$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa File: 8a0cac28-29b8-4996-b010-5eab278cc342.roa (raw, json) Hash identifier: ySomu3NX72nD+38RAFD6orI4noEToKTLxHKReNb0De4= Subject key identifier: 6B:F8:EA:EC:AB:88:31:9D:E4:0D:B9:4D:8D:6C:A6:9A:5C:48:A0:60 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 29E344744804E33AFB42E375AFB1F3E8F633DFCD Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa Signing time: Sat 16 May 2026 00:10:12 +0000 ROA not before: Sat 16 May 2026 00:10:12 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:e3:44:74:48:04:e3:3a:fb:42:e3:75:af:b1:f3:e8:f6:33:df:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:12 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=f34d59b7574de010e03a68d116e30d428e22dc2fccaf0f40f514bb535eabb219, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:20:0a:b6:fc:29:97:13:cd:45:62:b1:d2:1e: a7:18:9a:51:9b:48:86:b5:ee:f8:4d:12:85:5d:dc: b8:fc:51:5f:0e:05:27:b2:38:3f:c7:82:df:bb:e7: a3:c8:4b:83:69:92:d5:e9:bc:0f:79:c6:d3:c9:84: 8e:37:49:64:85:60:e4:98:53:e3:69:7d:86:28:19: 2e:09:29:53:42:93:dd:05:53:2b:96:6e:1e:e0:c0: 4b:88:1e:90:3e:d9:b4:1c:78:65:44:f9:65:10:6c: bf:60:72:8c:85:1c:bd:b3:2e:e9:38:7d:ff:89:d2: df:0d:fc:a1:7c:14:70:de:52:c1:9a:da:72:75:e6: 53:ef:95:a1:52:fe:b2:58:ad:2e:d5:8a:65:64:4d: b6:d8:98:29:68:96:ff:6a:6f:79:7f:e6:dd:4c:8c: ff:33:7c:82:fd:95:fa:a9:0c:5a:a9:9e:3f:a2:49: 59:5a:67:9e:0d:c9:0a:70:ba:df:71:cc:f5:6c:6c: f6:58:1d:5d:ca:30:08:42:53:d4:66:a9:6f:fa:12: 82:51:b8:98:18:1b:50:88:d8:57:1f:12:71:61:0d: f4:c1:62:c5:97:8c:ce:74:98:84:42:73:dd:e6:63: df:df:6d:6b:f4:ca:a7:4f:ea:21:d4:6f:de:3c:85: 6a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F8:EA:EC:AB:88:31:9D:E4:0D:B9:4D:8D:6C:A6:9A:5C:48:A0:60 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption 75:78:09:70:f8:db:da:8d:60:86:e4:df:79:e3:b7:80:6b:b7: 62:6f:a4:87:65:55:b8:bd:b2:60:ed:ad:88:46:e6:4d:f9:ed: 06:ca:f9:2b:b0:ed:1a:6b:f5:02:4e:56:13:f9:63:86:77:e3: fd:87:59:58:c8:4e:6f:c3:e2:93:0f:4d:1c:0d:21:07:37:3e: cd:6a:5e:da:f6:6a:5a:e8:c0:63:8f:25:e5:93:f5:bf:a2:36: 0b:80:44:65:c4:0e:79:85:61:60:50:1c:09:41:19:67:e5:9b: 75:42:99:c0:99:ba:d8:6b:24:29:6e:0b:bb:29:2c:90:e6:18: 78:92:7c:cb:37:60:3a:3d:67:ad:33:22:a6:f5:b5:bc:15:0b: 20:6a:7c:df:44:9f:6a:26:05:da:4e:60:ee:a2:35:f9:f6:3f: a0:af:0f:a7:dc:ae:c2:bf:8f:cc:ef:dd:d2:01:65:0d:ff:34: f6:29:1f:12:1d:19:b5:62:a9:8d:73:b0:31:46:c8:77:7e:ff: 50:ec:5b:64:9c:02:3c:bb:2e:d0:4b:9f:f6:32:30:35:8a:7c: ef:69:8c:93:54:18:6c:ea:9b:76:69:5b:5d:a1:cd:c5:f8:01: ea:ed:1f:d4:d0:3a:93:04:83:49:df:4c:9b:45:4b:12:30:b5: 39:d4:50:9a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKeNEdEgE4zr7QuN1r7Hz6PYz380wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDEyWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzRkNTliNzU3NGRlMDEwZTAzYTY4ZDExNmUzMGQ0Mjhl MjJkYzJmY2NhZjBmNDBmNTE0YmI1MzVlYWJiMjE5MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaIAq2/CmXE81FYrHSHqcYmlGbSIa17vhNEoVd3Lj8UV8O BSeyOD/Hgt+756PIS4NpktXpvA95xtPJhI43SWSFYOSYU+NpfYYoGS4JKVNCk90F UyuWbh7gwEuIHpA+2bQceGVE+WUQbL9gcoyFHL2zLuk4ff+J0t8N/KF8FHDeUsGa 2nJ15lPvlaFS/rJYrS7VimVkTbbYmClolv9qb3l/5t1MjP8zfIL9lfqpDFqpnj+i SVlaZ54NyQpwut9xzPVsbPZYHV3KMAhCU9RmqW/6EoJRuJgYG1CI2FcfEnFhDfTB YsWXjM50mIRCc93mY9/fbWv0yqdP6iHUb948hWotAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa/jq7KuIMZ3kDblNjWymmlxIoGAwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzhhMGNhYzI4LTI5YjgtNDk5Ni1iMDEwLTVlYWIyNzhjYzM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAHV4CXD429qNYIbk33njt4Brt2Jv pIdlVbi9smDtrYhG5k357QbK+Suw7Rpr9QJOVhP5Y4Z34/2HWVjITm/D4pMPTRwN IQc3Ps1qXtr2alrowGOPJeWT9b+iNguARGXEDnmFYWBQHAlBGWflm3VCmcCZuthr JCluC7spLJDmGHiSfMs3YDo9Z60zIqb1tbwVCyBqfN9En2omBdpOYO6iNfn2P6Cv D6fcrsK/j8zv3dIBZQ3/NPYpHxIdGbViqY1zsDFGyHd+/1DsW2ScAjy7LtBLn/Yy MDWKfO9pjJNUGGzqm3ZpW12hzcX4AertH9TQOpMEg0nfTJtFSxIwtTnUUJo= -----END CERTIFICATE-----Generated at Fri May 22 16:04:30 2026 by rpki-client