$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8f75ffa9-914b-49e1-aad4-2af12d8537a9.roa File: 8f75ffa9-914b-49e1-aad4-2af12d8537a9.roa (raw, json) Hash identifier: UjyVLSzyIqK9QBDhgKbIlPI2EnKRnay6GBFGbSXuxJA= Subject key identifier: 89:49:E9:38:21:C9:7C:64:AA:F7:D8:8E:14:1D:57:A1:6B:04:BB:DF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7255B21C4D5A619AFB4CC1E7CD0567889B68459F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8f75ffa9-914b-49e1-aad4-2af12d8537a9.roa Signing time: Mon 13 Oct 2025 16:01:02 +0000 ROA not before: Mon 13 Oct 2025 16:01:02 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:55:b2:1c:4d:5a:61:9a:fb:4c:c1:e7:cd:05:67:88:9b:68:45:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:01:02 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=8f7571ce5aaceb4eb6b81aa09249951e6019ae780ce152179c86207ba639d8c8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:89:88:1f:3e:9e:88:c8:8e:e6:a8:84:1f:ec: b7:d8:c2:d5:2c:13:a2:de:cd:f9:5f:50:f4:a6:48: f9:cf:5f:a3:f7:71:69:3c:28:b5:78:43:9b:71:a4: 1a:15:ec:89:74:a4:28:2d:56:d2:fd:56:2f:29:72: 75:0d:dd:15:37:3d:d0:ad:b3:cd:ff:70:6c:53:ce: 72:5d:54:9a:b0:83:c7:a2:b2:92:0d:61:f3:cc:54: 0f:ab:6f:a0:00:2e:67:1d:63:a2:d2:74:18:07:c3: 85:da:5f:6a:68:0d:ba:7f:56:94:8a:9c:d5:8f:95: 88:31:42:ac:da:3f:8f:78:e8:74:38:41:06:ec:c1: fd:e7:8a:a7:cc:6a:c1:36:c3:f5:04:9b:ca:72:61: 0c:1b:17:be:a7:e7:a8:14:f6:e4:db:c9:b4:ad:84: bd:ff:5d:60:9f:d7:71:1a:d9:79:03:b1:68:74:24: ad:55:77:26:0c:7d:8e:de:57:5e:e7:7f:e2:02:c4: 3b:3a:b6:98:11:59:39:09:fe:53:88:8e:43:43:b1: fc:5b:b5:28:21:09:1d:96:08:e8:4f:bb:a2:31:23: 3e:14:cc:2d:4e:fd:aa:fe:38:e1:7c:6a:6a:6c:d6: e3:7e:c1:a9:2c:95:1c:7a:69:ab:ae:2f:2c:ec:e4: aa:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:49:E9:38:21:C9:7C:64:AA:F7:D8:8E:14:1D:57:A1:6B:04:BB:DF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8f75ffa9-914b-49e1-aad4-2af12d8537a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.190.0/24 Signature Algorithm: sha256WithRSAEncryption bc:43:5a:e0:dc:c4:57:2e:c2:32:34:4e:c2:6a:46:c6:74:c7: b0:82:c5:74:cd:49:a4:8e:d1:31:f2:9c:ed:2f:a4:a7:f1:cc: 7d:6e:65:ec:30:d9:9e:3f:23:80:a8:4d:64:a0:89:5a:64:bc: ed:9b:33:8b:60:6e:7a:2c:93:cf:ec:63:dd:d8:f2:2a:d8:53: 85:4b:6a:7b:11:bb:b9:d2:f0:e7:25:5a:a3:aa:c3:b2:75:cc: 2b:47:01:53:6f:c1:ad:c9:ea:b9:df:24:09:bf:5c:fa:0e:01: 01:fe:09:79:ee:68:49:de:3c:36:16:63:42:97:76:45:0a:40: 5d:1d:04:57:1e:28:5f:bf:a9:6e:95:85:85:98:06:9f:76:ee: 9d:41:e7:ba:0c:37:50:87:0d:eb:29:35:bd:23:9d:27:90:e1: 01:07:58:a0:52:0e:b9:3c:6e:0d:26:eb:61:e2:ec:60:2d:8b: 6f:9e:1b:82:23:14:8c:2f:7d:9e:9d:71:48:5b:3f:6e:c7:7e: a1:c1:82:fc:f5:50:87:27:d9:ad:01:e1:e4:ae:4b:7c:7b:e1: 33:dd:88:d5:e2:47:3d:21:24:5e:47:34:a6:e3:7c:00:24:e3: 5d:25:06:d8:68:0c:d9:88:5a:da:81:f1:5c:90:09:a0:51:a8: f7:1a:f2:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUclWyHE1aYZr7TMHnzQVniJtoRZ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYwMTAyWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4Zjc1NzFjZTVhYWNlYjRlYjZiODFhYTA5MjQ5OTUxZTYw MTlhZTc4MGNlMTUyMTc5Yzg2MjA3YmE2MzlkOGM4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMiYgfPp6IyI7mqIQf7LfYwtUsE6LezflfUPSmSPnPX6P3 cWk8KLV4Q5txpBoV7Il0pCgtVtL9Vi8pcnUN3RU3PdCts83/cGxTznJdVJqwg8ei spINYfPMVA+rb6AALmcdY6LSdBgHw4XaX2poDbp/VpSKnNWPlYgxQqzaP4946HQ4 QQbswf3niqfMasE2w/UEm8pyYQwbF76n56gU9uTbybSthL3/XWCf13Ea2XkDsWh0 JK1VdyYMfY7eV17nf+ICxDs6tpgRWTkJ/lOIjkNDsfxbtSghCR2WCOhPu6IxIz4U zC1O/ar+OOF8amps1uN+wakslRx6aauuLyzs5KpXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiUnpOCHJfGSq99iOFB1XoWsEu98wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzhmNzVmZmE5LTkxNGItNDllMS1hYWQ0LTJhZjEyZDg1MzdhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADM9r4wDQYJKoZIhvcNAQELBQADggEBALxDWuDcxFcuwjI0TsJqRsZ0x7CC xXTNSaSO0THynO0vpKfxzH1uZeww2Z4/I4CoTWSgiVpkvO2bM4tgbnosk8/sY93Y 8irYU4VLansRu7nS8OclWqOqw7J1zCtHAVNvwa3J6rnfJAm/XPoOAQH+CXnuaEne PDYWY0KXdkUKQF0dBFceKF+/qW6VhYWYBp927p1B57oMN1CHDespNb0jnSeQ4QEH WKBSDrk8bg0m62Hi7GAti2+eG4IjFIwvfZ6dcUhbP27HfqHBgvz1UIcn2a0B4eSu S3x74TPdiNXiRz0hJF5HNKbjfAAk410lBthoDNmIWtqB8VyQCaBRqPca8uY= -----END CERTIFICATE-----Generated at Mon Oct 20 20:26:31 2025 by rpki-client