$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa File: 84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa (raw, json) Hash identifier: Rcy96n79okDYDAB331eNaHXnp2sq3nDyQyyCY2WAb5Y= Subject key identifier: 17:F8:2D:3E:C6:B8:BA:18:1F:42:28:B5:CC:77:8F:41:A1:72:16:A8 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 3CBEE47AAAFC7CF2426DFB2EBAF5F5181B59041A Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa Signing time: Sat 16 May 2026 00:10:26 +0000 ROA not before: Sat 16 May 2026 00:10:26 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:be:e4:7a:aa:fc:7c:f2:42:6d:fb:2e:ba:f5:f5:18:1b:59:04:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:26 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=c2c69d8268597c01a57044f7e90f3de7b917de036b525b83c259da6d49976018, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:33:2f:e4:fc:78:bb:6e:bd:81:6a:91:5f:3f: af:04:1f:68:d5:b4:e8:28:e3:ed:89:02:0e:70:b9: cb:8c:2a:44:bb:ef:1e:f1:2e:58:e0:41:db:e6:18: b1:00:48:88:2d:39:b9:67:94:10:be:74:3d:0c:1f: a8:79:ae:8d:09:71:e4:d1:59:4a:6e:81:87:78:cf: 86:99:bf:12:1e:ae:f3:16:ee:87:ac:71:14:3c:92: bc:09:e3:95:6d:c6:12:42:c3:4d:67:4d:83:1a:a9: b2:19:5f:0a:11:23:ea:99:36:37:f8:2d:86:ec:1e: fd:d8:28:34:85:a0:17:47:bc:4b:18:46:e9:b3:6c: e5:37:79:a7:0e:63:32:e2:e1:9c:9a:fc:bf:3a:cc: 4c:8d:70:81:4d:ec:32:67:d0:3d:d1:71:b7:a3:89: e2:0c:7c:d9:11:9d:a3:c9:c8:7c:d3:c9:2b:4c:24: c0:41:64:4c:56:e5:2d:68:36:01:ae:89:d7:d9:2c: ed:d2:0e:00:b3:24:78:69:4b:dd:c5:d0:65:cd:72: 4a:7e:cf:22:e7:54:5f:70:e0:f2:b2:32:ba:33:7e: 99:57:5f:eb:64:aa:cd:86:57:d4:48:54:fb:e1:24: ea:89:8d:d1:05:f2:0a:35:0f:0d:fd:ba:d6:87:f4: 9d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F8:2D:3E:C6:B8:BA:18:1F:42:28:B5:CC:77:8F:41:A1:72:16:A8 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.102.0/24 Signature Algorithm: sha256WithRSAEncryption 90:71:a5:ff:a2:33:5c:50:97:5a:56:37:16:15:e4:6c:6f:e3: ee:9f:05:99:42:a0:d2:74:c7:a8:e8:c8:40:59:49:80:92:04: b5:7e:5b:9c:93:ce:39:08:c9:97:33:e0:9a:6c:b6:3c:58:af: bc:3e:4c:14:11:fc:d0:ed:2a:57:28:22:a8:9d:78:0f:3d:f3: e6:57:f7:f1:b0:47:54:8e:3c:14:77:89:5c:74:fa:e5:47:7f: a8:99:44:62:d2:03:12:89:cd:b8:11:d1:de:e2:43:d4:5a:1c: b3:ce:da:7e:49:a3:50:86:34:10:3e:0d:6b:e0:e5:93:4a:48: 71:cf:31:bb:c3:4c:5f:d1:6b:87:d5:d3:69:e0:f3:87:20:f9: f3:e0:a2:2a:c2:dc:d8:9f:39:33:e5:76:64:0e:f0:3d:fa:6f: fc:ee:40:14:37:fa:57:66:f5:58:2c:56:05:40:6d:ca:6e:c0: d8:47:7c:83:ee:5a:a2:46:38:b7:25:06:fd:25:41:bd:3b:0a: 95:c6:53:d9:54:0c:78:84:09:7f:f0:3c:86:0d:53:a7:8d:24: 4f:2f:fc:82:95:ae:b5:77:93:34:12:16:84:97:68:37:a4:2b: a7:8b:34:96:57:73:54:91:10:c7:82:3e:31:7a:86:2a:f1:95: af:dc:6f:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPL7keqr8fPJCbfsuuvX1GBtZBBowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDI2WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmM2OWQ4MjY4NTk3YzAxYTU3MDQ0ZjdlOTBmM2RlN2I5 MTdkZTAzNmI1MjViODNjMjU5ZGE2ZDQ5OTc2MDE4MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBMy/k/Hi7br2BapFfP68EH2jVtOgo4+2JAg5wucuMKkS7 7x7xLljgQdvmGLEASIgtOblnlBC+dD0MH6h5ro0JceTRWUpugYd4z4aZvxIervMW 7oescRQ8krwJ45VtxhJCw01nTYMaqbIZXwoRI+qZNjf4LYbsHv3YKDSFoBdHvEsY RumzbOU3eacOYzLi4Zya/L86zEyNcIFN7DJn0D3RcbejieIMfNkRnaPJyHzTyStM JMBBZExW5S1oNgGuidfZLO3SDgCzJHhpS93F0GXNckp+zyLnVF9w4PKyMrozfplX X+tkqs2GV9RIVPvhJOqJjdEF8go1Dw39utaH9J0FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUF/gtPsa4uhgfQii1zHePQaFyFqgwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzg0ZmEyMzYwLWI5YzYtNDdiZC04NWRjLWJlMzdjZjUyMDVjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWYwDQYJKoZIhvcNAQELBQADggEBAJBxpf+iM1xQl1pWNxYV5Gxv4+6f BZlCoNJ0x6joyEBZSYCSBLV+W5yTzjkIyZcz4JpstjxYr7w+TBQR/NDtKlcoIqid eA898+ZX9/GwR1SOPBR3iVx0+uVHf6iZRGLSAxKJzbgR0d7iQ9RaHLPO2n5Jo1CG NBA+DWvg5ZNKSHHPMbvDTF/Ra4fV02ng84cg+fPgoirC3NifOTPldmQO8D36b/zu QBQ3+ldm9VgsVgVAbcpuwNhHfIPuWqJGOLclBv0lQb07CpXGU9lUDHiECX/wPIYN U6eNJE8v/IKVrrV3kzQSFoSXaDekK6eLNJZXc1SREMeCPjF6hirxla/cb0w= -----END CERTIFICATE-----Generated at Fri May 22 14:19:06 2026 by rpki-client