$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa File: fd96e119-2761-4573-bdad-0f464228899f.roa (raw, json) Hash identifier: 47qZLyLUjJogwD4lzOafNpbosTpfIFiCkHQRqFlwFVE= Subject key identifier: 76:58:40:9B:AF:87:04:A2:86:B3:E8:80:C4:C2:0E:39:3A:AD:9B:73 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 64BA96469F872D1E68E5B9ECCD70ED27268A9151 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa Signing time: Wed 25 Feb 2026 00:10:15 +0000 ROA not before: Wed 25 Feb 2026 00:10:15 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 401654 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:ba:96:46:9f:87:2d:1e:68:e5:b9:ec:cd:70:ed:27:26:8a:91:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Feb 25 00:10:15 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=063a536b287ab3c788a97be11f81c712e1b06d076f82afa383f97f150703b634, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:08:97:43:a6:ad:47:1e:6c:60:c7:1c:fc:7c: 52:61:71:bc:fb:d1:f5:ae:b2:46:d6:98:b6:58:5b: 19:16:f4:89:22:70:6b:6b:f5:04:90:35:c6:bb:40: ef:3d:cc:93:5e:2c:8b:58:d7:05:48:2f:b5:c5:e8: 6c:74:d6:08:aa:f4:06:08:97:47:af:87:1d:0d:a0: b9:2f:f4:61:dc:bd:e8:2f:7d:18:87:84:a0:af:79: c0:7e:f1:23:a7:5b:da:77:46:27:67:f5:91:01:8b: d5:24:af:2f:2b:17:43:08:c1:6a:5a:b9:73:9e:d4: 04:f7:60:d2:7c:ad:ff:38:5e:fc:3c:e9:47:d0:83: db:9b:e5:5e:7d:b5:6c:53:e0:53:4d:b2:e9:b7:6f: 37:65:8b:6f:c5:0d:b6:8f:ab:69:82:27:f6:9d:23: 79:fe:d5:f3:7d:05:e9:75:96:dc:99:bb:99:29:3b: 2b:f7:c9:51:bf:82:54:9e:9f:d9:29:ba:76:6f:4f: 7e:51:44:12:eb:94:41:cc:ed:d4:ab:9b:10:1f:7d: 2a:02:e3:2a:f7:56:d9:61:60:b2:9c:11:30:62:43: 72:ca:aa:ac:ab:6e:0a:ad:88:79:50:0b:d7:bc:86: 3f:2c:34:e9:95:9b:3a:3f:55:3f:43:f8:f4:14:f1: 07:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:58:40:9B:AF:87:04:A2:86:B3:E8:80:C4:C2:0E:39:3A:AD:9B:73 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 93:3b:f0:61:9e:f9:06:ee:15:7b:5b:4e:d8:bd:34:db:09:3a: b9:57:66:65:2b:bc:29:00:c9:9f:f7:90:cc:04:ee:fa:ac:35: bc:fa:c8:30:61:b4:79:67:e7:9f:9c:6a:07:b7:87:5b:8e:78: 12:39:50:66:88:22:6c:be:be:42:7c:9b:58:76:5f:d4:8e:6b: 8f:7e:0c:15:bc:c1:9a:5a:40:af:51:1b:78:1a:5d:f2:34:0c: 5f:55:3b:8f:5b:9d:50:33:bb:98:11:d6:8f:aa:6a:5e:e0:48: b5:27:5c:f6:02:0f:81:18:c9:19:7a:e4:5a:64:dd:8f:a6:20: f5:de:91:14:3a:f9:22:aa:46:18:e8:44:d8:ea:d2:d2:93:42: 3b:30:95:78:5c:98:1f:58:41:02:08:2f:56:e3:8b:3e:13:f6: 7f:f1:64:f3:d1:80:1f:60:c0:dd:c0:18:b3:2e:78:bb:ff:27: b1:33:86:cf:c1:96:a5:ad:83:cb:62:f2:38:8f:89:ab:fd:7b: 42:12:6e:77:25:dc:18:52:1d:47:b4:b4:2a:97:d7:95:f1:4f: 17:db:82:92:ae:d6:6a:4d:d6:94:6d:d3:f1:c0:40:31:12:11: 8c:78:37:e6:f4:62:e0:27:22:b4:dd:78:df:69:72:23:1f:c6: ef:79:cf:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZLqWRp+HLR5o5bnszXDtJyaKkVEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjYwMjI1MDAxMDE1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjNhNTM2YjI4N2FiM2M3ODhhOTdiZTExZjgxYzcxMmUx YjA2ZDA3NmY4MmFmYTM4M2Y5N2YxNTA3MDNiNjM0MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXCJdDpq1HHmxgxxz8fFJhcbz70fWuskbWmLZYWxkW9Iki cGtr9QSQNca7QO89zJNeLItY1wVIL7XF6Gx01giq9AYIl0evhx0NoLkv9GHcvegv fRiHhKCvecB+8SOnW9p3Ridn9ZEBi9Ukry8rF0MIwWpauXOe1AT3YNJ8rf84Xvw8 6UfQg9ub5V59tWxT4FNNsum3bzdli2/FDbaPq2mCJ/adI3n+1fN9Bel1ltyZu5kp Oyv3yVG/glSen9kpunZvT35RRBLrlEHM7dSrmxAffSoC4yr3VtlhYLKcETBiQ3LK qqyrbgqtiHlQC9e8hj8sNOmVmzo/VT9D+PQU8QevAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdlhAm6+HBKKGs+iAxMIOOTqtm3MwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2ZkOTZlMTE5LTI3NjEtNDU3My1iZGFkLTBmNDY0MjI4ODk5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAJM78GGe+QbuFXtbTti9NNsJOrlX ZmUrvCkAyZ/3kMwE7vqsNbz6yDBhtHln55+cage3h1uOeBI5UGaIImy+vkJ8m1h2 X9SOa49+DBW8wZpaQK9RG3gaXfI0DF9VO49bnVAzu5gR1o+qal7gSLUnXPYCD4EY yRl65Fpk3Y+mIPXekRQ6+SKqRhjoRNjq0tKTQjswlXhcmB9YQQIIL1bjiz4T9n/x ZPPRgB9gwN3AGLMueLv/J7Ezhs/BlqWtg8ti8jiPiav9e0ISbncl3BhSHUe0tCqX 15XxTxfbgpKu1mpN1pRt0/HAQDESEYx4N+b0YuAnIrTdeN9pciMfxu95z5c= -----END CERTIFICATE-----Generated at Mon Mar 2 10:10:34 2026 by rpki-client