$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa File: 9c668317-9f28-4868-b993-30a89bb71db1.roa (raw, json) Hash identifier: uUSTKrYHvIutIs4Fu8KMbiKTge93Wm8Og0axIoJDhtg= Subject key identifier: 68:21:1F:A1:81:72:7A:61:78:9B:EB:5E:E6:51:4A:28:4A:78:65:7B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3662EFE54972D5241A77DC697FB1066569CB5809 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa Signing time: Tue 19 Aug 2025 00:40:51 +0000 ROA not before: Tue 19 Aug 2025 00:40:51 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:62:ef:e5:49:72:d5:24:1a:77:dc:69:7f:b1:06:65:69:cb:58:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Aug 19 00:40:51 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=e24a663d40fc984da0c96eccf28cb77d6485c87887b24d42a0475517f0c38728, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ee:94:d7:a5:c3:43:70:da:e5:01:c2:48:a7: be:51:11:bb:97:ba:e2:08:c7:90:d7:cf:53:8b:e3: ee:22:6e:a8:07:98:57:c4:5b:62:e7:f1:26:74:3f: c2:35:17:98:a5:b3:78:20:99:f4:4f:60:34:99:38: d9:9e:8d:e0:3a:f1:d0:d4:cb:0c:b4:7e:0a:93:f1: 56:62:43:8a:d0:6b:35:94:2b:b8:3f:e7:8e:88:b9: 99:f2:ec:77:f1:16:c8:3e:a1:54:d0:e6:35:2b:bc: 31:6b:c7:c5:40:d2:52:66:48:2b:bb:7c:3f:c3:76: 9a:82:80:64:6b:d5:d6:07:ae:78:0e:d5:3a:a5:d1: 77:9b:9b:26:88:dc:ba:d0:9a:b1:86:04:d8:db:d7: 63:06:31:0a:6d:47:00:d4:3a:69:cf:40:cf:9e:8f: a7:3a:46:1e:e6:02:5a:8e:66:10:84:cd:4c:f1:39: 1a:5e:3e:dd:36:b5:39:cd:32:32:52:c1:95:f0:71: d2:70:22:e6:e7:09:ff:ae:19:2d:b7:2d:b4:81:0e: 6e:26:7c:94:3b:5d:19:d7:23:64:98:98:6d:85:d1: e0:2f:28:36:9f:23:d2:0c:6d:2d:5f:ca:13:fa:96: da:c5:f5:03:9d:0d:50:ab:72:78:3e:b6:11:bc:11: 8a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:21:1F:A1:81:72:7A:61:78:9B:EB:5E:E6:51:4A:28:4A:78:65:7B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption 22:16:82:25:c8:36:62:a8:7c:c3:04:0f:64:77:da:70:50:8f: e5:e9:14:40:8b:8d:05:f4:2b:42:76:a8:76:38:95:d2:fa:dc: 36:38:9c:ca:4b:f4:0a:d6:74:0f:6a:1e:f7:aa:7f:21:ac:01: d2:d5:ce:eb:25:85:81:4e:28:c9:cf:e9:16:94:70:23:4f:0e: b4:47:b8:5a:f1:39:a2:d5:fa:72:72:2d:cb:84:b9:86:ba:11: 4e:68:b9:16:37:7b:01:23:49:17:7e:37:11:8c:94:70:dc:74: a4:16:30:c9:88:2c:b8:d3:ff:0f:be:c9:96:d1:d0:37:26:f2: 9b:c0:f7:cb:90:f7:23:10:d1:54:1f:9c:8b:1a:7f:50:53:79: 30:5f:41:5d:25:f5:0c:95:b1:95:7d:8f:88:90:2e:c3:e2:5a: f9:b6:55:84:c6:ec:b8:7c:46:73:a2:ba:aa:b2:12:1d:cb:bb: 21:c9:65:52:30:59:c9:4d:2b:cb:d6:be:19:a0:46:03:52:35: 92:25:42:b4:1c:76:06:d3:3d:de:25:1a:69:59:83:eb:b8:d0: fa:be:a6:bd:cc:ed:99:71:6d:72:c9:81:30:c6:16:d1:54:f3: b4:7a:97:c8:f4:c1:0a:f5:8b:a7:9e:5d:7f:7f:e3:49:3f:4a: fb:e7:d4:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNmLv5Uly1SQad9xpf7EGZWnLWAkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwODE5MDA0MDUxWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjRhNjYzZDQwZmM5ODRkYTBjOTZlY2NmMjhjYjc3ZDY0 ODVjODc4ODdiMjRkNDJhMDQ3NTUxN2YwYzM4NzI4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo7pTXpcNDcNrlAcJIp75REbuXuuIIx5DXz1OL4+4ibqgH mFfEW2Ln8SZ0P8I1F5ils3ggmfRPYDSZONmejeA68dDUywy0fgqT8VZiQ4rQazWU K7g/546IuZny7HfxFsg+oVTQ5jUrvDFrx8VA0lJmSCu7fD/DdpqCgGRr1dYHrngO 1Tql0XebmyaI3LrQmrGGBNjb12MGMQptRwDUOmnPQM+ej6c6Rh7mAlqOZhCEzUzx ORpePt02tTnNMjJSwZXwcdJwIubnCf+uGS23LbSBDm4mfJQ7XRnXI2SYmG2F0eAv KDafI9IMbS1fyhP6ltrF9QOdDVCrcng+thG8EYrhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaCEfoYFyemF4m+te5lFKKEp4ZXswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzljNjY4MzE3LTlmMjgtNDg2OC1iOTkzLTMwYTg5YmI3MWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBACIWgiXINmKofMMED2R32nBQj+Xp FECLjQX0K0J2qHY4ldL63DY4nMpL9ArWdA9qHveqfyGsAdLVzuslhYFOKMnP6RaU cCNPDrRHuFrxOaLV+nJyLcuEuYa6EU5ouRY3ewEjSRd+NxGMlHDcdKQWMMmILLjT /w++yZbR0Dcm8pvA98uQ9yMQ0VQfnIsaf1BTeTBfQV0l9QyVsZV9j4iQLsPiWvm2 VYTG7Lh8RnOiuqqyEh3LuyHJZVIwWclNK8vWvhmgRgNSNZIlQrQcdgbTPd4lGmlZ g+u40Pq+pr3M7ZlxbXLJgTDGFtFU87R6l8j0wQr1i6eeXX9/40k/Svvn1E8= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:55 2025 by rpki-client