$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa File: 25d659ba-98ec-4e2b-9191-60b103d777b7.roa (raw, json) Hash identifier: We3BYA7SbfDIiS8nSaDM4wDApYJfXha8qK/3gEovX8s= Subject key identifier: 7F:E6:12:1E:82:B7:43:90:91:C3:2E:8A:E5:CA:20:2E:CE:5B:DB:55 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2053792BF64BC48B7B01BFDE9819ED2523ED93D8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa Signing time: Fri 07 Nov 2025 01:10:48 +0000 ROA not before: Fri 07 Nov 2025 01:10:48 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:53:79:2b:f6:4b:c4:8b:7b:01:bf:de:98:19:ed:25:23:ed:93:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 7 01:10:48 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=84ec557ff34d005185702de8c7f747ee5a7a4a16bc5d834cc55f2864be7daf3f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0a:ce:76:c6:20:12:17:75:08:26:21:56:5a: bc:46:f3:24:87:df:a5:14:1d:42:19:b8:db:1f:31: 77:3d:3d:c0:f5:87:41:5b:f0:6f:dd:9f:19:c9:d3: 25:11:82:64:dc:79:78:70:f6:71:a6:ad:69:84:c2: 96:27:d7:b4:f4:1a:9f:95:fb:f0:84:de:97:99:b9: a3:0d:c3:91:27:b6:5b:be:b5:7f:a0:01:8a:a5:7b: 03:e6:f8:ca:d0:1c:5c:4f:3f:bb:ce:3b:03:98:5b: 60:16:7d:a6:cd:53:18:20:79:45:47:c4:ef:15:8d: 2b:fd:e1:9f:84:11:1b:09:47:f6:c6:4c:58:38:81: 2b:68:f5:ce:a3:af:1c:64:2a:5b:d9:41:0d:99:19: f6:df:78:e5:b2:8f:71:ae:ea:46:a9:ca:35:d8:b4: 5c:99:f8:bd:3a:cc:fa:89:7a:fb:37:09:c5:82:12: 94:30:37:9c:43:bf:f0:90:f6:3b:ff:23:1c:a8:53: aa:b5:af:3c:fb:a9:be:e2:e9:bc:1c:0c:02:1d:60: 37:2f:b6:0c:4b:1e:e9:f2:76:d0:36:52:bf:2a:c7: 20:bf:8b:97:25:7d:57:01:db:54:4e:3b:fe:98:61: 21:eb:1b:7b:f4:c6:90:f6:7d:55:21:89:02:0e:e3: 20:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E6:12:1E:82:B7:43:90:91:C3:2E:8A:E5:CA:20:2E:CE:5B:DB:55 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.212.0/22 Signature Algorithm: sha256WithRSAEncryption 12:62:df:c1:7a:61:9e:4a:51:54:e3:fb:42:66:02:8d:1f:9e: cb:3d:7d:77:54:0d:e8:be:8b:bb:62:f4:89:b4:3b:d8:c0:aa: 82:72:db:2c:9f:a0:7a:68:fc:7a:42:f1:6c:28:4d:ef:2b:32: 46:df:b3:54:c3:42:ba:52:c3:21:bb:95:2a:5f:f4:67:23:73: 31:43:8c:98:1d:25:6d:83:95:eb:29:b8:1a:01:8e:12:87:a3: 20:36:26:55:4b:3a:94:a8:62:bf:c6:44:db:ec:c1:43:e0:0e: b8:92:30:18:9c:f9:11:8e:51:f2:ac:03:da:7b:ba:5e:bd:1f: 96:66:e5:94:85:87:61:10:73:90:78:e1:c2:e8:63:ab:51:20: 9b:3f:07:d7:44:e6:ad:cd:79:c6:5a:50:f5:7e:7c:b8:13:58: 6b:53:34:c1:57:d0:0d:07:0a:c8:31:2f:97:58:fd:66:57:bb: 1e:70:05:a7:0e:a0:dd:af:aa:7f:fc:38:22:67:ff:3c:3c:3a: 5e:54:db:c0:23:39:54:74:71:6d:7e:5e:8e:7a:4d:fd:c4:7e: 24:e2:83:54:05:0e:cc:47:ab:1f:d9:fa:10:e6:38:db:7b:ce: 1a:83:22:71:c5:19:c1:0e:40:a2:11:67:d8:0b:1a:38:90:a7: e7:fc:3c:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIFN5K/ZLxIt7Ab/emBntJSPtk9gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA3MDExMDQ4WhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGVjNTU3ZmYzNGQwMDUxODU3MDJkZThjN2Y3NDdlZTVh N2E0YTE2YmM1ZDgzNGNjNTVmMjg2NGJlN2RhZjNmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7Cs52xiASF3UIJiFWWrxG8ySH36UUHUIZuNsfMXc9PcD1 h0Fb8G/dnxnJ0yURgmTceXhw9nGmrWmEwpYn17T0Gp+V+/CE3peZuaMNw5Entlu+ tX+gAYqlewPm+MrQHFxPP7vOOwOYW2AWfabNUxggeUVHxO8VjSv94Z+EERsJR/bG TFg4gSto9c6jrxxkKlvZQQ2ZGfbfeOWyj3Gu6kapyjXYtFyZ+L06zPqJevs3CcWC EpQwN5xDv/CQ9jv/IxyoU6q1rzz7qb7i6bwcDAIdYDcvtgxLHunydtA2Ur8qxyC/ i5clfVcB21ROO/6YYSHrG3v0xpD2fVUhiQIO4yCLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf+YSHoK3Q5CRwy6K5cogLs5b21UwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI1ZDY1OWJhLTk4ZWMtNGUyYi05MTkxLTYwYjEwM2Q3NzdiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+9QwDQYJKoZIhvcNAQELBQADggEBABJi38F6YZ5KUVTj+0JmAo0fnss9 fXdUDei+i7ti9Im0O9jAqoJy2yyfoHpo/HpC8WwoTe8rMkbfs1TDQrpSwyG7lSpf 9GcjczFDjJgdJW2DlespuBoBjhKHoyA2JlVLOpSoYr/GRNvswUPgDriSMBic+RGO UfKsA9p7ul69H5Zm5ZSFh2EQc5B44cLoY6tRIJs/B9dE5q3NecZaUPV+fLgTWGtT NMFX0A0HCsgxL5dY/WZXux5wBacOoN2vqn/8OCJn/zw8Ol5U28AjOVR0cW1+Xo56 Tf3EfiTig1QFDsxHqx/Z+hDmONt7zhqDInHFGcEOQKIRZ9gLGjiQp+f8PLs= -----END CERTIFICATE-----Generated at Tue Nov 18 09:37:29 2025 by rpki-client