$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6cfdd7-e440-4f46-badb-238f56e1aab4.roa File: bc6cfdd7-e440-4f46-badb-238f56e1aab4.roa (raw, json) Hash identifier: WXar5ON6swiF8OypDOQMgjoozpC0EJTQdmdhYXMqsU0= Subject key identifier: 78:B8:A6:0E:57:13:97:0D:14:DC:97:EA:C6:EF:BF:55:7C:D3:CC:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13867FCB905A25EC840248900E265FAF2E278073 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6cfdd7-e440-4f46-badb-238f56e1aab4.roa Signing time: Tue 24 Feb 2026 02:20:07 +0000 ROA not before: Tue 24 Feb 2026 02:20:07 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:86:7f:cb:90:5a:25:ec:84:02:48:90:0e:26:5f:af:2e:27:80:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:20:07 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=4755921ca2b3684d8de48ab87cb2b6f623261543321050506cb75f44a386b381, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:17:18:49:41:7e:93:2f:4f:5f:71:8b:bb:be: 4d:10:41:bb:53:72:23:cd:ae:0c:d6:59:b7:98:0b: 92:8e:b8:dd:69:1e:bb:36:86:24:62:9e:da:ce:89: 8d:6d:43:da:b1:c0:6d:d1:24:d0:a0:26:89:8f:5b: cd:08:f7:88:15:61:20:bc:6d:7a:bb:57:10:98:04: c9:20:70:92:a2:b6:01:95:48:bc:e1:42:0d:32:d0: 7e:52:58:26:6f:44:31:68:91:c0:5c:aa:8e:4f:17: d8:29:4d:31:4d:74:1d:78:98:b1:ac:ab:64:de:48: 92:7a:f8:87:31:5f:f5:76:b1:ec:20:22:50:da:2c: f6:bc:83:27:28:41:14:5a:ae:e8:50:1d:e3:3e:ee: df:02:1c:e7:7a:81:89:5b:27:9c:d4:65:fd:c9:e1: f1:b3:cf:50:e7:e4:31:59:a0:0d:13:6b:0a:88:12: 22:89:5d:49:bd:c5:ab:e1:a5:63:78:88:52:19:3f: 41:72:e0:4b:e2:e6:39:db:33:1a:89:6e:ed:28:d9: 79:1b:16:58:f3:da:a0:c7:47:18:b5:2c:3b:e4:38: 0a:4c:ed:60:60:02:33:0b:97:97:37:c0:42:36:05: 3e:5e:b3:9c:ed:57:f7:be:13:f4:83:62:ef:66:52: 4e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B8:A6:0E:57:13:97:0D:14:DC:97:EA:C6:EF:BF:55:7C:D3:CC:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6cfdd7-e440-4f46-badb-238f56e1aab4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.224.0/21 Signature Algorithm: sha256WithRSAEncryption 02:cc:94:b6:fc:5d:fe:6b:0f:5e:b4:a9:57:21:7a:3a:26:ef: de:92:d3:89:28:10:a5:c9:02:3f:c1:e8:76:6d:ec:dc:ed:f5: 52:f4:79:3e:7a:98:f1:d3:97:9a:48:47:fb:8c:b5:3e:fe:45: fa:7b:c6:40:57:df:a6:6d:37:e6:97:51:ac:6a:d6:56:07:9b: db:5e:27:c3:82:9e:d5:53:b9:97:c4:ae:b4:3f:fd:55:7b:c3: a0:54:90:13:8b:da:aa:bf:68:4c:2b:46:65:a1:bb:b1:47:47: 9c:f7:dd:50:33:93:ce:b9:f1:2f:72:9f:56:05:8d:28:4f:a2: 7b:b3:5d:9b:06:98:d6:f6:34:c5:4a:20:60:15:63:04:f7:e0: b3:c5:67:da:37:67:05:97:59:c5:a6:7b:1c:a5:0d:f4:20:86: 57:22:a7:77:95:1b:0b:89:cf:20:9c:b2:fe:45:3c:5a:60:9a: cd:b9:e4:25:12:b5:89:d2:fd:49:45:75:34:20:87:17:8f:62: 8a:48:54:ef:4b:85:b9:64:6e:e4:91:d0:c8:6f:22:ee:8b:35: 9b:1a:d9:bc:af:57:2b:f2:bb:da:2e:e1:b3:da:cf:73:de:0a: e3:d7:40:03:0d:4d:8c:e5:57:d4:5f:93:8d:28:89:b7:85:d5: 4d:3c:41:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE4Z/y5BaJeyEAkiQDiZfry4ngHMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIyMDA3WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzU1OTIxY2EyYjM2ODRkOGRlNDhhYjg3Y2IyYjZmNjIz MjYxNTQzMzIxMDUwNTA2Y2I3NWY0NGEzODZiMzgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqFxhJQX6TL09fcYu7vk0QQbtTciPNrgzWWbeYC5KOuN1p Hrs2hiRintrOiY1tQ9qxwG3RJNCgJomPW80I94gVYSC8bXq7VxCYBMkgcJKitgGV SLzhQg0y0H5SWCZvRDFokcBcqo5PF9gpTTFNdB14mLGsq2TeSJJ6+IcxX/V2sewg IlDaLPa8gycoQRRaruhQHeM+7t8CHOd6gYlbJ5zUZf3J4fGzz1Dn5DFZoA0TawqI EiKJXUm9xavhpWN4iFIZP0Fy4Evi5jnbMxqJbu0o2XkbFljz2qDHRxi1LDvkOApM 7WBgAjMLl5c3wEI2BT5es5ztV/e+E/SDYu9mUk7bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeLimDlcTlw0U3Jfqxu+/VXzTzI0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjNmNmZGQ3LWU0NDAtNGY0Ni1iYWRiLTIzOGY1NmUxYWFiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN7yOAwDQYJKoZIhvcNAQELBQADggEBAALMlLb8Xf5rD160qVchejom796S 04koEKXJAj/B6HZt7Nzt9VL0eT56mPHTl5pIR/uMtT7+Rfp7xkBX36ZtN+aXUaxq 1lYHm9teJ8OCntVTuZfErrQ//VV7w6BUkBOL2qq/aEwrRmWhu7FHR5z33VAzk865 8S9yn1YFjShPonuzXZsGmNb2NMVKIGAVYwT34LPFZ9o3ZwWXWcWmexylDfQghlci p3eVGwuJzyCcsv5FPFpgms255CUStYnS/UlFdTQghxePYopIVO9LhblkbuSR0Mhv Iu6LNZsa2byvVyvyu9ou4bPaz3PeCuPXQAMNTYzlV9Rfk40oibeF1U08QdA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:09:20 2026 by rpki-client