$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0e380b09-55a0-48eb-8d67-10cd07bb93ca.roa File: 0e380b09-55a0-48eb-8d67-10cd07bb93ca.roa (raw, json) Hash identifier: rYXb1XGbwCU2HqVEASbPNVPxOnfF+ajrXM9OCAOqDmc= Subject key identifier: BB:09:DA:F5:67:18:BF:3C:3F:34:73:6D:A6:AF:EB:88:02:15:3C:C9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 79EC2CC33FA340901CF48F10B50495240EAAA9C6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0e380b09-55a0-48eb-8d67-10cd07bb93ca.roa Signing time: Mon 13 Oct 2025 16:10:55 +0000 ROA not before: Mon 13 Oct 2025 16:10:55 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:ec:2c:c3:3f:a3:40:90:1c:f4:8f:10:b5:04:95:24:0e:aa:a9:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:10:55 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=1887de995df98782d01b071f759279bd6a1b5467fb34eed570d801939f218da5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:8c:43:a6:b9:91:f7:6d:df:d1:da:6d:40: 27:18:76:21:27:52:a2:01:76:19:6a:ce:63:9e:ad: e1:8e:ae:1d:e2:3f:c5:85:42:30:21:83:32:e7:3b: 5b:14:fc:e2:6a:39:27:11:9c:ba:50:ea:14:f5:72: b7:7c:b5:ee:a6:76:47:37:01:2d:a3:58:fa:70:9f: ce:3a:ec:62:f4:48:91:94:22:ed:07:77:ec:42:20: d6:61:79:46:3e:fd:61:82:b9:c2:5d:9c:ee:45:28: f8:35:49:8f:e4:33:db:b0:69:91:46:3a:a6:1a:d1: 63:45:b1:18:1c:da:7a:e3:c9:1f:50:30:59:3a:8a: 30:35:96:9a:55:a0:53:55:d3:b5:3d:ef:4c:73:68: c5:d4:9c:29:26:4f:02:3e:11:71:3c:73:02:fe:c3: 9f:32:8f:ce:93:ba:0e:74:e4:07:00:ed:06:94:40: 04:f2:d7:f5:93:96:04:cb:1e:38:cb:27:af:d9:02: 31:79:81:60:ed:5e:7c:f8:17:2f:df:a8:12:95:8b: a1:ee:c7:be:33:df:21:a3:5a:b7:53:ac:49:f5:fa: a8:d3:44:c7:c2:e0:18:c9:ee:0b:e0:f2:7b:61:c8: c9:91:09:4d:d7:b1:8d:eb:de:61:d0:9e:b0:bf:4c: 7d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:09:DA:F5:67:18:BF:3C:3F:34:73:6D:A6:AF:EB:88:02:15:3C:C9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0e380b09-55a0-48eb-8d67-10cd07bb93ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.254.0/24 Signature Algorithm: sha256WithRSAEncryption 57:fa:67:fb:df:c8:ae:4e:53:29:72:a7:74:be:7f:b1:37:76: 7a:b2:3a:03:2e:6e:d5:df:44:5d:73:91:a0:be:5d:f2:47:01: 33:13:4c:04:1b:30:b5:e2:c1:41:ce:39:4c:7f:53:ad:e0:0d: 5d:90:9a:b1:44:fc:3b:31:de:d6:36:01:92:4d:0b:51:e8:9f: 6c:fd:8a:64:62:47:a3:cf:3e:6c:66:92:db:59:ca:95:c6:dd: da:89:ef:d9:bc:9b:e9:ba:88:b9:9c:c0:6e:2d:f4:99:f9:81: 06:2e:3f:09:68:8d:ff:b7:3c:0f:b5:de:7d:b6:22:76:e1:31: e5:05:da:e7:20:38:b0:ec:14:2b:d0:c5:24:3b:44:2c:91:40: 95:1f:1b:14:ae:1b:44:4f:3a:ff:46:01:30:5b:43:e6:78:31: e7:8b:19:88:f9:8e:4a:fc:9f:a7:b2:08:0e:b2:9b:1c:21:1b: 45:bb:9d:7c:87:81:55:11:95:a3:dc:09:fa:ba:ee:c8:23:23: 44:73:ac:26:56:b5:89:15:f3:47:02:e6:4a:fb:75:64:8d:a2: 11:7b:c7:dd:30:ce:40:68:cd:08:4a:a1:7a:1e:7e:c0:75:63: 36:15:12:5e:28:40:3f:8e:05:e2:93:40:35:d8:56:cb:a7:ee: 2a:24:35:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeewswz+jQJAc9I8QtQSVJA6qqcYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYxMDU1WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODg3ZGU5OTVkZjk4NzgyZDAxYjA3MWY3NTkyNzliZDZh MWI1NDY3ZmIzNGVlZDU3MGQ4MDE5MzlmMjE4ZGE1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW9oxDprmR923f0dptQCcYdiEnUqIBdhlqzmOereGOrh3i P8WFQjAhgzLnO1sU/OJqOScRnLpQ6hT1crd8te6mdkc3AS2jWPpwn8467GL0SJGU Iu0Hd+xCINZheUY+/WGCucJdnO5FKPg1SY/kM9uwaZFGOqYa0WNFsRgc2nrjyR9Q MFk6ijA1lppVoFNV07U970xzaMXUnCkmTwI+EXE8cwL+w58yj86Tug505AcA7QaU QATy1/WTlgTLHjjLJ6/ZAjF5gWDtXnz4Fy/fqBKVi6Hux74z3yGjWrdTrEn1+qjT RMfC4BjJ7gvg8nthyMmRCU3XsY3r3mHQnrC/TH3rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuwna9WcYvzw/NHNtpq/riAIVPMkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBlMzgwYjA5LTU1YTAtNDhlYi04ZDY3LTEwY2QwN2JiOTNjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/4wDQYJKoZIhvcNAQELBQADggEBAFf6Z/vfyK5OUylyp3S+f7E3dnqy OgMubtXfRF1zkaC+XfJHATMTTAQbMLXiwUHOOUx/U63gDV2QmrFE/Dsx3tY2AZJN C1Hon2z9imRiR6PPPmxmkttZypXG3dqJ79m8m+m6iLmcwG4t9Jn5gQYuPwlojf+3 PA+13n22InbhMeUF2ucgOLDsFCvQxSQ7RCyRQJUfGxSuG0RPOv9GATBbQ+Z4MeeL GYj5jkr8n6eyCA6ymxwhG0W7nXyHgVURlaPcCfq67sgjI0RzrCZWtYkV80cC5kr7 dWSNohF7x90wzkBozQhKoXoefsB1YzYVEl4oQD+OBeKTQDXYVsun7iokNcw= -----END CERTIFICATE-----Generated at Mon Oct 20 20:25:35 2025 by rpki-client