$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa File: d95f8068-47af-46c4-a4b4-517faacf64b7.roa (raw, json) Hash identifier: 5XgFOxK1vnvWd/JEA3zFFsdXkT6YN0htiL1uy9PpejI= Subject key identifier: 35:7F:45:5E:D6:E4:7D:70:68:89:2D:1E:D2:8A:A8:A7:C1:8B:B7:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BD33106756FC79B9A6AC3D7F59106712337FD3C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa Signing time: Wed 25 Feb 2026 00:51:18 +0000 ROA not before: Wed 25 Feb 2026 00:51:18 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d3:31:06:75:6f:c7:9b:9a:6a:c3:d7:f5:91:06:71:23:37:fd:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:51:18 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=031d3e1da45892a9e99bcdd0f49e50b8cc7493030c7e6fdf0265a426f0e8fe28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:8d:ff:32:ac:a4:58:1d:72:e4:44:d0:2a:74: dc:bc:79:18:40:f5:91:05:50:03:b6:0c:ba:12:36: 7d:fc:1f:09:b8:c0:45:83:9f:35:d4:91:e4:d1:83: 5d:87:1d:9a:fb:1a:40:70:15:03:0c:da:70:1d:64: 93:e9:bd:d6:e4:db:b5:ed:38:88:ad:89:c2:52:ab: e1:ce:d3:0d:a7:59:01:25:69:3e:57:9e:7c:ef:80: 47:75:f8:42:fc:27:38:55:05:3a:7c:5b:a5:f8:95: 3c:fc:2b:49:fd:75:00:3f:37:64:be:ef:df:85:ef: 92:cc:f3:8c:89:64:27:17:0c:81:5c:0a:e8:66:4c: 44:0b:39:26:a4:5b:da:93:02:77:a1:4a:3d:3b:31: 7f:95:03:2f:10:98:24:c8:e7:70:5b:e8:b9:5d:49: 90:0c:74:a1:85:9f:a2:91:63:05:52:3b:2c:d8:96: e3:31:e7:71:66:fe:82:17:11:9c:f4:fe:c3:9f:c2: e4:da:05:c3:5d:b2:3b:0a:46:25:ac:8b:c3:f5:21: 5c:93:98:35:c7:10:50:00:d9:a4:af:75:ee:d7:47: 48:47:31:f4:88:f2:1a:e5:d0:a2:00:25:93:8d:fa: 30:c4:50:90:f3:af:3c:5a:e1:cb:9b:8a:98:25:0b: da:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7F:45:5E:D6:E4:7D:70:68:89:2D:1E:D2:8A:A8:A7:C1:8B:B7:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.244.0/22 Signature Algorithm: sha256WithRSAEncryption c9:6c:5a:8e:cf:a3:29:96:bd:e1:b0:9b:38:ce:b1:f6:db:4f: 73:25:3c:ff:51:78:bf:7d:f4:b5:94:50:62:ec:3c:35:5b:bf: f5:6e:8d:ac:2b:f7:71:ea:43:73:b2:ca:ee:02:cb:c0:f7:67: 54:88:8a:70:67:f8:9b:bf:65:33:60:e8:c4:ad:ac:6d:24:03: a2:1c:58:d4:dc:f8:77:7d:29:a9:fb:70:3c:43:38:29:f9:0a: d0:de:60:95:b7:6b:ce:f3:cd:01:ff:d3:0c:7c:36:cc:c9:09: 39:1d:6e:b6:81:c5:4e:4f:e0:be:ef:76:ab:84:1a:e1:7a:e2: 96:d1:de:0f:0d:fb:1b:f0:cc:93:46:21:fb:4d:9e:65:a5:2f: d7:76:52:36:11:b9:16:e3:64:03:07:f1:b5:8e:ee:be:7f:bd: 21:29:2a:00:ab:d3:01:88:3a:ba:24:ea:0f:9f:05:73:2e:96: 92:f3:08:78:af:c9:2d:bf:d9:0d:47:33:7c:b0:44:69:00:6a: 26:68:00:f1:70:75:ca:cc:cd:5e:1c:b6:08:b0:e5:22:89:e1: 88:b0:ad:9a:00:24:55:a7:93:75:31:e8:8a:f6:44:99:49:df: 4a:05:d6:4a:4a:0f:62:8e:9e:d9:16:7a:92:b4:c2:09:2e:59: 14:3a:10:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa9MxBnVvx5uaasPX9ZEGcSM3/TwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDA1MTE4WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzFkM2UxZGE0NTg5MmE5ZTk5YmNkZDBmNDllNTBiOGNj NzQ5MzAzMGM3ZTZmZGYwMjY1YTQyNmYwZThmZTI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWjf8yrKRYHXLkRNAqdNy8eRhA9ZEFUAO2DLoSNn38Hwm4 wEWDnzXUkeTRg12HHZr7GkBwFQMM2nAdZJPpvdbk27XtOIiticJSq+HO0w2nWQEl aT5XnnzvgEd1+EL8JzhVBTp8W6X4lTz8K0n9dQA/N2S+79+F75LM84yJZCcXDIFc CuhmTEQLOSakW9qTAnehSj07MX+VAy8QmCTI53Bb6LldSZAMdKGFn6KRYwVSOyzY luMx53Fm/oIXEZz0/sOfwuTaBcNdsjsKRiWsi8P1IVyTmDXHEFAA2aSvde7XR0hH MfSI8hrl0KIAJZON+jDEUJDzrzxa4cubipglC9oPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNX9FXtbkfXBoiS0e0oqop8GLt8wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5NWY4MDY4LTQ3YWYtNDZjNC1hNGI0LTUxN2ZhYWNmNjRiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ7yPQwDQYJKoZIhvcNAQELBQADggEBAMlsWo7PoymWveGwmzjOsfbbT3Ml PP9ReL999LWUUGLsPDVbv/Vujawr93HqQ3Oyyu4Cy8D3Z1SIinBn+Ju/ZTNg6MSt rG0kA6IcWNTc+Hd9Kan7cDxDOCn5CtDeYJW3a87zzQH/0wx8NszJCTkdbraBxU5P 4L7vdquEGuF64pbR3g8N+xvwzJNGIftNnmWlL9d2UjYRuRbjZAMH8bWO7r5/vSEp KgCr0wGIOrok6g+fBXMulpLzCHivyS2/2Q1HM3ywRGkAaiZoAPFwdcrMzV4ctgiw 5SKJ4YiwrZoAJFWnk3Ux6Ir2RJlJ30oF1kpKD2KOntkWepK0wgkuWRQ6EI0= -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:22 2026 by rpki-client