$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa File: 490da442-9a78-4422-8ee9-ded4482ab131.roa (raw, json) Hash identifier: BFwMyiu+xswVW8W1W8EY+COE8oy4pBCE+YpqX6wfYwY= Subject key identifier: 39:C2:C0:A4:EA:13:17:2F:D6:00:4D:89:F1:C8:CC:0A:87:B9:5B:BE Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 597524A0D1803D68F69C544172C87B8EECBE87B4 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa Signing time: Wed 25 Feb 2026 00:10:15 +0000 ROA not before: Wed 25 Feb 2026 00:10:15 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:75:24:a0:d1:80:3d:68:f6:9c:54:41:72:c8:7b:8e:ec:be:87:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:15 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=febd58c87cc5ab70910c9a5f4a6c20ceb7101888628de9d4b0d984a91dce6302, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:de:0e:5d:9b:2c:45:bd:95:a0:9a:7c:79: c0:90:e4:80:81:5f:38:1c:de:0d:99:da:c4:83:85: a0:4e:e3:a6:36:cf:5c:3d:aa:4d:97:31:ab:e3:e0: 25:bb:a7:07:a5:48:85:4a:c0:92:15:f4:55:7e:c6: 10:65:02:ad:cd:30:5c:f5:f4:36:9f:f7:40:72:f5: f5:ab:c6:e7:8a:c9:46:ab:4a:b9:ba:8c:12:24:8f: 2f:a8:bf:c4:95:1a:9f:02:21:f9:5a:5d:b5:75:af: ca:af:56:ca:4a:93:4d:e5:8f:e0:c8:b1:50:12:e0: bf:25:2b:9f:11:d2:4f:40:93:42:f3:11:a8:6d:cb: 57:5c:80:91:92:d6:98:6d:4e:fc:76:b9:99:de:b0: 94:f9:0b:44:21:29:a5:12:d2:cd:49:a5:fc:13:2d: bc:05:3f:fc:93:8e:f8:24:df:36:aa:89:64:5e:7c: 31:82:52:af:a7:f5:fd:f6:66:fc:86:65:17:6f:28: 13:71:1d:df:31:db:a4:4f:df:f9:86:c5:31:3d:76: 93:3b:25:36:68:41:ee:00:02:0e:f5:83:35:31:44: 3e:47:03:55:bd:96:bd:92:09:4e:94:d4:9e:41:13: 69:75:52:3a:d3:1d:73:b1:43:8a:6a:09:3a:10:e5: dd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C2:C0:A4:EA:13:17:2F:D6:00:4D:89:F1:C8:CC:0A:87:B9:5B:BE X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 5b:77:0a:63:12:15:a6:3d:b9:05:b8:d7:8f:44:32:22:58:aa: 79:b3:3f:99:38:c2:70:d8:15:03:39:c8:a9:04:80:75:9d:11: 1e:1a:c6:e6:d3:93:ca:ab:7c:c8:cf:a7:3f:13:f0:be:8c:28: bd:a6:56:fb:b1:e4:ef:50:af:a0:20:68:c5:7d:f1:6a:34:c6: 6d:08:6b:26:ee:e8:43:eb:52:d6:41:a4:a3:ea:23:e7:2a:d5: e3:c3:de:63:09:48:de:24:88:2e:d5:5e:c6:a2:99:4f:65:e7: 8c:37:25:54:c3:f2:52:0f:8b:b4:8b:e4:48:82:28:8f:f2:c6: 53:8a:be:1c:13:f0:49:ed:b4:a0:6b:a7:42:bc:ca:a6:65:81: 54:53:ad:de:cd:97:9b:e2:b8:5f:8f:ed:0b:3e:3c:47:c9:a5: 37:40:86:36:c2:7d:a9:9b:f8:69:f8:ba:cb:94:e4:51:a7:a2: 21:a8:04:40:78:51:df:39:62:13:de:59:98:e2:e1:e0:bc:08: 75:70:94:95:bc:f2:d3:27:b9:a1:31:96:3e:e1:60:7a:1a:22: fc:e7:c8:24:b5:d1:9f:54:eb:9f:11:9a:17:a8:b8:a1:8f:dc: c0:b0:c2:c9:77:08:0d:a8:80:69:98:72:19:8f:0f:f0:50:d5: 04:04:81:82 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWXUkoNGAPWj2nFRBcsh7juy+h7QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDE1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWJkNThjODdjYzVhYjcwOTEwYzlhNWY0YTZjMjBjZWI3 MTAxODg4NjI4ZGU5ZDRiMGQ5ODRhOTFkY2U2MzAyMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8Y94OXZssRb2VoJp8ecCQ5ICBXzgc3g2Z2sSDhaBO46Y2 z1w9qk2XMavj4CW7pwelSIVKwJIV9FV+xhBlAq3NMFz19Daf90By9fWrxueKyUar Srm6jBIkjy+ov8SVGp8CIflaXbV1r8qvVspKk03lj+DIsVAS4L8lK58R0k9Ak0Lz Eahty1dcgJGS1phtTvx2uZnesJT5C0QhKaUS0s1JpfwTLbwFP/yTjvgk3zaqiWRe fDGCUq+n9f32ZvyGZRdvKBNxHd8x26RP3/mGxTE9dpM7JTZoQe4AAg71gzUxRD5H A1W9lr2SCU6U1J5BE2l1UjrTHXOxQ4pqCToQ5d33AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOcLApOoTFy/WAE2J8cjMCoe5W74wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzQ5MGRhNDQyLTlhNzgtNDQyMi04ZWU5LWRlZDQ0ODJhYjEzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAFt3CmMSFaY9uQW4149EMiJYqnmz P5k4wnDYFQM5yKkEgHWdER4axubTk8qrfMjPpz8T8L6MKL2mVvux5O9Qr6AgaMV9 8Wo0xm0Iaybu6EPrUtZBpKPqI+cq1ePD3mMJSN4kiC7VXsaimU9l54w3JVTD8lIP i7SL5EiCKI/yxlOKvhwT8EnttKBrp0K8yqZlgVRTrd7Nl5viuF+P7Qs+PEfJpTdA hjbCfamb+Gn4usuU5FGnoiGoBEB4Ud85YhPeWZji4eC8CHVwlJW88tMnuaExlj7h YHoaIvznyCS10Z9U658RmheouKGP3MCwwsl3CA2ogGmYchmPD/BQ1QQEgYI= -----END CERTIFICATE-----Generated at Sun Mar 1 23:35:37 2026 by rpki-client