$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa File: 554f8288-8564-4a8f-a0ee-ed5fa324e824.roa (raw, json) Hash identifier: a4Mue0gYxW5dhAi9pJbiV7BuvsYKNSXEwTIVsNP4rwI= Subject key identifier: A2:B7:41:CE:83:74:0A:DA:00:90:79:FE:93:BD:14:9E:A0:B4:C8:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10BB9A54742C488543C5A3ECDF391A3BC9D39BC5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa Signing time: Sat 16 May 2026 00:21:48 +0000 ROA not before: Sat 16 May 2026 00:21:48 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:bb:9a:54:74:2c:48:85:43:c5:a3:ec:df:39:1a:3b:c9:d3:9b:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:21:48 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=9a47bd34e93c49cc4fda7aba22e86d89cff7a361549bec8305548b44cd80bac9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6e:6a:0e:bf:c8:7c:c1:cc:ea:5f:59:9c:4d: 9e:20:98:32:69:2f:14:ab:9f:8e:06:2b:e1:1e:c9: bf:76:93:55:11:9c:e7:f6:1a:57:30:c7:13:80:44: e1:94:c6:4d:64:cb:6b:b2:1e:87:f1:3f:77:b9:c8: b7:ef:48:7a:f1:ac:ec:9c:66:f9:22:5d:ae:59:4c: bf:92:3c:73:a6:be:9b:71:c7:16:83:e4:b2:98:25: 15:dc:1d:ef:14:cb:12:6c:25:be:7c:23:02:88:3a: af:58:e4:b6:a6:fd:67:64:2c:52:85:76:81:e9:23: 67:d0:ed:4b:07:b4:1b:b6:45:8d:86:22:fa:f5:3b: e0:62:f1:72:a0:39:af:02:5d:88:aa:6f:41:d8:a3: 55:aa:b4:98:c2:03:4b:04:0a:4a:b1:f5:fe:31:06: 2d:aa:41:c2:a3:5e:9e:53:bb:44:d3:5f:5c:c8:d1: 54:a8:52:cd:eb:11:29:e3:99:b0:2f:f1:8d:f7:d7: 8f:fc:c9:c9:0a:b9:40:7d:9a:1f:02:2c:a7:0a:f2: ee:e4:2f:37:3f:4d:ca:26:2f:ee:89:85:e6:65:a9: 33:9d:9c:8b:0b:08:66:d0:f3:9c:07:1e:b6:bf:b7: fd:99:0e:d7:48:72:6c:61:43:e3:9b:14:f6:e4:13: 4d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B7:41:CE:83:74:0A:DA:00:90:79:FE:93:BD:14:9E:A0:B4:C8:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.202.0/23 Signature Algorithm: sha256WithRSAEncryption 68:15:67:0c:76:35:e8:73:d5:fb:ab:8f:89:29:cf:3b:c7:96: 74:c4:54:83:f5:96:b2:6d:d7:b5:de:a7:9a:05:27:91:98:83: ba:46:20:9d:46:c9:95:06:69:1b:a3:15:68:58:76:2e:fc:70: 2f:d5:6e:16:a0:82:23:49:09:c0:21:1c:84:cb:31:fe:9d:1e: 56:de:6c:5e:ce:7e:3b:ae:47:96:24:67:98:92:13:08:4b:ff: 6a:4c:0b:d4:ed:45:7a:e7:27:33:fd:2e:44:25:9a:4a:f2:4b: 67:25:fa:ae:0d:c5:76:c6:ca:b7:ef:1e:72:4b:de:1d:3f:cc: d9:78:9b:e9:82:c9:69:ad:1a:a1:b2:36:23:ab:7d:88:ae:2b: 11:4e:ee:74:d3:3f:9f:f0:4d:c6:e4:02:d4:50:ca:b9:48:92: 31:de:a3:12:d8:24:1a:85:56:29:08:8a:64:05:3f:60:3b:18: d7:1a:a6:3d:dc:04:ce:5d:7a:ad:2c:19:df:d1:b2:d3:01:75: 49:92:d2:ac:1b:6d:2f:d6:ae:7f:bf:d5:b0:8e:bd:f8:3c:90: db:e0:b5:b7:30:40:0b:e7:cb:31:53:65:68:03:1a:27:43:5c: cb:07:49:e4:70:89:e6:fb:4f:c8:bc:04:25:92:cc:0a:51:a0: b6:1c:50:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUELuaVHQsSIVDxaPs3zkaO8nTm8UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDAyMTQ4WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTQ3YmQzNGU5M2M0OWNjNGZkYTdhYmEyMmU4NmQ4OWNm ZjdhMzYxNTQ5YmVjODMwNTU0OGI0NGNkODBiYWM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIbmoOv8h8wczqX1mcTZ4gmDJpLxSrn44GK+Eeyb92k1UR nOf2GlcwxxOAROGUxk1ky2uyHofxP3e5yLfvSHrxrOycZvkiXa5ZTL+SPHOmvptx xxaD5LKYJRXcHe8UyxJsJb58IwKIOq9Y5Lam/WdkLFKFdoHpI2fQ7UsHtBu2RY2G Ivr1O+Bi8XKgOa8CXYiqb0HYo1WqtJjCA0sECkqx9f4xBi2qQcKjXp5Tu0TTX1zI 0VSoUs3rESnjmbAv8Y3314/8yckKuUB9mh8CLKcK8u7kLzc/TcomL+6JheZlqTOd nIsLCGbQ85wHHra/t/2ZDtdIcmxhQ+ObFPbkE01BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUordBzoN0CtoAkHn+k70UnqC0yMkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1NGY4Mjg4LTg1NjQtNGE4Zi1hMGVlLWVkNWZhMzI0ZTgyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAF7yMowDQYJKoZIhvcNAQELBQADggEBAGgVZwx2Nehz1furj4kpzzvHlnTE VIP1lrJt17Xep5oFJ5GYg7pGIJ1GyZUGaRujFWhYdi78cC/VbhaggiNJCcAhHITL Mf6dHlbebF7OfjuuR5YkZ5iSEwhL/2pMC9TtRXrnJzP9LkQlmkryS2cl+q4NxXbG yrfvHnJL3h0/zNl4m+mCyWmtGqGyNiOrfYiuKxFO7nTTP5/wTcbkAtRQyrlIkjHe oxLYJBqFVikIimQFP2A7GNcapj3cBM5deq0sGd/RstMBdUmS0qwbbS/Wrn+/1bCO vfg8kNvgtbcwQAvnyzFTZWgDGidDXMsHSeRwieb7T8i8BCWSzApRoLYcUGg= -----END CERTIFICATE-----Generated at Sat Jun 13 06:47:11 2026 by rpki-client