$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/83485132-f52f-4a9c-a472-3fdb5d8bf4d6.roa File: 83485132-f52f-4a9c-a472-3fdb5d8bf4d6.roa (raw, json) Hash identifier: MCAVrBnT+gTffMOA30mw6HMHuTJo3Yt46VHdbFqfjtg= Subject key identifier: 9C:3B:22:B7:85:AA:2B:65:2D:5B:E7:1E:00:0F:79:C7:01:13:64:F9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1FBB3187A5A401CF4E8C043E1930A647E4713DE7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/83485132-f52f-4a9c-a472-3fdb5d8bf4d6.roa Signing time: Mon 13 Oct 2025 16:38:14 +0000 ROA not before: Mon 13 Oct 2025 16:38:14 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:bb:31:87:a5:a4:01:cf:4e:8c:04:3e:19:30:a6:47:e4:71:3d:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:38:14 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=0bd42d632c8bd239015e135c54a79ab8357396e8f04c9f877771d6a2ea6fdddc, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7c:db:a7:84:09:31:69:f8:e9:c3:2c:52:f4: 9f:8d:2b:69:64:da:cb:21:da:fb:e7:64:7b:e3:86: 20:de:3d:b9:21:bc:e1:9b:ad:a6:51:ec:ca:33:94: 9e:f3:ea:de:74:f6:7a:c4:1c:9f:93:f6:0c:ef:a1: 92:d8:7a:59:ee:0f:d3:1f:c9:53:97:78:1d:fa:f7: ac:b3:ce:d1:00:ec:4e:ab:b8:2d:85:bb:d5:cb:12: ed:34:ec:40:03:9b:61:65:89:0c:57:bb:bd:8d:ef: 87:ab:c0:62:b0:10:e9:b2:1a:50:39:87:85:cc:92: 6c:f0:41:e6:b6:3d:cb:ff:3f:1d:6c:b1:02:71:42: e0:40:7c:84:87:8b:a8:6d:97:fb:60:db:25:26:6b: 6b:b0:e0:10:49:4c:87:5c:14:2e:a9:69:d1:df:a4: bc:55:99:f1:78:83:1b:dc:e1:9a:7a:43:35:93:d6: 1b:02:48:c0:25:1a:1a:8a:2e:13:48:70:f7:d8:64: f0:c3:f7:ee:1d:d4:5c:5b:48:ea:d9:6d:8f:9f:ee: ac:ae:7e:bd:84:da:1a:52:1a:1c:b1:39:4b:96:45: 7d:5b:c8:01:c5:dc:28:a0:21:22:75:95:d6:0d:cd: 5f:ce:a4:9c:3c:d4:dd:89:ab:38:6f:01:ee:b1:6e: d2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:3B:22:B7:85:AA:2B:65:2D:5B:E7:1E:00:0F:79:C7:01:13:64:F9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/83485132-f52f-4a9c-a472-3fdb5d8bf4d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.40.0/21 Signature Algorithm: sha256WithRSAEncryption c0:f0:4c:46:74:3a:66:b2:34:4b:16:af:d9:87:ce:b4:33:f6: 61:41:57:ac:58:a3:ad:c9:e3:a4:6c:5a:2f:14:f2:5f:84:e6: fa:40:d0:cc:eb:c2:17:0b:80:8c:0a:6c:c7:81:f9:9a:fa:7c: fb:6d:e6:1f:fb:01:20:ca:af:a1:7d:c0:9c:16:ab:77:e5:f6: aa:95:5a:72:ba:e8:d0:3d:bb:40:14:96:c6:06:03:55:cb:50: 8f:66:7a:47:0d:c4:8a:9e:50:b0:67:22:9a:d0:72:a3:0b:1d: 1a:77:59:13:11:c0:b8:ec:07:a9:73:90:06:44:df:b8:a5:26: e3:75:64:54:b7:df:df:66:bf:a8:52:36:9c:b4:0f:f8:76:ad: 5e:61:9b:ed:65:8d:a0:96:0f:c0:f7:67:2d:f1:14:e5:d7:b2: c9:8b:30:09:09:e8:bb:da:36:73:6f:dc:da:c0:b9:a9:a4:1c: a5:4f:9b:7b:27:73:7a:dc:5f:55:9b:d1:88:47:29:69:c1:76: bd:ef:be:ea:4a:52:18:98:7c:08:84:6c:af:d0:db:b7:71:65: 65:0b:fc:29:c6:f1:0e:0a:99:34:da:3d:15:69:26:96:e5:b8: 25:cb:79:83:2d:e7:5a:0f:12:d5:61:a7:1b:b4:27:43:bc:1f: f4:45:ba:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH7sxh6WkAc9OjAQ+GTCmR+RxPecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYzODE0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmQ0MmQ2MzJjOGJkMjM5MDE1ZTEzNWM1NGE3OWFiODM1 NzM5NmU4ZjA0YzlmODc3NzcxZDZhMmVhNmZkZGRjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzfNunhAkxafjpwyxS9J+NK2lk2ssh2vvnZHvjhiDePbkh vOGbraZR7MozlJ7z6t509nrEHJ+T9gzvoZLYelnuD9MfyVOXeB3696yzztEA7E6r uC2Fu9XLEu007EADm2FliQxXu72N74erwGKwEOmyGlA5h4XMkmzwQea2Pcv/Px1s sQJxQuBAfISHi6htl/tg2yUma2uw4BBJTIdcFC6padHfpLxVmfF4gxvc4Zp6QzWT 1hsCSMAlGhqKLhNIcPfYZPDD9+4d1FxbSOrZbY+f7qyufr2E2hpSGhyxOUuWRX1b yAHF3CigISJ1ldYNzV/OpJw81N2JqzhvAe6xbtK7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnDsit4WqK2UtW+ceAA95xwETZPkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzgzNDg1MTMyLWY1MmYtNGE5Yy1hNDcyLTNmZGI1ZDhiZjRkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYiSgwDQYJKoZIhvcNAQELBQADggEBAMDwTEZ0OmayNEsWr9mHzrQz9mFB V6xYo63J46RsWi8U8l+E5vpA0MzrwhcLgIwKbMeB+Zr6fPtt5h/7ASDKr6F9wJwW q3fl9qqVWnK66NA9u0AUlsYGA1XLUI9mekcNxIqeULBnIprQcqMLHRp3WRMRwLjs B6lzkAZE37ilJuN1ZFS3399mv6hSNpy0D/h2rV5hm+1ljaCWD8D3Zy3xFOXXssmL MAkJ6LvaNnNv3NrAuamkHKVPm3snc3rcX1Wb0YhHKWnBdr3vvupKUhiYfAiEbK/Q 27dxZWUL/CnG8Q4KmTTaPRVpJpbluCXLeYMt51oPEtVhpxu0J0O8H/RFuq4= -----END CERTIFICATE-----Generated at Mon Oct 20 20:26:49 2025 by rpki-client