$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa File: cc0cfc1a-62af-4984-9516-b068332cb387.roa (raw, json) Hash identifier: +o/i1/tqRUQKLehljj8GXZkXLKshU4GmvNaobdvnaKI= Subject key identifier: 2F:CA:2C:4F:B0:5B:7E:F6:FE:02:B4:EF:1E:96:3A:F9:E5:40:4D:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 120B44E6E3F49F5BE87DEF2E58523AFBCB308070 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa Signing time: Tue 05 May 2026 00:51:10 +0000 ROA not before: Tue 05 May 2026 00:51:10 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:0b:44:e6:e3:f4:9f:5b:e8:7d:ef:2e:58:52:3a:fb:cb:30:80:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:51:10 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=c1a57c6d54028354bc45955419b3eefa9d6081cf95ba8b4c922e5094684ce217, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a3:7f:c9:ee:52:52:b2:24:e9:ed:6a:a2:2f: 8b:cb:84:93:db:04:96:86:57:90:66:34:8f:58:75: 94:6f:5a:4e:f1:89:b5:f6:8b:07:76:43:7e:6c:4c: d9:58:fd:e4:4d:72:58:3d:6a:42:8c:5c:c2:28:5d: 49:61:fc:6b:a6:75:b9:a4:f8:ed:04:f7:f6:b6:2e: 96:70:19:ca:ee:f1:58:21:37:af:89:1c:4e:b8:61: 95:32:ea:b2:fd:f9:8e:06:47:af:fb:53:6c:3b:aa: f4:d8:ce:b9:58:e9:ec:22:6c:cd:50:6e:17:8c:ea: 40:f9:1c:ff:78:47:da:c7:8f:f4:ac:32:ae:21:fc: d7:2d:b5:1c:33:82:1f:55:95:c5:62:b1:e2:4b:a2: 59:9b:3c:72:96:1c:5f:f7:b2:c4:97:2d:b6:14:69: 9f:eb:9c:d9:65:cc:1d:03:2b:3d:97:de:5d:c6:b4: 03:f2:14:22:b6:f6:ce:0e:ff:ab:50:27:f5:76:a7: f7:d3:09:93:c0:e9:69:c0:4b:22:39:3d:6e:c6:9d: ab:1c:b5:4a:1e:47:de:71:12:fc:43:d3:0f:78:04: af:09:8b:a1:09:a6:84:50:e3:4e:ed:15:dd:be:93: f8:65:39:08:6e:95:24:e3:5c:79:54:37:ae:6b:3f: 75:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:CA:2C:4F:B0:5B:7E:F6:FE:02:B4:EF:1E:96:3A:F9:E5:40:4D:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption bc:5d:e1:fb:c8:d4:40:e4:c2:5f:85:26:e0:57:85:10:3e:3d: f6:73:3f:5d:c6:65:b4:c6:c3:15:bc:a6:5c:96:91:77:fd:ee: f3:91:bc:29:2e:a2:e7:8d:bc:9a:be:f9:0a:60:d2:48:3f:ae: d9:bd:91:b7:6f:2b:db:fb:46:43:17:1f:36:f8:cf:e6:92:15: 65:2a:d6:49:4d:3f:fb:8c:05:31:56:2c:26:62:0f:d3:d2:35: c4:12:ae:a1:72:92:76:8b:17:13:49:2c:c7:73:c9:a5:1c:2a: c4:71:bb:12:26:36:9c:a0:b2:de:bb:05:0a:60:05:ae:17:49: eb:69:e6:42:95:5d:e1:7f:09:09:46:2d:5f:9f:93:11:7e:e0: 87:9c:f6:1f:c6:4f:da:87:d5:b3:b7:e0:77:f3:0b:4b:02:d0: bc:92:a0:6c:22:ef:9d:2e:55:83:2e:f6:7a:94:7f:15:f9:29: be:95:6e:32:1a:7c:76:f5:1a:e0:53:85:8e:cc:27:b0:f9:9f: 8e:53:20:6d:39:28:c5:ce:74:c8:1e:43:d7:bf:5c:23:c9:a3: aa:57:59:42:ab:64:1a:a8:c4:18:1f:2f:4f:1a:a9:48:27:67: bc:5d:96:83:4f:37:73:c8:d6:60:ae:4c:a5:9c:4f:b6:60:be: 76:d4:5d:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEgtE5uP0n1vofe8uWFI6+8swgHAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA1MTEwWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWE1N2M2ZDU0MDI4MzU0YmM0NTk1NTQxOWIzZWVmYTlk NjA4MWNmOTViYThiNGM5MjJlNTA5NDY4NGNlMjE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUo3/J7lJSsiTp7WqiL4vLhJPbBJaGV5BmNI9YdZRvWk7x ibX2iwd2Q35sTNlY/eRNclg9akKMXMIoXUlh/Gumdbmk+O0E9/a2LpZwGcru8Vgh N6+JHE64YZUy6rL9+Y4GR6/7U2w7qvTYzrlY6ewibM1QbheM6kD5HP94R9rHj/Ss Mq4h/NcttRwzgh9VlcViseJLolmbPHKWHF/3ssSXLbYUaZ/rnNllzB0DKz2X3l3G tAPyFCK29s4O/6tQJ/V2p/fTCZPA6WnASyI5PW7GnasctUoeR95xEvxD0w94BK8J i6EJpoRQ407tFd2+k/hlOQhulSTjXHlUN65rP3W5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUL8osT7Bbfvb+ArTvHpY6+eVATVIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjMGNmYzFhLTYyYWYtNDk4NC05NTE2LWIwNjgzMzJjYjM4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4VjANBgkqhkiG9w0BAQsFAAOCAQEAvF3h+8jUQOTCX4Um4FeFED499nM/ XcZltMbDFbymXJaRd/3u85G8KS6i5428mr75CmDSSD+u2b2Rt28r2/tGQxcfNvjP 5pIVZSrWSU0/+4wFMVYsJmIP09I1xBKuoXKSdosXE0ksx3PJpRwqxHG7EiY2nKCy 3rsFCmAFrhdJ62nmQpVd4X8JCUYtX5+TEX7gh5z2H8ZP2ofVs7fgd/MLSwLQvJKg bCLvnS5Vgy72epR/FfkpvpVuMhp8dvUa4FOFjswnsPmfjlMgbTkoxc50yB5D179c I8mjqldZQqtkGqjEGB8vTxqpSCdnvF2Wg083c8jWYK5MpZxPtmC+dtRdKw== -----END CERTIFICATE-----Generated at Wed May 13 07:18:49 2026 by rpki-client