$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/29a94fea-7a30-4433-a97d-49c6512ecc1e.roa File: 29a94fea-7a30-4433-a97d-49c6512ecc1e.roa (raw, json) Hash identifier: vlMYYzHbRziEpBOUPWMZUFlueA/i5K5Q2kZHDyX/jek= Subject key identifier: D7:D0:92:7C:85:7F:2F:80:CF:D4:E1:B7:EA:81:E4:67:B9:F6:63:22 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3CA6FD3387FE5395C2A1E25B894253EF56D80DCD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/29a94fea-7a30-4433-a97d-49c6512ecc1e.roa Signing time: Mon 13 Oct 2025 16:40:02 +0000 ROA not before: Mon 13 Oct 2025 16:40:02 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a6:fd:33:87:fe:53:95:c2:a1:e2:5b:89:42:53:ef:56:d8:0d:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:40:02 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=f478a2707a106303173fbbabc802006743b9198a2779863d88359899b1d530df, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4e:8b:ab:3c:00:3e:3e:ec:65:a2:a4:25:db: ad:4a:16:e6:30:5a:ab:ba:a2:15:4c:11:9d:22:22: 64:87:56:bd:e9:38:eb:bb:ac:c5:1a:a3:21:5f:98: e9:e0:79:18:32:a6:d9:ef:1f:aa:22:4c:dc:e6:33: 8d:53:8e:2c:40:8d:03:9f:2d:81:8a:37:e9:f4:9f: e9:7a:69:6b:a8:87:22:72:e2:19:81:ea:de:71:ea: d3:23:92:61:c3:c9:7a:6a:7a:bb:cf:44:e8:0c:30: 97:57:fc:b9:55:e2:40:ac:35:6c:1e:dc:07:81:46: c4:e6:31:ac:b8:fc:3a:a2:5e:0f:bb:71:51:2c:29: 4b:84:09:b4:ea:74:41:38:05:62:2e:ef:4b:a4:a5: 9e:4d:d2:5a:85:de:d2:38:b7:d1:f1:6a:21:8a:62: a1:42:86:79:53:ea:05:c8:d0:bc:24:40:03:49:89: 4a:6b:56:4d:39:d1:2d:25:8e:82:31:3d:d4:da:35: 2f:aa:11:d7:c4:b7:14:55:e6:36:86:6d:34:91:de: 52:87:66:d5:cc:34:06:38:37:67:f9:80:3c:e0:99: 29:84:0c:dc:5e:c2:b5:c5:ad:8c:cf:a0:82:f7:09: 80:b6:d9:fa:9e:01:d0:7f:f5:42:71:87:cf:3f:2e: c3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D0:92:7C:85:7F:2F:80:CF:D4:E1:B7:EA:81:E4:67:B9:F6:63:22 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/29a94fea-7a30-4433-a97d-49c6512ecc1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.48.0/20 Signature Algorithm: sha256WithRSAEncryption 8d:6e:14:9b:94:d4:04:c5:f3:e8:00:4d:04:d2:49:8a:95:79: 8b:15:84:3c:9a:20:f0:91:ee:38:4a:e4:b8:ea:84:6d:76:dc: f5:49:68:37:34:f3:06:da:71:9b:8e:02:6c:17:1d:ff:bb:f4: 47:22:7a:e6:60:eb:11:35:42:a3:34:bd:8b:92:0f:39:77:71: 8a:f5:f5:08:5a:c8:d9:bc:6c:c6:78:1b:76:f9:c7:a9:fb:7a: 36:9a:66:bd:3a:cd:da:50:96:9a:aa:64:31:15:0a:f4:df:bf: ac:84:c8:7c:d5:99:48:20:a6:b4:65:35:ee:1e:80:9f:a9:d4: 8f:af:7a:99:d8:d7:ed:12:6a:0e:21:aa:b7:76:db:45:2f:88: 2a:90:37:be:51:5d:bd:c6:45:ac:fc:21:31:6a:1b:72:2d:db: b6:35:c7:aa:16:7f:dd:25:f3:53:0e:ba:09:4e:cd:d6:68:2e: 2f:0b:7b:95:a1:df:76:e1:b3:38:dd:0a:b5:3b:66:35:58:ab: 77:79:9d:84:23:8b:77:4b:6c:9b:d3:0b:b6:79:e4:58:e4:6b: 14:04:b3:a2:0d:aa:21:5e:1b:5f:cd:78:ba:a6:5b:c8:65:b3: 5e:c8:cb:a4:4d:fb:04:21:aa:35:21:fe:28:bf:14:fd:55:f9: fa:fe:e1:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPKb9M4f+U5XCoeJbiUJT71bYDc0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTY0MDAyWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDc4YTI3MDdhMTA2MzAzMTczZmJiYWJjODAyMDA2NzQz YjkxOThhMjc3OTg2M2Q4ODM1OTg5OWIxZDUzMGRmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBTourPAA+PuxloqQl261KFuYwWqu6ohVMEZ0iImSHVr3p OOu7rMUaoyFfmOngeRgyptnvH6oiTNzmM41TjixAjQOfLYGKN+n0n+l6aWuohyJy 4hmB6t5x6tMjkmHDyXpqervPROgMMJdX/LlV4kCsNWwe3AeBRsTmMay4/DqiXg+7 cVEsKUuECbTqdEE4BWIu70ukpZ5N0lqF3tI4t9HxaiGKYqFChnlT6gXI0LwkQANJ iUprVk050S0ljoIxPdTaNS+qEdfEtxRV5jaGbTSR3lKHZtXMNAY4N2f5gDzgmSmE DNxewrXFrYzPoIL3CYC22fqeAdB/9UJxh88/LsPXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU19CSfIV/L4DP1OG36oHkZ7n2YyIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI5YTk0ZmVhLTdhMzAtNDQzMy1hOTdkLTQ5YzY1MTJlY2MxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATYiTAwDQYJKoZIhvcNAQELBQADggEBAI1uFJuU1ATF8+gATQTSSYqVeYsV hDyaIPCR7jhK5LjqhG123PVJaDc08wbacZuOAmwXHf+79EcieuZg6xE1QqM0vYuS Dzl3cYr19QhayNm8bMZ4G3b5x6n7ejaaZr06zdpQlpqqZDEVCvTfv6yEyHzVmUgg prRlNe4egJ+p1I+vepnY1+0Sag4hqrd220UviCqQN75RXb3GRaz8ITFqG3It27Y1 x6oWf90l81MOuglOzdZoLi8Le5Wh33bhszjdCrU7ZjVYq3d5nYQji3dLbJvTC7Z5 5FjkaxQEs6INqiFeG1/NeLqmW8hls17Iy6RN+wQhqjUh/ii/FP1V+fr+4cs= -----END CERTIFICATE-----Generated at Mon Oct 20 20:26:07 2025 by rpki-client