$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf0db80d-89dd-40a9-aa65-8ce696ebcb8f.roa File: bf0db80d-89dd-40a9-aa65-8ce696ebcb8f.roa (raw, json) Hash identifier: ubA/jLLQkDPnBMmcj25+aUAknTkx4jCW56kTFRmzwog= Subject key identifier: 5D:D4:B6:91:C4:64:29:D2:F4:BB:36:31:8F:48:57:8A:E1:C4:ED:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CDE45759815C7CC803497F4A9F8FAF162B22F21 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf0db80d-89dd-40a9-aa65-8ce696ebcb8f.roa Signing time: Fri 15 May 2026 00:50:14 +0000 ROA not before: Fri 15 May 2026 00:50:14 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.184.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:de:45:75:98:15:c7:cc:80:34:97:f4:a9:f8:fa:f1:62:b2:2f:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:50:14 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=99ac882e25c8f257fb1867541da1442e16b4e5c867a58006ee97ee410c34147d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:68:04:58:ad:94:9d:a9:b8:9f:44:92:32:2c: a0:e3:3c:28:21:b3:83:f1:4f:27:09:9e:da:3a:be: 9e:3f:9b:30:c9:13:f3:10:93:85:ff:9c:51:0f:03: e1:9a:fa:32:33:14:7e:5c:ec:cd:bd:a8:2b:d3:f7: 11:15:74:7b:c4:e9:55:f4:37:3a:4b:69:9e:7a:51: a0:e7:33:47:bc:b1:b7:83:3c:6a:46:fd:e3:10:13: e1:a0:b0:0c:55:49:ca:b7:1b:4e:ba:4d:80:db:1a: b8:db:1c:3e:3f:16:ac:96:20:78:e3:61:ba:77:7d: 14:28:63:dc:90:54:19:25:e2:07:3d:9e:1d:54:d5: 51:46:c8:7f:38:c4:0e:24:26:3e:6c:04:cf:69:f1: c4:7c:5e:32:d9:82:1f:75:4b:9e:2f:ac:f3:9f:9d: c3:48:0e:e7:62:a4:65:b1:9e:8a:ba:b0:1b:34:99: ba:cd:d3:79:c7:ba:f6:f2:6f:fd:cf:a0:8c:b1:7b: 5b:6e:40:d5:76:ae:3e:88:dc:11:b8:b7:94:c6:51: 4b:28:a7:39:2a:89:4f:b1:3b:3d:12:e0:50:25:fd: 87:02:41:f2:c9:2b:5a:75:32:16:06:3e:c0:4a:62: 6e:0f:56:3a:1a:d1:20:d7:91:b1:a4:6d:6b:7e:a5: 1d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D4:B6:91:C4:64:29:D2:F4:BB:36:31:8F:48:57:8A:E1:C4:ED:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf0db80d-89dd-40a9-aa65-8ce696ebcb8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.184.64.0/18 Signature Algorithm: sha256WithRSAEncryption 32:c8:4d:6c:bf:1b:f1:ac:b4:48:fc:a5:04:01:25:8f:4a:c1: 56:0c:b2:e1:29:82:19:79:cb:ee:65:f1:61:3c:9e:8e:9b:f7: 81:aa:fe:36:35:be:2d:d5:a7:e6:73:1d:c4:0e:12:70:d8:2f: f2:75:d3:5c:10:01:13:cc:c3:0b:0c:09:a3:27:74:32:cd:69: 38:18:34:1d:50:0c:ac:f0:03:30:31:5c:06:34:53:eb:9b:3d: 76:85:4a:1b:c3:d2:9a:c2:ba:71:d4:98:89:05:3b:a8:b6:e6: 6b:0e:90:9c:da:42:3f:9a:33:b5:bf:88:11:02:d0:b5:ec:c1: c6:e3:e8:53:3e:6c:ac:01:18:c5:c7:80:38:f0:2a:c0:9e:ff: 6b:8f:83:92:7c:d8:3c:92:1b:9d:ee:82:3a:24:4a:9e:b6:a2: 10:7c:2a:08:e2:7e:5d:13:c9:b9:36:cf:4c:c0:6c:4c:24:37: ba:f2:5e:5a:fd:03:62:32:90:a5:c0:6b:61:f1:b7:a2:45:17: 49:49:fc:12:57:3e:f8:d2:fa:fd:57:f0:01:0e:b9:d6:49:0e: 18:c9:f7:db:b0:42:a3:5e:5b:c8:85:ad:d1:14:4a:27:90:41: 38:74:bb:aa:9b:96:47:7e:92:3d:6e:69:f0:3a:a7:4e:8b:85: a0:bb:1c:f6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfN5FdZgVx8yANJf0qfj68WKyLyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDA1MDE0WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWFjODgyZTI1YzhmMjU3ZmIxODY3NTQxZGExNDQyZTE2 YjRlNWM4NjdhNTgwMDZlZTk3ZWU0MTBjMzQxNDdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcaARYrZSdqbifRJIyLKDjPCghs4PxTycJnto6vp4/mzDJ E/MQk4X/nFEPA+Ga+jIzFH5c7M29qCvT9xEVdHvE6VX0NzpLaZ56UaDnM0e8sbeD PGpG/eMQE+GgsAxVScq3G066TYDbGrjbHD4/FqyWIHjjYbp3fRQoY9yQVBkl4gc9 nh1U1VFGyH84xA4kJj5sBM9p8cR8XjLZgh91S54vrPOfncNIDudipGWxnoq6sBs0 mbrN03nHuvbyb/3PoIyxe1tuQNV2rj6I3BG4t5TGUUsopzkqiU+xOz0S4FAl/YcC QfLJK1p1MhYGPsBKYm4PVjoa0SDXkbGkbWt+pR0VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXdS2kcRkKdL0uzYxj0hXiuHE7VQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmMGRiODBkLTg5ZGQtNDBhOS1hYTY1LThjZTY5NmViY2I4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQuEAwDQYJKoZIhvcNAQELBQADggEBADLITWy/G/GstEj8pQQBJY9KwVYM suEpghl5y+5l8WE8no6b94Gq/jY1vi3Vp+ZzHcQOEnDYL/J101wQARPMwwsMCaMn dDLNaTgYNB1QDKzwAzAxXAY0U+ubPXaFShvD0prCunHUmIkFO6i25msOkJzaQj+a M7W/iBEC0LXswcbj6FM+bKwBGMXHgDjwKsCe/2uPg5J82DySG53ugjokSp62ohB8 Kgjifl0Tybk2z0zAbEwkN7ryXlr9A2IykKXAa2Hxt6JFF0lJ/BJXPvjS+v1X8AEO udZJDhjJ99uwQqNeW8iFrdEUSieQQTh0u6qblkd+kj1uafA6p06LhaC7HPY= -----END CERTIFICATE-----Generated at Wed Jun 17 09:13:57 2026 by rpki-client