$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b19e5975-1e99-4224-8288-ed3afb4fc704.roa File: b19e5975-1e99-4224-8288-ed3afb4fc704.roa (raw, json) Hash identifier: 9UX0FMlSOo6FJwTIcgBy4fBflWNbTEHUwF1S1oKYhg8= Subject key identifier: 13:FD:40:74:9A:BC:AA:CF:0B:60:F4:45:57:EE:6E:AE:69:47:88:F3 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 26E2D9D72D6AF12A833BD90BC359E906CC99BA4C Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b19e5975-1e99-4224-8288-ed3afb4fc704.roa Signing time: Wed 25 Feb 2026 00:10:18 +0000 ROA not before: Wed 25 Feb 2026 00:10:18 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:e2:d9:d7:2d:6a:f1:2a:83:3b:d9:0b:c3:59:e9:06:cc:99:ba:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:18 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=5bf6da34ce79c879390e9dd07523bc33ac1acede9c9c2262eb8fc57c8735f286, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:98:b4:4d:1d:59:d1:d9:ae:7c:94:ed:91:a4: 3b:cf:9f:cd:a5:31:9e:fe:52:60:85:e1:2b:56:65: 59:72:86:d9:43:4c:e3:4d:09:08:81:ae:69:8e:d5: c6:a9:2b:29:07:35:bf:38:22:c5:b8:29:40:93:92: 9c:5b:11:66:5b:dc:94:55:2f:f0:41:dc:00:a8:3b: 02:ea:93:2a:a2:d3:0d:55:94:94:f2:f8:8b:77:db: 6b:99:d1:1e:a3:91:1f:1b:57:80:3f:1c:19:a2:79: 78:e0:58:a7:c7:10:1a:ed:aa:e8:70:ee:d1:38:13: dc:31:b8:60:68:31:7a:19:a5:64:97:91:4b:fe:7d: 2a:37:e7:ac:2c:ec:b7:ac:ab:56:34:74:aa:83:d6: 58:6a:6e:d5:d7:ba:05:4a:06:9e:35:71:69:06:f6: 5b:87:7b:90:ed:e9:8b:16:24:8a:c9:46:5f:b8:63: fa:3c:71:80:1a:19:85:b6:35:12:1a:a0:66:df:cc: 94:08:2e:ad:58:1a:56:07:c5:69:26:8b:43:0a:30: c8:c0:42:09:dd:56:0e:33:54:4c:85:a5:d4:d0:b7: d4:ca:5a:8b:d8:48:79:17:d5:9f:6c:a8:56:f5:e6: 87:51:5e:c0:6b:dc:00:d4:cc:ec:bf:f3:da:bc:cd: 30:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:FD:40:74:9A:BC:AA:CF:0B:60:F4:45:57:EE:6E:AE:69:47:88:F3 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b19e5975-1e99-4224-8288-ed3afb4fc704.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/24 Signature Algorithm: sha256WithRSAEncryption b3:79:50:f2:1e:41:9f:bb:aa:aa:c5:68:4c:8f:ca:0e:40:ec: b9:32:3f:d9:28:a1:4a:80:30:99:e5:8c:ad:14:31:a2:9e:82: 1c:3c:70:b4:63:a9:82:f5:9e:c0:89:ef:83:57:1c:ad:71:45: 14:59:9a:7d:ca:78:3d:12:bd:55:18:7e:29:78:27:ba:3d:d6: 12:1f:48:3d:8a:05:e0:36:9b:b4:83:0c:e9:08:fc:3a:7d:ef: c9:f8:ee:cb:71:22:21:33:bc:34:50:9f:81:d6:aa:c9:68:c0: af:4f:d0:fc:f5:db:c7:4f:3b:23:2f:8d:4e:40:dc:54:f3:28: 5f:5b:1d:42:21:59:12:0a:81:9c:52:3b:cf:8f:b7:68:4e:36: c9:09:49:36:df:a4:1b:01:d6:bf:4b:7c:de:cb:20:4b:91:7e: 59:70:8b:ac:c9:7f:95:b3:08:bf:d8:35:d5:b9:5d:38:8a:a9: f9:d6:52:83:f4:d7:f4:ab:0f:d1:bf:84:9a:ab:64:14:88:68: 63:51:aa:5e:f5:b8:eb:c8:69:94:b4:39:35:da:6f:66:e5:61: d5:21:83:ad:cf:86:c0:4a:d9:bd:58:00:2a:70:be:be:61:aa: f3:61:9f:35:a1:c9:1a:ce:ab:3e:c2:db:1e:d7:66:e8:e2:6d: 0d:21:20:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJuLZ1y1q8SqDO9kLw1npBsyZukwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDE4WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YmY2ZGEzNGNlNzljODc5MzkwZTlkZDA3NTIzYmMzM2Fj MWFjZWRlOWM5YzIyNjJlYjhmYzU3Yzg3MzVmMjg2MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmmLRNHVnR2a58lO2RpDvPn82lMZ7+UmCF4StWZVlyhtlD TONNCQiBrmmO1capKykHNb84IsW4KUCTkpxbEWZb3JRVL/BB3ACoOwLqkyqi0w1V lJTy+It322uZ0R6jkR8bV4A/HBmieXjgWKfHEBrtquhw7tE4E9wxuGBoMXoZpWSX kUv+fSo356ws7Lesq1Y0dKqD1lhqbtXXugVKBp41cWkG9luHe5Dt6YsWJIrJRl+4 Y/o8cYAaGYW2NRIaoGbfzJQILq1YGlYHxWkmi0MKMMjAQgndVg4zVEyFpdTQt9TK WovYSHkX1Z9sqFb15odRXsBr3ADUzOy/89q8zTDvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE/1AdJq8qs8LYPRFV+5urmlHiPMwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2IxOWU1OTc1LTFlOTktNDIyNC04Mjg4LWVkM2FmYjRmYzcwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWAwDQYJKoZIhvcNAQELBQADggEBALN5UPIeQZ+7qqrFaEyPyg5A7Lky P9kooUqAMJnljK0UMaKeghw8cLRjqYL1nsCJ74NXHK1xRRRZmn3KeD0SvVUYfil4 J7o91hIfSD2KBeA2m7SDDOkI/Dp978n47stxIiEzvDRQn4HWqslowK9P0Pz128dP OyMvjU5A3FTzKF9bHUIhWRIKgZxSO8+Pt2hONskJSTbfpBsB1r9LfN7LIEuRfllw i6zJf5WzCL/YNdW5XTiKqfnWUoP01/SrD9G/hJqrZBSIaGNRql71uOvIaZS0OTXa b2blYdUhg63PhsBK2b1YACpwvr5hqvNhnzWhyRrOqz7C2x7XZujibQ0hIH8= -----END CERTIFICATE-----Generated at Sun Mar 1 23:21:05 2026 by rpki-client