$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f243fe6-341e-47d0-b6c0-16d041ff88be.roa File: 2f243fe6-341e-47d0-b6c0-16d041ff88be.roa (raw, json) Hash identifier: cuvgBUjdXU8lzv+SCa2PWZILNWci/NNCSaOzVlVJ4Ow= Subject key identifier: 47:A6:B1:34:FC:49:A5:A4:ED:A5:C3:86:89:00:DF:19:DD:DA:AE:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CE2CEB3D4D07658AE0B88E139A316F3E8819170 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f243fe6-341e-47d0-b6c0-16d041ff88be.roa Signing time: Sun 17 May 2026 01:00:05 +0000 ROA not before: Sun 17 May 2026 01:00:05 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e2:ce:b3:d4:d0:76:58:ae:0b:88:e1:39:a3:16:f3:e8:81:91:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 01:00:05 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=02538d18f09a2ba0cac3f6811b3e78344f150f57109868679170f11e385c8405, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fd:8e:2a:2f:29:05:85:ae:a8:4c:ba:99:f4: c6:8a:27:80:f8:38:1b:a7:9e:fc:62:7c:54:34:c4: fe:34:15:e1:e5:bb:ca:87:95:f0:9e:f7:24:62:3d: 11:15:6c:35:48:2f:bc:c0:ef:88:8e:15:1e:70:e7: bb:12:88:e8:2d:58:bf:bf:df:9c:86:11:1a:18:4f: 73:54:f9:87:3e:4b:ac:d7:cd:be:ea:e6:15:10:dd: 96:74:61:5f:0a:62:e5:9b:3d:39:cf:39:b2:56:dd: 2e:d4:87:7e:d6:f3:c5:a4:4d:c0:c0:ab:a1:79:f4: 92:b7:39:c5:5d:a9:80:0d:2e:c6:b7:fb:d4:01:9f: 1a:52:d8:e7:3b:df:6b:eb:33:4b:62:74:b2:c1:9e: b7:c4:04:3c:47:01:8a:54:f3:6d:7c:26:f9:ca:53: d2:c6:d8:c4:4f:44:39:c5:bd:dd:da:a0:7d:bd:a1: 7b:72:3e:01:51:fa:e0:3e:1b:b7:d8:4d:7d:0b:2d: 0e:de:35:0c:8a:91:c0:36:1a:e5:da:bf:0d:2f:e8: 59:b1:7e:00:62:82:ee:2c:ae:61:e0:6e:49:65:3c: 11:26:6c:1d:ad:7c:ac:81:71:ff:e5:72:19:39:28: 8c:01:ee:43:90:ef:60:3a:a0:31:f7:4c:2e:e9:4f: 82:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A6:B1:34:FC:49:A5:A4:ED:A5:C3:86:89:00:DF:19:DD:DA:AE:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f243fe6-341e-47d0-b6c0-16d041ff88be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.163.0/24 Signature Algorithm: sha256WithRSAEncryption b4:d9:bb:47:6f:f0:b9:ee:cb:ae:ce:3c:0a:c0:b1:e8:9b:cb: ee:6f:56:90:28:2b:68:6c:b3:19:53:56:fe:88:64:59:e4:f1: dd:80:ba:45:7e:39:b7:ac:31:15:49:f9:4b:5b:d9:bf:7e:d9: fe:be:93:2f:d9:fb:0b:47:c4:f5:ac:f1:72:21:6e:34:27:f8: 9f:b1:b5:33:3b:c2:f1:73:6c:af:74:08:13:02:49:41:ec:c9: 3b:9c:06:a4:03:62:b3:d9:94:00:82:b7:cc:98:be:90:83:46: 7b:2f:a9:f3:59:3c:78:5f:de:9b:58:48:ad:15:f1:58:51:41: 0f:94:37:ba:12:89:9e:6b:57:91:9e:bf:95:02:f0:0b:c8:9a: 6d:e7:7e:8d:5a:f1:40:65:bf:ec:63:bf:0a:9f:db:03:90:40: 7f:3b:b8:06:13:d6:c2:84:73:ba:f4:cd:4e:a7:c5:8d:11:a9: 2c:71:09:b1:44:fe:fe:3d:c8:7b:e7:11:a6:d1:9d:c3:74:ec: fe:62:d5:4b:ba:cb:bd:b8:3a:c7:a0:ad:bd:9b:d2:31:ba:d1: 06:f1:22:cf:f4:7e:28:77:11:23:d7:9d:ea:85:0d:48:30:d5: 91:41:fa:d1:6b:77:54:8d:10:aa:a6:70:f2:b1:4c:f1:da:78: 0d:3b:eb:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPOLOs9TQdliuC4jhOaMW8+iBkXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDEwMDA1WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjUzOGQxOGYwOWEyYmEwY2FjM2Y2ODExYjNlNzgzNDRm MTUwZjU3MTA5ODY4Njc5MTcwZjExZTM4NWM4NDA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDj/Y4qLykFha6oTLqZ9MaKJ4D4OBunnvxifFQ0xP40FeHl u8qHlfCe9yRiPREVbDVIL7zA74iOFR5w57sSiOgtWL+/35yGERoYT3NU+Yc+S6zX zb7q5hUQ3ZZ0YV8KYuWbPTnPObJW3S7Uh37W88WkTcDAq6F59JK3OcVdqYANLsa3 +9QBnxpS2Oc732vrM0tidLLBnrfEBDxHAYpU8218JvnKU9LG2MRPRDnFvd3aoH29 oXtyPgFR+uA+G7fYTX0LLQ7eNQyKkcA2GuXavw0v6FmxfgBigu4srmHgbkllPBEm bB2tfKyBcf/lchk5KIwB7kOQ72A6oDH3TC7pT4J3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR6axNPxJpaTtpcOGiQDfGd3arigwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmMjQzZmU2LTM0MWUtNDdkMC1iNmMwLTE2ZDA0MWZmODhiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFAKMwDQYJKoZIhvcNAQELBQADggEBALTZu0dv8Lnuy67OPArAseiby+5v VpAoK2hssxlTVv6IZFnk8d2AukV+ObesMRVJ+Utb2b9+2f6+ky/Z+wtHxPWs8XIh bjQn+J+xtTM7wvFzbK90CBMCSUHsyTucBqQDYrPZlACCt8yYvpCDRnsvqfNZPHhf 3ptYSK0V8VhRQQ+UN7oSiZ5rV5Gev5UC8AvImm3nfo1a8UBlv+xjvwqf2wOQQH87 uAYT1sKEc7r0zU6nxY0RqSxxCbFE/v49yHvnEabRncN07P5i1Uu6y724Osegrb2b 0jG60QbxIs/0fih3ESPXneqFDUgw1ZFB+tFrd1SNEKqmcPKxTPHaeA076+g= -----END CERTIFICATE-----Generated at Sat Jun 13 14:14:34 2026 by rpki-client