$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/c3e00a18-aa42-44a5-bc72-2aa9e7030f6f.roa File: c3e00a18-aa42-44a5-bc72-2aa9e7030f6f.roa (raw, json) Hash identifier: YuONu2TzQdw2sH8DhCkrkysxtmbPUBV+/aiYUmqftGA= Subject key identifier: 88:CB:0F:10:6B:40:04:41:98:5A:27:FA:F1:BE:E9:2A:E6:A2:F5:52 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 7133BC63CDC75676A780C65FBCE75ED98913E456 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/c3e00a18-aa42-44a5-bc72-2aa9e7030f6f.roa Signing time: Wed 18 Mar 2026 16:21:44 +0000 ROA not before: Wed 18 Mar 2026 16:21:44 +0000 ROA not after: Tue 16 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.27.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:33:bc:63:cd:c7:56:76:a7:80:c6:5f:bc:e7:5e:d9:89:13:e4:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Mar 18 16:21:44 2026 GMT Not After : Jun 16 23:59:59 2026 GMT Subject: serialNumber=81eda4c4dc019431164db2e3979b1b84a98b423c63f0dafea307a48cb819a1ee, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fa:06:fe:1d:4e:52:0c:f5:4b:cb:b0:6d:94: 9a:cb:ae:47:be:aa:b1:12:bf:b2:8f:9a:b0:6c:5d: 59:97:9a:23:fa:7d:1c:d8:62:d8:d3:0c:0e:ef:9e: c4:72:cb:c5:eb:34:28:18:a4:a4:ac:8e:2c:7d:17: 76:d2:2e:3f:51:52:50:78:6e:78:a8:5e:e2:fc:8a: 54:7b:43:20:7a:6d:cb:42:ed:b0:e0:6c:8e:79:f7: 58:d5:1b:23:bd:91:68:d9:ab:28:ba:9d:fc:ae:bd: cb:f1:a9:2e:3b:70:e8:f6:96:37:13:42:c7:13:69: ca:58:70:14:1e:d6:4c:27:da:69:84:9c:a0:fe:6f: 14:ac:c0:6c:15:10:9e:c9:ae:d5:f9:cb:48:e4:8c: ff:14:28:b2:f2:04:7a:1d:c6:fa:db:31:e5:c7:20: 0f:fc:88:d7:1a:a3:5a:ec:7c:e6:2d:32:82:68:0b: 53:6d:75:bd:3a:32:ad:ae:03:b6:79:76:a2:29:e8: b8:43:c0:46:70:85:6a:d2:4e:e8:11:a4:06:0a:0c: 3f:80:36:9b:9c:f8:ff:12:2d:de:d2:d4:5c:c6:44: 38:97:fb:8b:ca:c4:3d:e2:77:17:90:4c:26:42:bb: d3:06:48:5f:25:7b:e5:a4:2a:75:3a:f0:99:d3:f8: 0f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CB:0F:10:6B:40:04:41:98:5A:27:FA:F1:BE:E9:2A:E6:A2:F5:52 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/c3e00a18-aa42-44a5-bc72-2aa9e7030f6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.27.0.0/19 Signature Algorithm: sha256WithRSAEncryption 4e:74:24:25:1c:a3:17:52:de:12:67:77:6d:da:02:d7:08:4c: e7:61:c9:1c:59:d6:c7:ca:ee:47:16:8c:20:9e:92:4b:b6:b8: 1c:45:1d:75:cd:4c:e1:2a:c1:ad:16:8c:d4:b4:b8:0b:4f:f2: ae:c4:60:b1:af:94:4e:74:53:c6:7d:26:8a:1b:a8:c3:95:50: 04:e2:6c:bc:6d:44:4c:d3:dc:68:7c:ca:6e:4e:20:49:87:1d: ab:57:62:07:e4:c3:0c:c3:63:91:d1:b6:6e:2f:67:c3:97:16: 18:81:a0:9b:92:84:b0:5d:8b:57:c4:f8:ba:ce:a6:fd:86:9c: 5f:d8:82:15:60:0d:72:1e:18:92:6a:21:18:65:14:e8:f9:97: ac:f6:87:1c:7f:f8:6d:93:f3:14:8e:b1:42:f4:45:a5:7d:62: af:83:d0:70:63:7c:be:69:ec:86:5d:05:d4:25:a9:2e:73:98: 5b:ac:8f:05:96:fc:3b:ce:94:fd:b7:ea:0b:3a:0b:12:68:2b: 8c:70:39:3c:a9:e2:0a:70:f5:ae:6f:60:f8:14:5f:65:54:75: a5:58:76:43:95:1a:c2:40:f6:47:27:fb:56:e9:6f:62:a4:d2: cd:ce:e7:c9:03:ab:ac:af:37:4a:09:43:d4:00:dc:21:8d:c5: 6a:40:f0:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcTO8Y83HVnangMZfvOde2YkT5FYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMzE4MTYyMTQ0WhcNMjYwNjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWVkYTRjNGRjMDE5NDMxMTY0ZGIyZTM5NzliMWI4NGE5 OGI0MjNjNjNmMGRhZmVhMzA3YTQ4Y2I4MTlhMWVlMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk+gb+HU5SDPVLy7BtlJrLrke+qrESv7KPmrBsXVmXmiP6 fRzYYtjTDA7vnsRyy8XrNCgYpKSsjix9F3bSLj9RUlB4bnioXuL8ilR7QyB6bctC 7bDgbI5591jVGyO9kWjZqyi6nfyuvcvxqS47cOj2ljcTQscTacpYcBQe1kwn2mmE nKD+bxSswGwVEJ7JrtX5y0jkjP8UKLLyBHodxvrbMeXHIA/8iNcao1rsfOYtMoJo C1Ntdb06Mq2uA7Z5dqIp6LhDwEZwhWrSTugRpAYKDD+ANpuc+P8SLd7S1FzGRDiX +4vKxD3idxeQTCZCu9MGSF8le+WkKnU68JnT+A85AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiMsPEGtABEGYWif68b7pKuai9VIwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2MzZTAwYTE4LWFhNDItNDRhNS1iYzcyLTJhYTllNzAzMGY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVAGwAwDQYJKoZIhvcNAQELBQADggEBAE50JCUcoxdS3hJnd23aAtcITOdh yRxZ1sfK7kcWjCCekku2uBxFHXXNTOEqwa0WjNS0uAtP8q7EYLGvlE50U8Z9Joob qMOVUATibLxtREzT3Gh8ym5OIEmHHatXYgfkwwzDY5HRtm4vZ8OXFhiBoJuShLBd i1fE+LrOpv2GnF/YghVgDXIeGJJqIRhlFOj5l6z2hxx/+G2T8xSOsUL0RaV9Yq+D 0HBjfL5p7IZdBdQlqS5zmFusjwWW/DvOlP236gs6CxJoK4xwOTyp4gpw9a5vYPgU X2VUdaVYdkOVGsJA9kcn+1bpb2Kk0s3O58kDq6yvN0oJQ9QA3CGNxWpA8Ow= -----END CERTIFICATE-----Generated at Thu Mar 19 12:28:08 2026 by rpki-client