$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af3b57d7-2fe8-4e04-ad99-1366c252299d.roa File: af3b57d7-2fe8-4e04-ad99-1366c252299d.roa (raw, json) Hash identifier: NbbWYJc148s4T3cdJcni7g4Bx3nHJkopiNutkxITpRk= Subject key identifier: 8C:0A:7D:DC:BF:86:74:E5:0F:5B:60:DD:81:0D:59:4A:C6:2F:47:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B846A039FA53260DA462833B32B6DA5D2E2CACE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af3b57d7-2fe8-4e04-ad99-1366c252299d.roa Signing time: Sat 16 May 2026 01:10:52 +0000 ROA not before: Sat 16 May 2026 01:10:52 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:84:6a:03:9f:a5:32:60:da:46:28:33:b3:2b:6d:a5:d2:e2:ca:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:10:52 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=67f89d8a357e9603324939814a40b8715281c45902e66d63d0d245975ce210d5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a2:6b:b5:97:7e:6e:93:41:57:76:fb:e8:00: ea:8c:95:02:9f:60:98:5a:7c:62:b7:8a:e8:01:d3: 32:0e:3d:57:8b:c5:77:9b:9e:58:de:02:3c:d0:1b: 10:c0:47:59:e9:99:18:bd:d2:b1:89:77:b9:c7:b4: 24:bb:f5:72:7c:f3:58:b4:41:ca:65:c0:ea:55:c4: 82:40:22:9a:48:91:02:f9:79:12:2e:68:2e:59:76: 8b:d6:ab:bc:97:28:ca:7a:ec:4a:94:15:45:07:5e: 17:55:bd:fd:0c:ba:50:2a:07:be:76:e3:d5:3a:bc: 72:b8:d4:8d:d7:82:51:4a:f3:57:c4:47:0c:41:25: 09:24:1c:40:e9:89:5f:a2:83:f7:2c:a3:78:48:a1: d1:d3:16:e3:a1:4a:5a:24:17:dc:80:a2:92:72:3d: 0d:e0:9c:7c:a1:af:87:41:23:43:73:32:b3:e9:34: 10:69:81:17:f5:62:c0:86:91:b6:0f:8f:cc:e8:77: 1f:73:c3:18:01:32:91:39:40:60:41:01:4f:70:7f: a7:82:b2:33:ee:07:e8:2a:c0:b1:57:02:f5:44:70: 49:10:3f:3c:36:69:5b:2b:c0:36:ce:4e:0b:3b:71: c6:fc:81:01:e5:6a:2f:e4:be:24:02:10:d5:b2:9c: c4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0A:7D:DC:BF:86:74:E5:0F:5B:60:DD:81:0D:59:4A:C6:2F:47:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af3b57d7-2fe8-4e04-ad99-1366c252299d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.204.0/22 Signature Algorithm: sha256WithRSAEncryption cf:d7:e9:85:6c:af:09:3e:b1:e5:fe:7d:84:b1:fd:54:79:b6: a3:57:b4:b6:51:e4:65:aa:23:80:86:74:6f:56:8d:a4:e9:88: aa:b2:2a:6c:44:25:6b:9a:cc:59:fa:f3:f8:6f:7b:8d:94:0f: 77:1b:c1:91:8d:e2:7c:21:66:bc:20:93:b5:53:a7:82:cb:0f: f9:24:6f:8a:5b:ec:0a:3b:19:1b:a5:d5:df:3b:6a:a6:b8:eb: 8b:88:63:cc:77:09:5e:91:a5:07:9e:8c:f8:3b:20:34:b7:75: 48:02:66:23:7b:f8:59:36:0e:1a:26:ce:74:3b:f6:63:1b:62: f2:34:09:10:9d:d6:77:5d:60:93:3b:25:55:26:30:40:82:b1: ac:ec:9d:f7:04:13:f7:df:a3:ba:b3:91:39:94:e3:45:ab:6f: ab:9e:74:a5:38:9d:d8:3e:f6:0a:73:2c:26:c7:e3:68:d6:f8: 8d:a3:0b:59:4d:69:12:cf:4f:b7:5d:3a:da:68:11:51:95:c5: 28:4c:85:ed:3a:b9:4c:7d:f3:84:c0:5a:a1:f3:af:06:2a:4d: 34:0d:5a:e8:12:df:4c:d8:40:44:f5:a5:12:6e:a2:f2:ff:f0: 05:b3:f1:c4:e0:9d:e7:08:4c:81:79:ad:45:58:d2:79:35:d1: 76:6b:a7:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa4RqA5+lMmDaRigzsyttpdLiys4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDExMDUyWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2Y4OWQ4YTM1N2U5NjAzMzI0OTM5ODE0YTQwYjg3MTUy ODFjNDU5MDJlNjZkNjNkMGQyNDU5NzVjZTIxMGQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAomu1l35uk0FXdvvoAOqMlQKfYJhafGK3iugB0zIOPVeL xXebnljeAjzQGxDAR1npmRi90rGJd7nHtCS79XJ881i0QcplwOpVxIJAIppIkQL5 eRIuaC5ZdovWq7yXKMp67EqUFUUHXhdVvf0MulAqB75249U6vHK41I3XglFK81fE RwxBJQkkHEDpiV+ig/cso3hIodHTFuOhSlokF9yAopJyPQ3gnHyhr4dBI0NzMrPp NBBpgRf1YsCGkbYPj8zodx9zwxgBMpE5QGBBAU9wf6eCsjPuB+gqwLFXAvVEcEkQ Pzw2aVsrwDbOTgs7ccb8gQHlai/kviQCENWynMQbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjAp93L+GdOUPW2DdgQ1ZSsYvRyIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmM2I1N2Q3LTJmZTgtNGUwNC1hZDk5LTEzNjZjMjUyMjk5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ7yMwwDQYJKoZIhvcNAQELBQADggEBAM/X6YVsrwk+seX+fYSx/VR5tqNX tLZR5GWqI4CGdG9WjaTpiKqyKmxEJWuazFn68/hve42UD3cbwZGN4nwhZrwgk7VT p4LLD/kkb4pb7Ao7GRul1d87aqa464uIY8x3CV6RpQeejPg7IDS3dUgCZiN7+Fk2 DhomznQ79mMbYvI0CRCd1nddYJM7JVUmMECCsazsnfcEE/ffo7qzkTmU40Wrb6ue dKU4ndg+9gpzLCbH42jW+I2jC1lNaRLPT7ddOtpoEVGVxShMhe06uUx984TAWqHz rwYqTTQNWugS30zYQET1pRJuovL/8AWz8cTgnecITIF5rUVY0nk10XZrp6w= -----END CERTIFICATE-----Generated at Sat Jun 13 08:17:28 2026 by rpki-client