$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa File: fd96e119-2761-4573-bdad-0f464228899f.roa (raw, json) Hash identifier: wv8pRjM870/6Z/wGZ09HR27DyU9Lc86lHmCm2LDNDgU= Subject key identifier: 17:9D:5F:80:53:AD:4C:B9:8F:E7:82:B4:F5:18:8E:F9:92:86:42:1F Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 46FCD258817A9ADC926C3D11CDE6E008FFC3D98F Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa Signing time: Sat 16 May 2026 00:10:10 +0000 ROA not before: Sat 16 May 2026 00:10:10 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 401654 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:fc:d2:58:81:7a:9a:dc:92:6c:3d:11:cd:e6:e0:08:ff:c3:d9:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 16 00:10:10 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=b45e52bb743842e5b498662bb8b4fe24a72c88eecbfb6172f2400b3e2f3ff037, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f3:64:d5:f7:83:e5:5b:d9:d1:3d:d2:b5:f2: ea:75:d1:e2:4e:a1:33:a9:6b:d1:61:8d:d0:99:c1: 76:b7:34:d3:51:4e:ca:f2:d3:e6:97:92:6c:61:e0: a0:74:cd:8f:e6:93:a5:49:8c:6e:08:e9:a3:50:96: 71:f1:f3:99:87:27:dd:5d:12:8a:8e:d6:ee:1f:a8: 2b:12:53:9f:27:d9:9c:10:08:5a:cf:20:85:27:ec: 57:6e:3e:c9:fd:1b:60:fa:df:d0:b8:ec:1e:08:cf: e4:57:01:7e:51:0f:de:cc:c3:4e:ea:f0:09:6b:f7: e3:56:af:f1:84:7d:c6:c7:88:be:b2:9c:2c:56:47: 12:53:db:bb:57:c7:0e:40:72:bd:38:6f:01:a2:43: a2:a7:37:8e:da:da:ac:fd:ec:5c:76:39:1e:a0:15: 9f:58:d3:a7:aa:8d:c6:b6:56:41:db:03:d0:31:49: 86:a7:bc:54:17:b7:a0:ab:bf:b0:f0:87:e9:a3:59: e2:e7:8b:d5:d5:80:ef:c4:2d:b0:63:1f:0b:c3:a3: 9d:cb:4b:17:be:c2:86:d8:e1:7c:d0:0b:3f:6e:0f: 1c:e6:a6:cb:a9:e4:b0:94:a6:b0:cd:d0:0b:ab:9a: df:06:48:f5:0c:ab:e6:3c:ee:13:1c:01:0f:17:fc: 92:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:9D:5F:80:53:AD:4C:B9:8F:E7:82:B4:F5:18:8E:F9:92:86:42:1F X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 40:c3:15:49:a3:9b:ae:6d:54:25:ef:84:e2:3b:bf:38:1e:88: af:a5:67:b1:5f:02:bf:dd:b3:5a:da:2f:13:ff:b2:e1:7e:86: 9c:86:2b:a9:c0:20:43:42:58:40:f4:2d:5d:fc:8b:a1:37:a7: 28:ef:c9:ff:36:1c:81:96:c5:ef:8e:22:c1:6b:d0:d4:e7:36: ba:96:86:0c:df:25:72:fd:89:b6:2b:49:45:50:59:db:ea:00: a4:39:60:90:c1:f5:5c:e5:fb:b1:6b:6c:63:48:a4:9f:6b:4a: fa:bc:66:25:c9:82:49:f6:05:41:37:61:2b:ee:fe:9c:f6:0c: 77:41:7a:eb:2e:15:1a:a9:cc:17:e2:1a:93:c4:d3:0c:bb:09: b7:1b:75:14:af:e8:51:15:9e:f7:69:28:7c:4a:3b:c8:e0:ce: b6:27:b6:62:43:80:d9:db:cc:41:e8:0d:83:f6:60:81:34:c3: 40:77:aa:a7:c5:47:ca:71:d2:91:55:7c:c6:b9:37:02:fa:15: 2d:00:fe:50:3c:c9:c2:2c:0f:3f:90:0d:96:44:03:a3:9f:49: c2:30:a7:47:e9:91:a2:15:c3:af:69:1d:97:3a:80:cc:8c:f4: 1d:4a:bd:25:ef:31:7b:e2:bf:ba:e0:43:7d:bc:57:a6:76:11: bc:f8:b0:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURvzSWIF6mtySbD0RzebgCP/D2Y8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwNTE2MDAxMDEwWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDVlNTJiYjc0Mzg0MmU1YjQ5ODY2MmJiOGI0ZmUyNGE3 MmM4OGVlY2JmYjYxNzJmMjQwMGIzZTJmM2ZmMDM3MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC582TV94PlW9nRPdK18up10eJOoTOpa9FhjdCZwXa3NNNR Tsry0+aXkmxh4KB0zY/mk6VJjG4I6aNQlnHx85mHJ91dEoqO1u4fqCsSU58n2ZwQ CFrPIIUn7FduPsn9G2D639C47B4Iz+RXAX5RD97Mw07q8Alr9+NWr/GEfcbHiL6y nCxWRxJT27tXxw5Acr04bwGiQ6KnN47a2qz97Fx2OR6gFZ9Y06eqjca2VkHbA9Ax SYanvFQXt6Crv7Dwh+mjWeLni9XVgO/ELbBjHwvDo53LSxe+wobY4XzQCz9uDxzm psup5LCUprDN0Aurmt8GSPUMq+Y87hMcAQ8X/JKtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUF51fgFOtTLmP54K09RiO+ZKGQh8wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2ZkOTZlMTE5LTI3NjEtNDU3My1iZGFkLTBmNDY0MjI4ODk5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAEDDFUmjm65tVCXvhOI7vzgeiK+l Z7FfAr/ds1raLxP/suF+hpyGK6nAIENCWED0LV38i6E3pyjvyf82HIGWxe+OIsFr 0NTnNrqWhgzfJXL9ibYrSUVQWdvqAKQ5YJDB9Vzl+7FrbGNIpJ9rSvq8ZiXJgkn2 BUE3YSvu/pz2DHdBeusuFRqpzBfiGpPE0wy7CbcbdRSv6FEVnvdpKHxKO8jgzrYn tmJDgNnbzEHoDYP2YIE0w0B3qqfFR8px0pFVfMa5NwL6FS0A/lA8ycIsDz+QDZZE A6OfScIwp0fpkaIVw69pHZc6gMyM9B1KvSXvMXviv7rgQ328V6Z2Ebz4sO4= -----END CERTIFICATE-----Generated at Fri May 22 16:04:29 2026 by rpki-client