$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa File: 9410b7d2-baa7-4841-a665-55298df4e7b6.roa (raw, json) Hash identifier: Lk++q6HIABtuEBt15I5MulsfDi6gGAs7AUkIL6gTNOc= Subject key identifier: 76:5A:74:23:75:A9:0D:42:6B:60:92:1B:1D:A3:A9:F0:AD:B8:6F:56 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 43E72A3EB691ED3E0A7F7522A3B901796CFEAD1B Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa Signing time: Wed 25 Feb 2026 00:10:14 +0000 ROA not before: Wed 25 Feb 2026 00:10:14 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e7:2a:3e:b6:91:ed:3e:0a:7f:75:22:a3:b9:01:79:6c:fe:ad:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:14 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=0253eeb527e2962fa683b48b6f2dc28ea66f0041ad543b8c82a1d1a96b62dcca, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7b:16:8a:be:3d:9f:4d:7e:0c:7a:7d:b2:da: f9:39:ae:82:58:87:20:36:d4:4e:7f:fd:7f:f9:4d: 5a:81:da:98:c5:9f:30:7a:8e:27:b8:1b:db:e4:2c: 2e:8f:24:c0:2a:56:e0:c9:ed:ba:29:c7:3f:db:aa: 62:ae:58:eb:dd:66:7a:b0:f0:58:1d:c8:1c:40:e2: f1:47:80:ed:68:a3:f4:8f:18:ec:b9:8a:70:bf:2c: 41:c5:58:e1:62:f7:ae:c6:62:43:2f:aa:e9:85:38: 1c:aa:b6:91:4d:df:77:ad:3d:3f:5e:7a:bb:68:85: f4:63:b5:19:78:88:a8:5a:ba:b1:20:0e:d8:9e:31: 27:2a:98:67:a7:e8:55:44:03:89:bb:97:ec:d2:e0: cf:cf:b0:62:2c:1d:7d:a8:98:73:11:aa:42:de:8d: 76:7c:68:8e:96:20:89:db:9f:c7:19:26:04:7a:c1: 84:51:d4:c0:67:3b:28:dc:d9:48:1b:f8:ad:26:7d: 58:21:40:05:aa:14:e8:25:f9:5f:c8:8f:c6:a7:fb: e5:ad:31:fe:87:b2:29:a5:86:6c:b3:8b:48:8c:91: 76:e0:ae:75:7f:d0:60:11:a9:5d:b8:d3:29:d1:a5: f4:19:09:9b:13:56:df:12:9b:f1:70:f0:31:f8:b8: c3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:5A:74:23:75:A9:0D:42:6B:60:92:1B:1D:A3:A9:F0:AD:B8:6F:56 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.97.0/24 Signature Algorithm: sha256WithRSAEncryption 95:f5:82:08:8b:5b:d5:54:79:6e:9e:e8:4b:4a:c8:40:c6:5b: c2:a4:3a:7d:3d:84:5e:75:46:5d:e3:e3:ec:c9:bd:99:35:6f: 45:a6:a4:1b:25:bd:55:b3:0a:99:d4:b7:a7:60:ac:a9:64:ea: 10:65:84:ce:eb:bf:66:63:51:06:1d:ee:b8:86:4e:aa:b5:59: e9:4e:ec:3b:67:8a:28:d7:f1:93:9e:1f:6e:f4:0b:13:77:4a: 4b:2d:65:bc:57:01:01:99:5e:b5:78:2d:98:62:d5:60:f5:83: 57:a6:10:79:94:90:18:e7:c9:b3:a5:a0:6b:40:1d:b0:a1:86: 43:31:e6:8d:8b:7e:f4:a0:9d:15:0b:56:f1:1b:4a:88:dd:ca: ea:87:cd:90:23:48:e7:5e:9d:eb:5b:30:d4:0f:13:a3:27:8a: 6f:66:10:8d:f4:f9:30:b3:5d:2d:11:2c:7b:67:50:04:16:3d: c9:3f:cd:a4:e4:77:c3:62:f8:77:a1:d4:aa:f7:f7:7f:22:43: b2:40:02:d3:c9:c1:0c:67:89:f5:f5:53:16:65:b7:16:37:9f: 93:8e:87:04:4d:92:b9:ca:9d:c6:34:9e:70:6a:3c:95:3f:1c: ca:c2:4e:d8:22:48:c5:19:17:8b:8f:8e:a5:35:51:d7:90:eb: 33:97:1f:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ+cqPraR7T4Kf3Uio7kBeWz+rRswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDE0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjUzZWViNTI3ZTI5NjJmYTY4M2I0OGI2ZjJkYzI4ZWE2 NmYwMDQxYWQ1NDNiOGM4MmExZDFhOTZiNjJkY2NhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClexaKvj2fTX4Men2y2vk5roJYhyA21E5//X/5TVqB2pjF nzB6jie4G9vkLC6PJMAqVuDJ7bopxz/bqmKuWOvdZnqw8FgdyBxA4vFHgO1oo/SP GOy5inC/LEHFWOFi967GYkMvqumFOByqtpFN33etPT9eertohfRjtRl4iKhaurEg DtieMScqmGen6FVEA4m7l+zS4M/PsGIsHX2omHMRqkLejXZ8aI6WIInbn8cZJgR6 wYRR1MBnOyjc2Ugb+K0mfVghQAWqFOgl+V/Ij8an++WtMf6Hsimlhmyzi0iMkXbg rnV/0GARqV240ynRpfQZCZsTVt8Sm/Fw8DH4uMMlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdlp0I3WpDUJrYJIbHaOp8K24b1YwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzk0MTBiN2QyLWJhYTctNDg0MS1hNjY1LTU1Mjk4ZGY0ZTdiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWEwDQYJKoZIhvcNAQELBQADggEBAJX1ggiLW9VUeW6e6EtKyEDGW8Kk On09hF51Rl3j4+zJvZk1b0WmpBslvVWzCpnUt6dgrKlk6hBlhM7rv2ZjUQYd7riG Tqq1WelO7DtniijX8ZOeH270CxN3SkstZbxXAQGZXrV4LZhi1WD1g1emEHmUkBjn ybOloGtAHbChhkMx5o2LfvSgnRULVvEbSojdyuqHzZAjSOdenetbMNQPE6Mnim9m EI30+TCzXS0RLHtnUAQWPck/zaTkd8Ni+Heh1Kr3938iQ7JAAtPJwQxnifX1UxZl txY3n5OOhwRNkrnKncY0nnBqPJU/HMrCTtgiSMUZF4uPjqU1UdeQ6zOXH9w= -----END CERTIFICATE-----Generated at Mon Mar 2 01:00:53 2026 by rpki-client