$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af3b57d7-2fe8-4e04-ad99-1366c252299d.roa File: af3b57d7-2fe8-4e04-ad99-1366c252299d.roa (raw, json) Hash identifier: G4h3lxpJOzHWoW8v0XeoWf6nf4uLF/XwgUYzS5J3aFk= Subject key identifier: 39:3D:6A:2D:17:C6:82:B2:43:A6:2F:41:21:A3:03:61:71:7C:AA:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 534C4C95BBA859006A49AEC5BA7BFFDEA301A26F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af3b57d7-2fe8-4e04-ad99-1366c252299d.roa Signing time: Wed 25 Feb 2026 01:20:50 +0000 ROA not before: Wed 25 Feb 2026 01:20:50 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:4c:4c:95:bb:a8:59:00:6a:49:ae:c5:ba:7b:ff:de:a3:01:a2:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:20:50 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=058442d76e5cbb637b7b94385c5d542a2fecb1d151946bb9c0678622218da123, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:8e:52:ee:6a:4f:2e:42:8a:64:98:bd:19:67: 68:09:ff:e5:4b:65:ba:5e:d6:a8:22:dd:46:19:07: 10:f6:b6:ad:81:c5:5f:63:c9:f0:0d:77:bf:dc:1a: a1:18:46:b4:9e:9a:e8:51:e5:95:ad:17:82:bd:37: 33:b1:68:ae:65:f0:6b:b7:69:78:d7:20:f8:e7:58: 01:39:24:2f:54:a5:3b:81:86:de:a1:c3:84:09:45: bf:aa:1a:15:ff:d4:8e:b9:dd:42:80:d6:a2:66:1c: d8:be:ee:0f:cc:35:aa:bb:cd:53:aa:41:dd:39:ca: eb:ac:6a:f5:88:76:33:24:f9:49:47:15:7e:11:e4: d6:8d:c8:4e:3a:eb:b0:d4:28:a4:d3:03:8f:c7:93: c6:75:cc:54:37:8c:f2:81:b9:24:41:71:5d:d3:07: 18:8c:8c:24:b3:75:4b:df:de:9c:fb:f1:fb:84:e3: 88:5e:ec:45:65:60:09:32:d7:d1:cf:81:b5:59:bf: 9e:e3:36:ee:bf:68:e5:81:41:a0:2f:70:48:d0:91: 83:f1:97:37:35:be:45:ed:d4:8a:c7:e7:cd:10:2a: 36:c9:93:90:45:3c:bb:62:7a:a5:f9:e6:e1:90:92: 9b:ce:be:e3:0a:64:6a:11:76:32:88:63:4f:59:aa: 7b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3D:6A:2D:17:C6:82:B2:43:A6:2F:41:21:A3:03:61:71:7C:AA:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af3b57d7-2fe8-4e04-ad99-1366c252299d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.204.0/22 Signature Algorithm: sha256WithRSAEncryption 69:42:b3:d4:44:c5:6a:f4:41:03:cc:f1:d2:11:3c:a8:62:fc: 52:0a:53:44:09:4a:95:2a:a2:5a:9a:77:c8:f5:f9:95:18:33: ba:ed:df:97:8c:1e:81:c7:5d:71:7d:89:fb:65:07:7b:ba:88: 49:23:c7:07:c3:89:29:65:7c:87:b9:02:7d:86:1c:38:ff:b9: 0b:77:60:6d:7d:28:09:dc:6d:bb:0e:6e:7e:db:78:55:0d:3a: f4:f7:08:4e:c8:1a:fc:7c:99:78:47:a9:9a:9b:2a:95:c6:f5: ad:94:a6:a0:aa:c7:c6:61:ae:32:15:ba:7b:ba:42:16:7f:fd: ae:fc:0b:0c:98:a6:c9:62:bd:0c:b7:6f:e1:a8:b7:63:dd:31: fd:9a:c0:c7:15:f0:75:e0:e5:9b:a8:0d:92:5b:0a:88:68:af: 4a:12:80:7c:06:25:c5:18:a4:b1:b9:ca:22:70:3e:9c:86:6d: 66:21:86:94:95:c5:5f:93:6e:4e:a3:e6:b3:d3:86:b1:50:ca: 1f:98:14:c0:07:83:0b:30:d1:e1:35:42:42:ca:f9:c7:dd:49: 8f:d9:b2:e1:20:24:62:15:e0:d8:a1:88:4f:78:f4:71:f6:01: e8:04:38:16:bd:3b:4a:1e:a8:0b:ee:10:c9:a8:ee:4d:ce:16: 00:16:d7:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU0xMlbuoWQBqSa7Funv/3qMBom8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEyMDUwWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNTg0NDJkNzZlNWNiYjYzN2I3Yjk0Mzg1YzVkNTQyYTJm ZWNiMWQxNTE5NDZiYjljMDY3ODYyMjIxOGRhMTIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1jlLuak8uQopkmL0ZZ2gJ/+VLZbpe1qgi3UYZBxD2tq2B xV9jyfANd7/cGqEYRrSemuhR5ZWtF4K9NzOxaK5l8Gu3aXjXIPjnWAE5JC9UpTuB ht6hw4QJRb+qGhX/1I653UKA1qJmHNi+7g/MNaq7zVOqQd05yuusavWIdjMk+UlH FX4R5NaNyE4667DUKKTTA4/Hk8Z1zFQ3jPKBuSRBcV3TBxiMjCSzdUvf3pz78fuE 44he7EVlYAky19HPgbVZv57jNu6/aOWBQaAvcEjQkYPxlzc1vkXt1IrH580QKjbJ k5BFPLtieqX55uGQkpvOvuMKZGoRdjKIY09ZqnsdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOT1qLRfGgrJDpi9BIaMDYXF8qiIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmM2I1N2Q3LTJmZTgtNGUwNC1hZDk5LTEzNjZjMjUyMjk5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ7yMwwDQYJKoZIhvcNAQELBQADggEBAGlCs9RExWr0QQPM8dIRPKhi/FIK U0QJSpUqolqad8j1+ZUYM7rt35eMHoHHXXF9iftlB3u6iEkjxwfDiSllfIe5An2G HDj/uQt3YG19KAncbbsObn7beFUNOvT3CE7IGvx8mXhHqZqbKpXG9a2UpqCqx8Zh rjIVunu6QhZ//a78CwyYpslivQy3b+Got2PdMf2awMcV8HXg5ZuoDZJbCohor0oS gHwGJcUYpLG5yiJwPpyGbWYhhpSVxV+Tbk6j5rPThrFQyh+YFMAHgwsw0eE1QkLK +cfdSY/ZsuEgJGIV4NihiE949HH2AegEOBa9O0oeqAvuEMmo7k3OFgAW124= -----END CERTIFICATE-----Generated at Mon Mar 2 03:07:10 2026 by rpki-client