$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa File: 9410b7d2-baa7-4841-a665-55298df4e7b6.roa (raw, json) Hash identifier: y20MBrv4/+91q3fdCgl+9OpNyChp7rv7iRj74jx2Ul8= Subject key identifier: 87:5D:B5:37:DD:08:5B:17:9F:EF:B3:0B:17:BB:5A:E3:8D:02:BA:73 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 28FCB01DF210E1AB57295E536FE0B8B945D6A615 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa Signing time: Sat 16 May 2026 00:10:09 +0000 ROA not before: Sat 16 May 2026 00:10:09 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:fc:b0:1d:f2:10:e1:ab:57:29:5e:53:6f:e0:b8:b9:45:d6:a6:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:09 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=ab5a6feacc79294d2fc5555680407f8ba2590e16506b85863135f30c9d54f55f, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fe:b7:b7:51:d6:32:81:e9:11:b1:32:fa:f5: 56:75:7e:c0:b4:6f:85:3b:c4:f5:8c:81:6c:da:26: b6:f3:4d:ce:5e:12:a0:42:f5:12:31:31:15:42:78: a0:4f:0c:d1:fa:d7:d9:fc:46:bb:d9:af:63:88:20: 76:7e:60:b2:e7:75:f4:1a:3a:7a:4b:48:e3:dc:0b: 40:59:d4:a4:ec:ee:d7:38:23:31:a2:9b:e4:e5:8a: 74:28:47:bd:c4:04:2f:58:d3:a5:48:23:d5:6e:83: 77:d8:e1:0e:19:f1:0d:8e:e2:71:7a:f7:5c:ef:02: 11:a1:97:2d:34:e8:52:2a:88:5b:8c:33:52:32:63: 13:09:50:b4:f9:e3:c1:bc:80:45:ac:43:6f:e6:18: a9:38:b7:58:a5:02:79:a8:b0:4f:2f:ad:68:d2:ca: 7d:cc:2f:10:d2:41:b2:84:dc:a9:36:9d:c2:ac:15: b2:76:60:23:02:df:d3:80:60:fb:80:8e:a3:8e:8e: d4:a3:61:1a:49:36:71:70:42:63:47:12:d6:a4:0a: d2:2c:60:93:2b:11:c6:84:1a:b3:f1:3a:5d:cb:47: 58:d9:95:3b:be:79:0c:0c:03:37:df:11:37:bb:51: 88:76:5b:a9:8b:b1:d2:f8:75:28:9b:dc:cf:87:02: d3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5D:B5:37:DD:08:5B:17:9F:EF:B3:0B:17:BB:5A:E3:8D:02:BA:73 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.97.0/24 Signature Algorithm: sha256WithRSAEncryption a8:8a:5f:59:e7:a9:5f:7f:2c:51:e3:07:e9:cc:4e:ff:26:6b: 7b:e9:5d:f4:e7:c7:39:5b:31:71:a1:55:62:87:27:0e:e9:ef: 97:17:f2:41:12:f0:7e:54:28:fe:6b:6f:1f:21:d1:8d:4a:06: 2c:99:18:ce:74:26:91:1d:1a:4b:5e:fa:a8:ed:3d:10:ca:38: 30:83:ad:86:7e:3c:ba:ee:45:a4:43:ee:00:42:19:e9:bc:ad: 12:f3:7b:fe:85:c4:7e:e8:1f:89:82:03:1f:eb:1e:ab:b3:42: e6:b9:c5:35:84:0a:99:bc:0e:8f:61:48:72:d7:e4:40:ad:6f: 8d:f8:b1:a2:80:53:aa:c2:b2:13:37:10:9a:f0:d2:72:c4:2c: e6:90:f5:30:b8:aa:70:f8:bc:23:09:c9:fd:f9:2f:58:6e:97: 24:f9:68:19:06:d8:73:e9:75:d6:54:d4:e4:c6:a2:4b:c3:fa: 8a:50:bb:9c:56:04:71:63:4d:f6:b1:83:34:ae:86:71:26:19: 77:f7:d5:39:c9:aa:6f:1a:b9:bd:33:be:d7:fb:e8:4d:21:0f: 9b:42:40:cc:47:b9:c8:75:62:80:7a:ca:da:83:ff:8f:f1:9f: b3:50:bb:f1:b5:e4:3e:4e:d3:42:0d:a2:4f:f6:60:81:ba:ca: 00:2e:32:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKPywHfIQ4atXKV5Tb+C4uUXWphUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDA5WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjVhNmZlYWNjNzkyOTRkMmZjNTU1NTY4MDQwN2Y4YmEy NTkwZTE2NTA2Yjg1ODYzMTM1ZjMwYzlkNTRmNTVmMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR/re3UdYygekRsTL69VZ1fsC0b4U7xPWMgWzaJrbzTc5e EqBC9RIxMRVCeKBPDNH619n8RrvZr2OIIHZ+YLLndfQaOnpLSOPcC0BZ1KTs7tc4 IzGim+TlinQoR73EBC9Y06VII9Vug3fY4Q4Z8Q2O4nF691zvAhGhly006FIqiFuM M1IyYxMJULT548G8gEWsQ2/mGKk4t1ilAnmosE8vrWjSyn3MLxDSQbKE3Kk2ncKs FbJ2YCMC39OAYPuAjqOOjtSjYRpJNnFwQmNHEtakCtIsYJMrEcaEGrPxOl3LR1jZ lTu+eQwMAzffETe7UYh2W6mLsdL4dSib3M+HAtMRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh121N90IWxef77MLF7ta440CunMwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzk0MTBiN2QyLWJhYTctNDg0MS1hNjY1LTU1Mjk4ZGY0ZTdiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWEwDQYJKoZIhvcNAQELBQADggEBAKiKX1nnqV9/LFHjB+nMTv8ma3vp XfTnxzlbMXGhVWKHJw7p75cX8kES8H5UKP5rbx8h0Y1KBiyZGM50JpEdGkte+qjt PRDKODCDrYZ+PLruRaRD7gBCGem8rRLze/6FxH7oH4mCAx/rHquzQua5xTWECpm8 Do9hSHLX5ECtb434saKAU6rCshM3EJrw0nLELOaQ9TC4qnD4vCMJyf35L1hulyT5 aBkG2HPpddZU1OTGokvD+opQu5xWBHFjTfaxgzSuhnEmGXf31TnJqm8aub0zvtf7 6E0hD5tCQMxHuch1YoB6ytqD/4/xn7NQu/G15D5O00INok/2YIG6ygAuMqU= -----END CERTIFICATE-----Generated at Fri May 22 14:19:07 2026 by rpki-client