$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa File: 4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa (raw, json) Hash identifier: nX+P0RjQHnv4vv9Ysw+9hVoVFspJMSm6q2GSxF2ThD4= Subject key identifier: C4:88:5E:95:89:BB:6C:B4:29:E4:0D:FB:E0:24:98:7D:E4:68:8E:5F Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 6826F50926376ABA11BAF5B51938373B7C78096C Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa Signing time: Sat 16 May 2026 00:10:11 +0000 ROA not before: Sat 16 May 2026 00:10:11 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:26:f5:09:26:37:6a:ba:11:ba:f5:b5:19:38:37:3b:7c:78:09:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:11 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=2a1d4bff94442f4659b83ac19ece0cc84ca64b0c6ad0d73e9d02bb08dc1a7f8f, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c9:a6:4c:d5:ec:da:79:86:59:aa:74:cc:76: 46:ed:5f:d4:5d:f8:9b:cb:f8:e0:d1:71:d5:40:86: 0d:2d:a2:7a:7b:7d:ec:c9:a4:73:47:a3:e6:ec:70: 09:b6:99:f8:1d:8c:11:a7:62:09:23:af:36:c1:95: 80:39:f5:76:01:ba:48:ec:d5:38:c5:bc:9b:f0:75: 40:75:2c:8f:c8:42:31:6e:60:da:5a:9a:78:81:c8: e3:4a:fb:31:c8:e3:d7:54:e4:bd:8c:4e:ca:c6:49: ba:f3:bd:d3:e3:15:fe:e7:75:41:80:d2:7a:c4:16: 1a:25:9e:b5:0f:9a:15:7d:8c:ad:7e:5f:0e:f7:4b: 96:ea:d5:38:c6:71:32:e8:ff:8a:74:21:26:f8:0d: d7:ad:a0:3c:57:40:68:af:d7:79:dc:18:47:01:ff: 5d:00:c7:0e:dc:87:f6:1b:51:1b:e2:b7:3b:f6:4e: 0e:57:02:c4:6b:58:00:f2:fc:10:d1:c5:2a:84:1d: 11:1d:16:44:fe:71:1f:d1:4d:e0:fc:cd:1d:e0:98: 8e:1e:18:e5:4d:94:56:d2:a9:cf:55:26:95:6c:4a: f8:89:90:8b:f3:be:f7:ed:fc:c9:34:e7:4b:72:53: d0:0d:90:5d:12:af:22:f9:aa:8f:2a:3f:f7:2c:cb: 47:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:88:5E:95:89:BB:6C:B4:29:E4:0D:FB:E0:24:98:7D:E4:68:8E:5F X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 64:ec:65:3b:07:ee:f5:6f:2a:54:96:74:f0:2a:0d:71:d8:0e: 8e:d9:ad:ab:01:57:e6:04:a7:de:11:b7:3d:4b:de:dd:a3:b6: fe:32:92:a0:59:a8:e5:db:71:60:61:88:92:08:13:8c:dd:e6: 4a:e7:30:5e:58:eb:ae:83:86:cb:a3:3e:fa:47:ff:54:fd:73: 95:5c:b5:1e:7b:10:ed:1e:6e:f6:11:98:29:0b:c3:5d:c3:87: d0:10:da:4c:49:53:9b:f7:ad:fe:24:c6:49:db:c8:0f:81:23: 5c:e2:a5:98:9f:71:88:26:45:41:9e:4a:53:ff:6d:87:29:5c: 55:07:1f:85:f8:8f:66:a0:39:aa:cb:22:2d:7a:21:c2:25:b0: 99:d0:11:52:f6:53:0c:95:83:95:28:1a:7b:b0:88:1a:f2:aa: ae:5d:11:31:3c:41:ef:79:57:69:30:fb:a1:d2:b6:03:b1:85: ea:e0:d9:c6:83:10:a6:dd:db:54:be:6c:72:17:60:7c:52:b8: 4a:08:f8:85:96:02:ff:3a:c1:55:d6:b8:65:0b:b4:02:e8:c2: fb:18:55:6f:18:da:e2:03:cd:e9:eb:00:01:f3:b0:8c:e7:cd: d2:17:3b:9b:70:40:78:77:b9:da:91:6c:3b:e5:83:5c:68:4b: 6f:db:f4:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaCb1CSY3aroRuvW1GTg3O3x4CWwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDExWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTFkNGJmZjk0NDQyZjQ2NTliODNhYzE5ZWNlMGNjODRj YTY0YjBjNmFkMGQ3M2U5ZDAyYmIwOGRjMWE3ZjhmMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5yaZM1ezaeYZZqnTMdkbtX9Rd+JvL+ODRcdVAhg0tonp7 fezJpHNHo+bscAm2mfgdjBGnYgkjrzbBlYA59XYBukjs1TjFvJvwdUB1LI/IQjFu YNpamniByONK+zHI49dU5L2MTsrGSbrzvdPjFf7ndUGA0nrEFholnrUPmhV9jK1+ Xw73S5bq1TjGcTLo/4p0ISb4DdetoDxXQGiv13ncGEcB/10Axw7ch/YbURvitzv2 Tg5XAsRrWADy/BDRxSqEHREdFkT+cR/RTeD8zR3gmI4eGOVNlFbSqc9VJpVsSviJ kIvzvvft/Mk050tyU9ANkF0SryL5qo8qP/csy0fjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxIhelYm7bLQp5A374CSYfeRojl8wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRmOGIzMzJiLWJkOGUtNGY0ZC1iYTVlLWMwZWRkNjRkOTI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAGTsZTsH7vVvKlSWdPAqDXHYDo7Z rasBV+YEp94Rtz1L3t2jtv4ykqBZqOXbcWBhiJIIE4zd5krnMF5Y666DhsujPvpH /1T9c5VctR57EO0ebvYRmCkLw13Dh9AQ2kxJU5v3rf4kxknbyA+BI1zipZifcYgm RUGeSlP/bYcpXFUHH4X4j2agOarLIi16IcIlsJnQEVL2UwyVg5UoGnuwiBryqq5d ETE8Qe95V2kw+6HStgOxherg2caDEKbd21S+bHIXYHxSuEoI+IWWAv86wVXWuGUL tALowvsYVW8Y2uIDzenrAAHzsIznzdIXO5twQHh3udqRbDvlg1xoS2/b9Fc= -----END CERTIFICATE-----Generated at Fri May 22 14:19:07 2026 by rpki-client