85:3e:bc:ad:9d:e4:ee:9e:d0:8b:80:07:0d:0f:22:06:8b:55: 33:03:cf:e0:f2:10:39:79:da:4c:5c:ba:ae:eb:82:ab:22:e9: 22:aa:a1:8e:bb:7a:ba:e6:d4:63:7f:9c:82:45:93:63:fa:20: 35:d8:17:0a:52:59:79:66:37:1d:9f:26:0d:6a:91:b0:f8:b0: 95:10:74:78:55:51:c6:30:ff:e8:1e:c6:42:da:bb:1b:d6:a8: d2:36:bf:bf:4e:8b:79:4e:b3:ed:d5:e9:45:8b:ba:49:07:72: 02:0b:e2:4e:1a:ba:1c:43:4d:3b:f8:91:69:5a:44:f7:a6:27: 41:0a:c0:cb:5a:bb:ae:73:47:4d:48:45:df:32:c7:0a:1d:8c: a9:3f:31:82:ac:29:b0:46:fb:e2:3e:8c:96:0f:11:fb:65:ea: 55:39:9e:87:c6:7f:c7:2b:9f:7f:fe:29:1b:0b:5e:cd:64:9c: c3:71:4b:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbyXoZLa6nF2YE0wiLlRaogX3ZDwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDA4WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTUyYjBkMWNiZTY3YzVkNDhjMTYxYjc0NzUyNjE0NzMz M2EzOGFjMjFiZDQ4MGU3YjVhYjFhMWI0Zjk0ZTY4MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Ye5ztxbG+fTv4Dr5bPWvg1iMXVrC0sQvz8ssLL7cMZVM w6znlamhbs3QyEv0VgJ2ugwWatq0ZVOyTfUQYcTP9dKneKNfQVVJuUs+dMcCo3dM IGSRu+FHoWrhZuN87fFP+8knjq4gi1lJZ3I07EhxNi+WT7bnc+mLcSnyyKuAPbWP BX9iASEPOTLron/HjipUbggh/YrdMoX8tzxamezcp9lVrTb8XQD3/6b82QnLqseW 5kaKz2FVwZCRUKS69xiqGbNZpxlDIgjwYztFkX15WLQdStFXdsuRGWAV02/ohCLI SO6CryK5Kfj7m7ao4UiNiqVC36amgaN+gsenoMW5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvZJIKyYrTbyhkeAuL0rJO1eqADQwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzJkZGUzNmMwLTJmNjMtNDYwZS04MmMwLTY5Y2YyOTA4YTUzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBAKCzWXueayaM4ruUxlfYctJDJtjU VvksvPJzhrAEd7MjXPOqL9gpzZkaxcqa8u28Ax7yhIvoaQwinxe9SPILQJnXmBWS vg4ObIU+vK2d5O6e0IuABw0PIgaLVTMDz+DyEDl52kxcuq7rgqsi6SKqoY67errm 1GN/nIJFk2P6IDXYFwpSWXlmNx2fJg1qkbD4sJUQdHhVUcYw/+gexkLauxvWqNI2 v79Oi3lOs+3V6UWLukkHcgIL4k4auhxDTTv4kWlaRPemJ0EKwMtau65zR01IRd8y xwodjKk/MYKsKbBG++I+jJYPEftl6lU5nofGf8crn3/+KRsLXs1knMNxSxU= -----END CERTIFICATE-----Generated at Fri May 22 14:19:05 2026 by rpki-client