$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa File: 3455edb0-5870-49ae-aead-be18a7eaffdc.roa (raw, json) Hash identifier: FFp+d2e5OKLVQRfoBTDrJVAMa6KuNAzft/gXNnbYzco= Subject key identifier: 21:31:94:63:B9:2A:6B:13:15:B2:9D:06:9C:48:20:45:52:93:AB:CB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 528CCD738FA390FCF82B46771109D91FB96AE7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa Signing time: Sun 16 Nov 2025 00:40:48 +0000 ROA not before: Sun 16 Nov 2025 00:40:48 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:8c:cd:73:8f:a3:90:fc:f8:2b:46:77:11:09:d9:1f:b9:6a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 16 00:40:48 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=c7f0c7d4cc1f12c8890c214e509748a7f96b4b997688409bda0040803f8ab6ee, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f7:de:33:11:c3:a3:c7:b4:ca:5e:15:e6:80: d3:6b:01:22:2f:86:63:4c:78:ee:9b:a0:11:e3:ec: 3b:90:af:46:f2:66:31:3c:1d:06:bd:d2:8d:1d:6e: 9e:29:90:81:96:5f:af:b0:40:5b:c3:70:25:ec:c5: 8c:45:ce:9d:87:e7:84:8e:40:bc:31:09:11:ea:61: 01:9e:c1:c3:57:86:f8:13:ef:ea:40:6e:16:c7:4d: 8f:fd:76:30:ab:27:75:b7:07:21:6e:b2:8f:97:5b: 1b:a0:54:e0:b8:ef:78:f1:84:b4:41:52:ef:5d:c2: ef:35:d6:43:d6:3e:13:2d:6c:7d:32:9f:ad:51:d5: e3:14:a5:6c:db:87:b8:75:a0:ff:98:1f:99:38:eb: 2c:1a:00:9c:5f:b8:2e:ae:79:5f:09:79:9e:98:61: 56:58:8c:0c:25:2d:e7:bf:d1:dd:06:1b:e0:08:69: 3c:ec:4e:ad:44:65:12:79:cf:58:44:dd:78:78:1a: 23:ad:a8:cd:c7:fd:8d:a6:f4:a6:ee:95:19:99:29: ed:9c:b4:6a:73:22:47:f3:6d:df:be:cb:d2:be:50: aa:ef:b5:88:e1:01:b9:98:19:d0:29:24:65:a2:50: 50:63:f7:e9:84:95:60:c1:97:72:9d:1c:24:d8:9b: b8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:31:94:63:B9:2A:6B:13:15:B2:9D:06:9C:48:20:45:52:93:AB:CB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.186.0/23 Signature Algorithm: sha256WithRSAEncryption b7:7e:bb:2a:50:01:b5:44:1d:e1:2b:09:d2:28:99:34:66:5d: d4:36:c1:1e:5e:99:e9:32:5e:f4:4f:8b:d7:6a:23:10:f3:73: 20:27:ea:81:c8:eb:03:a6:6e:29:57:11:18:91:ec:5c:bf:a4: ea:34:69:1a:1b:33:b8:52:af:82:27:ea:da:fe:a2:9a:45:15: 48:91:b3:92:8a:df:fa:58:84:b2:d2:3e:66:af:db:0e:69:6e: d5:56:b4:12:5b:47:99:92:07:9f:77:fb:02:67:5c:ea:ee:3c: 7e:b1:4c:8e:c5:a7:21:66:14:03:45:aa:cc:02:65:2d:75:35: 30:ff:56:47:2a:41:da:5a:0c:2b:47:d9:eb:45:79:c3:be:ae: dd:05:79:50:a6:95:27:6c:95:4b:a7:38:23:d9:a3:1e:35:21: db:5b:e0:06:f8:85:9c:38:f8:c2:f6:e9:2c:b7:12:5a:a8:ab: bf:9e:a0:55:98:e5:9e:fd:bf:68:4b:c2:dd:3b:ae:5a:c6:77: 00:d0:3f:de:e2:55:15:6b:de:45:16:89:39:6a:10:6e:df:81: a7:dc:8a:15:93:1e:d0:0a:b1:f2:92:b5:79:03:e0:8f:a1:2b: 07:19:2d:a9:6e:fb:98:21:8a:84:4f:3f:a3:b5:a4:2d:a7:68: d4:b5:d3:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITUozNc4+jkPz4K0Z3EQnZH7lq5zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTExMTYwMDQwNDhaFw0yNTEyMjEyMzU5NTla MHoxSTBHBgNVBAUTQGM3ZjBjN2Q0Y2MxZjEyYzg4OTBjMjE0ZTUwOTc0OGE3Zjk2 YjRiOTk3Njg4NDA5YmRhMDA0MDgwM2Y4YWI2ZWUxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALL33jMRw6PHtMpeFeaA02sBIi+GY0x47pugEePsO5CvRvJm MTwdBr3SjR1unimQgZZfr7BAW8NwJezFjEXOnYfnhI5AvDEJEephAZ7Bw1eG+BPv 6kBuFsdNj/12MKsndbcHIW6yj5dbG6BU4LjvePGEtEFS713C7zXWQ9Y+Ey1sfTKf rVHV4xSlbNuHuHWg/5gfmTjrLBoAnF+4Lq55Xwl5nphhVliMDCUt57/R3QYb4Ahp POxOrURlEnnPWETdeHgaI62ozcf9jab0pu6VGZkp7Zy0anMiR/Nt377L0r5Qqu+1 iOEBuZgZ0CkkZaJQUGP36YSVYMGXcp0cJNibuLMCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQhMZRjuSprExWynQacSCBFUpOryzAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvMzQ1NWVkYjAtNTg3MC00OWFlLWFlYWQtYmUxOGE3ZWFmZmRjLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAcz2ujANBgkqhkiG9w0BAQsFAAOCAQEAt367KlABtUQd4SsJ0iiZNGZd1DbB Hl6Z6TJe9E+L12ojEPNzICfqgcjrA6ZuKVcRGJHsXL+k6jRpGhszuFKvgifq2v6i mkUVSJGzkorf+liEstI+Zq/bDmlu1Va0EltHmZIHn3f7Amdc6u48frFMjsWnIWYU A0WqzAJlLXU1MP9WRypB2loMK0fZ60V5w76u3QV5UKaVJ2yVS6c4I9mjHjUh21vg BviFnDj4wvbpLLcSWqirv56gVZjlnv2/aEvC3TuuWsZ3ANA/3uJVFWveRRaJOWoQ bt+Bp9yKFZMe0Aqx8pK1eQPgj6ErBxktqW77mCGKhE8/o7WkLado1LXTag== -----END CERTIFICATE-----Generated at Tue Nov 18 08:20:55 2025 by rpki-client