$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa File: 8b4d99c5-89ad-4008-a629-96e00cf5656f.roa (raw, json) Hash identifier: M/nOEms0ML/twY4ING71v7UNJXS0L/a8fvNUMoktmek= Subject key identifier: 3F:31:D9:75:7A:98:A7:92:EB:F3:BD:D8:71:D3:49:F1:6F:8C:15:FD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4B13EB5B55CA876752900376CA38AB9E2E2137C2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa Signing time: Wed 08 Oct 2025 00:51:19 +0000 ROA not before: Wed 08 Oct 2025 00:51:19 +0000 ROA not after: Wed 12 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:13:eb:5b:55:ca:87:67:52:90:03:76:ca:38:ab:9e:2e:21:37:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 8 00:51:19 2025 GMT Not After : Nov 12 23:59:59 2025 GMT Subject: serialNumber=c59f652eefb2fc13997c8c272ceff566b0e5a4ae2707505674a23d247dc37818, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4d:93:c4:e9:df:04:80:22:55:6f:41:c4:af: 91:6e:04:35:92:d9:d2:22:4f:8d:dd:55:85:de:eb: ed:0c:2f:51:68:7d:77:b9:8f:d7:de:29:b6:04:d2: 8b:d2:a5:a4:99:e7:cf:ea:09:4d:0b:94:75:f7:3e: e1:de:d6:26:68:48:5e:9e:c1:52:ae:e8:77:0b:7d: 26:bc:2f:92:bd:33:7f:e3:7b:53:55:4d:5d:aa:e9: 88:4b:47:fa:66:f6:84:0b:57:bd:04:e0:34:6f:e0: 9b:e0:7f:59:9e:94:63:ef:4f:81:d2:1c:b4:56:b8: 2e:12:8c:34:6f:71:a4:6b:9a:a9:bd:a6:ff:f9:8d: 88:6d:25:3c:f9:49:35:21:a5:c5:b5:0a:f2:f8:85: 23:7c:ad:3a:5b:b8:e9:9c:b3:63:bd:29:a7:60:f6: 50:85:1e:53:71:15:d5:e8:27:98:9a:a9:12:a6:03: e9:95:db:27:6c:37:f1:93:b6:78:11:28:1e:f0:26: ac:87:20:0e:e6:9e:72:d5:69:4c:e0:a1:bf:3e:40: 73:03:9e:43:90:1d:ad:f9:81:b7:5a:e7:22:de:4a: 31:e4:26:9a:01:4b:e2:7c:6f:34:f5:39:76:c0:aa: 3e:03:53:29:17:21:fd:c2:e9:e2:de:01:36:45:87: 7f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:31:D9:75:7A:98:A7:92:EB:F3:BD:D8:71:D3:49:F1:6F:8C:15:FD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption a2:48:55:fd:e9:17:e6:19:e0:3a:d0:90:c4:32:9f:30:4d:da: 5c:20:8f:2a:2e:8a:8a:5c:bb:e3:b1:98:58:bd:24:ff:68:e7: 64:55:54:f4:5a:58:02:20:aa:fc:a2:b9:4b:17:ab:ce:42:d6: 94:85:35:03:77:f5:f4:98:ac:a6:35:35:e3:e5:0d:8f:59:73: 06:81:05:8d:51:d0:36:51:3e:d2:20:6a:e9:5b:63:49:1a:af: 9c:0f:b3:6d:33:8d:f4:d6:e6:e9:4f:87:0c:6c:bd:7c:11:33: 69:c7:36:b0:c5:a2:3a:25:0f:ee:d9:bf:7d:42:b2:90:01:49: fd:63:50:2e:18:e8:f0:fa:c3:88:31:aa:73:99:3d:6e:09:b1: fb:22:e2:a4:96:7e:08:9f:46:37:28:cb:31:79:02:da:a6:df: c3:51:de:a8:c4:e5:90:ce:42:af:29:95:60:5e:3a:83:1e:4d: f6:2e:80:5f:aa:be:5f:3f:7a:14:9f:3f:b4:2b:a4:f4:21:17: dc:e0:07:d4:62:e7:1b:b4:e3:11:58:d8:e7:06:a8:6c:61:b1: ca:4b:0b:2f:8e:19:b6:d9:f6:1b:b7:d8:51:28:56:56:79:67: c4:d0:25:52:7d:af:76:0a:4f:24:09:c7:c4:42:13:69:cd:69: be:f5:73:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSxPrW1XKh2dSkAN2yjirni4hN8IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDA4MDA1MTE5WhcNMjUxMTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTlmNjUyZWVmYjJmYzEzOTk3YzhjMjcyY2VmZjU2NmIw ZTVhNGFlMjcwNzUwNTY3NGEyM2QyNDdkYzM3ODE4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyTZPE6d8EgCJVb0HEr5FuBDWS2dIiT43dVYXe6+0ML1Fo fXe5j9feKbYE0ovSpaSZ58/qCU0LlHX3PuHe1iZoSF6ewVKu6HcLfSa8L5K9M3/j e1NVTV2q6YhLR/pm9oQLV70E4DRv4Jvgf1melGPvT4HSHLRWuC4SjDRvcaRrmqm9 pv/5jYhtJTz5STUhpcW1CvL4hSN8rTpbuOmcs2O9Kadg9lCFHlNxFdXoJ5iaqRKm A+mV2ydsN/GTtngRKB7wJqyHIA7mnnLVaUzgob8+QHMDnkOQHa35gbda5yLeSjHk JpoBS+J8bzT1OXbAqj4DUykXIf3C6eLeATZFh38FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPzHZdXqYp5Lr873YcdNJ8W+MFf0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzhiNGQ5OWM1LTg5YWQtNDAwOC1hNjI5LTk2ZTAwY2Y1NjU2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBAKJIVf3pF+YZ4DrQkMQynzBN2lwg jyouiopcu+OxmFi9JP9o52RVVPRaWAIgqvyiuUsXq85C1pSFNQN39fSYrKY1NePl DY9ZcwaBBY1R0DZRPtIgaulbY0kar5wPs20zjfTW5ulPhwxsvXwRM2nHNrDFojol D+7Zv31CspABSf1jUC4Y6PD6w4gxqnOZPW4Jsfsi4qSWfgifRjcoyzF5Atqm38NR 3qjE5ZDOQq8plWBeOoMeTfYugF+qvl8/ehSfP7QrpPQhF9zgB9Ri5xu04xFY2OcG qGxhscpLCy+OGbbZ9hu32FEoVlZ5Z8TQJVJ9r3YKTyQJx8RCE2nNab71cwA= -----END CERTIFICATE-----Generated at Mon Oct 20 18:03:55 2025 by rpki-client