$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db4ef3c9-3999-4ca9-95a6-f167379a1331.roa File: db4ef3c9-3999-4ca9-95a6-f167379a1331.roa (raw, json) Hash identifier: VY8MeQMAWoE3JSuLl28BOEX16TqMmqzdXQTeGMK+V6w= Subject key identifier: 5E:39:B6:36:8E:E6:0A:CF:C1:F8:B1:74:D4:98:39:A9:B9:2A:5B:3C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3B1E9AD98CFA36B4683ABE699B6D8D91B4F3619B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db4ef3c9-3999-4ca9-95a6-f167379a1331.roa Signing time: Mon 13 Oct 2025 16:40:04 +0000 ROA not before: Mon 13 Oct 2025 16:40:04 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:1e:9a:d9:8c:fa:36:b4:68:3a:be:69:9b:6d:8d:91:b4:f3:61:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:40:04 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=401f9cf8b27b4b2b7e45a864c0425c70ea7227d28758347c70c7b5f11fcf5bef, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e1:aa:e9:31:b2:0f:00:fc:e1:c0:49:70:97: 72:dc:bc:38:7d:fb:52:2f:af:c3:15:d2:3e:df:84: ea:2d:d0:07:8c:a7:31:b7:7e:ee:31:f9:c8:50:09: a9:1e:c8:9c:0b:79:4b:fa:e7:cf:a6:24:ec:3d:c7: b8:52:01:6d:1f:79:5d:51:5c:1b:d2:58:d0:6e:b8: c9:8f:6a:6d:ba:cb:ff:58:92:23:49:a8:19:2f:1f: 4b:d4:86:6f:06:c4:83:47:b4:b3:22:a9:ac:5e:11: 10:55:a5:ca:0d:48:04:db:eb:67:2a:45:a5:3b:fc: 91:44:b5:fa:72:a3:6f:c9:9c:0b:92:0d:aa:4c:d5: d2:f6:7f:1d:2e:9e:c7:b2:4c:38:0b:cd:fa:fc:17: 7d:20:24:d6:24:9e:db:bc:f6:6c:26:d7:8a:25:85: 9d:ab:57:a2:29:33:c4:73:95:9a:07:63:7f:11:3c: 85:ae:8a:b7:47:bf:26:82:51:4e:1f:7f:02:1f:d7: d5:9c:30:00:4f:46:68:04:62:af:01:8a:41:6a:78: 7c:e0:f6:c6:ae:3b:b8:76:18:87:50:fb:9a:3d:bd: 2e:6e:a9:a5:b4:a7:46:00:1f:b4:71:5b:e3:9c:d2: c7:cb:1f:26:d4:e5:8f:f0:ea:7b:92:e0:fd:a8:b0: 23:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:39:B6:36:8E:E6:0A:CF:C1:F8:B1:74:D4:98:39:A9:B9:2A:5B:3C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db4ef3c9-3999-4ca9-95a6-f167379a1331.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.52.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:53:1a:94:2c:33:18:5d:2e:b8:ca:c4:23:a2:de:b1:f9:f0: 26:e2:61:32:44:1e:44:a3:3d:0f:dd:a4:72:7f:9c:82:00:47: 43:66:9b:9c:67:68:4d:65:42:c0:66:db:50:dd:82:7c:fe:4a: 85:86:aa:a5:65:b6:57:03:bf:75:69:ea:43:1c:dd:94:cb:c3: cb:de:a8:72:41:35:aa:34:1f:6e:65:81:f7:1f:ac:24:9e:8d: e9:6b:d3:7b:29:73:9a:b7:de:9f:df:98:bc:f4:07:05:53:f7: f8:61:ae:3c:c0:87:24:a4:60:fa:41:a5:fd:15:cc:c4:63:84: 03:e4:e2:df:6f:8a:b0:48:60:da:16:6b:6a:f3:d3:24:92:f2: ca:a5:ae:6e:23:31:6e:62:39:b4:3f:57:96:cc:76:7f:89:fd: e9:da:ee:9f:51:24:3c:67:7f:42:de:09:b0:cb:db:ce:b2:b1: 4b:1d:c1:b3:0e:59:02:f2:5a:97:d3:a2:bc:82:d4:ec:4c:d3: ac:23:a2:0f:fe:fb:80:34:4c:c6:86:0b:59:d4:b3:5c:97:89: a7:a1:58:5d:29:ee:7f:1e:de:69:65:53:63:79:82:eb:2e:93: 13:14:59:cf:0c:93:10:38:55:3f:9e:b5:20:ad:3c:f5:73:90: 41:6f:de:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOx6a2Yz6NrRoOr5pm22NkbTzYZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTY0MDA0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDFmOWNmOGIyN2I0YjJiN2U0NWE4NjRjMDQyNWM3MGVh NzIyN2QyODc1ODM0N2M3MGM3YjVmMTFmY2Y1YmVmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDg4arpMbIPAPzhwElwl3LcvDh9+1Ivr8MV0j7fhOot0AeM pzG3fu4x+chQCakeyJwLeUv658+mJOw9x7hSAW0feV1RXBvSWNBuuMmPam26y/9Y kiNJqBkvH0vUhm8GxINHtLMiqaxeERBVpcoNSATb62cqRaU7/JFEtfpyo2/JnAuS DapM1dL2fx0unseyTDgLzfr8F30gJNYkntu89mwm14olhZ2rV6IpM8RzlZoHY38R PIWuirdHvyaCUU4ffwIf19WcMABPRmgEYq8BikFqeHzg9sauO7h2GIdQ+5o9vS5u qaW0p0YAH7RxW+Oc0sfLHybU5Y/w6nuS4P2osCN5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXjm2No7mCs/B+LF01Jg5qbkqWzwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RiNGVmM2M5LTM5OTktNGNhOS05NWE2LWYxNjczNzlhMTMzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYiTQwDQYJKoZIhvcNAQELBQADggEBAHtTGpQsMxhdLrjKxCOi3rH58Cbi YTJEHkSjPQ/dpHJ/nIIAR0Nmm5xnaE1lQsBm21Ddgnz+SoWGqqVltlcDv3Vp6kMc 3ZTLw8veqHJBNao0H25lgfcfrCSejelr03spc5q33p/fmLz0BwVT9/hhrjzAhySk YPpBpf0VzMRjhAPk4t9virBIYNoWa2rz0ySS8sqlrm4jMW5iObQ/V5bMdn+J/ena 7p9RJDxnf0LeCbDL286ysUsdwbMOWQLyWpfToryC1OxM06wjog/++4A0TMaGC1nU s1yXiaehWF0p7n8e3mllU2N5gusukxMUWc8MkxA4VT+etSCtPPVzkEFv3rg= -----END CERTIFICATE-----Generated at Mon Oct 20 12:48:30 2025 by rpki-client