$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7ab4749a-d738-4b7a-bb25-de70caff0d86.roa File: 7ab4749a-d738-4b7a-bb25-de70caff0d86.roa (raw, json) Hash identifier: E7mlZ632dRD+ax4jkX2JdpFFwEkRfXf92J9ktQxTF7s= Subject key identifier: AB:26:FB:3E:00:46:B7:DB:11:0C:61:57:5A:11:CA:6A:66:76:06:FD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0112D657F4EC9758F473C05B6F11960C9849FBDA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7ab4749a-d738-4b7a-bb25-de70caff0d86.roa Signing time: Mon 13 Oct 2025 16:38:15 +0000 ROA not before: Mon 13 Oct 2025 16:38:15 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:12:d6:57:f4:ec:97:58:f4:73:c0:5b:6f:11:96:0c:98:49:fb:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:38:15 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=e97f02697ee6d9c8f74acabd57b66181d69fd893cd9ceab58579b35893bd32b7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3b:aa:dd:4b:57:eb:89:f1:29:06:84:27:d0: 65:6a:1f:fd:16:0f:9c:03:8a:5e:29:84:3f:df:a6: 0e:7e:a7:01:6f:9a:81:e9:87:13:5e:26:03:58:d8: 46:e9:03:4e:9e:5b:28:72:99:f4:18:ff:91:8e:8d: af:e6:a6:14:91:94:3c:db:0f:0e:b5:63:9b:96:9e: 35:4f:9a:26:bb:67:12:87:05:ad:06:47:e6:12:78: f3:92:99:c2:7f:20:10:28:b6:02:4d:2a:33:b2:b9: ce:6f:8a:26:41:80:6f:db:8a:25:84:cd:8f:cb:0f: da:b4:53:30:29:b4:2e:d3:e4:38:2f:96:db:f9:41: 30:c3:b5:81:46:1f:0f:19:97:66:75:45:1a:8a:04: 3d:ad:03:58:88:f2:89:02:9d:7f:e0:59:79:91:03: 19:d4:3b:24:45:ba:1a:ec:34:4c:dd:a2:fd:d9:e0: 13:9f:29:a4:24:a1:25:3d:88:0f:2e:33:59:25:a1: 91:39:8f:61:4d:db:2d:73:bb:6f:b9:1c:1a:09:7c: ff:1d:2d:8a:12:8f:b8:bf:d2:70:77:0b:6b:8a:c2: 16:b2:a2:13:cb:26:9a:bb:b4:01:de:9f:d2:8e:fb: d2:5f:e1:27:cc:c5:d6:df:a2:2b:7e:0c:ac:55:c3: 84:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:26:FB:3E:00:46:B7:DB:11:0C:61:57:5A:11:CA:6A:66:76:06:FD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7ab4749a-d738-4b7a-bb25-de70caff0d86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.34.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:f2:70:c3:aa:11:10:9c:d9:43:0c:12:95:09:36:0b:c7:c2: 8b:95:64:e5:ff:a8:d2:26:40:8c:19:ec:8d:1d:75:fe:9e:86: b8:12:98:5b:5d:36:bf:cf:43:a4:e6:b9:39:9a:7b:82:0a:cc: db:da:92:66:b6:96:f3:11:34:8c:b2:32:3c:a1:99:cd:41:1f: c0:d4:ce:27:22:11:89:fd:a5:7d:10:62:35:fe:ba:09:88:a1: 88:78:c9:b7:63:63:25:c9:0e:bd:e1:8f:89:0e:c7:47:73:fe: 71:77:ac:bc:1e:62:58:41:f0:2e:c0:b9:48:47:b7:f2:e4:3b: 00:f8:40:9f:c2:ce:ac:b1:c5:fd:22:a0:b0:c8:07:98:b9:21: a9:b6:c8:92:30:f2:b1:1d:56:8c:f8:7c:ae:bd:80:9f:2a:e0: 18:7f:c0:a2:2d:79:90:b8:2c:20:2b:b8:fb:16:4a:ad:b0:18: ba:bc:05:36:15:6a:32:3a:e4:3d:d1:67:11:22:a2:37:c4:9e: 08:6b:36:a4:cb:38:41:76:c1:dd:09:07:85:5c:ef:01:4a:d5: a1:e0:c4:57:60:af:83:70:00:d5:5e:7f:30:07:95:e6:f6:f7: 80:04:80:81:2a:41:b4:5d:33:09:05:78:7b:b3:b2:0b:4a:1a: 88:63:ce:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUARLWV/Tsl1j0c8BbbxGWDJhJ+9owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYzODE1WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTdmMDI2OTdlZTZkOWM4Zjc0YWNhYmQ1N2I2NjE4MWQ2 OWZkODkzY2Q5Y2VhYjU4NTc5YjM1ODkzYmQzMmI3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3O6rdS1frifEpBoQn0GVqH/0WD5wDil4phD/fpg5+pwFv moHphxNeJgNY2EbpA06eWyhymfQY/5GOja/mphSRlDzbDw61Y5uWnjVPmia7ZxKH Ba0GR+YSePOSmcJ/IBAotgJNKjOyuc5viiZBgG/biiWEzY/LD9q0UzAptC7T5Dgv ltv5QTDDtYFGHw8Zl2Z1RRqKBD2tA1iI8okCnX/gWXmRAxnUOyRFuhrsNEzdov3Z 4BOfKaQkoSU9iA8uM1kloZE5j2FN2y1zu2+5HBoJfP8dLYoSj7i/0nB3C2uKwhay ohPLJpq7tAHen9KO+9Jf4SfMxdbfoit+DKxVw4QpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqyb7PgBGt9sRDGFXWhHKamZ2Bv0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzdhYjQ3NDlhLWQ3MzgtNGI3YS1iYjI1LWRlNzBjYWZmMGQ4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADYiSIwDQYJKoZIhvcNAQELBQADggEBAFrycMOqERCc2UMMEpUJNgvHwouV ZOX/qNImQIwZ7I0ddf6ehrgSmFtdNr/PQ6TmuTmae4IKzNvakma2lvMRNIyyMjyh mc1BH8DUziciEYn9pX0QYjX+ugmIoYh4ybdjYyXJDr3hj4kOx0dz/nF3rLweYlhB 8C7AuUhHt/LkOwD4QJ/Czqyxxf0ioLDIB5i5Iam2yJIw8rEdVoz4fK69gJ8q4Bh/ wKIteZC4LCAruPsWSq2wGLq8BTYVajI65D3RZxEiojfEnghrNqTLOEF2wd0JB4Vc 7wFK1aHgxFdgr4NwANVefzAHleb294AEgIEqQbRdMwkFeHuzsgtKGohjznM= -----END CERTIFICATE-----Generated at Mon Oct 20 18:10:55 2025 by rpki-client