$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2e47be74-bf03-488a-a46a-b045d5833f24.roa File: 2e47be74-bf03-488a-a46a-b045d5833f24.roa (raw, json) Hash identifier: QL4RaXqHBM/R8r3M8I2GLvs9muNBDyJiFboqFYeyTnk= Subject key identifier: 23:58:00:B1:BF:F6:9C:64:FF:5B:4C:A2:29:52:58:33:D9:0A:C6:BD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 04A6EEE9CA87FAF445FB8FD2B663DFF9561D05C8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2e47be74-bf03-488a-a46a-b045d5833f24.roa Signing time: Mon 13 Oct 2025 16:21:04 +0000 ROA not before: Mon 13 Oct 2025 16:21:04 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a6:ee:e9:ca:87:fa:f4:45:fb:8f:d2:b6:63:df:f9:56:1d:05:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:21:04 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=0b902840fb2b22055e6521214ccba9fa1f31f0d2aaa070a1e7ce914969e2017f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:66:dd:0c:b9:68:d6:f4:09:39:72:8c:98:e0: af:24:c6:91:a6:24:a1:1c:d4:0c:29:f8:0c:52:11: 76:13:90:9b:5e:1f:b8:ae:1b:8f:e8:13:62:28:3d: 3e:81:63:85:c4:21:d2:38:4e:62:ff:1e:e4:5d:67: fc:75:ed:41:d3:8a:ba:ff:b9:13:02:b5:09:f9:80: 8a:60:3a:ef:70:34:f6:e2:5c:0f:0e:f8:fe:55:74: e3:5d:89:08:f7:50:dd:98:e7:02:f9:88:f3:3a:8d: 6c:f9:be:98:22:a5:f6:38:65:c4:d2:17:6c:17:74: f7:de:b3:0f:ae:20:60:61:48:cd:4b:b7:3b:83:85: 70:0f:e4:b9:94:5f:39:de:c8:11:df:1e:86:91:eb: 83:40:9a:95:3f:5d:4a:59:d7:be:07:0b:83:cf:44: 1e:27:75:5b:91:5e:4d:6e:6f:bb:66:30:2b:19:7e: 30:06:a7:8f:09:e0:20:70:38:83:68:7c:98:ba:98: 3a:66:eb:d0:d9:af:27:e7:f8:43:5e:d4:47:32:81: b1:0e:0a:cb:88:15:9e:05:5c:20:e9:44:79:13:0d: 25:40:22:f9:9f:7e:84:79:9a:af:35:25:19:c7:9c: 3f:76:77:14:55:61:0d:07:45:71:95:ac:b9:97:13: 12:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:58:00:B1:BF:F6:9C:64:FF:5B:4C:A2:29:52:58:33:D9:0A:C6:BD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2e47be74-bf03-488a-a46a-b045d5833f24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.251.0/24 Signature Algorithm: sha256WithRSAEncryption 64:10:fa:b4:f9:e3:6f:10:c5:5e:5e:c9:8e:e2:26:51:70:af: d6:51:f6:ff:d5:e7:cf:f8:df:23:37:c2:18:57:87:ab:c5:a5: 28:9e:b6:ac:c3:d7:8a:47:69:3b:17:4d:aa:47:25:7f:fd:b8: b5:4e:3b:34:59:36:a6:5b:2d:c0:60:5f:9f:3b:2e:b2:2c:11: 68:83:96:ec:92:ae:fe:ab:17:33:6c:3d:d4:d3:92:66:66:6a: 86:0d:7c:29:3d:61:1f:15:06:03:04:c1:92:7a:60:6f:98:67: 7d:93:23:f7:af:e7:6f:9a:2c:35:aa:cf:95:0a:97:8f:e6:c2: f0:70:de:a1:6d:f4:2a:19:5f:55:98:90:af:63:15:27:01:19: ba:95:66:9d:eb:71:ca:a5:8e:a4:9b:0d:57:41:36:51:94:be: 90:92:8c:98:59:a2:25:be:8f:b4:7e:84:97:1c:4d:00:4b:44: 78:23:4c:91:73:1d:2f:d6:37:12:24:3d:8c:e3:1b:aa:c9:bd: d0:ca:0a:20:25:ca:00:31:6c:a9:2d:ef:fb:91:ad:20:95:de: 20:e6:ef:6f:a9:f9:d8:4a:47:53:e1:c0:2a:11:f8:1e:e9:3a: c4:b5:58:b4:34:5d:96:24:25:48:2c:b8:41:9e:22:49:bd:4c: ec:f2:ad:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBKbu6cqH+vRF+4/StmPf+VYdBcgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYyMTA0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjkwMjg0MGZiMmIyMjA1NWU2NTIxMjE0Y2NiYTlmYTFm MzFmMGQyYWFhMDcwYTFlN2NlOTE0OTY5ZTIwMTdmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDyZt0MuWjW9Ak5coyY4K8kxpGmJKEc1Awp+AxSEXYTkJte H7iuG4/oE2IoPT6BY4XEIdI4TmL/HuRdZ/x17UHTirr/uRMCtQn5gIpgOu9wNPbi XA8O+P5VdONdiQj3UN2Y5wL5iPM6jWz5vpgipfY4ZcTSF2wXdPfesw+uIGBhSM1L tzuDhXAP5LmUXzneyBHfHoaR64NAmpU/XUpZ174HC4PPRB4ndVuRXk1ub7tmMCsZ fjAGp48J4CBwOINofJi6mDpm69DZryfn+ENe1EcygbEOCsuIFZ4FXCDpRHkTDSVA IvmffoR5mq81JRnHnD92dxRVYQ0HRXGVrLmXExKDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI1gAsb/2nGT/W0yiKVJYM9kKxr0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJlNDdiZTc0LWJmMDMtNDg4YS1hNDZhLWIwNDVkNTgzM2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/swDQYJKoZIhvcNAQELBQADggEBAGQQ+rT5428QxV5eyY7iJlFwr9ZR 9v/V58/43yM3whhXh6vFpSietqzD14pHaTsXTapHJX/9uLVOOzRZNqZbLcBgX587 LrIsEWiDluySrv6rFzNsPdTTkmZmaoYNfCk9YR8VBgMEwZJ6YG+YZ32TI/ev52+a LDWqz5UKl4/mwvBw3qFt9CoZX1WYkK9jFScBGbqVZp3rccqljqSbDVdBNlGUvpCS jJhZoiW+j7R+hJccTQBLRHgjTJFzHS/WNxIkPYzjG6rJvdDKCiAlygAxbKkt7/uR rSCV3iDm72+p+dhKR1PhwCoR+B7pOsS1WLQ0XZYkJUgsuEGeIkm9TOzyrTs= -----END CERTIFICATE-----Generated at Mon Oct 20 20:26:32 2025 by rpki-client