$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa File: 4dec765a-fd07-492c-af7f-ec695090cc13.roa (raw, json) Hash identifier: 5lfs0v8RCtj4BFIlRM+QsuJaWBcRyUrmlM4vwh0F0O8= Subject key identifier: 03:45:74:BA:62:96:EF:26:F6:FD:6F:E7:9F:FA:55:6C:01:D9:84:23 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 3C2DE73D0A5F42F850FFBD33812E9AE923F9C8EC Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa Signing time: Sat 16 May 2026 00:10:08 +0000 ROA not before: Sat 16 May 2026 00:10:08 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:2d:e7:3d:0a:5f:42:f8:50:ff:bd:33:81:2e:9a:e9:23:f9:c8:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:08 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=48d2247fe0c0e71877fb9586c024932e15a2c2f39dbfbaea1236d1ed77a652ea, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2a:ee:c7:56:72:bd:83:e2:83:ef:e8:48:bf: 7f:61:16:f2:39:b5:a1:7d:54:81:e2:f3:48:13:5c: 98:3b:7a:b1:11:45:3f:5c:af:e7:e4:ed:7c:33:7a: bc:01:a6:ba:67:c3:c0:3c:2a:08:21:13:f1:85:2e: fa:e9:4e:09:ff:94:05:00:08:32:e7:79:bf:f3:2a: c0:60:96:82:89:88:a1:16:c6:bd:c4:23:22:e4:49: b4:4c:68:57:5e:35:53:e9:31:7c:b8:7a:9d:0f:af: 5f:bd:5f:66:c2:f2:ea:93:2a:5f:99:b7:f9:f1:32: 8f:d7:a2:cf:35:22:3d:37:bd:dd:ae:71:86:3f:9b: 89:af:5b:27:5d:cf:06:8a:38:dd:06:79:b2:53:c0: ce:42:98:03:73:3b:70:94:12:0f:69:4d:29:ee:0a: a9:11:69:24:14:84:9a:b0:56:ce:77:9c:64:f4:8a: 24:f2:35:e3:dc:c1:6f:05:e0:76:c4:65:ea:f6:2c: 7b:16:e7:59:df:71:19:bc:2f:10:9d:93:6c:97:04: fd:69:d1:58:ca:94:dc:5f:54:04:8b:49:55:03:48: e0:25:fc:94:7e:ae:ac:e6:60:1f:4a:e7:3e:91:e1: 4a:ce:ac:04:1e:0b:b5:0d:70:26:e1:bc:13:1d:c8: 10:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:45:74:BA:62:96:EF:26:F6:FD:6F:E7:9F:FA:55:6C:01:D9:84:23 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption b7:dd:4c:7c:48:88:09:16:9a:dc:db:3e:7d:3e:1f:17:40:13: 40:6b:8b:c2:57:2f:9a:52:e3:38:a6:45:4c:3d:2d:26:df:3c: b4:51:7b:ab:4a:9d:1d:70:2c:ca:e3:e6:48:ab:6a:1f:f1:01: 2e:85:0c:33:39:de:b9:b5:6a:e4:f8:3e:75:36:13:75:e9:69: 51:d0:1d:31:b8:ac:28:85:11:19:91:5f:47:0d:8a:ba:ff:77: 49:2b:ee:8c:8d:15:8e:44:84:a0:02:0a:6b:29:2c:0b:0a:6e: ef:21:8d:62:a3:2b:da:58:7d:78:4e:5c:7d:6f:9e:8b:e8:cd: 03:74:99:50:ac:2c:81:5c:3b:0f:f4:5c:35:58:db:cd:ff:a0: 8e:43:90:ee:bf:6f:1e:8e:70:f9:9b:27:4a:6e:bd:51:2d:1a: d5:2f:4a:17:bc:b4:dc:1a:eb:75:38:69:83:ee:ea:d4:b6:b7: 44:1c:23:e2:c8:71:4e:43:0a:3b:25:6c:9f:76:9f:d0:a5:a4: e9:33:8e:29:e8:96:36:ab:8b:af:87:3f:9c:2f:fd:61:ad:7c: a9:be:9c:0b:12:ea:24:70:3c:1d:80:2c:0e:c7:5c:da:13:1c: 9c:73:d3:09:6f:1b:cd:1e:4e:aa:95:fd:78:76:1f:1f:c6:06: b5:aa:97:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPC3nPQpfQvhQ/70zgS6a6SP5yOwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDA4WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGQyMjQ3ZmUwYzBlNzE4NzdmYjk1ODZjMDI0OTMyZTE1 YTJjMmYzOWRiZmJhZWExMjM2ZDFlZDc3YTY1MmVhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPKu7HVnK9g+KD7+hIv39hFvI5taF9VIHi80gTXJg7erER RT9cr+fk7XwzerwBprpnw8A8KgghE/GFLvrpTgn/lAUACDLneb/zKsBgloKJiKEW xr3EIyLkSbRMaFdeNVPpMXy4ep0Pr1+9X2bC8uqTKl+Zt/nxMo/Xos81Ij03vd2u cYY/m4mvWyddzwaKON0GebJTwM5CmANzO3CUEg9pTSnuCqkRaSQUhJqwVs53nGT0 iiTyNePcwW8F4HbEZer2LHsW51nfcRm8LxCdk2yXBP1p0VjKlNxfVASLSVUDSOAl /JR+rqzmYB9K5z6R4UrOrAQeC7UNcCbhvBMdyBBdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUA0V0umKW7yb2/W/nn/pVbAHZhCMwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRkZWM3NjVhLWZkMDctNDkyYy1hZjdmLWVjNjk1MDkwY2MxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBALfdTHxIiAkWmtzbPn0+HxdAE0Br i8JXL5pS4zimRUw9LSbfPLRRe6tKnR1wLMrj5kirah/xAS6FDDM53rm1auT4PnU2 E3XpaVHQHTG4rCiFERmRX0cNirr/d0kr7oyNFY5EhKACCmspLAsKbu8hjWKjK9pY fXhOXH1vnovozQN0mVCsLIFcOw/0XDVY283/oI5DkO6/bx6OcPmbJ0puvVEtGtUv She8tNwa63U4aYPu6tS2t0QcI+LIcU5DCjslbJ92n9ClpOkzjinoljari6+HP5wv /WGtfKm+nAsS6iRwPB2ALA7HXNoTHJxz0wlvG80eTqqV/Xh2Hx/GBrWqlxc= -----END CERTIFICATE-----Generated at Fri May 22 16:04:30 2026 by rpki-client