$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d59817e-f27b-40f8-a374-4d35dfcce928.roa File: 4d59817e-f27b-40f8-a374-4d35dfcce928.roa (raw, json) Hash identifier: zQQJ5BjPr+aBjqWkfMDvnqKC9zDt3NOUhI1rPgLGHt8= Subject key identifier: 9A:31:C9:BB:F0:2C:5A:19:22:21:6E:AE:62:0A:6E:EA:A2:69:3B:B1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0A7FB3582EF7F2E94A16A2ADF432005573B1CB54 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d59817e-f27b-40f8-a374-4d35dfcce928.roa Signing time: Fri 07 Nov 2025 01:00:05 +0000 ROA not before: Fri 07 Nov 2025 01:00:05 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:7f:b3:58:2e:f7:f2:e9:4a:16:a2:ad:f4:32:00:55:73:b1:cb:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 7 01:00:05 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=06020827acbdcb1987948e8717e00ca38098a091bff681970983a0bb1cb26507, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:4e:5a:f3:3d:22:49:19:ed:ba:92:a3:f3:5d: fa:cc:b7:5e:80:5b:4f:77:2e:6c:17:97:54:f8:81: 60:ff:b0:cd:a8:71:9f:4d:89:91:f9:ff:2b:69:cc: a6:d6:4b:99:e3:9f:bf:82:a7:2d:27:ec:2c:d0:3e: fd:cc:4b:ab:7d:f9:f6:e4:da:f2:e6:d9:ac:b2:2c: 99:4c:d2:92:2b:47:b5:86:82:b2:7b:cb:ad:bb:ca: 9b:ec:ec:d3:3d:05:52:e9:ba:ee:cd:78:f1:3c:05: 17:79:43:6f:54:82:c6:54:c0:6c:28:f1:9a:f9:f0: 7d:c5:3d:3a:df:70:8d:dd:de:82:00:06:53:aa:31: fc:bd:51:bc:b5:7a:20:a3:ec:1a:da:a5:c1:eb:31: d4:f6:f3:b6:05:de:86:40:f8:63:d8:5c:64:64:45: 97:d3:f1:8f:f0:dc:08:93:07:c3:37:41:7e:d3:97: 59:65:0b:ce:e6:24:57:9c:15:c6:11:a2:b3:1d:ba: f6:46:b9:e0:c0:60:df:1b:bc:57:e8:7e:47:90:8e: 4b:77:78:ab:0b:61:c8:3f:b0:57:46:fa:90:f1:0b: c5:a3:3d:40:5e:a0:5f:31:0e:b7:05:a7:31:19:03: cd:c3:42:d8:37:30:01:d6:51:de:e1:a5:be:08:e7: a0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:31:C9:BB:F0:2C:5A:19:22:21:6E:AE:62:0A:6E:EA:A2:69:3B:B1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d59817e-f27b-40f8-a374-4d35dfcce928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.208.0/20 Signature Algorithm: sha256WithRSAEncryption a1:04:5c:12:be:7a:a0:a1:5b:fd:0a:8b:c9:68:2f:c8:75:65: b4:a2:87:b0:e0:42:52:92:1c:1c:6e:79:a0:4d:7c:f7:b7:af: 3c:76:0c:dd:15:e4:75:90:38:f8:d5:81:18:71:50:29:8c:5c: 1d:1e:59:01:e7:3f:73:56:db:93:5b:4a:59:03:b5:3a:6a:77: a9:cd:32:8b:65:12:50:74:ee:c4:1a:c4:c2:e3:b6:28:4c:51: 2c:86:90:a8:4e:96:ab:93:70:a3:f9:ba:21:30:7d:eb:99:05: cd:bc:5a:e2:6b:15:73:06:55:94:a9:91:21:fc:96:84:34:8c: 67:8b:43:c6:2c:5f:9f:10:a1:fc:af:15:20:4f:94:71:2f:97: 7d:f1:a4:02:d4:0e:3b:e1:8c:a4:6f:8b:3f:15:9b:e2:ed:dd: f1:ec:a1:8f:c8:a2:e0:62:41:ed:09:f1:4f:8c:80:9c:02:35: 72:77:36:8d:fe:19:4a:bb:ff:4f:f3:6e:4f:75:fd:3f:58:a5: 7e:92:8d:73:8f:c1:25:d7:d5:29:8b:59:df:76:55:7a:98:c8: d3:0f:6e:13:2a:23:65:b2:fd:a9:ed:84:cc:10:b6:a5:53:22: 13:26:4c:9e:40:0b:dd:d1:1f:02:eb:3a:eb:ab:08:77:e7:12: 28:a5:f8:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCn+zWC738ulKFqKt9DIAVXOxy1QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA3MDEwMDA1WhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjAyMDgyN2FjYmRjYjE5ODc5NDhlODcxN2UwMGNhMzgw OThhMDkxYmZmNjgxOTcwOTgzYTBiYjFjYjI2NTA3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD5TlrzPSJJGe26kqPzXfrMt16AW093LmwXl1T4gWD/sM2o cZ9NiZH5/ytpzKbWS5njn7+Cpy0n7CzQPv3MS6t9+fbk2vLm2ayyLJlM0pIrR7WG grJ7y627ypvs7NM9BVLpuu7NePE8BRd5Q29UgsZUwGwo8Zr58H3FPTrfcI3d3oIA BlOqMfy9Uby1eiCj7BrapcHrMdT287YF3oZA+GPYXGRkRZfT8Y/w3AiTB8M3QX7T l1llC87mJFecFcYRorMduvZGueDAYN8bvFfofkeQjkt3eKsLYcg/sFdG+pDxC8Wj PUBeoF8xDrcFpzEZA83DQtg3MAHWUd7hpb4I56A9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmjHJu/AsWhkiIW6uYgpu6qJpO7EwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRkNTk4MTdlLWYyN2ItNDBmOC1hMzc0LTRkMzVkZmNjZTkyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATN+9AwDQYJKoZIhvcNAQELBQADggEBAKEEXBK+eqChW/0Ki8loL8h1ZbSi h7DgQlKSHBxueaBNfPe3rzx2DN0V5HWQOPjVgRhxUCmMXB0eWQHnP3NW25NbSlkD tTpqd6nNMotlElB07sQaxMLjtihMUSyGkKhOlquTcKP5uiEwfeuZBc28WuJrFXMG VZSpkSH8loQ0jGeLQ8YsX58QofyvFSBPlHEvl33xpALUDjvhjKRviz8Vm+Lt3fHs oY/IouBiQe0J8U+MgJwCNXJ3No3+GUq7/0/zbk91/T9YpX6SjXOPwSXX1SmLWd92 VXqYyNMPbhMqI2Wy/anthMwQtqVTIhMmTJ5AC93RHwLrOuurCHfnEiil+C8= -----END CERTIFICATE-----Generated at Tue Nov 18 10:40:09 2025 by rpki-client