$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa File: 8a0cac28-29b8-4996-b010-5eab278cc342.roa (raw, json) Hash identifier: a3bKIRRlRonwhDHNcnLD/gIMUISr8LCT7GhbiDlNALw= Subject key identifier: 17:A0:07:0C:9A:01:E8:83:BD:BE:A6:DA:BF:62:54:F3:CE:72:D3:98 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 6A5A755775003AE76CD6876FE45DE3065F4B802E Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa Signing time: Wed 25 Feb 2026 00:10:17 +0000 ROA not before: Wed 25 Feb 2026 00:10:17 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:5a:75:57:75:00:3a:e7:6c:d6:87:6f:e4:5d:e3:06:5f:4b:80:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:17 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=04717058f748fb26637fb2981583775fd743f99e36fa6ce57ee93b1416ac595d, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:12:bb:6a:0b:07:05:91:6f:9d:5c:78:bb:8c: 62:7d:5b:35:1e:2e:84:8d:a5:aa:7c:d8:9f:16:c6: 0b:90:e7:a8:9e:54:04:ba:ef:20:df:ec:b3:8f:7e: c1:ca:57:c2:6e:7b:51:aa:3a:c0:11:dc:41:20:81: 53:a8:41:30:6b:ab:86:0e:c2:34:7a:96:53:2c:e1: 81:04:ea:ff:e0:6e:47:31:5e:da:52:01:7a:52:5e: f3:97:5f:13:5f:23:63:db:38:7c:a7:11:53:a3:c3: ce:06:da:34:66:5d:6b:21:63:1d:2b:a5:e5:ed:ad: 5e:c6:46:14:8c:a8:da:33:01:f4:75:b8:df:6f:9a: 52:ee:c2:4e:9c:63:5a:4f:4f:40:5a:17:f7:a7:05: 43:99:b8:3b:7b:e7:86:c0:fe:ec:a4:54:30:50:2e: b4:cc:93:3a:5b:b3:93:ee:46:de:1e:81:75:c3:79: 67:9f:12:5c:59:20:0f:30:31:ca:1c:a8:53:bd:f0: 69:b0:f1:2b:8a:d2:66:6e:31:47:6b:4c:38:0a:72: b2:d3:b3:36:f0:58:7a:17:04:75:35:2b:c8:e2:6d: e6:fd:f5:b1:f3:43:72:6e:18:38:d0:ce:4b:57:f6: 0d:51:6e:9d:82:96:be:94:65:e9:88:f8:a1:12:da: 8c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A0:07:0C:9A:01:E8:83:BD:BE:A6:DA:BF:62:54:F3:CE:72:D3:98 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:3a:2c:bd:f5:5b:4a:50:13:06:ab:97:4c:ac:14:bf:ff:03: 44:e0:e4:6c:aa:de:55:55:02:a6:7f:e9:3c:1c:0b:00:90:e5: c0:58:22:8b:71:63:34:26:bc:83:9f:43:45:07:9d:4e:e0:35: 3c:6c:e5:b1:d0:33:72:4c:7a:85:fd:83:3e:d7:0c:4f:23:d0: ac:3d:3b:75:89:c3:ce:42:2e:15:a0:ce:46:53:79:54:2c:ec: d4:e2:27:6d:09:92:94:73:76:00:ce:d6:76:4d:63:c0:38:bf: 68:29:fc:f3:4c:b9:b8:e6:c8:51:f9:cf:2c:b5:84:60:39:c1: 4b:64:b2:96:c5:cc:fd:5b:c4:ce:e8:71:90:5f:f0:61:a2:5c: 7e:8f:51:e1:d0:58:e2:1b:59:25:fa:74:8f:35:b6:bd:59:cf: 6f:08:71:d7:ee:5b:43:ee:04:16:d4:9b:2d:07:8d:f3:04:d9: 74:66:df:48:7a:81:c7:56:e6:da:5f:e9:88:4e:f9:af:b4:9c: 69:f2:73:88:97:64:af:fe:e6:17:21:7f:9c:60:39:01:da:22: e8:96:9b:89:3b:7e:c3:a9:fd:db:3d:87:ba:ae:ec:1b:a2:82: 79:5b:91:0c:43:92:47:ba:c0:0c:d9:0e:23:56:04:b5:8e:e6: 5b:69:4a:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUalp1V3UAOuds1odv5F3jBl9LgC4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDE3WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDcxNzA1OGY3NDhmYjI2NjM3ZmIyOTgxNTgzNzc1ZmQ3 NDNmOTllMzZmYTZjZTU3ZWU5M2IxNDE2YWM1OTVkMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChErtqCwcFkW+dXHi7jGJ9WzUeLoSNpap82J8WxguQ56ie VAS67yDf7LOPfsHKV8Jue1GqOsAR3EEggVOoQTBrq4YOwjR6llMs4YEE6v/gbkcx XtpSAXpSXvOXXxNfI2PbOHynEVOjw84G2jRmXWshYx0rpeXtrV7GRhSMqNozAfR1 uN9vmlLuwk6cY1pPT0BaF/enBUOZuDt754bA/uykVDBQLrTMkzpbs5PuRt4egXXD eWefElxZIA8wMcocqFO98Gmw8SuK0mZuMUdrTDgKcrLTszbwWHoXBHU1K8jibeb9 9bHzQ3JuGDjQzktX9g1Rbp2Clr6UZemI+KES2owxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUF6AHDJoB6IO9vqbav2JU885y05gwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzhhMGNhYzI4LTI5YjgtNDk5Ni1iMDEwLTVlYWIyNzhjYzM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAHw6LL31W0pQEwarl0ysFL//A0Tg 5Gyq3lVVAqZ/6TwcCwCQ5cBYIotxYzQmvIOfQ0UHnU7gNTxs5bHQM3JMeoX9gz7X DE8j0Kw9O3WJw85CLhWgzkZTeVQs7NTiJ20JkpRzdgDO1nZNY8A4v2gp/PNMubjm yFH5zyy1hGA5wUtkspbFzP1bxM7ocZBf8GGiXH6PUeHQWOIbWSX6dI81tr1Zz28I cdfuW0PuBBbUmy0HjfME2XRm30h6gcdW5tpf6YhO+a+0nGnyc4iXZK/+5hchf5xg OQHaIuiWm4k7fsOp/ds9h7qu7BuignlbkQxDkke6wAzZDiNWBLWO5ltpSkY= -----END CERTIFICATE-----Generated at Mon Mar 2 05:05:22 2026 by rpki-client