$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4572f970-7843-4c7d-acbd-2a8779e47ceb.roa File: 4572f970-7843-4c7d-acbd-2a8779e47ceb.roa (raw, json) Hash identifier: V1QYUaazagan4UCiT/a1TJK8VQHEhRwDUaKvifyiTCM= Subject key identifier: 14:5D:52:E7:21:F0:FF:91:BC:ED:08:11:D3:15:18:95:04:CB:91:7F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4C814579C895BFB42DBB7B0641B95665DE7D0590 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4572f970-7843-4c7d-acbd-2a8779e47ceb.roa Signing time: Mon 13 Oct 2025 16:10:53 +0000 ROA not before: Mon 13 Oct 2025 16:10:53 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:81:45:79:c8:95:bf:b4:2d:bb:7b:06:41:b9:56:65:de:7d:05:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:10:53 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=35003b69d46cdbbf49415927bb55c45b0bcf759ebdb2f6a6b284adcfb1f14a34, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:01:31:e2:86:43:c1:0e:31:e0:e2:e7:2e:bc: f0:39:06:6f:06:c4:e3:eb:26:23:c4:60:06:b0:9f: 49:ac:13:5f:cd:28:60:5c:a0:94:0d:8c:b2:8b:15: 25:ad:8d:e3:e3:d7:4d:09:a7:cc:03:24:d7:d4:cc: f9:d8:b9:e6:61:49:06:41:3b:a7:75:bf:19:fa:54: 03:a5:e5:30:39:ac:31:f9:82:14:44:66:a0:3b:65: ab:14:8e:62:58:5b:77:f8:ae:9a:6c:d2:1b:17:10: d6:cd:7e:3f:3f:c5:f8:6b:10:e7:22:f8:ed:b0:a2: 8f:64:0b:00:6f:d8:b2:52:95:d8:32:ca:31:ab:f4: 37:4f:ed:0e:c8:e4:cd:e6:40:69:09:7d:31:9b:a8: 62:45:80:7a:d8:5b:55:20:17:67:8a:09:f6:a4:fc: 62:df:f8:9c:07:5c:f2:ab:bf:35:6e:8e:66:3f:3f: da:4e:4e:be:ad:8e:9f:b3:5d:5a:48:e4:55:22:5d: 9e:56:40:6d:d4:6a:0d:33:6f:fd:b0:df:94:92:5c: 97:9b:b9:c4:90:67:cc:10:c3:30:3e:7f:a6:38:9c: 97:99:35:60:69:ca:36:e3:66:82:c5:4d:41:08:9d: ee:0b:92:d3:99:e3:92:14:dd:f6:fa:ed:9f:c0:75: d8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5D:52:E7:21:F0:FF:91:BC:ED:08:11:D3:15:18:95:04:CB:91:7F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4572f970-7843-4c7d-acbd-2a8779e47ceb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.212.0/23 Signature Algorithm: sha256WithRSAEncryption 60:b9:42:8e:a9:60:53:5d:aa:03:df:f2:28:cc:65:eb:87:ec: 23:5c:4b:10:73:07:cb:12:40:77:56:8a:de:b7:97:f2:c6:c0: c4:77:47:a4:a8:0e:dd:d1:82:49:8e:c8:47:95:0d:60:d3:f5: ea:6e:59:84:ea:72:81:b2:a5:32:83:5e:f0:73:b9:9f:3c:41: b6:03:6e:20:93:8c:db:7d:d4:0d:43:2d:42:21:34:71:9e:07: 76:7c:64:5f:34:80:b1:6a:d6:6e:8e:11:30:71:8d:af:cb:69: 58:79:3f:b6:24:79:ee:da:f3:ab:13:7f:e7:f8:a7:75:6d:8f: 14:de:c8:bd:09:00:39:a1:c7:39:38:54:1a:e2:b8:e5:c8:7a: 47:90:9e:85:d5:8f:61:42:99:8c:52:4e:d5:bc:c8:49:3c:7b: 6c:3b:d2:1e:9b:c3:d4:12:f2:97:09:24:d3:7e:14:cf:92:d0: 80:d0:1d:af:d2:2f:1a:dd:23:14:b8:8d:6c:c2:23:e5:55:6c: c6:b0:40:9c:71:a0:00:1f:3f:52:ba:77:ed:d7:fd:a7:8a:e6: df:dc:39:e2:66:5f:0a:be:c1:48:a5:bb:83:1c:db:7a:89:34: b5:49:5f:3a:1d:6f:d4:c8:93:34:f4:f9:24:7c:b8:ea:f6:22: c6:da:08:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTIFFeciVv7Qtu3sGQblWZd59BZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYxMDUzWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTAwM2I2OWQ0NmNkYmJmNDk0MTU5MjdiYjU1YzQ1YjBi Y2Y3NTllYmRiMmY2YTZiMjg0YWRjZmIxZjE0YTM0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOATHihkPBDjHg4ucuvPA5Bm8GxOPrJiPEYAawn0msE1/N KGBcoJQNjLKLFSWtjePj100Jp8wDJNfUzPnYueZhSQZBO6d1vxn6VAOl5TA5rDH5 ghREZqA7ZasUjmJYW3f4rpps0hsXENbNfj8/xfhrEOci+O2woo9kCwBv2LJSldgy yjGr9DdP7Q7I5M3mQGkJfTGbqGJFgHrYW1UgF2eKCfak/GLf+JwHXPKrvzVujmY/ P9pOTr6tjp+zXVpI5FUiXZ5WQG3Uag0zb/2w35SSXJebucSQZ8wQwzA+f6Y4nJeZ NWBpyjbjZoLFTUEIne4LktOZ45IU3fb67Z/AddgFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFF1S5yHw/5G87QgR0xUYlQTLkX8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQ1NzJmOTcwLTc4NDMtNGM3ZC1hY2JkLTJhODc3OWU0N2NlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHN+9QwDQYJKoZIhvcNAQELBQADggEBAGC5Qo6pYFNdqgPf8ijMZeuH7CNc SxBzB8sSQHdWit63l/LGwMR3R6SoDt3RgkmOyEeVDWDT9epuWYTqcoGypTKDXvBz uZ88QbYDbiCTjNt91A1DLUIhNHGeB3Z8ZF80gLFq1m6OETBxja/LaVh5P7Ykee7a 86sTf+f4p3VtjxTeyL0JADmhxzk4VBriuOXIekeQnoXVj2FCmYxSTtW8yEk8e2w7 0h6bw9QS8pcJJNN+FM+S0IDQHa/SLxrdIxS4jWzCI+VVbMawQJxxoAAfP1K6d+3X /aeK5t/cOeJmXwq+wUilu4Mc23qJNLVJXzodb9TIkzT0+SR8uOr2IsbaCM8= -----END CERTIFICATE-----Generated at Tue Oct 21 01:28:13 2025 by rpki-client