$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c32b425b-e340-4616-869c-f2181a061354.roa File: c32b425b-e340-4616-869c-f2181a061354.roa (raw, json) Hash identifier: FATe0TWPh09ZUk/Rh8ejfYQ1fkH2B3FwjIQgsRiecOU= Subject key identifier: 98:0F:C6:02:56:08:5B:2D:4C:54:E1:E8:32:64:C1:5C:AD:2B:8C:67 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5FE7911A243AF7D93E485216BAC262F375A0D4BE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c32b425b-e340-4616-869c-f2181a061354.roa Signing time: Mon 13 Oct 2025 16:01:04 +0000 ROA not before: Mon 13 Oct 2025 16:01:04 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e7:91:1a:24:3a:f7:d9:3e:48:52:16:ba:c2:62:f3:75:a0:d4:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:01:04 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=22411b0c278b8f16525f583ac83f89bbca932c04d7f2d59ce4d6206b12824323, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:df:3c:28:b5:65:87:ff:eb:41:b4:7f:77:92: 65:9c:89:3c:17:f2:4e:fd:8a:73:b3:44:22:8a:87: ae:9f:bf:8d:7d:93:d5:79:9f:a6:f2:96:2f:15:04: 6d:10:48:3e:a8:dc:e6:36:2b:59:b7:fe:0b:31:1d: bd:d3:bf:72:56:81:da:39:3f:51:12:01:ce:99:39: ac:66:b4:af:93:b0:d9:a6:46:34:6e:cd:9f:dd:7b: 10:9d:1b:52:53:08:5b:a8:05:eb:aa:c6:9a:44:a4: 2b:e2:b2:c6:72:c2:8b:94:0a:9d:db:c7:4a:58:93: ba:19:f4:f7:8c:2c:5e:3b:74:bd:f2:61:30:5f:cf: 6e:e9:1b:ae:1b:6e:91:db:d0:6e:da:21:b8:56:47: ca:63:56:68:eb:92:82:47:da:2f:b4:6a:4d:61:7f: fc:5f:9a:74:1f:b5:f8:fa:e7:66:6b:a1:60:6a:10: 0e:f6:cd:3c:15:ba:76:aa:92:97:3e:bd:9b:53:95: ec:14:fd:98:8c:57:44:8f:22:3f:42:71:fc:49:46: f3:83:bd:00:1f:65:fc:e2:59:d1:66:5a:4d:5a:69: a2:a5:9a:26:b2:45:4b:86:0c:e2:04:02:5d:ac:e5: 55:bd:f7:7f:1a:22:02:df:1b:1e:42:4b:a1:cc:ad: 3a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:0F:C6:02:56:08:5B:2D:4C:54:E1:E8:32:64:C1:5C:AD:2B:8C:67 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c32b425b-e340-4616-869c-f2181a061354.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.188.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:7d:81:4c:2b:ab:10:87:01:a3:6d:0c:9d:76:d2:87:91:61: ea:3d:01:47:55:4a:63:63:35:16:32:a1:7b:10:c6:84:ad:b7: 17:83:60:c7:06:60:c4:bc:b2:2e:08:72:ee:ad:55:6a:bb:7d: f3:d2:a4:db:38:ac:03:2b:ca:e1:3a:d2:5f:45:f4:a1:15:06: bd:ac:c9:23:c8:32:f4:ae:8e:a5:e8:fe:f7:2b:e8:3a:0b:65: 42:f2:d1:f1:1e:46:4e:a8:09:95:3c:8b:8f:4e:33:b5:5f:b5: 12:a3:5e:44:10:14:7b:08:db:e2:98:63:8b:0b:e3:8a:30:95: 7d:ef:98:b6:d6:ef:a7:23:c7:16:c2:29:a3:cd:52:3b:24:6c: 3f:bd:71:22:c8:18:60:f2:45:4e:79:08:4e:39:bf:ec:d3:09: 70:96:97:33:67:cf:a3:14:16:31:b3:21:ad:e0:d0:44:04:42: 39:16:94:c5:e3:3c:d4:9e:3a:41:a0:36:20:5e:2b:e8:74:47: f0:01:77:d3:61:c3:80:46:54:12:70:46:d9:28:6b:ce:96:f0: 7b:49:c2:90:43:46:28:ab:5d:f4:e4:2e:b4:81:ac:fa:b0:98: 52:06:88:db:bc:f1:2a:99:d2:4b:57:6e:f1:ac:15:47:c6:b3: 8d:12:6a:86 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX+eRGiQ699k+SFIWusJi83Wg1L4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYwMTA0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjQxMWIwYzI3OGI4ZjE2NTI1ZjU4M2FjODNmODliYmNh OTMyYzA0ZDdmMmQ1OWNlNGQ2MjA2YjEyODI0MzIzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM3zwotWWH/+tBtH93kmWciTwX8k79inOzRCKKh66fv419 k9V5n6byli8VBG0QSD6o3OY2K1m3/gsxHb3Tv3JWgdo5P1ESAc6ZOaxmtK+TsNmm RjRuzZ/dexCdG1JTCFuoBeuqxppEpCvissZywouUCp3bx0pYk7oZ9PeMLF47dL3y YTBfz27pG64bbpHb0G7aIbhWR8pjVmjrkoJH2i+0ak1hf/xfmnQftfj652ZroWBq EA72zTwVunaqkpc+vZtTlewU/ZiMV0SPIj9CcfxJRvODvQAfZfziWdFmWk1aaaKl miayRUuGDOIEAl2s5VW9938aIgLfGx5CS6HMrTr3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmA/GAlYIWy1MVOHoMmTBXK0rjGcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2MzMmI0MjViLWUzNDAtNDYxNi04NjljLWYyMTgxYTA2MTM1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALM9rwwDQYJKoZIhvcNAQELBQADggEBAHt9gUwrqxCHAaNtDJ120oeRYeo9 AUdVSmNjNRYyoXsQxoSttxeDYMcGYMS8si4Icu6tVWq7ffPSpNs4rAMryuE60l9F 9KEVBr2sySPIMvSujqXo/vcr6DoLZULy0fEeRk6oCZU8i49OM7VftRKjXkQQFHsI 2+KYY4sL44owlX3vmLbW76cjxxbCKaPNUjskbD+9cSLIGGDyRU55CE45v+zTCXCW lzNnz6MUFjGzIa3g0EQEQjkWlMXjPNSeOkGgNiBeK+h0R/ABd9Nhw4BGVBJwRtko a86W8HtJwpBDRiirXfTkLrSBrPqwmFIGiNu88SqZ0ktXbvGsFUfGs40SaoY= -----END CERTIFICATE-----Generated at Tue Oct 21 03:50:08 2025 by rpki-client