$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa File: 9c668317-9f28-4868-b993-30a89bb71db1.roa (raw, json) Hash identifier: jiAzxcbCHHNV9qUG/igCabE3F3/voNdIsgXZhlL4j6w= Subject key identifier: DA:7A:B7:9E:3A:19:0E:11:38:07:00:16:6F:81:45:C7:FB:06:DB:6F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7C482B68B940CEEC6CA4BAE0E740FFF7ABC95DC3 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa Signing time: Wed 08 Oct 2025 00:51:18 +0000 ROA not before: Wed 08 Oct 2025 00:51:18 +0000 ROA not after: Wed 12 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:48:2b:68:b9:40:ce:ec:6c:a4:ba:e0:e7:40:ff:f7:ab:c9:5d:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 8 00:51:18 2025 GMT Not After : Nov 12 23:59:59 2025 GMT Subject: serialNumber=453d6f8ae1e99725b4be45b9c853b08d6e7c1243a3602203c79438af9f80e988, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:71:19:eb:00:c8:c0:51:43:42:13:7d:fe:55: aa:98:9d:d2:32:06:7c:c0:f5:03:7b:e5:40:4f:d7: 0c:a7:8d:2f:6f:24:ea:96:7c:69:47:f7:8c:ae:c2: 3d:d4:18:fc:0b:86:e3:4d:94:4c:76:f0:ad:cf:d4: 39:23:20:0b:d2:8f:37:ff:65:67:24:89:4a:80:d6: 75:d9:a5:78:9f:1c:12:89:21:fa:37:b0:47:21:4e: d7:56:83:f2:76:bf:d2:61:85:64:c7:b6:cf:77:0c: c9:f9:e3:14:16:31:61:92:14:4c:1f:7e:11:e2:4c: 3b:c2:a8:97:10:04:91:71:36:6f:84:4a:02:ae:d4: fe:48:76:11:3d:79:4c:df:1a:86:52:27:2e:ca:68: 03:99:8e:0c:8e:a1:fb:e5:40:ad:4c:be:5d:a4:ff: cd:25:e2:b2:da:3b:19:37:08:0e:74:16:d3:17:56: ba:a5:01:8f:a9:a9:81:d7:f8:a4:39:71:25:40:63: 35:b0:db:77:b9:26:0f:64:08:ee:09:74:f5:8e:55: 3a:30:e5:7c:31:5a:7e:3a:5c:c3:1d:6a:9b:5b:ac: c9:03:50:7b:cf:fa:1e:29:a4:08:04:9e:db:a6:7f: f4:d4:59:c2:2d:0e:bc:5e:2d:9f:d6:13:3a:41:75: cb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7A:B7:9E:3A:19:0E:11:38:07:00:16:6F:81:45:C7:FB:06:DB:6F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption 36:17:31:9e:54:dc:c3:df:40:39:55:7a:98:1b:a2:fd:37:3f: c2:b7:75:52:1f:5b:60:a9:57:b1:fd:69:49:81:94:21:f0:ee: 8b:7a:cc:74:d6:67:c8:ab:16:74:dd:40:d4:b7:92:b4:0b:64: 7a:1f:44:aa:aa:18:a5:fd:cf:70:5c:5a:ea:40:42:5d:d3:11: 14:03:0c:59:1e:4c:ea:5c:83:88:89:28:c8:77:67:ba:c6:f9: 20:5c:9b:dc:71:b0:2d:70:86:56:fa:70:fe:72:df:29:55:03: 22:f9:64:c2:43:6d:21:7d:56:6d:07:93:e3:eb:4b:b2:c8:69: 50:bf:67:89:f0:4d:22:73:b8:52:19:90:67:08:4b:3a:cf:ff: 9c:17:57:75:dd:46:07:aa:84:b1:54:92:d6:b7:5f:aa:72:a6: 14:bd:8e:40:75:e2:59:21:c0:eb:c4:1c:0c:d3:fd:77:a6:24: ea:ef:e9:a3:61:85:58:08:94:ab:19:bd:0c:45:4d:e4:5d:84: 04:49:a8:0d:bf:f3:36:93:91:62:31:7c:85:10:74:ab:37:c0: ed:b1:9f:f0:38:eb:ee:df:75:82:e4:87:3d:e8:96:ee:2c:dc: 1d:8c:3e:71:48:f7:0e:ce:b4:2d:0b:9f:dc:96:cb:02:8c:30: ab:98:a6:9a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfEgraLlAzuxspLrg50D/96vJXcMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDA4MDA1MTE4WhcNMjUxMTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTNkNmY4YWUxZTk5NzI1YjRiZTQ1YjljODUzYjA4ZDZl N2MxMjQzYTM2MDIyMDNjNzk0MzhhZjlmODBlOTg4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMcRnrAMjAUUNCE33+VaqYndIyBnzA9QN75UBP1wynjS9v JOqWfGlH94yuwj3UGPwLhuNNlEx28K3P1DkjIAvSjzf/ZWckiUqA1nXZpXifHBKJ Ifo3sEchTtdWg/J2v9JhhWTHts93DMn54xQWMWGSFEwffhHiTDvCqJcQBJFxNm+E SgKu1P5IdhE9eUzfGoZSJy7KaAOZjgyOofvlQK1Mvl2k/80l4rLaOxk3CA50FtMX VrqlAY+pqYHX+KQ5cSVAYzWw23e5Jg9kCO4JdPWOVTow5XwxWn46XMMdaptbrMkD UHvP+h4ppAgEntumf/TUWcItDrxeLZ/WEzpBdcsjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2nq3njoZDhE4BwAWb4FFx/sG228wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzljNjY4MzE3LTlmMjgtNDg2OC1iOTkzLTMwYTg5YmI3MWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBADYXMZ5U3MPfQDlVepgbov03P8K3 dVIfW2CpV7H9aUmBlCHw7ot6zHTWZ8irFnTdQNS3krQLZHofRKqqGKX9z3BcWupA Ql3TERQDDFkeTOpcg4iJKMh3Z7rG+SBcm9xxsC1whlb6cP5y3ylVAyL5ZMJDbSF9 Vm0Hk+PrS7LIaVC/Z4nwTSJzuFIZkGcISzrP/5wXV3XdRgeqhLFUkta3X6pyphS9 jkB14lkhwOvEHAzT/XemJOrv6aNhhVgIlKsZvQxFTeRdhARJqA2/8zaTkWIxfIUQ dKs3wO2xn/A46+7fdYLkhz3olu4s3B2MPnFI9w7OtC0Ln9yWywKMMKuYppo= -----END CERTIFICATE-----Generated at Mon Oct 20 04:03:27 2025 by rpki-client