$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa File: 25d659ba-98ec-4e2b-9191-60b103d777b7.roa (raw, json) Hash identifier: vq3dm+t+b8w9K9B2uhRHa5VRu0P4AlPS4gGuyeD4ZaM= Subject key identifier: 99:73:43:9A:00:07:19:25:F1:CC:A2:43:3B:1E:E2:5F:02:DB:0C:BC Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 309C7CAA374840D76FF32A31BA57791F39EE161E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa Signing time: Mon 13 Oct 2025 16:10:52 +0000 ROA not before: Mon 13 Oct 2025 16:10:52 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:9c:7c:aa:37:48:40:d7:6f:f3:2a:31:ba:57:79:1f:39:ee:16:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:10:52 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=6cf85dc85323ec3f213042bbfc825a75b3b979dfb0063b2da8a15fafbf166762, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:86:47:33:2a:c3:79:7f:35:c5:15:8c:91:d6: 71:48:b3:70:34:58:9b:07:a5:7f:f7:a0:fb:17:27: c4:0b:59:a4:1f:23:94:8e:ec:fa:3c:ab:71:e3:0a: 6f:46:52:42:0f:b4:cb:1d:bf:11:5d:97:5f:de:27: 97:45:7d:86:79:f4:68:9f:2e:5a:cd:04:5c:cd:9c: 99:a7:d2:2d:16:a9:c2:12:5b:52:cd:7d:4b:91:b3: 8b:ca:18:f6:a1:98:74:45:7c:59:d6:c5:b7:60:0e: 69:f4:6a:2a:8c:a2:5d:5a:e0:34:35:31:a6:e0:ab: fb:13:85:0a:bc:84:38:3d:91:f1:9e:63:58:80:0c: c3:d9:19:de:b9:e9:58:5e:a7:63:5a:d9:82:07:a9: 8e:76:ac:62:eb:cf:7a:ce:c9:fe:54:55:d6:1d:e6: e8:2f:a2:b7:e9:ba:63:8c:ab:e5:9e:49:4e:e7:e2: 07:25:8b:17:25:d0:39:13:23:f5:05:07:ff:74:a8: bd:02:2f:49:4a:72:a3:c0:9f:21:6d:db:c3:dd:08: ff:b1:f0:26:94:3a:90:47:a6:a9:d7:93:5a:6d:f9: d4:77:22:5c:a8:83:f9:59:13:67:e6:57:3f:77:16: 7b:96:75:1a:0e:61:92:e7:fc:b2:b4:db:5b:81:44: 73:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:73:43:9A:00:07:19:25:F1:CC:A2:43:3B:1E:E2:5F:02:DB:0C:BC X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.212.0/22 Signature Algorithm: sha256WithRSAEncryption 96:3b:1e:63:82:ed:37:c2:05:e6:bf:23:a4:60:fa:b8:37:f3: cb:db:79:4d:88:b2:e5:39:83:0f:56:6b:e3:2d:be:63:e0:50: 01:8e:98:6b:68:6f:fe:f9:ae:82:01:fc:c7:fb:c3:14:48:81: 4b:f3:e5:8e:3a:0b:20:9c:bb:51:9f:04:04:35:20:34:b8:19: 0c:df:fc:34:25:ef:2b:38:30:87:1b:6b:f9:59:96:89:1c:25: 1a:22:41:f6:6b:a8:9a:28:b1:c9:ff:3d:0a:e6:49:0e:1c:68: 3f:a2:ba:78:3d:bc:40:9b:ad:02:c6:b1:d2:7c:10:5e:d2:d1: 32:0c:85:cc:f1:67:ab:8a:c2:0e:d2:77:be:76:d7:b9:7a:99: 97:7b:cd:0e:8a:51:43:bf:0c:74:06:e3:62:60:c7:76:04:89: 8a:dc:22:27:f9:9a:dc:59:fd:38:f7:3f:2e:04:16:14:f4:ee: 22:a5:53:1c:b3:0e:2f:e6:51:05:64:39:59:3a:93:81:04:a4: 4f:bd:7b:20:17:20:bb:64:56:12:d5:91:a4:68:d3:52:f5:97: a4:b4:14:08:4e:91:b3:17:66:3e:ce:e6:fd:66:9a:9f:73:b8: 74:9c:85:3e:18:f3:1f:5e:5f:21:32:be:44:20:58:94:3c:46: b4:76:51:9b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMJx8qjdIQNdv8yoxuld5HznuFh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYxMDUyWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Y2Y4NWRjODUzMjNlYzNmMjEzMDQyYmJmYzgyNWE3NWIz Yjk3OWRmYjAwNjNiMmRhOGExNWZhZmJmMTY2NzYyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClhkczKsN5fzXFFYyR1nFIs3A0WJsHpX/3oPsXJ8QLWaQf I5SO7Po8q3HjCm9GUkIPtMsdvxFdl1/eJ5dFfYZ59GifLlrNBFzNnJmn0i0WqcIS W1LNfUuRs4vKGPahmHRFfFnWxbdgDmn0aiqMol1a4DQ1Mabgq/sThQq8hDg9kfGe Y1iADMPZGd656Vhep2Na2YIHqY52rGLrz3rOyf5UVdYd5ugvorfpumOMq+WeSU7n 4gclixcl0DkTI/UFB/90qL0CL0lKcqPAnyFt28PdCP+x8CaUOpBHpqnXk1pt+dR3 Ilyog/lZE2fmVz93FnuWdRoOYZLn/LK021uBRHMbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmXNDmgAHGSXxzKJDOx7iXwLbDLwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI1ZDY1OWJhLTk4ZWMtNGUyYi05MTkxLTYwYjEwM2Q3NzdiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+9QwDQYJKoZIhvcNAQELBQADggEBAJY7HmOC7TfCBea/I6Rg+rg388vb eU2IsuU5gw9Wa+MtvmPgUAGOmGtob/75roIB/Mf7wxRIgUvz5Y46CyCcu1GfBAQ1 IDS4GQzf/DQl7ys4MIcba/lZlokcJRoiQfZrqJooscn/PQrmSQ4caD+iung9vECb rQLGsdJ8EF7S0TIMhczxZ6uKwg7Sd75217l6mZd7zQ6KUUO/DHQG42Jgx3YEiYrc Iif5mtxZ/Tj3Py4EFhT07iKlUxyzDi/mUQVkOVk6k4EEpE+9eyAXILtkVhLVkaRo 01L1l6S0FAhOkbMXZj7O5v1mmp9zuHSchT4Y8x9eXyEyvkQgWJQ8RrR2UZs= -----END CERTIFICATE-----Generated at Mon Oct 20 12:48:52 2025 by rpki-client