$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ffc3692b-e822-4ac4-b642-1b4e9c95812d.roa File: ffc3692b-e822-4ac4-b642-1b4e9c95812d.roa (raw, json) Hash identifier: OP6IKPFhAkNwxyvtCFWF4ukGreKjN1/YS0sGhkBQwuo= Subject key identifier: 50:39:9E:55:52:3F:1A:9B:F0:1F:B1:6D:3E:38:37:BF:3A:3E:4C:C7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 66884323F87E955CC85DC658C90CF13835456890 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ffc3692b-e822-4ac4-b642-1b4e9c95812d.roa Signing time: Mon 13 Oct 2025 16:38:44 +0000 ROA not before: Mon 13 Oct 2025 16:38:44 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:88:43:23:f8:7e:95:5c:c8:5d:c6:58:c9:0c:f1:38:35:45:68:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:38:44 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=ab29ce7bf5efb6d7c3b5094e95253320e105b77b2a8d54ce9515b64b1eb15247, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:43:b1:8c:0d:b9:1b:7b:bb:29:8d:15:82:c1: e3:7c:4c:8f:c4:f9:f8:9f:c8:8d:a8:47:9b:17:0c: 07:ea:f0:55:e2:0a:8d:85:0b:01:3a:ae:22:08:e8: 43:46:36:b7:c1:29:0f:16:3c:e5:88:07:a2:83:5f: 30:26:3c:12:6d:26:29:d6:ea:69:de:9d:21:a6:c3: 65:16:9e:7a:9b:af:8a:80:a9:40:48:38:4e:80:8e: 3e:88:ea:e6:60:4b:0b:1a:be:08:44:6c:ea:c5:b0: 17:af:69:91:3b:da:bd:66:7d:a6:15:19:82:af:cb: ec:47:34:76:30:36:ad:ba:28:f8:a1:ec:af:f5:0b: cd:16:94:65:ab:af:a1:a2:df:eb:cd:69:fb:35:73: 4c:fd:26:11:c6:df:1e:fa:55:3e:a3:58:02:f5:fd: 15:64:44:b0:02:22:cc:d3:08:f4:5a:b9:cf:e4:31: 43:75:c7:e8:f5:81:8c:4c:8f:6c:38:31:cd:3a:89: 18:d4:8f:ce:33:42:7e:07:5f:ef:28:91:6d:cd:e4: d8:02:ad:64:de:cc:9f:34:3d:d6:0c:3a:5d:76:7e: 5b:22:cf:d7:85:f5:fd:04:a4:9b:6d:b6:5e:94:2c: e9:c5:86:a5:ac:26:69:ae:bd:c3:e5:1c:25:0c:89: 4b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:39:9E:55:52:3F:1A:9B:F0:1F:B1:6D:3E:38:37:BF:3A:3E:4C:C7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ffc3692b-e822-4ac4-b642-1b4e9c95812d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.56.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:9f:87:c4:24:00:8e:37:87:ec:8f:ec:6e:0b:16:41:6d:3e: 63:bb:b3:51:07:5a:a2:bc:b5:f2:cb:f4:ec:2a:58:32:67:af: ff:0f:5e:79:d5:32:2b:42:16:e5:bb:68:6e:1e:11:db:a2:e6: a3:11:45:2c:cb:3a:89:a0:e3:e0:7c:a3:3e:3c:5a:ce:24:94: 03:61:53:9c:dc:66:37:a2:7b:82:e7:12:be:a5:49:78:6f:1f: 7c:13:93:eb:eb:93:75:31:89:51:13:c4:9b:28:42:5f:e4:91: 92:73:ad:32:1f:f7:8d:d6:a6:e5:9f:1e:4e:e7:97:7b:ea:9a: a9:48:95:1c:ea:18:06:1f:fb:23:d4:1f:cf:d2:8d:0f:8b:09: 6f:4d:e3:c8:d4:16:00:83:83:75:91:c6:51:66:f6:d6:31:17: 69:3a:1f:26:0c:d1:26:34:fb:c0:c8:ce:a6:be:bb:27:65:80: 0f:a2:d7:3b:37:79:33:34:53:70:ad:44:5c:4e:3b:e4:b5:80: 22:e0:35:d8:c4:cf:8e:aa:14:76:84:b8:d4:67:df:4a:c2:45: 0a:ec:2e:94:6a:2c:91:1c:6f:3f:fd:eb:7b:ee:1a:e4:7d:14: 5a:6d:21:d6:a6:47:08:c0:93:b4:e5:b2:ab:9d:ea:07:94:61: a0:9f:9d:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZohDI/h+lVzIXcZYyQzxODVFaJAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTYzODQ0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjI5Y2U3YmY1ZWZiNmQ3YzNiNTA5NGU5NTI1MzMyMGUx MDViNzdiMmE4ZDU0Y2U5NTE1YjY0YjFlYjE1MjQ3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClQ7GMDbkbe7spjRWCweN8TI/E+fifyI2oR5sXDAfq8FXi Co2FCwE6riII6ENGNrfBKQ8WPOWIB6KDXzAmPBJtJinW6mnenSGmw2UWnnqbr4qA qUBIOE6Ajj6I6uZgSwsavghEbOrFsBevaZE72r1mfaYVGYKvy+xHNHYwNq26KPih 7K/1C80WlGWrr6Gi3+vNafs1c0z9JhHG3x76VT6jWAL1/RVkRLACIszTCPRauc/k MUN1x+j1gYxMj2w4Mc06iRjUj84zQn4HX+8okW3N5NgCrWTezJ80PdYMOl12flsi z9eF9f0EpJtttl6ULOnFhqWsJmmuvcPlHCUMiUv9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUDmeVVI/GpvwH7FtPjg3vzo+TMcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ZmYzM2OTJiLWU4MjItNGFjNC1iNjQyLTFiNGU5Yzk1ODEyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYiTgwDQYJKoZIhvcNAQELBQADggEBABqfh8QkAI43h+yP7G4LFkFtPmO7 s1EHWqK8tfLL9OwqWDJnr/8PXnnVMitCFuW7aG4eEdui5qMRRSzLOomg4+B8oz48 Ws4klANhU5zcZjeie4LnEr6lSXhvH3wTk+vrk3UxiVETxJsoQl/kkZJzrTIf943W puWfHk7nl3vqmqlIlRzqGAYf+yPUH8/SjQ+LCW9N48jUFgCDg3WRxlFm9tYxF2k6 HyYM0SY0+8DIzqa+uydlgA+i1zs3eTM0U3CtRFxOO+S1gCLgNdjEz46qFHaEuNRn 30rCRQrsLpRqLJEcbz/963vuGuR9FFptIdamRwjAk7Tlsqud6geUYaCfnQQ= -----END CERTIFICATE-----Generated at Mon Oct 20 20:26:18 2025 by rpki-client