$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa File: bf9be969-de18-42a6-9d12-16fc8a45d0da.roa (raw, json) Hash identifier: 1pHGrtCS9DGlLZs4OaTPRTZv0voR4F4RvZy77JlaElE= Subject key identifier: E3:BA:2D:2A:D4:AB:61:4F:5E:AA:7A:49:9F:6B:E0:65:63:88:E1:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14CF330340F4EDA3A45C98BC15BC73F0D229B121 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa Signing time: Fri 15 May 2026 02:30:46 +0000 ROA not before: Fri 15 May 2026 02:30:46 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.26.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:cf:33:03:40:f4:ed:a3:a4:5c:98:bc:15:bc:73:f0:d2:29:b1:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 02:30:46 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=ecda858fc4b988bb68ad23b21fbae0f9a40d3d71b2e132ae0decc73ab520ed96, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fc:79:da:cb:c0:d6:81:c5:7a:a7:a2:07:2e: 45:80:d2:1b:75:21:96:ed:88:12:a1:cc:17:9f:30: 61:54:ee:8a:dc:dc:42:fc:20:db:ca:06:c5:c0:67: 38:1e:da:c2:67:a6:4f:0f:cd:f0:50:54:2a:00:b8: 67:83:62:53:54:49:89:25:bd:82:02:f1:e6:75:6c: 36:57:09:c5:29:e8:a0:6b:10:95:25:17:39:29:f8: aa:71:00:8f:12:6c:2f:19:45:8d:6b:83:3b:42:39: ac:1d:58:e2:03:d5:e5:ee:8b:17:45:2c:a8:21:71: c9:a5:ba:bd:92:9d:39:31:b5:6a:c7:00:99:8c:91: 7e:40:28:13:6f:ec:00:66:d5:22:6a:5a:8b:cb:1f: a0:59:9f:06:d9:fe:99:61:4b:b5:70:0b:ee:58:ec: 22:a8:39:39:4e:79:9e:ac:7f:c6:45:ed:d7:3c:9e: 72:01:73:4b:e0:eb:17:89:f8:b8:76:bb:8e:7d:4c: bc:da:4a:f7:f9:15:88:a3:87:7e:69:79:a8:c3:87: 7f:7a:7c:cf:c9:98:c3:fa:2c:bb:2b:70:c1:65:8a: 47:08:a6:53:82:88:f1:1f:31:3b:39:92:57:fa:0f: e3:aa:3d:0a:b8:01:a9:94:8f:87:b2:08:53:25:34: ac:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:BA:2D:2A:D4:AB:61:4F:5E:AA:7A:49:9F:6B:E0:65:63:88:E1:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.26.0.0/15 Signature Algorithm: sha256WithRSAEncryption 47:c3:9e:a2:d7:27:71:4f:b4:63:02:2a:7d:11:f1:98:74:2a: f4:4c:a8:ac:07:9b:6e:a1:fd:43:d0:f9:dd:6f:f7:ee:82:dd: 38:d1:b7:53:fc:9c:36:94:b8:78:a7:f1:79:b6:51:b4:18:ab: 47:6d:50:28:69:50:26:16:4a:ca:25:89:37:13:69:87:c6:67: 85:34:1d:7d:4f:34:a0:fa:66:85:71:83:6c:55:8b:12:04:88: a6:da:df:e6:95:b7:92:1e:61:9a:1c:ec:69:ad:da:1f:8e:a6: 4c:46:6d:55:fd:4e:4c:69:d6:97:9f:6e:c8:98:de:c7:3f:5b: 4b:20:26:45:ab:89:77:3d:2b:14:7c:fe:ab:db:d9:42:67:d0: e5:0f:7c:52:ca:93:c3:73:68:19:f1:b4:41:0a:04:c7:5d:10: 7f:e4:4f:51:7d:ec:bf:a2:b0:4f:f5:66:00:a5:84:b4:ec:10: 6b:80:7a:32:55:28:ea:4b:70:3c:e7:4b:48:47:6b:bb:22:66: 5a:1c:a1:4a:fd:d4:53:9c:1d:71:ab:08:c7:45:10:39:3a:3c: 9a:92:79:5b:08:6d:81:d0:12:77:fc:ec:bf:5f:90:3f:2d:86: 3c:cf:c9:8a:c6:17:71:01:b7:18:6f:23:d2:8e:bf:3b:8b:fd: 9a:8d:5d:92 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFM8zA0D07aOkXJi8Fbxz8NIpsSEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDIzMDQ2WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2RhODU4ZmM0Yjk4OGJiNjhhZDIzYjIxZmJhZTBmOWE0 MGQzZDcxYjJlMTMyYWUwZGVjYzczYWI1MjBlZDk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDe/Hnay8DWgcV6p6IHLkWA0ht1IZbtiBKhzBefMGFU7orc 3EL8INvKBsXAZzge2sJnpk8PzfBQVCoAuGeDYlNUSYklvYIC8eZ1bDZXCcUp6KBr EJUlFzkp+KpxAI8SbC8ZRY1rgztCOawdWOID1eXuixdFLKghccmlur2SnTkxtWrH AJmMkX5AKBNv7ABm1SJqWovLH6BZnwbZ/plhS7VwC+5Y7CKoOTlOeZ6sf8ZF7dc8 nnIBc0vg6xeJ+Lh2u459TLzaSvf5FYijh35peajDh396fM/JmMP6LLsrcMFlikcI plOCiPEfMTs5klf6D+OqPQq4AamUj4eyCFMlNKwjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU47otKtSrYU9eqnpJn2vgZWOI4YEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmOWJlOTY5LWRlMTgtNDJhNi05ZDEyLTE2ZmM4YTQ1ZDBkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQGjANBgkqhkiG9w0BAQsFAAOCAQEAR8OeotcncU+0YwIqfRHxmHQq9Eyo rAebbqH9Q9D53W/37oLdONG3U/ycNpS4eKfxebZRtBirR21QKGlQJhZKyiWJNxNp h8ZnhTQdfU80oPpmhXGDbFWLEgSIptrf5pW3kh5hmhzsaa3aH46mTEZtVf1OTGnW l59uyJjexz9bSyAmRauJdz0rFHz+q9vZQmfQ5Q98UsqTw3NoGfG0QQoEx10Qf+RP UX3sv6KwT/VmAKWEtOwQa4B6MlUo6ktwPOdLSEdruyJmWhyhSv3UU5wdcasIx0UQ OTo8mpJ5WwhtgdASd/zsv1+QPy2GPM/JisYXcQG3GG8j0o6/O4v9mo1dkg== -----END CERTIFICATE-----Generated at Wed Jun 17 11:19:27 2026 by rpki-client