$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa File: 25d659ba-98ec-4e2b-9191-60b103d777b7.roa (raw, json) Hash identifier: s7iijs++DldaerfiSKphADAG4Jf+HMw9ghlas8dwG0o= Subject key identifier: 74:9B:6D:ED:D9:73:1A:17:8B:3E:51:18:5A:DE:FC:AA:55:4B:F4:CD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3A3990A44D90DC1580057D683299383688800E98 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa Signing time: Thu 18 Sep 2025 19:54:34 +0000 ROA not before: Thu 18 Sep 2025 19:54:34 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:39:90:a4:4d:90:dc:15:80:05:7d:68:32:99:38:36:88:80:0e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:54:34 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=e5c88cf8eeea7976a9e0e4b1008f5856ab3f1f312560a95912014ab7d69baf21, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b9:1e:bb:fc:65:22:ac:f5:22:85:bb:03:d0: 90:fb:19:b5:d0:a8:a9:18:7e:b9:a5:34:62:5d:99: 71:e8:72:e7:bb:43:27:3b:b6:da:c7:54:9f:48:f1: ca:9e:e3:2c:ea:a7:2c:7d:b0:25:54:d3:54:c2:5c: c9:5a:08:f1:0b:cb:36:9e:3c:f4:f2:c5:a3:14:db: b4:ab:2b:75:d2:2d:32:14:32:8a:12:35:60:05:86: 8c:79:19:5f:39:0e:83:71:0e:aa:e4:cc:86:d1:10: 69:18:e0:d0:09:fd:56:bd:75:f5:1b:a4:e5:9c:8c: af:70:b2:c6:b5:3a:86:f7:47:6c:cb:55:5c:bd:5a: 82:b0:64:1d:1e:f3:c4:bf:2d:d5:db:22:76:90:dc: 73:b3:2e:5d:ab:17:1d:73:70:6b:9d:5c:8f:06:1a: 92:41:f8:70:26:7f:af:52:0f:3c:e7:12:77:31:8e: 15:30:7d:22:7a:60:2f:c4:79:e8:e8:70:66:e3:2e: 6a:17:74:41:06:c4:1c:ef:96:26:91:bb:4a:ac:81: 92:b5:df:34:90:45:f7:27:62:98:7a:b2:8a:8b:fe: 67:72:4e:eb:e4:0f:f1:5d:ea:79:7d:fd:af:27:83: 9f:da:6d:0c:e8:fd:00:a4:c2:67:97:c2:66:c9:58: 17:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:9B:6D:ED:D9:73:1A:17:8B:3E:51:18:5A:DE:FC:AA:55:4B:F4:CD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25d659ba-98ec-4e2b-9191-60b103d777b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.212.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:81:66:27:a5:2b:04:7b:13:68:42:e4:84:12:48:3d:27:48: 5b:ce:42:d7:c5:81:b0:25:52:8a:62:c4:ee:d1:ed:91:ad:07: 25:4f:58:dd:77:96:33:a6:88:cf:d8:7f:79:b8:59:e0:70:84: 61:98:cf:37:ea:90:ab:62:a9:1b:1c:6d:7f:ba:00:7b:54:7b: 0d:a4:24:ac:de:24:c6:d5:cf:27:b3:8b:1c:a9:00:ff:3d:ab: 8d:08:4d:ba:7b:7f:46:78:00:89:92:f4:e9:9f:c8:82:c4:6f: 77:e2:a5:90:47:8d:7e:a6:40:93:04:e8:58:99:f0:de:f0:24: e0:87:1b:cd:d5:f3:a0:f7:4f:83:e7:01:28:43:2b:cd:43:c7: 5f:17:7d:ac:8a:c8:71:cf:3e:7e:e0:1c:df:85:f6:bf:38:24: c0:37:d0:56:93:e3:51:48:8c:b4:cb:b4:11:60:a3:77:f8:ab: 7c:ff:ea:72:e2:c8:41:2b:b0:ed:14:30:0a:ee:d3:0f:9e:75: 3a:a5:2a:b2:ba:d9:a8:5c:3c:26:e7:e5:e2:10:b7:7f:80:6c: 7d:18:4a:6e:27:ca:fb:aa:d4:73:f4:9d:9a:73:da:d2:5b:66: d0:6c:be:b6:dd:17:41:18:59:57:e9:c0:79:21:43:5f:14:45: 10:18:b1:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOjmQpE2Q3BWABX1oMpk4NoiADpgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTk1NDM0WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWM4OGNmOGVlZWE3OTc2YTllMGU0YjEwMDhmNTg1NmFi M2YxZjMxMjU2MGE5NTkxMjAxNGFiN2Q2OWJhZjIxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCauR67/GUirPUihbsD0JD7GbXQqKkYfrmlNGJdmXHocue7 Qyc7ttrHVJ9I8cqe4yzqpyx9sCVU01TCXMlaCPELyzaePPTyxaMU27SrK3XSLTIU MooSNWAFhox5GV85DoNxDqrkzIbREGkY4NAJ/Va9dfUbpOWcjK9wssa1Oob3R2zL VVy9WoKwZB0e88S/LdXbInaQ3HOzLl2rFx1zcGudXI8GGpJB+HAmf69SDzznEncx jhUwfSJ6YC/EeejocGbjLmoXdEEGxBzvliaRu0qsgZK13zSQRfcnYph6soqL/mdy TuvkD/Fd6nl9/a8ng5/abQzo/QCkwmeXwmbJWBdBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdJtt7dlzGheLPlEYWt78qlVL9M0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI1ZDY1OWJhLTk4ZWMtNGUyYi05MTkxLTYwYjEwM2Q3NzdiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+9QwDQYJKoZIhvcNAQELBQADggEBAD+BZielKwR7E2hC5IQSSD0nSFvO QtfFgbAlUopixO7R7ZGtByVPWN13ljOmiM/Yf3m4WeBwhGGYzzfqkKtiqRscbX+6 AHtUew2kJKzeJMbVzyezixypAP89q40ITbp7f0Z4AImS9OmfyILEb3fipZBHjX6m QJME6FiZ8N7wJOCHG83V86D3T4PnAShDK81Dx18XfayKyHHPPn7gHN+F9r84JMA3 0FaT41FIjLTLtBFgo3f4q3z/6nLiyEErsO0UMAru0w+edTqlKrK62ahcPCbn5eIQ t3+AbH0YSm4nyvuq1HP0nZpz2tJbZtBsvrbdF0EYWVfpwHkhQ18URRAYsW4= -----END CERTIFICATE-----Generated at Fri Sep 19 03:16:31 2025 by rpki-client