$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/51e540b6-be34-4502-b2ca-a2145e33007d.roa File: 51e540b6-be34-4502-b2ca-a2145e33007d.roa (raw, json) Hash identifier: rGfPLbC54O3LZvCC2Et3fxu4MKrzX0mvCigQG4xxjfY= Subject key identifier: C6:25:ED:AB:66:CC:4A:89:A7:EC:D5:D4:74:AA:28:24:02:4F:7C:D0 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 47670BB0C8A602D31FC5A7E556B9E00673435F2B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/51e540b6-be34-4502-b2ca-a2145e33007d.roa Signing time: Fri 07 Nov 2025 01:10:06 +0000 ROA not before: Fri 07 Nov 2025 01:10:06 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:67:0b:b0:c8:a6:02:d3:1f:c5:a7:e5:56:b9:e0:06:73:43:5f:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 7 01:10:06 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=95fed8e6b4d6a1dcf18642ccf94e55220b91996ea3e595fcf87fee711162e27e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:eb:37:5c:49:c1:c0:d5:2b:b6:6d:fb:b7:bf: 45:30:6c:35:3f:0c:2e:b6:a7:3c:8f:ca:83:4e:17: a1:fd:aa:de:65:fb:c5:07:f7:fc:f8:33:d8:10:6f: 65:48:b0:4b:47:df:01:e4:7e:8b:ca:f5:c6:ac:a2: 2d:5d:e8:09:c3:75:ca:7c:ce:07:6c:65:b2:02:19: 1e:9b:06:10:d6:2c:ec:e4:79:b4:ed:36:1a:31:d2: 95:c4:cf:17:94:93:42:df:92:d4:7c:fe:d7:3e:69: 6f:f3:bd:91:76:39:81:0b:c5:08:6c:70:52:0f:ce: 9c:17:0c:0b:ed:b3:6c:c4:0e:3a:8b:4b:09:86:0d: 84:1e:92:05:65:61:49:ba:ca:2d:82:49:a3:02:8b: 39:95:e7:8a:65:15:99:3a:84:47:5f:fa:73:a5:81: 5e:ef:71:5b:4a:f0:1c:a8:f6:ef:6d:2c:63:0c:00: 66:3c:59:ae:e5:75:c1:74:99:9f:c2:cf:24:9e:2c: b3:e3:85:8c:4a:da:f3:f2:5c:69:35:36:79:fe:0e: bc:0e:b3:77:8d:6a:ce:bd:75:ae:1f:78:d5:ae:a7: ff:0d:4d:f4:28:2c:a2:87:f1:86:cb:0a:a1:40:71: e9:3a:95:35:95:a5:b4:4f:58:62:0d:67:d7:67:9c: 63:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:25:ED:AB:66:CC:4A:89:A7:EC:D5:D4:74:AA:28:24:02:4F:7C:D0 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/51e540b6-be34-4502-b2ca-a2145e33007d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.208.0/22 Signature Algorithm: sha256WithRSAEncryption c3:6d:40:d7:03:ec:91:00:60:f5:42:81:ef:60:ba:f4:7e:e0: 70:45:71:27:95:60:16:72:13:6d:76:44:79:91:c1:f3:a7:85: 2d:06:21:b9:06:89:e3:a3:e4:03:33:a9:07:f0:a7:98:3c:37: db:47:b2:35:6e:d1:73:fc:3a:73:6b:0f:85:e1:23:53:64:44: 87:d5:22:d9:80:85:a8:02:5e:2b:0d:b1:f2:20:ce:a0:1b:4f: 30:6e:28:2c:ea:fb:fb:03:7c:a1:d3:2e:48:8c:8d:6d:f4:7c: 94:f4:d8:27:d7:11:7c:8b:22:71:e7:41:53:3c:28:41:48:c5: 24:e3:85:1d:cd:fa:3c:dc:1f:5a:9e:a9:be:34:72:b2:40:10: 64:09:33:ec:20:5c:9c:7d:ac:4c:79:ad:bd:32:5b:19:7c:52: 19:58:9c:c8:d0:df:bd:c2:ab:3b:fc:28:0e:88:6f:bb:e8:8d: 56:e9:01:b9:c9:f4:96:4b:c6:fe:89:00:83:38:d2:13:01:5a: 3b:9c:19:48:93:8e:3a:f3:b0:4e:61:f4:0c:31:9c:fc:be:de: af:a4:a8:6c:9f:72:90:97:9e:c4:01:8a:9e:66:ca:52:57:d3: 21:bd:34:0a:29:a1:b5:1f:55:6c:04:35:d0:75:fd:3f:7d:35: c0:22:0c:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR2cLsMimAtMfxaflVrngBnNDXyswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA3MDExMDA2WhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWZlZDhlNmI0ZDZhMWRjZjE4NjQyY2NmOTRlNTUyMjBi OTE5OTZlYTNlNTk1ZmNmODdmZWU3MTExNjJlMjdlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCY6zdcScHA1Su2bfu3v0UwbDU/DC62pzyPyoNOF6H9qt5l +8UH9/z4M9gQb2VIsEtH3wHkfovK9casoi1d6AnDdcp8zgdsZbICGR6bBhDWLOzk ebTtNhox0pXEzxeUk0LfktR8/tc+aW/zvZF2OYELxQhscFIPzpwXDAvts2zEDjqL SwmGDYQekgVlYUm6yi2CSaMCizmV54plFZk6hEdf+nOlgV7vcVtK8Byo9u9tLGMM AGY8Wa7ldcF0mZ/CzySeLLPjhYxK2vPyXGk1Nnn+DrwOs3eNas69da4feNWup/8N TfQoLKKH8YbLCqFAcek6lTWVpbRPWGINZ9dnnGPFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxiXtq2bMSomn7NXUdKooJAJPfNAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzUxZTU0MGI2LWJlMzQtNDUwMi1iMmNhLWEyMTQ1ZTMzMDA3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+9AwDQYJKoZIhvcNAQELBQADggEBAMNtQNcD7JEAYPVCge9guvR+4HBF cSeVYBZyE212RHmRwfOnhS0GIbkGieOj5AMzqQfwp5g8N9tHsjVu0XP8OnNrD4Xh I1NkRIfVItmAhagCXisNsfIgzqAbTzBuKCzq+/sDfKHTLkiMjW30fJT02CfXEXyL InHnQVM8KEFIxSTjhR3N+jzcH1qeqb40crJAEGQJM+wgXJx9rEx5rb0yWxl8UhlY nMjQ373Cqzv8KA6Ib7vojVbpAbnJ9JZLxv6JAIM40hMBWjucGUiTjjrzsE5h9Awx nPy+3q+kqGyfcpCXnsQBip5mylJX0yG9NAopobUfVWwENdB1/T99NcAiDFQ= -----END CERTIFICATE-----Generated at Tue Nov 18 09:36:48 2025 by rpki-client