$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa File: 8469210f-a38a-4fc9-9e32-10f79df8ee72.roa (raw, json) Hash identifier: JIgx/E2h7krvStv2BO8ZiBQjo+NL38q5sxVk3km3YrM= Subject key identifier: 62:92:D8:CF:25:D8:30:AA:CF:89:53:68:13:D4:94:E9:60:30:5F:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D3C202E81181767BBCC371EAA0B0A79CB36FFAA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa Signing time: Sat 09 May 2026 00:31:37 +0000 ROA not before: Sat 09 May 2026 00:31:37 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:3c:20:2e:81:18:17:67:bb:cc:37:1e:aa:0b:0a:79:cb:36:ff:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:31:37 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=c38248994eac375ecb8cf1415ad19edae72f9396f189915c427489d9993ba637, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ab:23:bd:9f:5b:58:ec:2d:66:b7:16:13:c9: e4:f8:f9:19:e2:16:7c:27:8c:a4:3a:a9:69:26:95: 06:0c:d0:a3:86:ef:b0:e5:4f:e9:b3:d8:bd:b0:17: 9b:2e:28:9d:6b:73:bc:f2:b6:80:78:ec:a3:d1:ac: a7:87:19:9e:ec:fd:2c:62:07:bb:53:53:b9:d1:5e: 1d:5d:5e:aa:ad:e0:ba:db:55:fe:1e:98:a1:69:61: 66:94:aa:37:9a:bc:2e:f4:18:93:97:01:30:ec:0b: 5b:40:c0:1e:40:26:2f:2a:f1:a6:c9:1a:32:7f:78: e1:5e:c6:ae:33:07:76:2f:61:a2:a1:93:bc:f3:8e: b6:86:66:5b:a8:f5:41:93:5d:e3:9b:a2:8b:3e:59: 94:c3:b6:28:72:0d:13:6e:68:a2:da:da:60:4c:99: 7d:28:f8:db:0b:82:06:96:57:20:5c:79:b5:2e:5c: 0f:72:57:e8:ec:28:8e:29:72:f2:5a:f2:6f:84:6e: 3f:21:66:8f:a5:f3:1a:36:46:6d:90:c7:df:d8:12: 3f:5b:18:17:a7:28:09:50:59:f0:d6:04:7c:0e:c5: 7e:fa:91:78:c8:b5:80:c5:a6:b2:b8:cc:34:15:98: 59:0f:20:a5:c5:07:60:b6:28:ff:54:29:97:8e:2b: 0b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:92:D8:CF:25:D8:30:AA:CF:89:53:68:13:D4:94:E9:60:30:5F:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.200.0/24 Signature Algorithm: sha256WithRSAEncryption ce:73:1c:21:a5:ff:9a:69:b8:11:93:a7:10:22:bb:e2:0c:a6: 27:8e:f3:61:39:35:36:cf:c6:d6:77:41:5e:d7:51:20:03:62: ea:95:e5:a4:af:10:19:2e:ae:02:84:c2:56:a1:83:3d:e3:b3: c2:df:43:d1:42:31:f5:ac:f2:83:72:1a:2d:b9:9c:03:34:8e: 41:09:e6:af:fd:4a:45:fd:54:27:a4:22:3b:27:2e:96:d0:11: 50:8f:0d:14:96:a1:38:8e:b0:c3:f5:d1:e8:37:34:3b:bd:01: bd:97:f6:74:c0:e2:03:a0:87:e5:53:bd:a7:72:c3:75:fa:0d: 41:67:f6:e5:f0:b1:90:b5:2f:c7:31:8f:81:de:0b:c3:76:a4: b2:ed:79:0c:7d:73:ff:c7:28:d2:88:8f:ea:05:f5:ee:23:1a: 7a:bc:9c:85:c5:90:01:6c:77:4e:05:ab:e6:6e:35:6d:de:fb: bb:b1:a9:4c:55:c9:e4:d2:2c:f2:5f:a0:eb:3e:ed:0b:ad:82: d1:ce:84:d4:3f:99:3c:38:bf:f0:42:d8:05:27:71:2b:b8:2b: 8e:5c:cc:5b:e6:31:a3:2f:42:ae:63:3a:9c:00:48:52:83:6d: 15:7a:49:c1:6e:39:9d:05:1b:a1:55:dd:6c:fd:2f:7d:37:a6: bc:73:8d:4b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfTwgLoEYF2e7zDceqgsKecs2/6owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA5MDAzMTM3WhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzgyNDg5OTRlYWMzNzVlY2I4Y2YxNDE1YWQxOWVkYWU3 MmY5Mzk2ZjE4OTkxNWM0Mjc0ODlkOTk5M2JhNjM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrqyO9n1tY7C1mtxYTyeT4+RniFnwnjKQ6qWkmlQYM0KOG 77DlT+mz2L2wF5suKJ1rc7zytoB47KPRrKeHGZ7s/SxiB7tTU7nRXh1dXqqt4Lrb Vf4emKFpYWaUqjeavC70GJOXATDsC1tAwB5AJi8q8abJGjJ/eOFexq4zB3YvYaKh k7zzjraGZluo9UGTXeOboos+WZTDtihyDRNuaKLa2mBMmX0o+NsLggaWVyBcebUu XA9yV+jsKI4pcvJa8m+Ebj8hZo+l8xo2Rm2Qx9/YEj9bGBenKAlQWfDWBHwOxX76 kXjItYDFprK4zDQVmFkPIKXFB2C2KP9UKZeOKwuPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYpLYzyXYMKrPiVNoE9SU6WAwX4MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0NjkyMTBmLWEzOGEtNGZjOS05ZTMyLTEwZjc5ZGY4ZWU3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbsgwDQYJKoZIhvcNAQELBQADggEBAM5zHCGl/5ppuBGTpxAiu+IMpieO 82E5NTbPxtZ3QV7XUSADYuqV5aSvEBkurgKEwlahgz3js8LfQ9FCMfWs8oNyGi25 nAM0jkEJ5q/9SkX9VCekIjsnLpbQEVCPDRSWoTiOsMP10eg3NDu9Ab2X9nTA4gOg h+VTvadyw3X6DUFn9uXwsZC1L8cxj4HeC8N2pLLteQx9c//HKNKIj+oF9e4jGnq8 nIXFkAFsd04Fq+ZuNW3e+7uxqUxVyeTSLPJfoOs+7QutgtHOhNQ/mTw4v/BC2AUn cSu4K45czFvmMaMvQq5jOpwASFKDbRV6ScFuOZ0FG6FV3Wz9L303prxzjUs= -----END CERTIFICATE-----Generated at Tue May 12 21:55:28 2026 by rpki-client