$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9059b527-9679-4b94-9a47-8b5acbdb5c95.roa File: 9059b527-9679-4b94-9a47-8b5acbdb5c95.roa (raw, json) Hash identifier: cC5ZkWBku8wdhCJa91fDt1Y2a0Ex9Q+S8ENMrsxq8/4= Subject key identifier: 81:A3:4D:0A:A2:95:CB:29:D6:EF:C3:71:0E:01:47:6D:3D:A2:E2:15 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 76C8BC1A7AFE4918D3EC99F9FD89C4115A3238FE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9059b527-9679-4b94-9a47-8b5acbdb5c95.roa Signing time: Mon 13 Oct 2025 16:10:07 +0000 ROA not before: Mon 13 Oct 2025 16:10:07 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c8:bc:1a:7a:fe:49:18:d3:ec:99:f9:fd:89:c4:11:5a:32:38:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:10:07 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=ee68540e58cb189823e17d830a05a8ed166ca87f774d53e56ebd054d33360e8d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f7:cf:d5:e5:c6:5f:84:2c:d6:98:ef:cf:f1: 86:8b:68:23:fc:21:bc:8c:e6:c4:13:2b:50:2a:8f: 9f:c9:8c:39:c3:f2:37:bd:70:1f:37:65:e7:74:b4: 8d:5b:fb:11:c3:66:0c:46:42:07:e6:8c:92:98:ef: 40:cf:a5:d9:98:dd:30:b8:6a:75:13:48:6c:42:17: b2:09:ad:12:fb:a9:ab:70:61:b6:19:6b:95:a6:10: 92:16:37:e5:1b:12:91:c4:4c:5d:0e:23:16:62:d4: c9:00:0f:9f:d1:90:e3:fb:2a:c4:1a:ce:44:bb:a8: d9:a3:df:f4:74:ab:a8:8a:2a:35:9b:96:b6:50:b2: d7:9d:63:fe:64:ed:cc:72:8d:9c:d2:bd:17:3c:52: 44:b2:1c:5e:04:a6:e1:1e:70:7d:b1:86:8c:6f:98: 96:4d:74:17:91:9b:29:fd:2a:97:08:c5:b6:ca:cb: 90:34:48:2f:05:21:6a:93:f4:51:71:d9:3e:0d:86: 35:49:f7:e5:0e:fa:78:9e:bb:94:e4:fd:c3:61:ea: 63:0b:61:65:44:6d:a8:44:ff:05:7e:c6:82:ee:c0: 5e:bd:98:a3:a2:dc:63:df:33:b2:0b:7d:11:4e:e7: 24:b0:fc:6d:65:23:05:e5:4e:bf:31:9b:99:d8:65: 64:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A3:4D:0A:A2:95:CB:29:D6:EF:C3:71:0E:01:47:6D:3D:A2:E2:15 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9059b527-9679-4b94-9a47-8b5acbdb5c95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.172.0/24 Signature Algorithm: sha256WithRSAEncryption 50:81:56:e1:52:75:6c:07:f4:e1:29:ec:26:06:6d:6d:c8:df: bf:23:94:85:45:66:e3:c5:0b:86:2c:d5:65:96:7b:49:7d:7b: 6b:e6:81:1c:8b:e5:1b:66:b8:f5:d8:02:f3:d1:60:44:b8:00: 12:4e:94:69:ae:21:b8:44:70:44:54:62:e7:fa:8e:b5:39:dc: 86:c5:c4:a5:36:8c:02:52:e1:0e:91:01:bf:21:78:a2:82:a5: 1d:ec:70:aa:e8:14:1c:40:9b:0e:65:90:a1:a7:cd:f4:b6:ce: 0f:56:55:fe:cb:44:53:3d:fb:0d:dc:83:17:dc:71:88:57:3e: 53:11:7f:8e:4b:55:ce:a8:ee:73:aa:ff:9a:4f:0e:87:7c:83: b3:25:da:9d:e8:b5:58:98:5b:a4:90:6a:62:3f:ef:fa:b9:a2: 05:85:b4:a9:7f:95:e9:21:06:dd:62:71:1f:54:6b:b0:81:d8: 8f:f4:b2:68:96:5c:06:e8:aa:b2:84:25:a0:ef:5e:77:e2:93: 21:de:03:c1:4e:78:99:0d:a6:f7:7d:ce:a4:ee:4b:8a:eb:2d: dc:c7:68:5c:70:3d:c7:65:c5:de:4d:b7:57:da:6b:28:70:44: 56:b9:95:98:1b:1d:df:61:fb:15:e9:35:42:ba:08:f7:74:d6: d9:eb:0a:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdsi8Gnr+SRjT7Jn5/YnEEVoyOP4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYxMDA3WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTY4NTQwZTU4Y2IxODk4MjNlMTdkODMwYTA1YThlZDE2 NmNhODdmNzc0ZDUzZTU2ZWJkMDU0ZDMzMzYwZThkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC398/V5cZfhCzWmO/P8YaLaCP8IbyM5sQTK1Aqj5/JjDnD 8je9cB83Zed0tI1b+xHDZgxGQgfmjJKY70DPpdmY3TC4anUTSGxCF7IJrRL7qatw YbYZa5WmEJIWN+UbEpHETF0OIxZi1MkAD5/RkOP7KsQazkS7qNmj3/R0q6iKKjWb lrZQstedY/5k7cxyjZzSvRc8UkSyHF4EpuEecH2xhoxvmJZNdBeRmyn9KpcIxbbK y5A0SC8FIWqT9FFx2T4NhjVJ9+UO+nieu5Tk/cNh6mMLYWVEbahE/wV+xoLuwF69 mKOi3GPfM7ILfRFO5ySw/G1lIwXlTr8xm5nYZWQbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgaNNCqKVyynW78NxDgFHbT2i4hUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzkwNTliNTI3LTk2NzktNGI5NC05YTQ3LThiNWFjYmRiNWM5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADM9qwwDQYJKoZIhvcNAQELBQADggEBAFCBVuFSdWwH9OEp7CYGbW3I378j lIVFZuPFC4Ys1WWWe0l9e2vmgRyL5RtmuPXYAvPRYES4ABJOlGmuIbhEcERUYuf6 jrU53IbFxKU2jAJS4Q6RAb8heKKCpR3scKroFBxAmw5lkKGnzfS2zg9WVf7LRFM9 +w3cgxfccYhXPlMRf45LVc6o7nOq/5pPDod8g7Ml2p3otViYW6SQamI/7/q5ogWF tKl/lekhBt1icR9Ua7CB2I/0smiWXAboqrKEJaDvXnfikyHeA8FOeJkNpvd9zqTu S4rrLdzHaFxwPcdlxd5Nt1faayhwRFa5lZgbHd9h+xXpNUK6CPd01tnrCoA= -----END CERTIFICATE-----Generated at Mon Oct 20 20:49:17 2025 by rpki-client