$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa File: b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa (raw, json) Hash identifier: 6NMhCIUtrvZZOq1dJarowG0H0W2CPd8C210peD0Zf40= Subject key identifier: F9:59:61:05:7F:0E:A1:A6:AD:2D:34:16:47:9B:82:DD:68:CA:BE:E7 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 1DD3A1ADEFE68C27633597480BFFA9554F13F7A0 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa Signing time: Sat 16 May 2026 00:10:11 +0000 ROA not before: Sat 16 May 2026 00:10:11 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d3:a1:ad:ef:e6:8c:27:63:35:97:48:0b:ff:a9:55:4f:13:f7:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:11 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=912b969df464c678f75ccc987fbf86205d889c77e81c6069c79a18eccfb0a444, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d4:6a:5e:0f:8e:3c:f0:ec:b4:fa:39:d7:95: 3f:c2:c8:c0:8e:ad:d2:58:e6:93:e5:66:40:cf:0b: 41:52:83:1f:42:3d:92:36:c9:7e:95:c2:cf:f6:2a: 2c:3e:6f:b5:b2:6d:40:fb:ba:eb:bc:7b:60:df:b1: ee:6d:8d:6d:af:3c:f5:d0:9b:e0:d4:91:ad:c5:87: 9f:b9:e2:f0:9d:4d:c9:9c:8c:1e:54:31:67:d7:db: fa:d2:f1:d8:7d:59:8b:30:71:bd:d6:62:fe:d9:1e: 69:20:2c:06:3f:3b:2e:04:2a:f0:7b:83:8d:23:ff: fd:fd:6b:d9:8b:4c:7b:70:90:f7:f3:ba:e0:c2:eb: c6:55:28:b5:73:75:14:8b:be:19:c5:cf:bd:c7:d8: 51:e7:b9:42:86:7f:2c:c5:f2:17:90:bc:cc:3e:84: ea:03:db:b3:11:2d:df:54:57:8c:4d:fe:72:9e:41: 14:ae:48:24:bb:71:6c:4f:33:45:b6:0d:05:95:44: 4d:44:c8:5c:0b:34:4e:aa:e0:f7:cb:5f:70:c7:ea: 5d:cf:55:4e:98:9d:d8:63:04:4a:7b:16:bd:a9:77: 91:a1:ba:fe:1f:47:f2:bc:46:79:ea:d1:50:84:4c: 74:e5:2f:0a:ac:de:fa:e6:91:a4:81:37:a0:21:e1: eb:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:59:61:05:7F:0E:A1:A6:AD:2D:34:16:47:9B:82:DD:68:CA:BE:E7 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 80:42:af:5f:00:45:98:4c:ef:30:1e:88:98:68:8c:92:09:b7: 29:57:72:3c:45:04:08:fa:4b:d5:a3:22:10:6d:c9:33:81:a7: 7d:f7:ad:60:43:4a:04:62:18:6f:05:58:fd:5a:31:db:b1:b3: 1a:8b:d0:60:d3:76:a1:cd:67:38:02:3d:05:1c:a6:5a:7f:55: 53:17:dc:bd:41:1b:fb:70:bd:a4:76:a5:bb:18:99:b2:01:97: ee:6d:99:c2:dd:12:b2:7e:b7:f4:a4:0a:f5:54:28:61:36:c7: 29:38:79:de:89:9e:b4:fc:c9:02:18:1e:85:39:0c:c0:6b:48: 5c:01:89:6d:bc:f3:f1:87:5f:21:54:b2:1c:3f:5e:30:5c:2f: f5:3b:9e:c3:26:1f:e9:90:b8:29:3f:c9:df:35:5f:2a:03:21: 30:bb:c6:55:a9:88:f9:26:ae:de:91:0c:cc:41:00:01:d8:66: 7b:9e:23:78:e8:e5:97:95:ee:d9:99:12:15:76:77:90:07:be: 50:3a:a0:64:fe:72:90:48:af:ff:ae:56:31:b6:2c:11:81:02: 63:6c:bd:3b:9e:17:22:42:f2:30:a6:c2:95:c2:73:1f:3b:65: d9:37:64:ce:7e:e6:5c:c8:8a:50:27:46:f0:cf:0e:23:68:16: 61:b0:45:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHdOhre/mjCdjNZdIC/+pVU8T96AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDExWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTJiOTY5ZGY0NjRjNjc4Zjc1Y2NjOTg3ZmJmODYyMDVk ODg5Yzc3ZTgxYzYwNjljNzlhMThlY2NmYjBhNDQ0MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ1GpeD4488Oy0+jnXlT/CyMCOrdJY5pPlZkDPC0FSgx9C PZI2yX6Vws/2Kiw+b7WybUD7uuu8e2Dfse5tjW2vPPXQm+DUka3Fh5+54vCdTcmc jB5UMWfX2/rS8dh9WYswcb3WYv7ZHmkgLAY/Oy4EKvB7g40j//39a9mLTHtwkPfz uuDC68ZVKLVzdRSLvhnFz73H2FHnuUKGfyzF8heQvMw+hOoD27MRLd9UV4xN/nKe QRSuSCS7cWxPM0W2DQWVRE1EyFwLNE6q4PfLX3DH6l3PVU6YndhjBEp7Fr2pd5Gh uv4fR/K8Rnnq0VCETHTlLwqs3vrmkaSBN6Ah4esXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+VlhBX8OoaatLTQWR5uC3WjKvucwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2I0MjI1N2EwLTQ1MDMtNDE0Yy05ZWU2LWMyMGQ0YTNiZjFhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAIBCr18ARZhM7zAeiJhojJIJtylX cjxFBAj6S9WjIhBtyTOBp333rWBDSgRiGG8FWP1aMduxsxqL0GDTdqHNZzgCPQUc plp/VVMX3L1BG/twvaR2pbsYmbIBl+5tmcLdErJ+t/SkCvVUKGE2xyk4ed6JnrT8 yQIYHoU5DMBrSFwBiW288/GHXyFUshw/XjBcL/U7nsMmH+mQuCk/yd81XyoDITC7 xlWpiPkmrt6RDMxBAAHYZnueI3jo5ZeV7tmZEhV2d5AHvlA6oGT+cpBIr/+uVjG2 LBGBAmNsvTueFyJC8jCmwpXCcx87Zdk3ZM5+5lzIilAnRvDPDiNoFmGwRYk= -----END CERTIFICATE-----Generated at Fri May 22 16:04:31 2026 by rpki-client