$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5c4acb8d-b200-4c99-a57a-c40435b1b115.roa File: 5c4acb8d-b200-4c99-a57a-c40435b1b115.roa (raw, json) Hash identifier: RaSn97/r9WRRmGtzbvYGHiN9czbZ+3ECCAhXBOvP03I= Subject key identifier: 58:B3:0E:9B:AD:B9:56:E8:FF:30:BF:B7:47:1A:FE:AB:65:52:DD:64 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 114B4BFE96280FEAC9B26FBC16F6CC6EF995165B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5c4acb8d-b200-4c99-a57a-c40435b1b115.roa Signing time: Mon 13 Oct 2025 16:20:44 +0000 ROA not before: Mon 13 Oct 2025 16:20:44 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4b:4b:fe:96:28:0f:ea:c9:b2:6f:bc:16:f6:cc:6e:f9:95:16:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:20:44 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=fd032de123192ad484a5facd11443bf228d3c3595e936fa64c12c385a5ac5902, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7d:ca:f4:9c:eb:3d:f3:bd:06:79:e3:1e:29: 04:3b:70:f6:a2:94:1f:b2:22:78:fc:25:13:99:34: 7b:8a:ac:f2:9e:3f:fc:11:8e:71:45:22:eb:90:0a: 69:2d:27:37:80:fb:90:9d:ba:e9:7d:38:5e:65:a8: ee:13:e4:51:94:c2:0b:5f:10:e0:a1:77:5e:d8:41: 6e:b5:69:56:7e:9a:19:da:23:2b:8f:ed:f3:ef:1b: 9f:cd:f5:76:e3:28:83:cc:60:5d:d8:ad:68:bc:a6: a4:d3:80:f6:ae:a0:b7:59:bc:34:18:8e:f3:cf:e2: 78:5e:8f:62:7a:bc:bb:65:c5:7e:9b:b5:db:75:53: 82:3e:d4:40:5f:d2:8a:46:29:47:6c:ec:d2:08:3e: dc:27:7b:52:bf:52:95:92:0e:12:85:33:7f:5d:e0: 87:f9:9a:d6:92:27:6c:43:50:59:2e:b7:89:2e:77: b4:d3:bf:7e:98:1f:72:a9:62:c7:42:4b:af:e0:81: 54:e4:bc:fa:35:38:5f:e0:66:cb:c6:64:2a:25:ba: d9:5a:85:a0:f1:32:75:de:db:35:ca:28:12:8a:ec: 12:6f:6d:07:b7:f5:42:2a:0d:1b:55:ec:21:3a:4c: 4e:5c:b8:9d:34:12:d7:a5:1e:e2:5b:11:bf:71:10: e2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B3:0E:9B:AD:B9:56:E8:FF:30:BF:B7:47:1A:FE:AB:65:52:DD:64 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5c4acb8d-b200-4c99-a57a-c40435b1b115.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.232.0/22 Signature Algorithm: sha256WithRSAEncryption a3:f6:9f:d8:a7:12:84:de:61:de:ca:51:ae:c2:ed:c1:c2:eb: 77:73:0d:c1:79:c8:bf:e0:d3:ac:c0:de:7c:3f:15:db:93:5c: 27:94:3d:ce:97:0e:2d:32:9f:9d:7d:4c:77:97:a6:78:5d:38: 99:51:46:49:6b:a9:ce:63:d8:5f:7c:89:3d:0e:6b:4b:ff:90: cb:06:4a:c4:6a:e8:d2:82:13:66:80:2a:c0:58:4f:52:b7:d9: 89:86:96:82:58:a6:05:0d:07:2a:80:cf:1d:40:51:34:0d:28: 9c:ac:23:24:b5:bf:a8:e1:e6:80:6a:23:41:de:0b:11:04:dd: 98:67:ce:2c:9d:88:4c:7f:49:b2:ef:66:74:37:1a:30:5b:41: fd:7c:c9:bb:3c:10:87:67:bb:64:1b:2d:3a:05:10:a4:a2:34: 6b:f8:a4:28:f6:86:90:13:57:64:7b:b4:26:ed:8c:d4:c2:15: 37:fd:bd:7c:c2:21:f8:43:6f:cf:c0:45:5b:3c:a8:a5:14:e3: 33:fa:06:a0:43:d9:40:66:86:3e:b1:1b:8d:cf:d1:75:22:d4: ae:3d:42:1a:a9:79:a1:9e:7e:31:38:50:7a:96:c0:d6:f0:fc: 37:3d:dc:10:8e:03:40:3b:38:0a:f5:c7:be:65:74:89:33:2b: 91:fd:9f:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEUtL/pYoD+rJsm+8FvbMbvmVFlswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYyMDQ0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDAzMmRlMTIzMTkyYWQ0ODRhNWZhY2QxMTQ0M2JmMjI4 ZDNjMzU5NWU5MzZmYTY0YzEyYzM4NWE1YWM1OTAyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0fcr0nOs9870GeeMeKQQ7cPailB+yInj8JROZNHuKrPKe P/wRjnFFIuuQCmktJzeA+5Cduul9OF5lqO4T5FGUwgtfEOChd17YQW61aVZ+mhna IyuP7fPvG5/N9XbjKIPMYF3YrWi8pqTTgPauoLdZvDQYjvPP4nhej2J6vLtlxX6b tdt1U4I+1EBf0opGKUds7NIIPtwne1K/UpWSDhKFM39d4If5mtaSJ2xDUFkut4ku d7TTv36YH3KpYsdCS6/ggVTkvPo1OF/gZsvGZColutlahaDxMnXe2zXKKBKK7BJv bQe39UIqDRtV7CE6TE5cuJ00EtelHuJbEb9xEOKVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWLMOm625Vuj/ML+3Rxr+q2VS3WQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzVjNGFjYjhkLWIyMDAtNGM5OS1hNTdhLWM0MDQzNWIxYjExNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN++gwDQYJKoZIhvcNAQELBQADggEBAKP2n9inEoTeYd7KUa7C7cHC63dz DcF5yL/g06zA3nw/FduTXCeUPc6XDi0yn519THeXpnhdOJlRRklrqc5j2F98iT0O a0v/kMsGSsRq6NKCE2aAKsBYT1K32YmGloJYpgUNByqAzx1AUTQNKJysIyS1v6jh 5oBqI0HeCxEE3ZhnziydiEx/SbLvZnQ3GjBbQf18ybs8EIdnu2QbLToFEKSiNGv4 pCj2hpATV2R7tCbtjNTCFTf9vXzCIfhDb8/ARVs8qKUU4zP6BqBD2UBmhj6xG43P 0XUi1K49QhqpeaGefjE4UHqWwNbw/Dc93BCOA0A7OAr1x75ldIkzK5H9n5c= -----END CERTIFICATE-----Generated at Tue Oct 21 01:07:38 2025 by rpki-client