$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa File: 4dec765a-fd07-492c-af7f-ec695090cc13.roa (raw, json) Hash identifier: IvhayJod2WiqGFk0KfTymzfvDoaoUVg+3r61WYPpr2o= Subject key identifier: DA:8F:6B:69:4E:C5:99:82:E6:57:9E:45:06:09:A9:A2:F0:89:7B:50 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 235263C3FE3AEF23A4DA98C230181BF6625FF676 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa Signing time: Wed 25 Feb 2026 00:10:13 +0000 ROA not before: Wed 25 Feb 2026 00:10:13 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:52:63:c3:fe:3a:ef:23:a4:da:98:c2:30:18:1b:f6:62:5f:f6:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:13 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=66fbfc52f0c14ae10a36009367f34f1776ab5abff8e8dd9fe8822df3e617811f, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:68:4f:fe:c4:50:b8:a5:6e:6e:28:e6:f5:a1: 09:48:6f:5c:9d:29:e9:cc:83:20:28:fe:88:53:ec: 63:19:32:c4:ae:8b:08:a9:f1:f5:f4:6d:d6:1a:ec: 8c:14:4b:3a:3c:a6:53:11:30:00:b3:68:73:9d:fa: 5f:a5:bf:00:cc:9c:d3:c0:cd:3e:32:ed:28:18:b5: 9d:dd:48:75:de:6e:1e:57:b1:31:97:9e:70:cb:ab: 1e:35:f8:da:6c:01:68:ee:2f:64:a0:e4:7a:25:c0: fa:04:b6:20:69:dd:ad:82:cb:f1:e1:aa:e6:b0:d6: 85:e6:6b:82:12:68:2b:9b:05:90:ba:ee:a5:91:e7: 66:3c:82:23:d4:8f:9a:6d:01:fd:60:5b:eb:cc:f0: e1:60:0e:76:8c:fe:fa:b1:6c:c3:32:dc:3a:ac:77: f7:01:81:a2:c5:74:23:1e:09:32:9f:26:30:db:4f: d5:cb:c2:aa:44:44:7f:cc:cc:10:69:2b:0f:95:e9: 57:04:a9:12:d1:cf:2e:eb:90:44:e7:1e:a4:8e:e2: 71:d9:3b:06:70:5f:53:19:e0:74:99:67:75:9b:8a: a7:34:85:3f:b2:ed:cd:85:2b:ae:ab:27:32:6a:6f: f7:66:04:4c:b2:07:71:44:52:b1:2d:07:b2:d8:c9: 6c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:8F:6B:69:4E:C5:99:82:E6:57:9E:45:06:09:A9:A2:F0:89:7B:50 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption 44:a6:eb:c3:85:a8:4f:16:f5:c0:4c:68:8c:9c:51:83:5f:4b: 81:a3:60:d1:b6:74:9d:1a:6b:9c:41:f2:72:12:07:b6:6a:11: 48:62:a7:39:52:be:a0:f4:91:b8:85:b3:0d:f7:c4:0f:4d:14: c7:e1:a0:db:d7:85:ee:27:d3:42:cc:de:87:b2:94:b1:db:02: b6:6b:74:48:39:00:65:5b:4c:1d:6d:71:4e:d2:40:b9:c3:96: 0a:bd:60:bc:5a:cb:1e:d5:ed:5b:e7:d1:bd:e6:25:47:52:2a: e8:2a:44:ce:0c:69:c2:be:3a:ae:1a:35:22:34:bc:3f:f4:b7: 28:91:78:84:c9:e9:0d:f9:24:57:49:1b:b1:7f:08:7e:c0:ff: be:25:95:87:0d:36:86:1c:e9:9b:c8:cd:f5:e7:0c:55:dc:d0: 7a:04:a5:b2:f0:fa:23:cd:cf:ce:8c:37:8b:f1:29:20:25:18: 5a:54:e6:af:53:57:16:4d:2c:20:44:1c:74:66:1a:c8:24:e3: 71:d2:fc:aa:48:77:bb:89:9d:0e:2b:6d:58:87:46:c1:3a:aa: 31:b1:1d:1e:6f:bc:59:91:31:73:c8:99:49:f7:42:25:cd:33: b8:2a:01:3f:63:aa:99:73:70:6d:88:eb:61:1c:ee:00:e4:9a: 53:ba:36:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI1Jjw/467yOk2pjCMBgb9mJf9nYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDEzWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NmZiZmM1MmYwYzE0YWUxMGEzNjAwOTM2N2YzNGYxNzc2 YWI1YWJmZjhlOGRkOWZlODgyMmRmM2U2MTc4MTFmMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAaE/+xFC4pW5uKOb1oQlIb1ydKenMgyAo/ohT7GMZMsSu iwip8fX0bdYa7IwUSzo8plMRMACzaHOd+l+lvwDMnNPAzT4y7SgYtZ3dSHXebh5X sTGXnnDLqx41+NpsAWjuL2Sg5HolwPoEtiBp3a2Cy/Hhquaw1oXma4ISaCubBZC6 7qWR52Y8giPUj5ptAf1gW+vM8OFgDnaM/vqxbMMy3Dqsd/cBgaLFdCMeCTKfJjDb T9XLwqpERH/MzBBpKw+V6VcEqRLRzy7rkETnHqSO4nHZOwZwX1MZ4HSZZ3Wbiqc0 hT+y7c2FK66rJzJqb/dmBEyyB3FEUrEtB7LYyWwZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2o9raU7FmYLmV55FBgmpovCJe1AwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRkZWM3NjVhLWZkMDctNDkyYy1hZjdmLWVjNjk1MDkwY2MxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBAESm68OFqE8W9cBMaIycUYNfS4Gj YNG2dJ0aa5xB8nISB7ZqEUhipzlSvqD0kbiFsw33xA9NFMfhoNvXhe4n00LM3oey lLHbArZrdEg5AGVbTB1tcU7SQLnDlgq9YLxayx7V7Vvn0b3mJUdSKugqRM4MacK+ Oq4aNSI0vD/0tyiReITJ6Q35JFdJG7F/CH7A/74llYcNNoYc6ZvIzfXnDFXc0HoE pbLw+iPNz86MN4vxKSAlGFpU5q9TVxZNLCBEHHRmGsgk43HS/KpId7uJnQ4rbViH RsE6qjGxHR5vvFmRMXPImUn3QiXNM7gqAT9jqplzcG2I62Ec7gDkmlO6NlE= -----END CERTIFICATE-----Generated at Sun Mar 1 23:35:45 2026 by rpki-client