$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa File: b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa (raw, json) Hash identifier: /ppgzivNzOCt6R3OSjYGewTznYC9HhqZ98sUbaZmDas= Subject key identifier: 5D:0B:79:94:D8:F2:38:14:92:F1:63:1B:9B:DA:26:E1:C5:87:F3:08 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 0DC777F71DCD0468179C25283AA53C09CAC4D9AD Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa Signing time: Wed 25 Feb 2026 00:10:16 +0000 ROA not before: Wed 25 Feb 2026 00:10:16 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:c7:77:f7:1d:cd:04:68:17:9c:25:28:3a:a5:3c:09:ca:c4:d9:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:16 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=942529d933b4cf479f5e648b139fab45d189b306994785232395d0a04b8cc3e2, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:47:2f:18:f5:e0:b4:a3:ea:be:86:bc:8e:fa: 14:64:c1:3c:e8:fb:c6:2e:c6:a3:f8:1a:fc:0c:26: 6c:99:e7:26:9e:99:65:a9:b1:fe:e9:33:6e:0d:dc: 94:86:a2:c0:d6:5f:2c:e6:1e:8e:07:ef:e6:e9:40: 26:17:61:28:00:82:08:e1:b8:2f:63:ba:e5:49:eb: 51:55:95:e4:a9:55:5b:ab:13:13:a3:15:08:6e:f6: 05:2b:e4:d4:52:1c:56:ec:91:2d:87:b1:5d:27:f9: 95:e9:d7:ac:32:4c:94:ea:c1:fa:87:12:6c:6c:e5: cd:f7:7f:c7:42:32:80:23:f3:d2:e2:37:d0:13:26: f7:50:b1:56:c5:da:8a:7c:7b:99:61:ac:c3:09:81: ac:9a:10:cf:1e:02:36:94:08:84:83:5e:9f:e9:05: 21:6b:e9:42:78:fd:f5:3c:f7:1c:c0:53:17:05:37: 3f:d4:cd:43:b8:09:40:57:55:0c:e0:42:d5:ce:0e: c0:18:cc:a0:38:c9:70:72:26:e0:83:3f:3b:74:98: 89:79:0e:be:92:79:18:5d:0c:0d:09:c6:8a:ba:b3: 9e:b4:1b:e4:f4:70:39:be:7e:f1:40:d5:cf:a6:1e: 4c:dd:71:49:28:10:44:3f:5d:14:10:7c:4a:3a:5f: cc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0B:79:94:D8:F2:38:14:92:F1:63:1B:9B:DA:26:E1:C5:87:F3:08 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:0d:67:9e:70:f6:c6:56:b7:18:48:95:18:4c:ec:8b:62:5d: 42:ed:4f:0f:cf:dd:67:8a:68:a1:5e:ff:5c:ae:f1:cd:fa:4c: 19:4c:a7:43:84:83:51:10:a1:84:4d:aa:cd:6b:4b:44:70:03: 8b:96:b8:14:0f:7b:12:74:59:e4:17:04:14:84:93:12:e2:a6: 66:07:97:7a:35:47:a7:fd:67:fe:4e:f5:57:9d:84:5b:0f:af: d7:45:12:3b:c4:e1:09:b2:36:c3:bc:04:f0:1b:c5:27:4d:39: 63:88:92:27:ec:59:d6:f1:fb:8f:fb:15:a7:06:e4:f6:4f:9e: 27:0f:24:39:16:ca:28:86:9f:57:1f:02:0e:c3:64:96:b0:f0: 65:d7:fd:7e:89:b6:90:c3:38:58:9b:d2:e8:12:36:ec:60:95: 4e:03:f6:c2:e2:36:09:59:49:ee:c1:7b:6e:ea:7a:91:8e:a1: f3:f0:a4:24:c7:1c:11:3d:49:bc:a8:c3:ae:2d:4b:6b:74:bb: 6f:3d:f0:1e:b4:87:5b:b4:53:3b:ed:19:46:c8:3a:05:89:23: 2d:01:70:57:d3:46:ac:b6:9d:22:ba:79:fb:b8:e7:ef:9e:8d: 45:f7:93:6e:8f:1b:8a:59:8b:28:e3:43:f2:d4:e2:28:c9:ce: cc:fd:39:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDcd39x3NBGgXnCUoOqU8CcrE2a0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDE2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDI1MjlkOTMzYjRjZjQ3OWY1ZTY0OGIxMzlmYWI0NWQx ODliMzA2OTk0Nzg1MjMyMzk1ZDBhMDRiOGNjM2UyMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdRy8Y9eC0o+q+hryO+hRkwTzo+8YuxqP4GvwMJmyZ5yae mWWpsf7pM24N3JSGosDWXyzmHo4H7+bpQCYXYSgAggjhuC9juuVJ61FVleSpVVur ExOjFQhu9gUr5NRSHFbskS2HsV0n+ZXp16wyTJTqwfqHEmxs5c33f8dCMoAj89Li N9ATJvdQsVbF2op8e5lhrMMJgayaEM8eAjaUCISDXp/pBSFr6UJ4/fU89xzAUxcF Nz/UzUO4CUBXVQzgQtXODsAYzKA4yXByJuCDPzt0mIl5Dr6SeRhdDA0Jxoq6s560 G+T0cDm+fvFA1c+mHkzdcUkoEEQ/XRQQfEo6X8zPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXQt5lNjyOBSS8WMbm9om4cWH8wgwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2I0MjI1N2EwLTQ1MDMtNDE0Yy05ZWU2LWMyMGQ0YTNiZjFhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAC0NZ55w9sZWtxhIlRhM7ItiXULt Tw/P3WeKaKFe/1yu8c36TBlMp0OEg1EQoYRNqs1rS0RwA4uWuBQPexJ0WeQXBBSE kxLipmYHl3o1R6f9Z/5O9VedhFsPr9dFEjvE4QmyNsO8BPAbxSdNOWOIkifsWdbx +4/7FacG5PZPnicPJDkWyiiGn1cfAg7DZJaw8GXX/X6JtpDDOFib0ugSNuxglU4D 9sLiNglZSe7Be27qepGOofPwpCTHHBE9Sbyow64tS2t0u2898B60h1u0UzvtGUbI OgWJIy0BcFfTRqy2nSK6efu45++ejUX3k26PG4pZiyjjQ/LU4ijJzsz9OWs= -----END CERTIFICATE-----Generated at Mon Mar 2 01:24:45 2026 by rpki-client