$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9cd01a84-700c-47a6-9c4a-a49fe785d210.roa File: 9cd01a84-700c-47a6-9c4a-a49fe785d210.roa (raw, json) Hash identifier: q0W/IwiEbqg7Szb+KArv3xA899HKCi6fT5Pb0lGvhmg= Subject key identifier: AC:7F:05:5C:EE:F6:19:01:4C:F0:6D:1B:CE:64:57:6F:54:2C:65:2F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 12B085AC5DBC7364CE74BB93C330B74E92724006 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9cd01a84-700c-47a6-9c4a-a49fe785d210.roa Signing time: Mon 13 Oct 2025 16:20:59 +0000 ROA not before: Mon 13 Oct 2025 16:20:59 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b0:85:ac:5d:bc:73:64:ce:74:bb:93:c3:30:b7:4e:92:72:40:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:20:59 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=e0d98026c1beac1b6565e516072a36f0736b949bcef872b80b65b1c865edfa95, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b4:bd:76:e0:49:85:64:95:08:13:e4:98:3d: 2e:64:0c:98:cf:c3:11:00:da:1d:e6:ff:46:11:13: 62:85:07:3d:02:ff:65:97:3a:2a:c6:83:56:23:b3: 52:ed:b0:07:1c:06:2a:ce:d0:96:b6:4b:0e:fd:ae: 78:9a:47:1e:03:03:84:5a:e7:f9:42:d5:ac:2b:41: 33:f3:ca:a0:d7:16:a5:23:6c:c2:55:af:27:9e:65: 38:1b:85:2c:66:84:51:c5:da:a6:c1:78:5c:cc:b0: fd:2a:2c:bd:a8:15:d1:cd:a9:b5:0e:be:cf:7f:f6: ac:8b:75:d2:82:9e:c1:54:1f:71:d7:69:30:86:d7: 6f:fb:81:2c:95:a5:e6:ea:c3:5a:2d:9c:1b:a8:3d: 8d:f8:72:49:e8:57:9a:06:fa:0b:a2:6b:eb:57:fc: 70:13:43:d8:cb:54:d2:7b:3b:55:66:1e:7a:bb:43: 82:6f:ba:db:a9:c0:e2:39:25:76:6a:f9:5f:3e:6b: 96:94:33:e9:33:37:a4:8f:4f:f3:72:5d:03:cd:82: b9:3a:0a:19:9f:83:9e:ee:a4:a2:8f:4f:81:9e:0a: c7:c8:e5:3e:b6:99:8a:bf:a2:da:ea:3e:d7:aa:39: ea:b6:74:b3:f9:58:12:39:81:52:1c:3f:e1:0a:82: b9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:7F:05:5C:EE:F6:19:01:4C:F0:6D:1B:CE:64:57:6F:54:2C:65:2F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9cd01a84-700c-47a6-9c4a-a49fe785d210.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.220.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:bb:67:66:13:d5:d9:6e:82:1b:01:12:1c:fd:68:c8:a6:7b: e1:55:84:41:d3:9b:d0:24:b0:02:c8:45:46:73:48:c0:aa:d3: 24:6a:49:6d:ee:80:a2:69:b2:10:db:01:60:03:25:07:1e:e0: 29:7e:9b:04:95:4a:ae:a7:7b:18:53:21:c0:6a:02:e6:16:c5: 15:e7:6b:d9:3d:f6:26:e8:9c:71:54:96:be:95:b7:11:ac:71: be:83:70:81:67:08:d0:20:84:4b:7d:ea:ef:5e:09:69:4a:b8: 0b:dc:d6:49:61:c9:e2:c6:3c:06:79:c5:fd:43:b5:2d:00:2d: 7d:92:db:da:b0:f1:b6:db:60:5c:ce:53:9f:84:d9:c8:fd:64: f9:2b:61:13:f8:1e:79:03:6c:f3:30:28:55:46:43:ac:50:63: df:0b:5f:06:01:8b:28:c6:34:f9:88:a5:b4:9b:44:e3:b0:11: 40:14:b9:58:cb:79:ff:bd:0e:8c:99:f5:05:c9:63:8b:65:5c: 92:4c:77:54:9a:b5:38:7e:e9:f7:b4:f2:7e:05:2a:b5:0c:e5: 4b:83:cd:35:b8:08:82:28:2f:ff:d7:c9:5e:bf:3e:60:1a:cb: 29:a5:aa:88:92:63:48:0d:1f:16:49:cd:c7:3c:95:4f:40:0b: be:b7:b5:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUErCFrF28c2TOdLuTwzC3TpJyQAYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYyMDU5WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGQ5ODAyNmMxYmVhYzFiNjU2NWU1MTYwNzJhMzZmMDcz NmI5NDliY2VmODcyYjgwYjY1YjFjODY1ZWRmYTk1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCstL124EmFZJUIE+SYPS5kDJjPwxEA2h3m/0YRE2KFBz0C /2WXOirGg1Yjs1LtsAccBirO0Ja2Sw79rniaRx4DA4Ra5/lC1awrQTPzyqDXFqUj bMJVryeeZTgbhSxmhFHF2qbBeFzMsP0qLL2oFdHNqbUOvs9/9qyLddKCnsFUH3HX aTCG12/7gSyVpebqw1otnBuoPY34cknoV5oG+guia+tX/HATQ9jLVNJ7O1VmHnq7 Q4JvutupwOI5JXZq+V8+a5aUM+kzN6SPT/NyXQPNgrk6Chmfg57upKKPT4GeCsfI 5T62mYq/otrqPteqOeq2dLP5WBI5gVIcP+EKgrl/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrH8FXO72GQFM8G0bzmRXb1QsZS8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzljZDAxYTg0LTcwMGMtNDdhNi05YzRhLWE0OWZlNzg1ZDIxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+9wwDQYJKoZIhvcNAQELBQADggEBAGu7Z2YT1dlughsBEhz9aMime+FV hEHTm9AksALIRUZzSMCq0yRqSW3ugKJpshDbAWADJQce4Cl+mwSVSq6nexhTIcBq AuYWxRXna9k99ibonHFUlr6VtxGscb6DcIFnCNAghEt96u9eCWlKuAvc1klhyeLG PAZ5xf1DtS0ALX2S29qw8bbbYFzOU5+E2cj9ZPkrYRP4HnkDbPMwKFVGQ6xQY98L XwYBiyjGNPmIpbSbROOwEUAUuVjLef+9DoyZ9QXJY4tlXJJMd1SatTh+6fe08n4F KrUM5UuDzTW4CIIoL//XyV6/PmAayymlqoiSY0gNHxZJzcc8lU9AC763te4= -----END CERTIFICATE-----Generated at Mon Oct 20 20:25:41 2025 by rpki-client