$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/bc4cfd70-d837-468a-aba7-af62540622e6.roa File: bc4cfd70-d837-468a-aba7-af62540622e6.roa (raw, json) Hash identifier: BVNjPCA5agAdWcbkPkM1s8UTMZUgq0qB8h6ioyy38Q8= Subject key identifier: EE:2F:6A:29:CC:E1:A1:CF:D0:B6:B9:91:D8:9B:BB:45:45:BC:DF:AB Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 51F9F53797C2D021D5F6D5DB0B4930E7D7C8FCCD Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/bc4cfd70-d837-468a-aba7-af62540622e6.roa Signing time: Thu 14 May 2026 19:47:11 +0000 ROA not before: Thu 14 May 2026 19:47:11 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:8380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:f9:f5:37:97:c2:d0:21:d5:f6:d5:db:0b:49:30:e7:d7:c8:fc:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: May 14 19:47:11 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=a844b1d0ed1999ff30ffe59b4755f01aa1a6448a85b045d4e0788a9e8c435f18, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:26:21:51:27:f6:e0:6e:16:1c:da:58:24:7e: c2:b7:51:3c:72:cb:fc:14:c6:62:c9:2e:db:4f:cf: 3f:e2:cb:1d:21:5f:bb:86:db:d8:31:e6:3a:ac:a8: 98:0e:1f:b6:c9:59:81:c9:d8:f8:42:d7:fb:29:3b: 72:db:6b:a5:70:3d:4a:9a:97:5c:51:69:6e:df:a2: db:fa:d0:97:cb:77:db:93:91:1c:da:83:89:ec:14: 39:66:6e:70:08:75:0c:30:09:7c:f7:e4:19:33:a4: 5e:bc:1f:fc:31:f8:3c:ec:3a:50:18:6f:d6:ab:92: 05:1b:71:28:f4:7e:2f:34:30:db:43:88:9d:c2:6f: f5:e7:65:a2:45:fc:a5:5e:e2:d3:7b:2e:50:d3:b9: 20:e2:80:55:ea:31:98:28:fe:58:f6:e8:48:f6:97: 42:ed:24:b4:a5:5a:45:fa:17:ca:8f:22:10:aa:51: 34:91:2e:ee:18:13:5d:11:f8:84:bf:2c:da:d7:84: b1:b0:55:7f:a9:3c:8e:14:52:e1:6c:c4:ff:b6:e5: 7d:ba:bb:50:74:40:d8:78:c8:e4:ff:6c:40:3b:4f: 83:1a:9d:59:70:27:45:b9:c1:e0:af:14:98:76:1c: 02:a5:18:43:0d:c2:ed:13:85:82:04:58:07:c1:7a: 09:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:2F:6A:29:CC:E1:A1:CF:D0:B6:B9:91:D8:9B:BB:45:45:BC:DF:AB X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/bc4cfd70-d837-468a-aba7-af62540622e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:8380::/32 Signature Algorithm: sha256WithRSAEncryption 9e:16:3b:1c:60:84:a2:fd:4f:a8:5f:17:ee:c2:f4:82:bb:87: de:36:41:a0:04:c6:23:1e:20:e0:a3:a1:92:51:89:44:bf:17: e5:8b:3d:74:4b:c0:a6:a1:7c:05:87:ab:04:71:84:2b:24:83: 24:92:25:f1:34:f1:50:f0:78:40:f9:4c:75:e4:2b:62:a1:d2: 78:c3:ae:5a:69:4a:83:0d:fb:60:f4:ae:ec:e4:61:2d:2b:e5: b0:10:7d:cc:a9:39:50:e7:86:89:41:84:76:7d:9c:78:23:a4: 91:ab:bd:11:42:b5:98:0b:f0:71:59:e6:7d:42:55:e8:55:9d: 8a:89:b4:f1:2a:f4:b4:5f:fa:2a:f0:f1:da:a6:6a:12:7e:50: a7:0b:2b:7a:c3:69:d3:98:7b:95:70:a1:3f:06:21:19:70:94: cb:40:ee:90:47:f3:00:5b:2c:33:26:3f:93:48:94:2a:d2:f5: b6:bf:cf:a5:9e:cf:83:93:d7:81:d7:a6:c6:09:c8:58:b8:d8: 2c:5b:c4:24:ff:ec:9b:6b:27:3b:0d:bc:4b:56:da:16:f8:fb: 36:53:fb:f1:68:6a:83:2b:05:bc:48:71:be:94:29:fd:2d:c4: 9c:dc:f2:21:08:88:b6:fb:32:36:34:e1:bb:d2:6e:42:d4:82: 69:37:03:10 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUUfn1N5fC0CHV9tXbC0kw59fI/M0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjYwNTE0MTk0NzExWhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhODQ0YjFkMGVkMTk5OWZmMzBmZmU1OWI0NzU1ZjAxYWEx YTY0NDhhODViMDQ1ZDRlMDc4OGE5ZThjNDM1ZjE4MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqJiFRJ/bgbhYc2lgkfsK3UTxyy/wUxmLJLttPzz/iyx0h X7uG29gx5jqsqJgOH7bJWYHJ2PhC1/spO3Lba6VwPUqal1xRaW7fotv60JfLd9uT kRzag4nsFDlmbnAIdQwwCXz35BkzpF68H/wx+DzsOlAYb9arkgUbcSj0fi80MNtD iJ3Cb/XnZaJF/KVe4tN7LlDTuSDigFXqMZgo/lj26Ej2l0LtJLSlWkX6F8qPIhCq UTSRLu4YE10R+IS/LNrXhLGwVX+pPI4UUuFsxP+25X26u1B0QNh4yOT/bEA7T4Ma nVlwJ0W5weCvFJh2HAKlGEMNwu0ThYIEWAfBegkXAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU7i9qKczhoc/QtrmR2Ju7RUW836swHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2JjNGNmZDcwLWQ4MzctNDY4YS1hYmE3LWFmNjI1NDA2MjJlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBYOAMA0GCSqGSIb3DQEBCwUAA4IBAQCeFjscYISi/U+oXxfuwvSCu4fe NkGgBMYjHiDgo6GSUYlEvxfliz10S8CmoXwFh6sEcYQrJIMkkiXxNPFQ8HhA+Ux1 5CtiodJ4w65aaUqDDftg9K7s5GEtK+WwEH3MqTlQ54aJQYR2fZx4I6SRq70RQrWY C/BxWeZ9QlXoVZ2KibTxKvS0X/oq8PHapmoSflCnCyt6w2nTmHuVcKE/BiEZcJTL QO6QR/MAWywzJj+TSJQq0vW2v8+lns+Dk9eB16bGCchYuNgsW8Qk/+ybayc7DbxL VtoW+Ps2U/vxaGqDKwW8SHG+lCn9LcSc3PIhCIi2+zI2NOG70m5C1IJpNwMQ -----END CERTIFICATE-----Generated at Fri May 22 16:04:29 2026 by rpki-client