$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa File: ca3490d0-1e9e-400b-af5e-b8236be17139.roa (raw, json) Hash identifier: oTnpuctl16KDSBtbEk9daTrFdHsj9EDqmox37H27ZrM= Subject key identifier: 01:01:74:0F:CE:13:BA:6B:6A:BF:9C:20:11:CB:9E:9E:B6:AC:6E:5E Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 664263DF172ED39369E98CF8E2F0105FC800ADD5 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa Signing time: Sat 16 May 2026 00:10:09 +0000 ROA not before: Sat 16 May 2026 00:10:09 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:42:63:df:17:2e:d3:93:69:e9:8c:f8:e2:f0:10:5f:c8:00:ad:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:09 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=5d57bc93886170cc99e40626871518e8439ba34b3e29d65c7075584edbbd5751, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4a:2b:56:df:c3:01:86:c2:f2:3a:b6:c7:12: 35:1c:0f:67:85:d9:ed:d5:0c:01:ff:3f:42:78:da: 2d:b2:dd:47:63:ab:c9:90:00:0b:51:ba:06:07:e5: 66:dc:e9:43:80:d3:ea:89:92:b1:b8:50:6f:13:38: 44:ce:33:8c:63:f0:1c:e9:c3:24:1b:be:a2:23:08: 0a:c5:b9:7c:1a:64:58:98:82:b0:47:28:32:87:0f: b3:0a:29:e8:3d:5e:f4:4b:f8:ea:f4:a8:86:05:06: 76:53:01:d2:62:8b:82:d0:09:79:79:15:78:1c:6b: 50:d6:08:ea:34:c0:8b:5f:92:b9:0a:75:1e:f4:d1: da:b3:80:31:26:73:5f:ea:53:ef:b7:a8:e7:53:e0: 27:d7:2c:be:a6:3a:35:0b:38:e0:86:d2:52:6f:d3: 2c:7d:98:c9:b1:76:14:b6:26:77:b4:b3:33:da:1c: c4:f5:d9:ab:07:c0:82:5e:59:a4:6a:07:16:b2:46: 85:bb:80:97:c5:99:54:fd:f3:24:14:0d:5c:20:ea: 87:82:d9:ab:59:79:ab:45:2f:b9:54:8d:e3:d6:5e: af:56:3e:19:2e:e1:d1:b2:41:fe:9b:b3:8f:11:33: 6d:3f:66:61:d2:f5:4e:45:a0:de:45:1f:f8:20:1c: bc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:01:74:0F:CE:13:BA:6B:6A:BF:9C:20:11:CB:9E:9E:B6:AC:6E:5E X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 29:38:4a:2c:da:a1:a4:10:f0:6b:eb:1e:c1:ec:58:a7:2b:cf: 53:47:02:33:2f:23:2e:6b:2b:13:e1:4c:c1:12:20:bd:92:43: a6:67:3a:5e:f3:51:55:4c:b4:3f:12:cb:aa:aa:da:7a:0f:90: 71:4a:a7:28:37:ab:f4:83:78:b5:cb:25:f4:5d:1c:61:08:6a: 38:12:7d:35:84:c5:4f:91:2e:28:86:2c:e4:df:14:8a:ff:0a: 51:dd:d6:72:04:ef:c3:48:c3:82:9c:a0:bd:04:fa:4c:d5:22: 58:22:ab:26:f2:ad:c3:ca:c9:15:37:92:32:b8:ff:a8:14:6d: 48:2c:16:97:fc:ea:a9:fa:1f:e4:ae:10:d5:36:07:7c:e4:70: 0a:be:6b:bf:81:21:67:1b:2e:8c:28:1a:86:ee:cd:78:46:01: 44:2c:5d:73:a0:ef:9d:ba:e7:ca:85:5f:e7:d4:bb:1f:12:7b: ce:65:48:78:05:fd:54:d3:a5:d6:51:39:a5:36:7d:02:98:09: cc:82:ae:8a:77:d5:6f:64:62:cc:0e:d5:b4:f7:4d:24:ed:fb: 1e:80:a3:de:27:67:eb:52:54:c9:78:3e:a3:3f:b2:8e:0a:1b: fc:f7:2c:64:8f:41:90:c5:9b:fe:18:df:27:a0:e8:5f:a0:f6: 24:0f:52:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZkJj3xcu05Np6Yz44vAQX8gArdUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDA5WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDU3YmM5Mzg4NjE3MGNjOTllNDA2MjY4NzE1MThlODQz OWJhMzRiM2UyOWQ2NWM3MDc1NTg0ZWRiYmQ1NzUxMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnSitW38MBhsLyOrbHEjUcD2eF2e3VDAH/P0J42i2y3Udj q8mQAAtRugYH5Wbc6UOA0+qJkrG4UG8TOETOM4xj8BzpwyQbvqIjCArFuXwaZFiY grBHKDKHD7MKKeg9XvRL+Or0qIYFBnZTAdJii4LQCXl5FXgca1DWCOo0wItfkrkK dR700dqzgDEmc1/qU++3qOdT4CfXLL6mOjULOOCG0lJv0yx9mMmxdhS2Jne0szPa HMT12asHwIJeWaRqBxayRoW7gJfFmVT98yQUDVwg6oeC2atZeatFL7lUjePWXq9W Phku4dGyQf6bs48RM20/ZmHS9U5FoN5FH/ggHLyjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAQF0D84Tumtqv5wgEcuenrasbl4wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2NhMzQ5MGQwLTFlOWUtNDAwYi1hZjVlLWI4MjM2YmUxNzEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBACk4SizaoaQQ8GvrHsHsWKcrz1NH AjMvIy5rKxPhTMESIL2SQ6ZnOl7zUVVMtD8Sy6qq2noPkHFKpyg3q/SDeLXLJfRd HGEIajgSfTWExU+RLiiGLOTfFIr/ClHd1nIE78NIw4KcoL0E+kzVIlgiqybyrcPK yRU3kjK4/6gUbUgsFpf86qn6H+SuENU2B3zkcAq+a7+BIWcbLowoGobuzXhGAUQs XXOg752658qFX+fUux8Se85lSHgF/VTTpdZROaU2fQKYCcyCrop31W9kYswO1bT3 TSTt+x6Ao94nZ+tSVMl4PqM/so4KG/z3LGSPQZDFm/4Y3yeg6F+g9iQPUlo= -----END CERTIFICATE-----Generated at Fri May 22 16:04:29 2026 by rpki-client