$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/09324f72-174c-4531-a3c3-417a0ebf8a11.roa File: 09324f72-174c-4531-a3c3-417a0ebf8a11.roa (raw, json) Hash identifier: XLLlvSf0phx8xdlPDsXhbzlLkiy8KnpwGWCBQ+VOD4Y= Subject key identifier: 30:FF:BF:90:23:63:FC:4E:30:53:73:1B:70:6D:4F:DA:65:F2:1B:5A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7D13A36F025E16377DB05BAF2EA7196A87167570 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/09324f72-174c-4531-a3c3-417a0ebf8a11.roa Signing time: Thu 18 Sep 2025 19:52:33 +0000 ROA not before: Thu 18 Sep 2025 19:52:33 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:13:a3:6f:02:5e:16:37:7d:b0:5b:af:2e:a7:19:6a:87:16:75:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:52:33 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=a9f62b5901060941dfad27505f329023cfb1a974e99361937b53b65244034c72, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f0:b7:38:a2:66:c2:d4:d2:4e:6f:a8:88:32: 85:0d:db:e3:e0:4c:79:3c:09:3e:0a:85:bf:29:fb: 35:63:96:10:00:55:2c:d4:ac:b5:ef:51:7e:51:30: 39:ca:81:b3:20:a6:4f:25:f7:d7:f0:fe:ff:51:7b: 51:69:6f:23:36:84:29:75:f0:fe:62:3a:db:2a:5c: 4a:98:36:4a:b8:ec:fd:6b:0c:34:04:a9:c3:cd:c0: 2b:4b:06:0d:59:d2:15:32:05:94:cb:cf:a4:f1:0c: b3:e1:22:3c:3e:e0:6c:89:9a:68:b7:87:d4:10:88: 46:bd:da:98:72:ae:ff:49:fa:e1:30:cd:6f:6d:ed: 6b:ef:70:2f:56:e6:bf:6c:ca:9b:b5:1c:31:b3:03: 50:81:ca:9f:f3:fd:15:24:9e:8d:0c:73:76:93:3e: 43:a8:33:fd:1d:fd:66:91:15:fb:1f:04:c5:e6:68: 0b:e8:9a:3a:2f:68:49:64:9a:f6:48:6d:bd:46:28: 84:18:3b:dd:56:6d:99:ff:3d:b9:36:3f:7e:cc:00: ac:b8:d9:17:5e:0b:1d:ac:4a:04:f3:85:eb:f8:1d: 50:61:ef:ec:3e:9e:53:1b:e3:31:35:72:73:1e:60: d0:1f:ca:fe:92:f1:5e:33:1e:1a:e0:93:04:16:80: b9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FF:BF:90:23:63:FC:4E:30:53:73:1B:70:6D:4F:DA:65:F2:1B:5A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/09324f72-174c-4531-a3c3-417a0ebf8a11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.216.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:fc:f1:df:cf:8b:21:58:89:c3:e0:bb:e1:1c:e0:65:29:2b: 78:47:ba:dd:90:f0:6d:45:5d:2c:b0:bc:0a:17:df:4f:1e:00: ee:8b:1a:62:c4:02:34:49:cb:76:50:0c:55:3b:bd:dd:86:62: 05:1b:19:5a:3a:50:3b:60:c6:54:64:4c:66:ce:2c:f5:d7:a8: bc:77:e7:3d:b1:e4:fb:2e:7f:d0:e4:4a:a5:df:94:47:23:a6: c2:1b:ad:e3:6c:1d:b1:e3:09:2e:35:fd:b5:4d:d0:ac:09:1a: 15:d2:c6:ca:72:4a:11:2b:a6:f4:f8:d4:f3:20:a4:5c:57:62: 2b:3a:ac:ad:a0:d6:c7:48:3d:54:6b:4a:61:0f:f2:65:c9:6e: 44:80:b4:6a:ff:c9:ce:a4:5b:19:19:8c:42:af:5d:f6:eb:49: 4a:a0:aa:72:c5:33:40:84:32:7e:8f:ce:9f:c1:59:88:2e:66: d8:5a:7f:4e:d2:fc:fb:ee:ac:d1:e9:67:9b:30:7e:f3:7b:43: 33:b1:02:fa:23:62:f8:b4:9c:2f:a6:b8:83:38:42:79:76:f7: ad:bf:46:7f:c8:82:b0:39:bf:6b:54:7c:67:94:7b:44:d8:40: 15:e7:6c:74:94:6e:99:09:b0:b4:cf:cb:bc:4e:c0:ea:cf:93: 0c:9b:11:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfROjbwJeFjd9sFuvLqcZaocWdXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTk1MjMzWhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOWY2MmI1OTAxMDYwOTQxZGZhZDI3NTA1ZjMyOTAyM2Nm YjFhOTc0ZTk5MzYxOTM3YjUzYjY1MjQ0MDM0YzcyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA8Lc4ombC1NJOb6iIMoUN2+PgTHk8CT4Khb8p+zVjlhAA VSzUrLXvUX5RMDnKgbMgpk8l99fw/v9Re1FpbyM2hCl18P5iOtsqXEqYNkq47P1r DDQEqcPNwCtLBg1Z0hUyBZTLz6TxDLPhIjw+4GyJmmi3h9QQiEa92phyrv9J+uEw zW9t7WvvcC9W5r9sypu1HDGzA1CByp/z/RUkno0Mc3aTPkOoM/0d/WaRFfsfBMXm aAvomjovaElkmvZIbb1GKIQYO91WbZn/Pbk2P37MAKy42RdeCx2sSgTzhev4HVBh 7+w+nlMb4zE1cnMeYNAfyv6S8V4zHhrgkwQWgLmJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMP+/kCNj/E4wU3MbcG1P2mXyG1owHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA5MzI0ZjcyLTE3NGMtNDUzMS1hM2MzLTQxN2EwZWJmOGExMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+9gwDQYJKoZIhvcNAQELBQADggEBAJ788d/PiyFYicPgu+Ec4GUpK3hH ut2Q8G1FXSywvAoX308eAO6LGmLEAjRJy3ZQDFU7vd2GYgUbGVo6UDtgxlRkTGbO LPXXqLx35z2x5Psuf9DkSqXflEcjpsIbreNsHbHjCS41/bVN0KwJGhXSxspyShEr pvT41PMgpFxXYis6rK2g1sdIPVRrSmEP8mXJbkSAtGr/yc6kWxkZjEKvXfbrSUqg qnLFM0CEMn6Pzp/BWYguZthaf07S/PvurNHpZ5swfvN7QzOxAvojYvi0nC+muIM4 Qnl2962/Rn/IgrA5v2tUfGeUe0TYQBXnbHSUbpkJsLTPy7xOwOrPkwybEVc= -----END CERTIFICATE-----Generated at Fri Sep 19 06:03:33 2025 by rpki-client