$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa File: 33276cb0-fd16-405f-bdae-0bcc070e07f8.roa (raw, json) Hash identifier: UcRtqgM2sccO9I2sQqzwyxOIRhqHQlc6upijWIUnUBA= Subject key identifier: 36:39:B3:15:1F:D2:DD:1D:D0:D2:10:8E:5D:ED:A7:3F:61:01:2C:F2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 33C624C9050C35B524B4E0194CF6137D38E07B82 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa Signing time: Sun 16 Nov 2025 00:40:52 +0000 ROA not before: Sun 16 Nov 2025 00:40:52 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:c6:24:c9:05:0c:35:b5:24:b4:e0:19:4c:f6:13:7d:38:e0:7b:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 16 00:40:52 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=de0d363ee5beeda0d07c67bf9262738915ba3490a68c5f31a91b2db06db3018f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:68:98:3d:2d:cd:22:81:c7:1a:bf:5a:0b: 8c:ee:5c:d9:26:d3:c8:ca:a1:45:b2:d9:82:55:3c: 85:07:93:d7:ce:e3:80:86:ef:08:1a:23:c4:69:6c: d0:8a:77:77:fa:b6:7c:52:36:98:4c:39:ee:86:4e: d9:9b:47:fe:21:a1:5f:76:4f:02:fd:ab:9c:b0:ad: 0d:7e:10:d5:90:95:ec:30:f5:ca:57:97:22:bf:e9: d0:e6:3c:52:80:c6:e2:50:73:11:8d:6b:71:eb:5a: 71:83:4c:45:04:d1:60:a2:c3:f4:a8:0c:ac:23:2e: 6c:68:41:22:68:68:86:f2:d8:0e:86:9b:b7:f7:43: fc:7d:88:ff:01:67:80:5a:25:90:85:e7:4a:74:0e: a1:ab:55:86:6e:ea:89:7d:72:e0:6a:7e:3f:7e:46: 6d:b4:b0:0f:8b:ab:88:f9:66:14:5b:a3:a6:a1:5c: 90:65:b6:bd:d5:63:c1:ad:4e:ad:2d:68:f2:03:9b: aa:9d:82:1c:f2:6a:3d:ec:7e:82:5f:3d:2e:74:63: b1:27:d5:e7:a3:60:82:df:f9:a6:e6:15:5f:c2:b1: 00:47:52:54:59:24:b7:28:a6:bf:e3:36:32:c2:b4: d5:2b:b6:5e:ed:1d:4b:c2:28:f9:25:ec:27:a1:8f: 28:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:39:B3:15:1F:D2:DD:1D:D0:D2:10:8E:5D:ED:A7:3F:61:01:2C:F2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.164.0/22 Signature Algorithm: sha256WithRSAEncryption 12:ca:55:91:ec:6f:9d:7c:6f:bb:96:a9:f2:75:b2:bc:e5:33: ca:c1:96:5b:66:bd:a5:a9:f7:67:92:0c:5a:47:8c:2f:f8:11: 69:97:40:49:26:8c:08:cf:96:88:4c:73:46:22:2e:30:00:54: 13:b2:30:3d:41:30:80:a5:93:09:d6:c3:d8:49:3b:8e:cc:28: 77:90:56:aa:1e:da:8a:23:cf:3c:4e:cb:ef:dc:c0:57:cf:95: 91:d6:71:51:1e:a0:59:fb:74:ed:6e:3a:a3:00:ff:59:17:34: c6:e6:96:36:3b:36:78:19:32:14:fe:a5:61:51:87:ce:72:07: c3:5c:96:17:e8:2d:e3:ca:2e:20:95:43:c1:f6:e2:da:4c:a0: 98:20:cb:ba:a7:6e:ff:fe:93:c3:ee:cd:4b:03:1e:e7:c7:87: 9a:cb:f1:3b:fa:38:c4:20:29:22:13:19:04:ee:e0:b2:ac:0c: b1:2f:88:a3:85:d0:4a:e0:34:ad:b3:bb:66:da:e1:1a:0d:ec: 84:4e:a0:0c:c2:aa:be:72:fd:ad:97:bf:fc:a1:c0:5a:a8:a9: a2:d5:49:da:86:da:03:1c:33:9f:6e:b6:7e:71:5f:eb:36:e2: 7d:54:a8:f3:ed:95:5c:ab:82:c3:9b:a1:b0:26:ca:10:91:11: fe:6a:e5:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM8YkyQUMNbUktOAZTPYTfTjge4IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTE2MDA0MDUyWhcNMjUxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTBkMzYzZWU1YmVlZGEwZDA3YzY3YmY5MjYyNzM4OTE1 YmEzNDkwYTY4YzVmMzFhOTFiMmRiMDZkYjMwMThmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAdWiYPS3NIoHHGr9aC4zuXNkm08jKoUWy2YJVPIUHk9fO 44CG7wgaI8RpbNCKd3f6tnxSNphMOe6GTtmbR/4hoV92TwL9q5ywrQ1+ENWQleww 9cpXlyK/6dDmPFKAxuJQcxGNa3HrWnGDTEUE0WCiw/SoDKwjLmxoQSJoaIby2A6G m7f3Q/x9iP8BZ4BaJZCF50p0DqGrVYZu6ol9cuBqfj9+Rm20sA+Lq4j5ZhRbo6ah XJBltr3VY8GtTq0taPIDm6qdghzyaj3sfoJfPS50Y7En1eejYILf+abmFV/CsQBH UlRZJLcopr/jNjLCtNUrtl7tHUvCKPkl7CehjyifAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNjmzFR/S3R3Q0hCOXe2nP2EBLPIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMzMjc2Y2IwLWZkMTYtNDA1Zi1iZGFlLTBiY2MwNzBlMDdmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALM9qQwDQYJKoZIhvcNAQELBQADggEBABLKVZHsb518b7uWqfJ1srzlM8rB lltmvaWp92eSDFpHjC/4EWmXQEkmjAjPlohMc0YiLjAAVBOyMD1BMIClkwnWw9hJ O47MKHeQVqoe2oojzzxOy+/cwFfPlZHWcVEeoFn7dO1uOqMA/1kXNMbmljY7NngZ MhT+pWFRh85yB8NclhfoLePKLiCVQ8H24tpMoJggy7qnbv/+k8PuzUsDHufHh5rL 8Tv6OMQgKSITGQTu4LKsDLEviKOF0ErgNK2zu2ba4RoN7IROoAzCqr5y/a2Xv/yh wFqoqaLVSdqG2gMcM59utn5xX+s24n1UqPPtlVyrgsObobAmyhCREf5q5e8= -----END CERTIFICATE-----Generated at Tue Nov 18 05:44:19 2025 by rpki-client