$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/295dc56a-ac79-4ea1-9c56-91ad40862ddf.roa File: 295dc56a-ac79-4ea1-9c56-91ad40862ddf.roa (raw, json) Hash identifier: xQQ96sgcFaek+5zCikAb0IhMLCSy+aqOsT3JXq0W6SU= Subject key identifier: 0E:D4:08:DA:5B:1E:9B:8C:1F:8D:08:F3:CF:73:42:98:DC:96:1F:F8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 76FE33BF8DED919A486B970747CFE98FD7665787 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/295dc56a-ac79-4ea1-9c56-91ad40862ddf.roa Signing time: Thu 18 Sep 2025 19:56:28 +0000 ROA not before: Thu 18 Sep 2025 19:56:28 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:fe:33:bf:8d:ed:91:9a:48:6b:97:07:47:cf:e9:8f:d7:66:57:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:56:28 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=e04259420e726df960371d6cb143e20dce11d5dd823723b351d040d545eab647, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6a:43:76:31:27:6c:b7:dc:57:cc:36:2d:d8: f2:4b:db:ac:8f:83:15:44:40:7f:73:62:27:b4:a4: c4:af:96:8d:91:44:27:8d:1f:40:a5:ec:f6:3c:46: 4f:7d:ed:08:75:2c:14:fc:e7:ef:cc:e6:8c:39:78: ea:3a:a6:4e:bd:9e:e6:27:79:b5:fd:07:93:46:68: b9:bf:77:75:de:4b:e8:b0:bf:a3:0b:09:5c:1c:d2: f9:69:ad:1c:72:c9:c1:8b:0a:67:ed:fd:37:42:04: f6:79:8e:b0:69:47:c4:47:57:ab:69:6b:b4:e8:97: 04:a7:3b:75:fc:52:55:96:4e:04:98:18:29:2e:5a: e0:7f:ad:73:cb:eb:5f:3f:dc:b9:cc:d5:f7:96:4d: 63:61:78:8d:ca:b8:eb:10:b5:0d:68:cf:b5:29:b5: fc:0e:98:c8:51:d4:2c:f6:be:09:14:53:23:1a:98: ab:0f:d8:e6:08:16:65:e6:c8:9f:4a:d3:46:ec:2c: 84:27:2f:53:bc:05:ac:42:e1:77:77:4c:9f:44:42: 72:da:83:35:ff:25:cd:79:d0:e9:20:88:38:e1:9a: 5e:c8:38:20:53:ac:0b:6c:30:e8:85:64:5f:4a:42: ee:89:f9:52:fd:a4:de:91:4a:f8:ba:d4:22:f8:70: db:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D4:08:DA:5B:1E:9B:8C:1F:8D:08:F3:CF:73:42:98:DC:96:1F:F8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/295dc56a-ac79-4ea1-9c56-91ad40862ddf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.60.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:b2:19:a4:28:4a:49:f1:b2:00:05:5e:5a:9c:5d:57:e2:33: 2a:02:88:0e:5a:a2:e4:0b:3b:f8:53:43:a9:8f:35:7e:e7:9a: 58:40:c2:64:b9:27:dc:46:7c:ea:1b:2a:6f:76:ef:db:e3:ff: 43:d8:ca:cf:a9:c1:19:aa:be:f4:e2:f3:8e:da:bf:04:8f:e5: 64:d4:b7:0f:12:aa:0e:de:22:af:68:2c:54:a2:7d:f9:dc:a0: 60:48:c4:5e:59:4c:00:e5:b5:d0:54:79:49:1f:ac:b5:52:c7: 01:19:89:6f:3f:7c:c8:e0:08:e3:0e:3d:96:1f:73:fb:25:be: 32:c0:1d:b1:0d:9b:62:a8:7a:a7:44:cb:f6:14:3d:1c:2a:f1: 4c:d5:83:71:84:a8:de:5a:a4:66:d9:56:c0:43:54:6d:45:02: 47:ce:44:78:51:a9:ab:6c:12:33:4d:6c:38:9a:b3:8a:96:a6: 56:ac:0a:a0:8f:f2:a3:f3:b0:46:2b:65:fe:74:9f:df:59:2a: 36:d6:05:e4:04:b2:41:ad:39:58:3b:77:db:36:1d:60:28:62: 9c:79:10:82:4e:a6:1c:c0:c8:be:3a:86:fd:ed:2f:c7:b8:41: 65:2a:61:84:e6:dc:eb:f1:88:47:6c:52:67:b5:c2:54:e7:a6: e2:50:37:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdv4zv43tkZpIa5cHR8/pj9dmV4cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTk1NjI4WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDQyNTk0MjBlNzI2ZGY5NjAzNzFkNmNiMTQzZTIwZGNl MTFkNWRkODIzNzIzYjM1MWQwNDBkNTQ1ZWFiNjQ3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzakN2MSdst9xXzDYt2PJL26yPgxVEQH9zYie0pMSvlo2R RCeNH0Cl7PY8Rk997Qh1LBT85+/M5ow5eOo6pk69nuYnebX9B5NGaLm/d3XeS+iw v6MLCVwc0vlprRxyycGLCmft/TdCBPZ5jrBpR8RHV6tpa7TolwSnO3X8UlWWTgSY GCkuWuB/rXPL618/3LnM1feWTWNheI3KuOsQtQ1oz7UptfwOmMhR1Cz2vgkUUyMa mKsP2OYIFmXmyJ9K00bsLIQnL1O8BaxC4Xd3TJ9EQnLagzX/Jc150OkgiDjhml7I OCBTrAtsMOiFZF9KQu6J+VL9pN6RSvi61CL4cNunAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDtQI2lsem4wfjQjzz3NCmNyWH/gwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI5NWRjNTZhLWFjNzktNGVhMS05YzU2LTkxYWQ0MDg2MmRkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYiTwwDQYJKoZIhvcNAQELBQADggEBAF2yGaQoSknxsgAFXlqcXVfiMyoC iA5aouQLO/hTQ6mPNX7nmlhAwmS5J9xGfOobKm9279vj/0PYys+pwRmqvvTi847a vwSP5WTUtw8Sqg7eIq9oLFSiffncoGBIxF5ZTADltdBUeUkfrLVSxwEZiW8/fMjg COMOPZYfc/slvjLAHbENm2KoeqdEy/YUPRwq8UzVg3GEqN5apGbZVsBDVG1FAkfO RHhRqatsEjNNbDias4qWplasCqCP8qPzsEYrZf50n99ZKjbWBeQEskGtOVg7d9s2 HWAoYpx5EIJOphzAyL46hv3tL8e4QWUqYYTm3OvxiEdsUme1wlTnpuJQN88= -----END CERTIFICATE-----Generated at Fri Sep 19 03:16:34 2025 by rpki-client