$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa File: e0073d5a-9507-4588-b834-e01ed691ccb6.roa (raw, json) Hash identifier: LgiLn0n5GuDbMYB0Rv5YnA/s58zMMxLmZFxgDvWl5xk= Subject key identifier: EC:24:CF:CD:E5:E9:1D:75:14:C6:54:09:25:81:04:9D:5B:BB:E8:B7 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 4B402398C5859F09F579ED266D98A4B092D811A2 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa Signing time: Sat 16 May 2026 00:10:26 +0000 ROA not before: Sat 16 May 2026 00:10:26 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:40:23:98:c5:85:9f:09:f5:79:ed:26:6d:98:a4:b0:92:d8:11:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:26 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=eb835738428798a68fad8a4b6d78f65fe72de77719394d4b0c0535f88acd7e80, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:90:11:f8:bf:03:67:59:48:79:2a:ec:57:cd: d0:e3:65:75:89:16:02:d4:5d:51:ca:0d:ff:19:17: 53:b8:f8:e8:e5:97:00:d0:fb:92:ed:d8:aa:a5:88: 56:46:d7:14:bc:37:03:38:12:88:c3:cb:a7:b3:0b: 53:4e:97:7a:bb:47:ad:2d:73:61:bd:00:e6:d4:2d: 86:86:ef:54:69:8c:27:27:25:e0:fe:ae:32:17:45: a5:19:90:5b:50:b7:a6:84:25:38:20:e4:a1:d5:45: 2c:89:38:bf:90:da:89:ac:60:84:d5:73:78:6c:01: 5b:ae:21:70:b4:f7:43:31:89:21:5a:3b:d2:10:84: 03:4e:07:39:78:ed:2c:8a:78:65:c3:64:98:5f:d9: 0d:26:a8:2a:a4:69:27:fa:2d:2a:81:dd:bc:eb:20: bb:c5:1c:b4:55:f7:14:ed:9f:c1:d4:6e:99:f9:9d: f5:3a:e8:dc:3c:fd:84:53:df:04:6e:b0:be:b4:96: d8:83:5c:92:a0:8d:b3:a7:35:37:87:84:f4:c2:6f: 24:11:a1:ea:ec:33:34:f9:bf:d1:fe:ee:9f:f5:a0: ba:53:f2:63:22:b1:b3:6d:9e:06:d6:bc:91:dd:02: e1:bd:3d:1f:1a:28:76:0b:ac:b7:e8:62:c0:86:5e: 94:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:24:CF:CD:E5:E9:1D:75:14:C6:54:09:25:81:04:9D:5B:BB:E8:B7 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.102.0/24 Signature Algorithm: sha256WithRSAEncryption 98:5a:0c:60:df:80:51:25:e3:b2:45:30:99:b7:88:f4:db:d1: 02:cf:ca:61:d1:62:82:28:67:b3:d0:54:43:06:3b:6b:92:80: 77:f5:78:d6:ee:33:d5:f7:49:0c:82:89:9b:64:a1:13:45:7d: de:20:1c:99:aa:c7:e7:56:48:f2:9d:8f:25:c5:2d:d1:5b:7d: b7:7e:32:f0:2e:18:4c:66:ab:8b:a5:e8:22:e3:2f:30:c4:23: 08:13:2f:31:5a:a2:a0:dd:11:89:51:0a:40:17:70:58:c3:84: dd:27:81:7b:c6:ca:92:17:a5:40:94:8a:80:9a:77:87:3b:4a: 3a:82:c0:6b:2f:81:b5:11:d4:dc:8e:ef:4e:16:1c:48:c5:df: 43:b3:16:c5:53:d6:93:b1:37:b3:64:83:9c:d8:45:ca:d2:43: 59:6c:81:92:55:25:f3:d3:6c:fc:c2:3c:91:b9:b8:82:5d:72: f2:f9:bb:60:51:be:d8:89:ae:46:b2:9a:66:5d:b3:95:35:f9: 3c:fb:b1:30:de:b9:f2:67:1f:82:fe:a5:5f:dd:45:ff:19:16: 82:56:eb:bf:57:43:9d:24:cc:89:96:90:90:32:99:22:58:1b: 08:13:27:c5:a4:d9:69:2e:1d:8e:dd:be:ee:3b:46:29:45:c2: 38:4d:85:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS0AjmMWFnwn1ee0mbZiksJLYEaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDI2WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjgzNTczODQyODc5OGE2OGZhZDhhNGI2ZDc4ZjY1ZmU3 MmRlNzc3MTkzOTRkNGIwYzA1MzVmODhhY2Q3ZTgwMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCykBH4vwNnWUh5KuxXzdDjZXWJFgLUXVHKDf8ZF1O4+Ojl lwDQ+5Lt2KqliFZG1xS8NwM4EojDy6ezC1NOl3q7R60tc2G9AObULYaG71RpjCcn JeD+rjIXRaUZkFtQt6aEJTgg5KHVRSyJOL+Q2omsYITVc3hsAVuuIXC090MxiSFa O9IQhANOBzl47SyKeGXDZJhf2Q0mqCqkaSf6LSqB3bzrILvFHLRV9xTtn8HUbpn5 nfU66Nw8/YRT3wRusL60ltiDXJKgjbOnNTeHhPTCbyQRoersMzT5v9H+7p/1oLpT 8mMisbNtngbWvJHdAuG9PR8aKHYLrLfoYsCGXpSFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7CTPzeXpHXUUxlQJJYEEnVu76LcwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2UwMDczZDVhLTk1MDctNDU4OC1iODM0LWUwMWVkNjkxY2NiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWYwDQYJKoZIhvcNAQELBQADggEBAJhaDGDfgFEl47JFMJm3iPTb0QLP ymHRYoIoZ7PQVEMGO2uSgHf1eNbuM9X3SQyCiZtkoRNFfd4gHJmqx+dWSPKdjyXF LdFbfbd+MvAuGExmq4ul6CLjLzDEIwgTLzFaoqDdEYlRCkAXcFjDhN0ngXvGypIX pUCUioCad4c7SjqCwGsvgbUR1NyO704WHEjF30OzFsVT1pOxN7Nkg5zYRcrSQ1ls gZJVJfPTbPzCPJG5uIJdcvL5u2BRvtiJrkaymmZds5U1+Tz7sTDeufJnH4L+pV/d Rf8ZFoJW679XQ50kzImWkJAymSJYGwgTJ8Wk2WkuHY7dvu47RilFwjhNhWQ= -----END CERTIFICATE-----Generated at Fri May 22 16:04:32 2026 by rpki-client