$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/22ed20bf-987a-4327-b754-36561e31301a.roa File: 22ed20bf-987a-4327-b754-36561e31301a.roa (raw, json) Hash identifier: idskNZbfexEkhEqixyRaOazA7imeZz/KWCl070Liuas= Subject key identifier: 30:A6:38:4C:B0:90:7D:9A:DC:BF:8A:99:54:44:90:62:11:55:27:DE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6A070DE3E8B9FD5777368DC9444BFEE56252320C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/22ed20bf-987a-4327-b754-36561e31301a.roa Signing time: Thu 18 Sep 2025 19:57:35 +0000 ROA not before: Thu 18 Sep 2025 19:57:35 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:07:0d:e3:e8:b9:fd:57:77:36:8d:c9:44:4b:fe:e5:62:52:32:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:57:35 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=fff1f8fe4b69af8c0d31f8eb784c8dc8e2645cc90dbcd58fc0c125e7c8951146, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:08:2b:3d:77:25:0c:1a:6b:3f:58:b6:7c:6b: 25:24:59:98:12:87:99:5d:63:3b:fa:9e:c0:a3:b1: c6:f2:3a:06:6d:14:b1:9c:9f:fb:f8:8f:d9:e3:b5: 0f:0c:87:65:2d:4b:ce:43:35:8c:a4:a6:d4:4a:ef: cf:6c:f7:85:f5:c5:0c:ad:4e:e8:9f:89:6c:ba:0b: e2:fa:ab:79:04:fb:06:3a:91:7d:a5:80:05:fc:af: e2:39:d3:66:b4:c1:f4:5c:19:db:27:cf:96:9b:6e: c4:02:d0:3e:8b:03:ca:be:83:da:58:39:fc:f2:03: 9b:96:d1:bb:67:01:98:a6:eb:36:3e:38:76:09:26: 2e:ed:b3:45:fe:13:72:f2:03:74:f4:51:f0:1c:1f: 93:ba:ae:f3:9a:7d:87:e7:c4:12:41:3a:17:ce:ed: ef:86:49:9e:32:93:2c:67:c4:97:95:ef:9f:58:d5: 80:81:9b:d3:af:b9:86:24:99:35:34:df:1b:11:68: e7:06:e8:41:47:e2:d9:7d:22:d9:3e:b9:4a:4d:b7: 98:f6:ac:b3:a3:e9:ee:26:06:f4:5e:27:ab:99:b3: 9a:80:a8:ab:d2:c4:01:32:ce:a5:e8:fa:de:d1:6f: dd:69:49:79:35:f3:21:88:52:09:83:b7:65:70:39: 2f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A6:38:4C:B0:90:7D:9A:DC:BF:8A:99:54:44:90:62:11:55:27:DE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/22ed20bf-987a-4327-b754-36561e31301a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.60.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:96:a1:76:eb:af:98:7a:38:fb:7d:c4:05:db:7c:d9:7a:d5: e7:77:25:38:b7:15:73:45:0d:2f:b8:59:48:17:04:5f:a3:7e: cc:eb:c8:6a:51:8b:7e:ca:0f:3b:de:21:c8:19:34:e0:cf:e0: 3f:6b:19:c5:60:09:82:76:a3:a6:69:09:9b:e1:a4:d7:7c:78: 94:07:5b:0e:04:fa:de:15:2a:41:0c:e3:b4:bb:48:a4:95:1d: 50:83:4b:26:3f:3a:7f:9f:25:ac:6a:f4:94:5f:92:47:aa:17: 2a:7e:b7:a5:d4:7c:45:3c:89:81:d7:31:97:f4:a7:93:65:bb: 97:c2:5d:cf:c9:3f:31:04:f6:24:a4:38:c5:75:59:96:fe:f7: 7e:d3:c0:62:1e:05:d0:ed:5a:da:58:cc:dc:1c:d9:36:9b:25: 37:86:d3:56:b1:97:50:84:55:97:f2:9d:aa:31:f7:9b:84:bb: 39:e6:57:35:de:51:84:54:f6:c8:a9:b4:e5:d6:d2:70:e1:b4: d2:d8:b2:b2:c0:9a:17:cb:82:5b:b7:8b:74:8f:1d:16:98:c5: 0e:be:ca:16:5b:1e:e2:fc:6c:a3:9e:70:e6:d4:d4:5a:1b:fc: cd:72:af:63:e8:c8:99:cb:fd:e8:0e:59:bd:ff:77:73:1a:29: 83:24:cc:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUagcN4+i5/Vd3No3JREv+5WJSMgwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTk1NzM1WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZmYxZjhmZTRiNjlhZjhjMGQzMWY4ZWI3ODRjOGRjOGUy NjQ1Y2M5MGRiY2Q1OGZjMGMxMjVlN2M4OTUxMTQ2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOCCs9dyUMGms/WLZ8ayUkWZgSh5ldYzv6nsCjscbyOgZt FLGcn/v4j9njtQ8Mh2UtS85DNYykptRK789s94X1xQytTuifiWy6C+L6q3kE+wY6 kX2lgAX8r+I502a0wfRcGdsnz5abbsQC0D6LA8q+g9pYOfzyA5uW0btnAZim6zY+ OHYJJi7ts0X+E3LyA3T0UfAcH5O6rvOafYfnxBJBOhfO7e+GSZ4ykyxnxJeV759Y 1YCBm9OvuYYkmTU03xsRaOcG6EFH4tl9Itk+uUpNt5j2rLOj6e4mBvReJ6uZs5qA qKvSxAEyzqXo+t7Rb91pSXk18yGIUgmDt2VwOS8zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMKY4TLCQfZrcv4qZVESQYhFVJ94wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIyZWQyMGJmLTk4N2EtNDMyNy1iNzU0LTM2NTYxZTMxMzAxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYiTwwDQYJKoZIhvcNAQELBQADggEBAF6WoXbrr5h6OPt9xAXbfNl61ed3 JTi3FXNFDS+4WUgXBF+jfszryGpRi37KDzveIcgZNODP4D9rGcVgCYJ2o6ZpCZvh pNd8eJQHWw4E+t4VKkEM47S7SKSVHVCDSyY/On+fJaxq9JRfkkeqFyp+t6XUfEU8 iYHXMZf0p5Nlu5fCXc/JPzEE9iSkOMV1WZb+937TwGIeBdDtWtpYzNwc2TabJTeG 01axl1CEVZfynaox95uEuznmVzXeUYRU9siptOXW0nDhtNLYsrLAmhfLglu3i3SP HRaYxQ6+yhZbHuL8bKOecObU1Fob/M1yr2PoyJnL/egOWb3/d3MaKYMkzLg= -----END CERTIFICATE-----Generated at Fri Sep 19 03:18:01 2025 by rpki-client