$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa File: ca3490d0-1e9e-400b-af5e-b8236be17139.roa (raw, json) Hash identifier: R8JF+fIRdNYN+zjojyB4HC9vn/shYrqIOitMF7EjerU= Subject key identifier: 3F:02:E3:A7:2D:29:87:76:54:BC:E9:97:39:42:4B:22:99:9F:26:E0 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 70CE9B658B84ECEF2CE48097A9AB02F6F008B58B Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa Signing time: Wed 25 Feb 2026 00:10:15 +0000 ROA not before: Wed 25 Feb 2026 00:10:15 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ce:9b:65:8b:84:ec:ef:2c:e4:80:97:a9:ab:02:f6:f0:08:b5:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:15 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=7804e1fe880a8da127508899ffd520e3ba289e296ab912b056bfcfcbb3650112, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:82:15:9c:bb:ba:33:e6:92:ec:c6:df:ad:8d: 8a:f8:75:0f:12:d8:9a:a4:e8:6e:dd:a0:aa:4e:6c: fe:4d:28:b3:98:5e:c4:2e:8f:08:d3:87:5f:f2:b7: 58:df:af:2e:3f:9e:65:42:2f:89:98:9e:43:b7:eb: dc:65:77:ab:3e:29:6c:3b:bb:0f:b5:54:31:e1:3d: f6:44:32:84:ac:24:c6:da:0b:ba:b5:78:f8:68:b0: df:ce:91:bd:82:1c:c2:41:cc:f8:37:5a:4a:b6:db: 1b:7f:8e:9c:02:fc:a8:0b:02:a6:44:6a:a7:fd:cd: ee:3b:35:ed:d7:c9:06:dd:50:a4:b4:51:ba:fc:df: c1:e3:ee:2c:91:84:96:49:2c:3d:65:16:44:53:65: f2:67:24:5d:16:37:7b:20:34:d1:f0:bb:ec:2f:cc: 31:4c:12:ae:67:90:e6:cf:d2:ab:51:38:62:7b:a2: ac:a2:88:1f:90:d6:57:2c:da:c0:21:b6:9c:f7:85: 6e:e5:08:bb:b5:cc:dd:d3:b2:d6:37:5b:fa:e3:74: 5a:81:dd:d3:4a:a2:0f:7b:bc:d9:1f:69:08:ab:e0: 86:44:07:87:89:e1:b1:0f:39:fc:ec:39:94:59:c3: ac:a3:b4:03:d6:c8:2a:42:56:00:e6:4f:0d:15:8f: af:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:02:E3:A7:2D:29:87:76:54:BC:E9:97:39:42:4B:22:99:9F:26:E0 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 52:ed:61:9b:d2:3a:8e:ab:07:45:21:ee:66:5c:09:6b:80:e1: 56:3f:04:89:0e:0c:53:aa:8a:03:c7:fb:d4:71:10:8c:5d:1a: 9e:b7:ae:62:40:08:4f:8c:16:a7:64:ba:2b:36:78:ca:2e:0c: c7:f6:44:11:0d:53:1e:07:6e:4c:11:68:3c:9c:e0:cc:96:00: 09:cc:36:11:12:8b:25:4d:9d:52:fe:25:73:b4:d5:f2:2a:63: b2:be:b8:1d:8e:94:11:96:07:44:25:a7:e7:fa:79:c4:09:e3: ec:72:14:aa:d2:77:5b:7b:38:08:ad:2a:80:9d:3d:2f:9f:c8: 2f:2c:c3:c2:0c:75:b4:87:65:09:96:45:d5:ba:ce:32:55:4b: 6e:b6:f6:2c:57:18:10:8b:e4:8b:49:16:b7:8a:5e:60:1e:72: b0:4e:f8:e0:d4:58:2d:3b:63:24:27:d9:e3:da:85:42:a9:39: 6b:b5:e6:1a:15:81:da:c3:b8:65:7c:2f:92:8c:60:d0:26:23: 90:18:d5:70:44:3b:d6:fc:08:71:1e:be:4e:5e:87:98:ce:f5: f1:25:49:09:4e:a5:46:f0:bc:86:ec:8c:b2:79:29:1a:0a:b1: af:6c:18:5a:20:8d:08:65:12:cd:21:0c:ea:7d:c1:5e:72:28: 8a:b4:69:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcM6bZYuE7O8s5ICXqasC9vAItYswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDE1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODA0ZTFmZTg4MGE4ZGExMjc1MDg4OTlmZmQ1MjBlM2Jh Mjg5ZTI5NmFiOTEyYjA1NmJmY2ZjYmIzNjUwMTEyMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGghWcu7oz5pLsxt+tjYr4dQ8S2Jqk6G7doKpObP5NKLOY XsQujwjTh1/yt1jfry4/nmVCL4mYnkO369xld6s+KWw7uw+1VDHhPfZEMoSsJMba C7q1ePhosN/Okb2CHMJBzPg3Wkq22xt/jpwC/KgLAqZEaqf9ze47Ne3XyQbdUKS0 Ubr838Hj7iyRhJZJLD1lFkRTZfJnJF0WN3sgNNHwu+wvzDFMEq5nkObP0qtROGJ7 oqyiiB+Q1lcs2sAhtpz3hW7lCLu1zN3TstY3W/rjdFqB3dNKog97vNkfaQir4IZE B4eJ4bEPOfzsOZRZw6yjtAPWyCpCVgDmTw0Vj68xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPwLjpy0ph3ZUvOmXOUJLIpmfJuAwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2NhMzQ5MGQwLTFlOWUtNDAwYi1hZjVlLWI4MjM2YmUxNzEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAFLtYZvSOo6rB0Uh7mZcCWuA4VY/ BIkODFOqigPH+9RxEIxdGp63rmJACE+MFqdkuis2eMouDMf2RBENUx4HbkwRaDyc 4MyWAAnMNhESiyVNnVL+JXO01fIqY7K+uB2OlBGWB0Qlp+f6ecQJ4+xyFKrSd1t7 OAitKoCdPS+fyC8sw8IMdbSHZQmWRdW6zjJVS2629ixXGBCL5ItJFreKXmAecrBO +ODUWC07YyQn2ePahUKpOWu15hoVgdrDuGV8L5KMYNAmI5AY1XBEO9b8CHEevk5e h5jO9fElSQlOpUbwvIbsjLJ5KRoKsa9sGFogjQhlEs0hDOp9wV5yKIq0aUM= -----END CERTIFICATE-----Generated at Mon Mar 2 12:59:59 2026 by rpki-client