$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b919d412-26c0-4530-894c-3c4594a7ad41.roa File: b919d412-26c0-4530-894c-3c4594a7ad41.roa (raw, json) Hash identifier: vZjerMO3edx3UbrYRymC0fWkrr+U6qGAwHuSTqqaM38= Subject key identifier: 8C:E8:1A:D0:F6:8D:9B:EB:D2:28:17:13:5E:71:C7:7E:04:6F:55:CD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5F25CF9A19D36016FF49E868592255C17E35B26B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b919d412-26c0-4530-894c-3c4594a7ad41.roa Signing time: Mon 13 Oct 2025 16:20:44 +0000 ROA not before: Mon 13 Oct 2025 16:20:44 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:25:cf:9a:19:d3:60:16:ff:49:e8:68:59:22:55:c1:7e:35:b2:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:20:44 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=f62fbead4d8ac9086e19d9a5a3a837a1830f07aed6b78f2e6ae84e94a2a2878c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:ff:15:75:2e:f4:7d:2f:c9:27:94:a9:94:d0: af:01:f5:6a:d4:7e:28:82:c3:b6:6e:f7:98:ac:08: b3:a4:3a:10:b2:e2:22:6e:53:84:f7:84:b9:99:a8: 3c:2f:03:3b:d7:96:38:84:c1:dc:c0:0e:37:5c:72: 3d:84:e1:8c:c4:39:23:46:c0:3d:9b:8d:9f:50:9c: 2a:95:19:ae:ca:23:85:ff:f0:37:5b:69:4a:cb:f0: a2:a6:31:cb:e8:a0:c9:7b:e7:87:b2:b6:20:b0:ee: b2:f0:7b:45:cc:fe:70:7b:55:55:3a:1a:98:bf:95: 36:b9:b1:85:3d:eb:f7:6e:e3:2f:69:ab:00:59:a5: 2d:6e:b5:d5:90:3e:b0:2a:20:9e:79:7b:60:5c:c0: 9c:e1:27:dd:ed:10:a5:2c:73:eb:82:31:0d:b9:c3: 45:9d:ee:9d:3e:a5:02:b8:de:29:14:3d:0a:c2:42: a6:38:09:74:c2:91:19:c7:a8:eb:ad:6e:d1:58:d3: 1c:ed:f0:ce:b5:35:db:6c:be:b1:23:eb:57:52:47: 52:23:90:2b:fd:60:6e:20:4a:98:f6:1e:08:52:44: dc:f4:34:e1:e7:37:ac:e7:65:5a:97:81:55:46:d8: e4:67:63:f6:ff:46:ca:95:9f:4b:25:78:03:03:0a: 67:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E8:1A:D0:F6:8D:9B:EB:D2:28:17:13:5E:71:C7:7E:04:6F:55:CD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b919d412-26c0-4530-894c-3c4594a7ad41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption a8:ee:d7:13:1b:ff:85:b3:67:90:c9:0b:18:62:85:be:04:51: 1b:b2:6c:d6:ca:ff:87:74:c8:6f:f5:e7:1e:2c:ab:d7:67:70: 43:c2:6b:41:17:5a:c1:83:7c:85:db:59:c2:6f:d8:e6:58:16: 06:0f:77:37:42:a6:cd:cb:b7:ed:18:06:08:0a:6d:0c:ae:7c: 70:45:b0:9d:95:24:33:76:04:cb:3e:3d:06:2c:40:21:5b:3c: 20:59:d2:a8:9d:05:d0:82:98:8f:8f:ae:4e:10:c9:a6:05:b0: 5a:ef:ff:46:63:25:c0:ac:ae:8a:66:dc:c2:65:71:b7:e0:f9: 59:32:2b:3f:dd:50:41:29:5f:91:48:d0:c3:41:e0:56:02:7c: b9:d2:63:10:db:2a:60:14:e1:69:9c:22:31:88:b8:9d:8f:2c: 11:2b:19:ef:ad:66:0c:af:d0:e6:92:be:fc:68:96:81:97:47: 89:04:a0:3c:69:8e:ec:6c:fd:9a:57:30:59:07:95:c0:ec:cb: a2:f6:a3:20:3f:f2:8d:b7:69:7c:b5:3f:47:75:67:84:44:c2: f2:93:79:ea:bc:64:8d:ff:f7:cf:4e:42:f5:d3:1f:cd:0f:05: 6f:12:03:f4:42:12:43:7b:0a:93:8e:8f:de:0d:aa:89:b2:4b: 8e:5a:4b:0a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXyXPmhnTYBb/SehoWSJVwX41smswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYyMDQ0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjJmYmVhZDRkOGFjOTA4NmUxOWQ5YTVhM2E4MzdhMTgz MGYwN2FlZDZiNzhmMmU2YWU4NGU5NGEyYTI4NzhjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP/xV1LvR9L8knlKmU0K8B9WrUfiiCw7Zu95isCLOkOhCy 4iJuU4T3hLmZqDwvAzvXljiEwdzADjdccj2E4YzEOSNGwD2bjZ9QnCqVGa7KI4X/ 8DdbaUrL8KKmMcvooMl754eytiCw7rLwe0XM/nB7VVU6Gpi/lTa5sYU96/du4y9p qwBZpS1utdWQPrAqIJ55e2BcwJzhJ93tEKUsc+uCMQ25w0Wd7p0+pQK43ikUPQrC QqY4CXTCkRnHqOutbtFY0xzt8M61NdtsvrEj61dSR1IjkCv9YG4gSpj2HghSRNz0 NOHnN6znZVqXgVVG2ORnY/b/RsqVn0sleAMDCmf7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjOga0PaNm+vSKBcTXnHHfgRvVc0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2I5MTlkNDEyLTI2YzAtNDUzMC04OTRjLTNjNDU5NGE3YWQ0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN++QwDQYJKoZIhvcNAQELBQADggEBAKju1xMb/4WzZ5DJCxhihb4EURuy bNbK/4d0yG/15x4sq9dncEPCa0EXWsGDfIXbWcJv2OZYFgYPdzdCps3Lt+0YBggK bQyufHBFsJ2VJDN2BMs+PQYsQCFbPCBZ0qidBdCCmI+Prk4QyaYFsFrv/0ZjJcCs ropm3MJlcbfg+VkyKz/dUEEpX5FI0MNB4FYCfLnSYxDbKmAU4WmcIjGIuJ2PLBEr Ge+tZgyv0OaSvvxoloGXR4kEoDxpjuxs/ZpXMFkHlcDsy6L2oyA/8o23aXy1P0d1 Z4REwvKTeeq8ZI3/989OQvXTH80PBW8SA/RCEkN7CpOOj94NqomyS45aSwo= -----END CERTIFICATE-----Generated at Tue Oct 21 03:23:42 2025 by rpki-client