$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa File: f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa (raw, json) Hash identifier: YQ4oSukWSM3ZilUOEPVIfGM7CYpfcci0ZVo3HfKyzPs= Subject key identifier: CA:01:2D:3A:7E:DE:C8:95:E9:51:BB:D1:8D:4D:2F:AD:3D:BC:CE:38 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 1FA3E0779CD39CE752354B45CFD494BBA07F6E5A Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa Signing time: Wed 25 Feb 2026 00:10:12 +0000 ROA not before: Wed 25 Feb 2026 00:10:12 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:a3:e0:77:9c:d3:9c:e7:52:35:4b:45:cf:d4:94:bb:a0:7f:6e:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:12 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=58fe25b3ea22f35067118f0c6621fbad4d2014ab0f26ea280ade9954746a3a3b, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:78:bb:6b:9e:76:86:0b:78:76:a8:f7:88:f6: 58:b6:83:ee:be:39:fa:2c:92:4a:3d:c0:e4:07:31: aa:9d:93:75:01:ad:f1:9b:12:bc:a5:5d:7f:2d:5a: c5:e1:08:da:3a:af:25:de:03:bc:5c:3e:76:3b:9f: af:54:45:51:d5:d5:a6:40:c0:b0:09:e6:97:90:ad: ee:1a:89:14:27:d6:6b:2e:d2:1f:61:f3:ea:67:6c: c6:80:87:94:82:bb:b3:df:16:ad:c9:71:e0:e8:50: c6:f5:df:7f:61:29:fb:20:15:09:30:f1:cb:e3:3e: c1:79:c3:d6:18:d9:42:6e:04:98:33:8c:a9:2e:af: 39:11:7c:81:38:50:91:4d:29:5b:eb:d4:94:d0:bd: d9:ed:c3:91:99:29:28:39:fa:4e:20:61:b7:e1:3c: 02:ff:f8:45:c1:e3:b0:04:73:1b:cc:be:89:07:5f: 99:f9:48:30:8a:31:be:98:59:69:63:0d:a5:f1:f2: 92:e4:25:d2:2e:19:4c:df:43:8d:2f:3c:fb:89:0f: ac:26:26:42:0b:e1:04:28:d2:36:db:e4:3c:03:04: 8f:e4:db:ef:45:7f:f3:70:eb:c7:51:57:61:c1:99: 9e:25:b6:47:a8:1f:ed:81:0f:07:b9:5e:69:0d:b2: 54:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:01:2D:3A:7E:DE:C8:95:E9:51:BB:D1:8D:4D:2F:AD:3D:BC:CE:38 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.101.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:35:2f:f2:1c:6f:fc:d4:77:d2:a9:18:82:d4:05:18:12:c4: 4f:a0:c8:7d:ad:ce:4b:d5:74:dd:fb:0e:99:e8:45:ed:ad:c5: c3:f4:1b:21:20:6a:ba:92:3c:70:00:f0:09:9c:80:97:4c:04: 50:49:c5:f8:c2:68:cb:c5:2a:94:77:6f:c1:14:04:3d:a4:01: 5b:fd:e4:ff:22:5d:96:2d:51:d8:11:f9:1e:99:df:dc:bf:00: 17:df:83:09:6f:01:54:fe:13:43:3c:79:2f:31:86:65:96:02: e8:e4:92:95:b7:2b:3c:b7:6c:7d:82:1c:cd:fc:35:87:03:ec: 9b:b1:bd:1b:59:ac:cf:0a:c1:0a:44:67:40:a7:fa:6f:c0:18: dd:f7:b4:11:4e:86:81:e0:1e:3a:b4:dc:49:80:6d:80:51:b4: 1d:70:52:9e:a4:15:7b:36:0f:f7:a6:ac:6b:b1:cc:6c:80:7a: 39:ed:52:98:d4:a4:f1:46:d2:74:a2:3a:43:d9:fa:4f:72:b8: 0d:96:1c:95:52:9b:76:8a:23:0b:3a:45:90:66:75:d4:ab:d1: 56:80:9f:01:a2:4a:13:b7:f6:85:a8:05:28:82:1f:8d:d7:64: 86:dd:6f:0b:ef:b5:bd:53:f9:c9:96:9d:ac:db:f7:b5:c5:57: 7d:74:26:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH6Pgd5zTnOdSNUtFz9SUu6B/blowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDEyWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGZlMjViM2VhMjJmMzUwNjcxMThmMGM2NjIxZmJhZDRk MjAxNGFiMGYyNmVhMjgwYWRlOTk1NDc0NmEzYTNiMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCweLtrnnaGC3h2qPeI9li2g+6+Ofoskko9wOQHMaqdk3UB rfGbErylXX8tWsXhCNo6ryXeA7xcPnY7n69URVHV1aZAwLAJ5peQre4aiRQn1msu 0h9h8+pnbMaAh5SCu7PfFq3JceDoUMb1339hKfsgFQkw8cvjPsF5w9YY2UJuBJgz jKkurzkRfIE4UJFNKVvr1JTQvdntw5GZKSg5+k4gYbfhPAL/+EXB47AEcxvMvokH X5n5SDCKMb6YWWljDaXx8pLkJdIuGUzfQ40vPPuJD6wmJkIL4QQo0jbb5DwDBI/k 2+9Ff/Nw68dRV2HBmZ4ltkeoH+2BDwe5XmkNslRpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUygEtOn7eyJXpUbvRjU0vrT28zjgwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2YwMmVmYjFmLThhMTctNGRjNy05YWI0LTljYzIzYmM2OWI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWUwDQYJKoZIhvcNAQELBQADggEBAGw1L/Icb/zUd9KpGILUBRgSxE+g yH2tzkvVdN37DpnoRe2txcP0GyEgarqSPHAA8AmcgJdMBFBJxfjCaMvFKpR3b8EU BD2kAVv95P8iXZYtUdgR+R6Z39y/ABffgwlvAVT+E0M8eS8xhmWWAujkkpW3Kzy3 bH2CHM38NYcD7JuxvRtZrM8KwQpEZ0Cn+m/AGN33tBFOhoHgHjq03EmAbYBRtB1w Up6kFXs2D/emrGuxzGyAejntUpjUpPFG0nSiOkPZ+k9yuA2WHJVSm3aKIws6RZBm ddSr0VaAnwGiShO39oWoBSiCH43XZIbdbwvvtb1T+cmWnazb97XFV310Jk4= -----END CERTIFICATE-----Generated at Sun Mar 1 21:40:49 2026 by rpki-client