$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/152c2428-5b62-4376-b4bb-1a1dd484cf33.roa File: 152c2428-5b62-4376-b4bb-1a1dd484cf33.roa (raw, json) Hash identifier: 8dj2gbSwFqNW9zLG2smw/Wib6FTkeNYSB7ziKxksVeg= Subject key identifier: E4:29:E7:EA:C1:AF:E4:B3:8A:32:A6:B7:87:2D:C3:79:7C:4F:F7:EE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 394EF181B6C96F69679083E42FB6DD67C0E1478C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/152c2428-5b62-4376-b4bb-1a1dd484cf33.roa Signing time: Mon 13 Oct 2025 16:38:39 +0000 ROA not before: Mon 13 Oct 2025 16:38:39 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.32.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:4e:f1:81:b6:c9:6f:69:67:90:83:e4:2f:b6:dd:67:c0:e1:47:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:38:39 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=9ae1d78032ee01c6a9088284a7d6d5058d146b1910d5da3da90b175c9e7e422f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:2d:e4:f4:00:29:c5:42:be:0b:d7:1a:d2:49: 39:f9:71:b6:5d:1f:aa:25:49:9a:04:0e:98:2d:59: 1b:d4:9c:59:04:63:0a:8a:4b:8a:e8:f0:71:09:62: e4:74:e4:6d:f1:8f:4e:52:9b:de:d9:84:c8:a6:d1: 8a:61:b6:30:2d:5b:a6:a7:4e:95:b4:42:55:ec:b4: 5d:32:ab:f0:ae:71:0c:06:51:37:2f:3f:c9:df:bf: f5:80:ae:3b:0f:c7:9b:8e:97:d0:51:e7:bc:7a:29: 8b:5b:2b:29:52:22:aa:d7:a2:d8:d1:11:9e:39:45: f1:c0:da:69:d8:2f:5a:6b:e0:e4:83:c6:29:f8:02: 5f:03:0a:02:b0:67:9d:6b:66:93:bd:71:13:0b:47: ed:27:84:87:db:5f:9d:37:1a:08:d9:3b:de:fe:c5: 18:80:90:2b:96:6b:c3:d4:10:2f:5d:ff:e8:01:13: 54:d1:ce:67:38:52:60:48:87:8c:ec:70:98:c4:93: f1:c6:e4:b0:9e:bd:0b:0b:af:ae:ac:37:6a:3a:8f: 51:96:1e:f9:7f:d2:6a:76:42:41:b1:48:33:e8:ad: aa:5a:46:c2:27:9c:d4:cb:cb:bc:02:50:11:07:ee: 94:f4:cf:ea:db:a0:c1:36:47:a4:55:d4:1e:62:af: ce:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:29:E7:EA:C1:AF:E4:B3:8A:32:A6:B7:87:2D:C3:79:7C:4F:F7:EE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/152c2428-5b62-4376-b4bb-1a1dd484cf33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.32.0/23 Signature Algorithm: sha256WithRSAEncryption 43:98:9c:85:ff:56:b4:c0:3c:69:65:a0:a7:3c:46:8e:57:a4: 8a:16:1e:c9:c7:2f:12:5b:1c:e1:18:7b:fa:86:fb:21:4f:d3: b4:41:29:b3:ce:3a:60:08:46:f4:22:b8:b8:7f:7d:df:77:33: 2b:3b:93:11:30:70:c6:5b:7e:00:2a:64:7d:47:c7:ff:5e:31: 4a:1b:45:90:6f:2b:99:e1:a6:90:47:66:97:ae:07:38:6b:ce: db:67:07:4b:03:8b:c4:fc:b6:13:7e:84:11:44:12:4c:94:45: 0c:94:1d:4a:b0:e0:0e:8a:fa:43:5e:36:78:29:a5:3a:79:ec: ef:3f:b3:ac:e4:91:df:7e:98:74:34:73:42:39:c0:40:f6:37: b3:6c:95:11:c7:f0:48:67:11:70:9e:41:2e:e4:3c:0f:81:68: b5:74:79:32:15:b8:a8:9e:06:f2:34:01:34:bd:44:69:fb:a9: 68:eb:df:85:63:90:ef:29:4c:4d:11:4f:e4:c9:a0:d2:ec:e8: 15:2f:be:2c:ca:a6:c8:2b:ab:f8:13:ce:2b:45:20:d2:ef:4e: 35:7b:a2:68:3e:6d:bb:89:f2:17:fb:5a:11:05:96:25:74:47: 19:66:37:dd:fd:dd:85:2e:90:17:68:b3:f3:f3:63:81:78:83: f8:5a:cc:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOU7xgbbJb2lnkIPkL7bdZ8DhR4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYzODM5WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWUxZDc4MDMyZWUwMWM2YTkwODgyODRhN2Q2ZDUwNThk MTQ2YjE5MTBkNWRhM2RhOTBiMTc1YzllN2U0MjJmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDLeT0ACnFQr4L1xrSSTn5cbZdH6olSZoEDpgtWRvUnFkE YwqKS4ro8HEJYuR05G3xj05Sm97ZhMim0YphtjAtW6anTpW0QlXstF0yq/CucQwG UTcvP8nfv/WArjsPx5uOl9BR57x6KYtbKylSIqrXotjREZ45RfHA2mnYL1pr4OSD xin4Al8DCgKwZ51rZpO9cRMLR+0nhIfbX503GgjZO97+xRiAkCuWa8PUEC9d/+gB E1TRzmc4UmBIh4zscJjEk/HG5LCevQsLr66sN2o6j1GWHvl/0mp2QkGxSDPorapa RsInnNTLy7wCUBEH7pT0z+rboME2R6RV1B5ir86nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5Cnn6sGv5LOKMqa3hy3DeXxP9+4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzE1MmMyNDI4LTViNjItNDM3Ni1iNGJiLTFhMWRkNDg0Y2YzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYiSAwDQYJKoZIhvcNAQELBQADggEBAEOYnIX/VrTAPGlloKc8Ro5XpIoW HsnHLxJbHOEYe/qG+yFP07RBKbPOOmAIRvQiuLh/fd93Mys7kxEwcMZbfgAqZH1H x/9eMUobRZBvK5nhppBHZpeuBzhrzttnB0sDi8T8thN+hBFEEkyURQyUHUqw4A6K +kNeNngppTp57O8/s6zkkd9+mHQ0c0I5wED2N7NslRHH8EhnEXCeQS7kPA+BaLV0 eTIVuKieBvI0ATS9RGn7qWjr34VjkO8pTE0RT+TJoNLs6BUvvizKpsgrq/gTzitF INLvTjV7omg+bbuJ8hf7WhEFliV0RxlmN9393YUukBdos/PzY4F4g/hazBk= -----END CERTIFICATE-----Generated at Mon Oct 20 15:18:44 2025 by rpki-client