$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa File: 8504b97b-070b-4a27-bdb7-8e64f1610647.roa (raw, json) Hash identifier: 6Z8C2N0pVT71XiYnucbiuNZNZrH9M/ffNGPlNGKxe4A= Subject key identifier: 90:56:7F:8D:EA:12:FB:4C:B4:C9:09:24:83:D7:91:0A:6D:5A:04:DA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0B516EED80625BB2EFE6CF94603CACEC1DD19C51 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa Signing time: Mon 13 Oct 2025 16:10:36 +0000 ROA not before: Mon 13 Oct 2025 16:10:36 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:51:6e:ed:80:62:5b:b2:ef:e6:cf:94:60:3c:ac:ec:1d:d1:9c:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:10:36 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=12b8d62b2efd6cb7acd8e23cce3c251a1e9bc31f93269f9ac3d7a8e82cd1398e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:27:5a:ef:e8:86:fb:e7:73:ac:66:88:16:01: 31:36:32:8a:6f:77:f9:b9:f7:46:13:99:73:68:a1: dc:e4:70:37:ee:c5:11:5d:63:2b:0e:7e:a5:00:cc: 10:fc:f7:b5:cc:fc:c9:8e:40:96:dd:ab:5d:ea:4c: cf:35:34:51:50:0b:7f:cc:d2:a5:6e:be:b2:87:7b: 7a:81:36:c8:61:bc:99:62:36:46:76:4f:e2:56:2c: 80:71:b1:74:5b:4a:15:69:c5:31:b4:e4:09:fb:f6: b7:e7:76:2c:3b:e3:af:8f:3c:88:31:24:07:ad:b6: 48:6c:32:2d:77:6e:3c:7d:9d:fb:ab:df:b3:09:5c: e1:66:9e:83:ce:70:94:fa:bc:97:02:9c:72:ec:4b: ef:88:1b:58:7e:1f:cf:a9:34:e6:db:31:2a:60:31: 78:1e:1a:c6:c2:24:cb:f7:01:22:63:ca:2b:4f:ba: cf:a4:71:cf:0e:0e:1b:89:9c:2c:25:cf:68:43:fb: c0:8a:0c:5b:2a:7f:2d:a6:4a:48:9f:c8:7e:8f:ac: 8f:64:1b:36:a5:14:8e:91:37:a0:5d:2e:38:b4:0d: 07:af:70:1c:39:f5:ce:08:64:62:43:f2:f2:2c:74: aa:6a:1d:96:e4:e6:f9:01:5a:d3:b1:93:ab:2e:f1: 2b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:56:7F:8D:EA:12:FB:4C:B4:C9:09:24:83:D7:91:0A:6D:5A:04:DA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.253.0/24 Signature Algorithm: sha256WithRSAEncryption 22:20:2d:4e:9f:83:54:ef:ed:bf:e1:38:80:e9:53:5a:ab:cf: 2a:c3:82:6b:ad:3f:3c:8c:2a:df:9d:73:bc:91:52:df:07:42: 33:11:e4:16:f2:a1:a9:cd:f6:f7:e0:14:03:41:0d:3b:dc:78: 09:e2:21:22:49:0f:7c:49:1a:97:5b:48:c5:86:0c:07:7f:05: 94:47:cf:5c:37:59:ae:67:86:15:9e:61:1a:49:46:97:6e:89: f6:49:3b:03:dc:67:65:68:e2:66:15:5b:7e:a1:20:0a:9f:7b: 6a:8d:0e:c6:9c:3d:6e:38:f7:39:d6:51:a9:06:2c:74:80:53: ed:c1:f5:10:5e:4c:7f:d9:4b:83:ff:92:d5:29:9b:7d:08:48: 27:52:56:71:29:c0:6f:a8:e3:d2:0b:6f:34:a2:85:22:35:15: ac:e4:5b:a5:6e:eb:d4:a0:16:80:2f:08:c5:5a:bd:7a:28:59: 19:75:3a:ab:ab:1b:5a:ed:da:a4:bf:9a:17:50:5b:db:25:7c: e9:5c:66:cb:3b:bb:5d:f7:2e:0d:9c:34:6f:32:a9:2f:2b:2e: ce:82:6a:9e:7f:3a:71:bf:f5:77:4f:e8:eb:e0:5c:61:72:ac: d2:63:d5:83:ce:b0:72:59:56:9f:07:93:40:5f:86:dc:36:3e: 36:1d:9d:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC1Fu7YBiW7Lv5s+UYDys7B3RnFEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYxMDM2WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMmI4ZDYyYjJlZmQ2Y2I3YWNkOGUyM2NjZTNjMjUxYTFl OWJjMzFmOTMyNjlmOWFjM2Q3YThlODJjZDEzOThlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmJ1rv6Ib753OsZogWATE2Mopvd/m590YTmXNoodzkcDfu xRFdYysOfqUAzBD897XM/MmOQJbdq13qTM81NFFQC3/M0qVuvrKHe3qBNshhvJli NkZ2T+JWLIBxsXRbShVpxTG05An79rfndiw746+PPIgxJAettkhsMi13bjx9nfur 37MJXOFmnoPOcJT6vJcCnHLsS++IG1h+H8+pNObbMSpgMXgeGsbCJMv3ASJjyitP us+kcc8ODhuJnCwlz2hD+8CKDFsqfy2mSkifyH6PrI9kGzalFI6RN6BdLji0DQev cBw59c4IZGJD8vIsdKpqHZbk5vkBWtOxk6su8Sv1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkFZ/jeoS+0y0yQkkg9eRCm1aBNowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg1MDRiOTdiLTA3MGItNGEyNy1iZGI3LThlNjRmMTYxMDY0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/0wDQYJKoZIhvcNAQELBQADggEBACIgLU6fg1Tv7b/hOIDpU1qrzyrD gmutPzyMKt+dc7yRUt8HQjMR5BbyoanN9vfgFANBDTvceAniISJJD3xJGpdbSMWG DAd/BZRHz1w3Wa5nhhWeYRpJRpduifZJOwPcZ2Vo4mYVW36hIAqfe2qNDsacPW44 9znWUakGLHSAU+3B9RBeTH/ZS4P/ktUpm30ISCdSVnEpwG+o49ILbzSihSI1Fazk W6Vu69SgFoAvCMVavXooWRl1OqurG1rt2qS/mhdQW9slfOlcZss7u133Lg2cNG8y qS8rLs6Cap5/OnG/9XdP6OvgXGFyrNJj1YPOsHJZVp8Hk0Bfhtw2PjYdnRQ= -----END CERTIFICATE-----Generated at Mon Oct 20 22:49:05 2025 by rpki-client