$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa File: 2f9e8f4f-538b-40a7-8959-829f09f79955.roa (raw, json) Hash identifier: 6Xau9UeyBmU9UyVnK/r8pOlDRAZgrntHiy7qhYZDkCg= Subject key identifier: B1:48:BE:3A:CA:4D:F7:8B:39:78:7C:06:99:C1:5B:3B:32:DE:FB:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 186AC563A454B32A836BBD349DC2E93085826F5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa Signing time: Fri 15 May 2026 01:40:09 +0000 ROA not before: Fri 15 May 2026 01:40:09 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.52.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:6a:c5:63:a4:54:b3:2a:83:6b:bd:34:9d:c2:e9:30:85:82:6f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:40:09 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=399a92641e6f437aa6b56a3fdbe33fb3f610c949e60dda45b564b953be257fce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:97:36:51:9c:3f:c0:86:aa:12:9a:71:99:1f: b4:3b:4d:0c:1b:c7:da:a5:44:f0:7d:dd:63:21:1b: 6b:f6:d6:0a:d3:5e:21:ce:de:49:75:ba:a1:74:c5: 7d:5f:23:08:4f:5b:46:15:dd:e1:d8:a7:60:79:c3: ad:ca:c7:e3:90:5d:69:91:ae:bd:31:c3:cf:0e:17: df:c9:51:02:e9:a5:93:b3:1c:07:28:20:80:de:4b: 7a:a1:6d:da:8e:88:a0:23:e1:bf:f0:ed:a5:c7:b7: 9c:df:3a:97:1a:59:9d:6e:41:57:6c:8f:05:cc:b6: 28:92:ca:4b:10:90:4b:98:c5:8f:17:31:27:25:cf: e9:9b:22:29:57:ee:d2:86:96:66:bd:8f:02:27:ff: 20:a6:26:96:b1:0b:fe:cb:38:65:db:58:e8:7d:f4: 5c:a8:a7:57:cf:1a:c7:3c:94:18:81:fa:f8:4a:9b: 68:f7:aa:0a:af:eb:9f:a3:ca:f3:b2:af:26:0c:76: 28:ab:89:6a:3b:30:b4:2d:33:84:38:48:c3:92:2d: 94:db:90:c4:67:16:99:d1:43:d0:07:51:78:46:ae: 58:f0:d2:3b:09:1c:27:1f:51:b0:8a:3b:0e:9e:05: b7:a4:49:c9:f5:54:51:a2:c8:6e:e1:10:cc:c5:be: 73:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:48:BE:3A:CA:4D:F7:8B:39:78:7C:06:99:C1:5B:3B:32:DE:FB:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9b:ce:dc:d0:c5:aa:60:c3:05:96:bc:f8:23:f4:42:bf:c2:18: 12:b2:4a:86:dd:29:bf:3b:7f:98:4c:fa:95:ec:35:23:84:e9: 7c:55:36:29:30:16:7a:68:bd:b5:7a:1d:30:f6:f4:41:a4:90: 5c:a3:40:d9:a7:4e:29:7f:29:af:ef:ef:78:eb:20:2e:6f:f3: fa:a3:8e:4c:11:10:79:c3:e1:60:45:18:87:40:21:9f:30:e5: 87:24:9b:b4:14:93:53:3b:f1:0e:57:07:0f:3e:53:2f:34:d1: af:a2:2a:57:43:37:eb:82:17:96:7c:e9:4a:55:56:70:5f:2f: 23:19:ea:e2:74:f1:0f:c9:d6:4c:d2:8a:4e:9a:4d:9b:ae:fe: c7:b2:f6:03:82:fa:d4:c4:a0:b6:93:27:f4:58:cb:75:18:e8: b2:a1:49:76:a9:4b:af:f8:77:70:e6:f2:f9:19:15:fc:a2:dc: ca:d1:55:b9:88:58:6c:b2:55:94:97:61:3b:72:18:a9:39:2c: b7:be:e1:98:c2:5c:1e:6e:14:67:21:76:06:4a:ce:e9:12:0e: 9a:e1:67:0f:1a:31:a4:40:f9:f6:9d:57:c1:54:90:20:15:69: 3f:d7:a4:09:7d:a4:ff:14:9e:5a:b7:b6:fb:65:5a:49:f3:79: 7b:69:50:87 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGGrFY6RUsyqDa700ncLpMIWCb1swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDE0MDA5WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTlhOTI2NDFlNmY0MzdhYTZiNTZhM2ZkYmUzM2ZiM2Y2 MTBjOTQ5ZTYwZGRhNDViNTY0Yjk1M2JlMjU3ZmNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCclzZRnD/AhqoSmnGZH7Q7TQwbx9qlRPB93WMhG2v21grT XiHO3kl1uqF0xX1fIwhPW0YV3eHYp2B5w63Kx+OQXWmRrr0xw88OF9/JUQLppZOz HAcoIIDeS3qhbdqOiKAj4b/w7aXHt5zfOpcaWZ1uQVdsjwXMtiiSyksQkEuYxY8X MSclz+mbIilX7tKGlma9jwIn/yCmJpaxC/7LOGXbWOh99Fyop1fPGsc8lBiB+vhK m2j3qgqv65+jyvOyryYMdiiriWo7MLQtM4Q4SMOSLZTbkMRnFpnRQ9AHUXhGrljw 0jsJHCcfUbCKOw6eBbekScn1VFGiyG7hEMzFvnO5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsUi+OspN94s5eHwGmcFbOzLe+xEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmOWU4ZjRmLTUzOGItNDBhNy04OTU5LTgyOWYwOWY3OTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQNDANBgkqhkiG9w0BAQsFAAOCAQEAm87c0MWqYMMFlrz4I/RCv8IYErJK ht0pvzt/mEz6lew1I4TpfFU2KTAWemi9tXodMPb0QaSQXKNA2adOKX8pr+/veOsg Lm/z+qOOTBEQecPhYEUYh0AhnzDlhySbtBSTUzvxDlcHDz5TLzTRr6IqV0M364IX lnzpSlVWcF8vIxnq4nTxD8nWTNKKTppNm67+x7L2A4L61MSgtpMn9FjLdRjosqFJ dqlLr/h3cOby+RkV/KLcytFVuYhYbLJVlJdhO3IYqTkst77hmMJcHm4UZyF2BkrO 6RIOmuFnDxoxpED59p1XwVSQIBVpP9ekCX2k/xSeWre2+2VaSfN5e2lQhw== -----END CERTIFICATE-----Generated at Sat Jun 13 14:14:17 2026 by rpki-client