$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/261cff52-f24d-44cd-b287-32125abd6b61.roa File: 261cff52-f24d-44cd-b287-32125abd6b61.roa (raw, json) Hash identifier: 7fFUwiCjU9PICTVrZnA9R2qfCvhoRig9BKC8VpxipZs= Subject key identifier: E9:0B:9F:07:92:38:34:18:79:28:ED:39:3E:50:A1:71:A3:0E:20:9F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4D185AF71BBBA38A63AEC024F86E2E2D66ADA4AF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/261cff52-f24d-44cd-b287-32125abd6b61.roa Signing time: Fri 07 Nov 2025 01:10:07 +0000 ROA not before: Fri 07 Nov 2025 01:10:07 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:18:5a:f7:1b:bb:a3:8a:63:ae:c0:24:f8:6e:2e:2d:66:ad:a4:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 7 01:10:07 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=586d2e32ac5aecd6cd09b5f697c043eac008198f4a8a3905e752da2292dd72e6, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:31:3a:94:37:54:48:6e:b1:cc:ad:37:07:fe: ea:fc:44:ba:21:c7:be:3d:17:8c:61:93:1b:99:a7: bf:eb:e7:3c:5c:a2:75:79:53:8a:8c:d6:63:84:8d: d4:aa:17:06:94:74:c7:43:86:dc:72:91:de:10:8b: fd:eb:18:1b:81:c6:cf:2a:5a:9b:4c:a2:ef:88:e9: e8:70:c6:0e:c9:4b:5e:0c:c8:bf:28:7d:e7:2e:99: 7b:ed:8d:03:fa:8f:b0:94:fe:8b:8a:92:77:e1:58: a9:73:ef:8c:72:f6:67:62:7b:e3:45:79:4e:04:d1: 34:0c:61:89:20:8b:71:2c:5e:a4:d8:5e:ef:e6:6f: 65:10:59:ff:ed:fc:10:9e:11:4e:66:a0:56:5e:a4: 24:84:90:32:4a:0d:e6:95:29:80:1e:14:4c:ff:34: 3d:c3:4a:0c:f4:d7:cf:65:0d:13:c1:1a:b2:0f:9e: a9:04:32:ac:a6:20:1a:70:92:22:d5:b2:e7:8d:2c: 09:0d:32:7f:e8:d4:3b:7f:23:13:f5:08:95:03:19: c2:db:37:60:6d:ac:c8:37:52:a9:1b:be:3d:51:0c: 96:e1:64:ca:64:1e:6d:de:10:7d:db:32:58:ef:51: d0:74:5e:49:b8:44:f5:4a:c1:8f:43:77:d2:5e:4d: de:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0B:9F:07:92:38:34:18:79:28:ED:39:3E:50:A1:71:A3:0E:20:9F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/261cff52-f24d-44cd-b287-32125abd6b61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.58.0/23 Signature Algorithm: sha256WithRSAEncryption 60:b6:1d:7c:eb:48:0c:83:cb:3e:79:66:5b:23:93:15:93:5f: 80:92:f9:d7:da:e8:22:9c:2d:76:83:45:92:48:4b:1e:b8:91: 49:de:6b:04:e2:8f:7f:38:0b:55:b2:9b:44:55:ce:e1:c3:63: 92:e4:4a:8a:ea:7e:48:6c:af:e0:7f:00:c6:d7:ff:53:4e:e5: 0e:4d:60:c3:30:c2:45:56:cc:25:78:13:c5:67:11:a8:23:f7: 95:21:90:9f:0f:39:d1:00:e6:fa:7a:90:fc:a9:7c:89:27:7e: f3:dc:07:49:b1:2f:e1:a9:0a:79:d8:43:2d:d6:88:fd:7e:bf: 27:e0:44:4e:0e:59:1a:93:ad:1d:d7:cd:9c:c6:d5:2b:68:97: 0d:16:d7:34:c0:9d:c0:d6:b2:cc:17:d4:e2:90:ba:69:aa:e7: 42:3e:bd:cb:f7:12:da:31:50:9b:95:90:fe:0d:22:e1:5e:72: 70:48:fd:36:75:17:c6:e5:38:aa:e1:cb:63:43:63:7f:eb:7b: 37:07:f1:7d:a7:a3:ca:71:7d:5f:b3:c4:ef:e9:fc:c3:80:42: 9d:cd:78:16:11:fb:d4:88:8f:0b:f8:62:7d:aa:38:88:36:49: 68:31:70:e1:e4:8e:c6:99:aa:83:f6:5c:e7:fb:4b:1f:0c:a9: 73:96:74:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTRha9xu7o4pjrsAk+G4uLWatpK8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA3MDExMDA3WhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODZkMmUzMmFjNWFlY2Q2Y2QwOWI1ZjY5N2MwNDNlYWMw MDgxOThmNGE4YTM5MDVlNzUyZGEyMjkyZGQ3MmU2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6MTqUN1RIbrHMrTcH/ur8RLohx749F4xhkxuZp7/r5zxc onV5U4qM1mOEjdSqFwaUdMdDhtxykd4Qi/3rGBuBxs8qWptMou+I6ehwxg7JS14M yL8ofecumXvtjQP6j7CU/ouKknfhWKlz74xy9mdie+NFeU4E0TQMYYkgi3EsXqTY Xu/mb2UQWf/t/BCeEU5moFZepCSEkDJKDeaVKYAeFEz/ND3DSgz0189lDRPBGrIP nqkEMqymIBpwkiLVsueNLAkNMn/o1Dt/IxP1CJUDGcLbN2BtrMg3Uqkbvj1RDJbh ZMpkHm3eEH3bMljvUdB0Xkm4RPVKwY9Dd9JeTd4VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6QufB5I4NBh5KO05PlChcaMOIJ8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI2MWNmZjUyLWYyNGQtNDRjZC1iMjg3LTMyMTI1YWJkNmI2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYiTowDQYJKoZIhvcNAQELBQADggEBAGC2HXzrSAyDyz55ZlsjkxWTX4CS +dfa6CKcLXaDRZJISx64kUneawTij384C1Wym0RVzuHDY5LkSorqfkhsr+B/AMbX /1NO5Q5NYMMwwkVWzCV4E8VnEagj95UhkJ8POdEA5vp6kPypfIknfvPcB0mxL+Gp CnnYQy3WiP1+vyfgRE4OWRqTrR3XzZzG1Stolw0W1zTAncDWsswX1OKQummq50I+ vcv3EtoxUJuVkP4NIuFecnBI/TZ1F8blOKrhy2NDY3/rezcH8X2no8pxfV+zxO/p /MOAQp3NeBYR+9SIjwv4Yn2qOIg2SWgxcOHkjsaZqoP2XOf7Sx8MqXOWdP8= -----END CERTIFICATE-----Generated at Tue Nov 18 08:23:44 2025 by rpki-client