$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa File: 554f8288-8564-4a8f-a0ee-ed5fa324e824.roa (raw, json) Hash identifier: aKyYtQk0D0/xA97CdYpa4vi/Wl4igyaqnUFHYGYGxcE= Subject key identifier: F6:E8:58:EE:86:AB:87:D6:31:4F:A9:9D:70:E7:A3:92:E9:7E:64:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F98713495CBDE50D1CA41B9F5556D94F28C3E35 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa Signing time: Wed 25 Feb 2026 00:21:23 +0000 ROA not before: Wed 25 Feb 2026 00:21:23 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:98:71:34:95:cb:de:50:d1:ca:41:b9:f5:55:6d:94:f2:8c:3e:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:21:23 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=aaec2a0b3024d7adffc50950a380f949efe70296b1caf8d8e4779a97746a69a6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8d:fa:9b:8f:34:be:52:68:8e:8f:02:7a:57: 73:2b:dc:b7:48:25:a9:57:97:87:18:74:39:1b:bf: 6c:e6:d3:2b:2c:60:b5:4f:59:7e:9e:63:f2:21:fa: bb:f9:62:4d:99:53:e1:d2:f4:69:5f:ff:1f:08:aa: 4d:9e:b9:e9:d9:0f:df:50:75:f0:1b:0c:70:40:d5: 9d:ac:4c:a6:8e:3d:73:f5:61:9e:d4:c8:72:18:9f: 1b:2f:dd:30:87:38:cb:59:ea:f3:0e:7a:49:42:09: 5a:ab:59:0f:d5:14:a2:ff:93:ea:a6:a2:21:dd:c7: 0a:70:b1:60:17:18:59:10:da:0a:8a:6a:b0:4e:25: 2a:fc:df:47:e6:36:c3:66:e8:07:f4:be:cd:f0:94: d3:db:36:52:10:b1:8e:0c:a2:fe:6f:94:3a:1a:6c: 6d:cb:9d:ad:88:9c:ba:89:38:9f:a4:f1:3f:60:57: 0c:86:60:33:1d:1e:d4:0d:bc:1d:78:6b:23:77:0b: 36:b8:d5:0f:7b:04:3b:df:dc:c5:75:cc:69:6e:42: 51:b8:d3:32:67:76:bf:27:5d:b9:ff:6d:e7:a3:5c: 2a:6e:34:cf:9a:90:49:e7:5e:7c:91:74:0b:3b:12: ab:cc:4b:95:0a:a4:4b:36:ff:7b:72:eb:c2:76:07: 8c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:E8:58:EE:86:AB:87:D6:31:4F:A9:9D:70:E7:A3:92:E9:7E:64:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.202.0/23 Signature Algorithm: sha256WithRSAEncryption 16:52:8e:30:77:ae:a3:1e:14:0b:fb:ac:6d:90:01:65:51:de: f3:8e:32:98:94:78:00:d6:c4:7f:a1:d1:fa:e0:f5:07:5f:86: 22:bc:f8:82:69:87:f5:b3:92:1c:7c:cd:32:34:95:d5:1a:f8: bf:84:8c:d2:87:ed:1f:6b:35:ae:59:77:04:35:3d:c1:9b:4a: 3f:5c:2d:3a:e3:98:94:b1:97:1c:20:e5:12:92:6d:19:6a:c9: c5:68:ca:47:9c:f6:50:84:ed:3e:3d:fe:1b:25:f9:4f:66:01: 1e:ac:c3:40:a5:97:8d:a3:ef:ba:50:d3:b5:4a:c3:1d:1c:48: 79:f9:aa:c2:a5:65:f4:01:fe:d1:b6:b4:15:36:e7:1d:be:c7: 43:58:2e:25:71:37:60:84:97:d8:8f:57:5c:2e:f0:00:de:2f: 52:5f:12:25:33:5f:64:d0:d0:7d:29:95:60:cd:11:65:eb:dd: ab:12:6e:a8:d4:89:cc:3e:f0:e0:13:c3:01:c3:0a:02:3d:a4: e6:a6:47:5b:59:d5:ea:85:1a:65:76:ab:fc:90:7a:6e:73:7f: 3a:83:0d:a9:7e:d3:d9:be:8b:f2:38:c2:cc:25:d7:4a:df:b6: e3:a7:f1:26:7e:5d:4a:4f:ff:b1:3d:97:78:b1:19:7c:ec:cf: dc:49:be:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf5hxNJXL3lDRykG59VVtlPKMPjUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAyMTIzWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWVjMmEwYjMwMjRkN2FkZmZjNTA5NTBhMzgwZjk0OWVm ZTcwMjk2YjFjYWY4ZDhlNDc3OWE5Nzc0NmE2OWE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMjfqbjzS+UmiOjwJ6V3Mr3LdIJalXl4cYdDkbv2zm0yss YLVPWX6eY/Ih+rv5Yk2ZU+HS9Glf/x8Iqk2euenZD99QdfAbDHBA1Z2sTKaOPXP1 YZ7UyHIYnxsv3TCHOMtZ6vMOeklCCVqrWQ/VFKL/k+qmoiHdxwpwsWAXGFkQ2gqK arBOJSr830fmNsNm6Af0vs3wlNPbNlIQsY4Mov5vlDoabG3Lna2InLqJOJ+k8T9g VwyGYDMdHtQNvB14ayN3Cza41Q97BDvf3MV1zGluQlG40zJndr8nXbn/beejXCpu NM+akEnnXnyRdAs7EqvMS5UKpEs2/3ty68J2B4yLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9uhY7oarh9YxT6mdcOejkul+ZAAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1NGY4Mjg4LTg1NjQtNGE4Zi1hMGVlLWVkNWZhMzI0ZTgyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAF7yMowDQYJKoZIhvcNAQELBQADggEBABZSjjB3rqMeFAv7rG2QAWVR3vOO MpiUeADWxH+h0frg9QdfhiK8+IJph/Wzkhx8zTI0ldUa+L+EjNKH7R9rNa5ZdwQ1 PcGbSj9cLTrjmJSxlxwg5RKSbRlqycVoykec9lCE7T49/hsl+U9mAR6sw0Cll42j 77pQ07VKwx0cSHn5qsKlZfQB/tG2tBU25x2+x0NYLiVxN2CEl9iPV1wu8ADeL1Jf EiUzX2TQ0H0plWDNEWXr3asSbqjUicw+8OATwwHDCgI9pOamR1tZ1eqFGmV2q/yQ em5zfzqDDal+09m+i/I4wswl10rftuOn8SZ+XUpP/7E9l3ixGXzsz9xJviQ= -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:45 2026 by rpki-client