$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0d92a881-9f58-403e-88e6-32f67fec7e11.roa File: 0d92a881-9f58-403e-88e6-32f67fec7e11.roa (raw, json) Hash identifier: lgwWtSeWGb1BeYDbkaemx7oAhrwL5Ze8G8tvzJcuUEE= Subject key identifier: 70:93:5B:61:0D:1D:A0:97:2E:31:EC:81:D8:FD:09:A7:20:01:56:88 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 77DD19719A9ED8417BFF0342B5C3A069C87778E7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0d92a881-9f58-403e-88e6-32f67fec7e11.roa Signing time: Mon 13 Oct 2025 16:10:06 +0000 ROA not before: Mon 13 Oct 2025 16:10:06 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:dd:19:71:9a:9e:d8:41:7b:ff:03:42:b5:c3:a0:69:c8:77:78:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:10:06 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=c6acbf91d538bac0620bfa5e1955d628c08c02bef3c52ad0cc01bb7dc5a2dfcb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3c:c1:6b:a1:fa:f2:85:5e:fc:31:d4:de:d0: 14:78:67:08:eb:66:e4:00:5c:60:3d:1a:ef:9a:ec: d1:9a:ad:32:5c:20:a5:98:32:e9:ab:6c:e6:66:1e: 02:03:a0:fe:82:49:c8:a0:da:13:d5:7f:2f:9d:10: 85:f9:08:ba:43:03:df:71:86:19:7f:a2:91:b2:39: 5b:45:e8:64:df:97:40:2d:6c:4c:cf:7b:9b:99:63: 60:a6:d1:08:98:d6:27:84:45:ad:e9:04:7a:79:a8: c2:36:b7:c7:e0:74:ef:3f:b0:2a:15:81:b1:9f:8b: b6:31:4b:ce:2c:ba:3a:5f:ba:36:61:8a:75:4c:88: 90:56:5d:34:e7:0c:c5:3d:74:a8:33:68:ed:09:50: bf:11:81:9f:c1:1e:32:79:ac:b1:01:f6:ff:ac:5c: 49:4d:36:f6:ca:c0:f6:c2:07:f9:c1:20:7a:3d:f8: 09:12:18:27:8d:a8:10:56:4d:35:a5:89:d0:2b:df: 43:99:25:e6:c9:1d:df:68:24:5f:fc:23:a2:3b:99: 14:31:c4:86:4b:42:9c:ef:12:4e:ee:9a:c3:42:74: f0:38:bf:f0:65:02:1d:51:a9:47:52:b6:86:b2:e3: ba:8c:28:8a:c3:dd:d2:0e:75:72:0c:40:4c:cf:8f: 2e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:93:5B:61:0D:1D:A0:97:2E:31:EC:81:D8:FD:09:A7:20:01:56:88 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0d92a881-9f58-403e-88e6-32f67fec7e11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.176.0/20 Signature Algorithm: sha256WithRSAEncryption b1:c8:c5:f9:89:e5:1b:5d:e1:be:6a:4d:76:e3:ba:cd:f8:cd: e8:6f:1a:e3:73:85:59:4b:6a:d6:a3:e7:46:41:09:df:4e:71: c1:07:d3:2d:f6:d6:45:6b:90:c9:9b:1e:c2:f8:b3:73:b8:7b: 6e:1c:40:77:bf:bd:99:02:3b:ab:e0:a9:29:69:84:96:73:e9: bb:c7:59:f3:5b:85:b0:09:01:aa:e2:2d:1f:c6:d2:7b:03:14: ea:38:04:32:39:00:91:71:93:63:fb:a8:d7:7d:24:f9:d1:18: 7d:3a:01:a4:c7:47:26:a6:c5:30:26:12:9b:50:1e:30:6e:42: 1f:39:15:49:61:6c:6f:4e:86:18:75:a2:20:e0:dc:63:e3:63: e9:44:94:a5:54:a1:57:8c:0e:f8:9f:ed:a3:fb:31:ff:3a:f0: 8c:93:ca:70:05:fa:60:82:41:33:92:35:6e:ef:31:72:f9:b7: 9e:bc:d0:15:ce:86:48:fc:d7:36:d0:92:9f:ee:bb:98:85:d3: 9b:db:16:19:de:46:eb:91:8b:4a:55:15:a1:94:4e:8f:d4:cd: a2:8c:44:51:1b:2c:0c:53:2f:73:bc:62:01:0d:f5:7e:8a:7d: 0b:77:40:6b:7a:bf:3f:ec:ee:52:ba:82:83:45:49:bf:8d:f4: 65:76:2f:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd90ZcZqe2EF7/wNCtcOgach3eOcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYxMDA2WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmFjYmY5MWQ1MzhiYWMwNjIwYmZhNWUxOTU1ZDYyOGMw OGMwMmJlZjNjNTJhZDBjYzAxYmI3ZGM1YTJkZmNiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1PMFrofryhV78MdTe0BR4ZwjrZuQAXGA9Gu+a7NGarTJc IKWYMumrbOZmHgIDoP6CScig2hPVfy+dEIX5CLpDA99xhhl/opGyOVtF6GTfl0At bEzPe5uZY2Cm0QiY1ieERa3pBHp5qMI2t8fgdO8/sCoVgbGfi7YxS84sujpfujZh inVMiJBWXTTnDMU9dKgzaO0JUL8RgZ/BHjJ5rLEB9v+sXElNNvbKwPbCB/nBIHo9 +AkSGCeNqBBWTTWlidAr30OZJebJHd9oJF/8I6I7mRQxxIZLQpzvEk7umsNCdPA4 v/BlAh1RqUdStoay47qMKIrD3dIOdXIMQEzPjy4XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcJNbYQ0doJcuMeyB2P0JpyABVogwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBkOTJhODgxLTlmNTgtNDAzZS04OGU2LTMyZjY3ZmVjN2UxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM9rAwDQYJKoZIhvcNAQELBQADggEBALHIxfmJ5Rtd4b5qTXbjus34zehv GuNzhVlLataj50ZBCd9OccEH0y321kVrkMmbHsL4s3O4e24cQHe/vZkCO6vgqSlp hJZz6bvHWfNbhbAJAariLR/G0nsDFOo4BDI5AJFxk2P7qNd9JPnRGH06AaTHRyam xTAmEptQHjBuQh85FUlhbG9Ohhh1oiDg3GPjY+lElKVUoVeMDvif7aP7Mf868IyT ynAF+mCCQTOSNW7vMXL5t5680BXOhkj81zbQkp/uu5iF05vbFhneRuuRi0pVFaGU To/UzaKMRFEbLAxTL3O8YgEN9X6KfQt3QGt6vz/s7lK6goNFSb+N9GV2L1U= -----END CERTIFICATE-----Generated at Mon Oct 20 20:26:19 2025 by rpki-client