$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa File: 8504b97b-070b-4a27-bdb7-8e64f1610647.roa (raw, json) Hash identifier: wnvzFBnAAmR4zz/c3w94mjHOUWJJI9/bW2zyvA1eFy8= Subject key identifier: 13:21:DF:58:C9:2C:44:BE:B8:84:2A:7E:1A:39:3A:59:60:EE:35:DE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 72D25AC26B26159C0FCDB225BD2C0D973D39F8E0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa Signing time: Fri 07 Nov 2025 01:10:13 +0000 ROA not before: Fri 07 Nov 2025 01:10:13 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d2:5a:c2:6b:26:15:9c:0f:cd:b2:25:bd:2c:0d:97:3d:39:f8:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 7 01:10:13 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=7a145d0c3505f2dd5cb6fea24f3847c20da6d032d030f9d6b571ae4a73b5bfa7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c0:6a:50:ad:cb:21:e1:63:64:2c:45:c3:7a: 18:23:73:55:52:54:7f:1a:0a:67:ca:86:9d:60:86: 7f:dc:b6:b4:1a:6e:42:98:d9:2b:e3:0a:03:b5:b4: c3:ee:1d:89:57:7c:8b:42:f3:2b:f1:52:2a:3d:d0: 02:8a:ee:4f:58:35:62:10:ac:51:64:0a:f9:03:bd: bb:09:1f:65:f1:89:d8:43:d7:85:34:f5:aa:09:bd: 7a:62:d7:1e:67:a2:67:95:2d:31:02:63:23:d0:86: 8b:8c:24:a5:5f:20:c3:f8:29:0f:87:28:d1:ea:f8: 71:cf:cb:b3:09:93:ee:5e:0a:6d:34:91:7c:33:b7: 9d:0f:df:d9:62:a9:bb:4a:a7:fe:fa:b1:49:c5:dc: 71:e3:ea:e9:06:80:d0:f6:cf:c0:84:a4:e6:81:e5: f1:af:57:9d:f3:58:89:ef:df:b2:08:54:56:d2:cf: 45:06:fb:8a:de:92:85:e9:03:17:d3:f5:1f:63:42: 78:1d:93:8f:ab:c9:25:ac:37:00:bb:c3:df:30:69: f0:52:38:21:ce:4d:65:ca:39:bd:c5:78:57:75:2e: 47:9a:d4:ae:2c:1e:6a:28:be:41:d5:73:04:ae:6c: dc:42:05:9d:a0:20:68:c6:94:70:5f:54:9b:76:0f: 9c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:21:DF:58:C9:2C:44:BE:B8:84:2A:7E:1A:39:3A:59:60:EE:35:DE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.253.0/24 Signature Algorithm: sha256WithRSAEncryption 16:27:d1:57:23:a9:d6:43:ad:03:51:fb:0d:ab:b7:ca:28:c1: 9b:a7:f1:26:ff:42:cf:cf:60:09:96:3e:18:4b:94:9e:aa:07: ab:20:bd:d8:73:9c:30:1c:05:91:f1:d0:86:21:09:c0:43:02: f6:32:a4:13:4c:6c:20:68:06:8b:50:61:17:ed:42:5e:72:e8: 78:ae:d1:44:e1:41:ed:3a:a5:3c:83:cf:2d:2f:4e:20:04:91: 78:6d:2d:f2:52:79:22:65:03:83:ce:ca:4b:b3:34:5e:00:00: cd:4a:ba:d6:7b:e5:0c:df:99:56:f7:73:99:41:7b:3e:1d:3e: ce:72:30:c1:90:64:ab:07:aa:c2:9c:de:19:88:0e:80:bf:d0: d3:d9:94:e2:a2:7d:a8:77:7a:9e:7c:b9:4e:15:28:f8:bf:bb: 7b:49:08:7b:cb:64:ad:0b:60:cf:f1:63:5b:67:70:5d:c3:39: a3:09:b1:4b:56:ff:ee:1c:92:62:63:e0:52:ae:fe:31:3a:91: f5:05:da:5f:d3:34:94:38:7e:2c:f6:fc:83:62:6e:98:c6:8d: 90:b0:6d:c5:b1:50:e3:66:c1:d8:9d:8d:49:84:33:f6:0f:12: bd:60:d9:d8:2e:6f:a6:51:99:57:32:20:fc:53:08:a2:98:d7: c3:a3:df:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUctJawmsmFZwPzbIlvSwNlz05+OAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA3MDExMDEzWhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTE0NWQwYzM1MDVmMmRkNWNiNmZlYTI0ZjM4NDdjMjBk YTZkMDMyZDAzMGY5ZDZiNTcxYWU0YTczYjViZmE3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSwGpQrcsh4WNkLEXDehgjc1VSVH8aCmfKhp1ghn/ctrQa bkKY2SvjCgO1tMPuHYlXfItC8yvxUio90AKK7k9YNWIQrFFkCvkDvbsJH2XxidhD 14U09aoJvXpi1x5nomeVLTECYyPQhouMJKVfIMP4KQ+HKNHq+HHPy7MJk+5eCm00 kXwzt50P39liqbtKp/76sUnF3HHj6ukGgND2z8CEpOaB5fGvV53zWInv37IIVFbS z0UG+4rekoXpAxfT9R9jQngdk4+rySWsNwC7w98wafBSOCHOTWXKOb3FeFd1Lkea 1K4sHmoovkHVcwSubNxCBZ2gIGjGlHBfVJt2D5z9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEyHfWMksRL64hCp+Gjk6WWDuNd4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg1MDRiOTdiLTA3MGItNGEyNy1iZGI3LThlNjRmMTYxMDY0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/0wDQYJKoZIhvcNAQELBQADggEBABYn0VcjqdZDrQNR+w2rt8oowZun 8Sb/Qs/PYAmWPhhLlJ6qB6sgvdhznDAcBZHx0IYhCcBDAvYypBNMbCBoBotQYRft Ql5y6Hiu0UThQe06pTyDzy0vTiAEkXhtLfJSeSJlA4POykuzNF4AAM1KutZ75Qzf mVb3c5lBez4dPs5yMMGQZKsHqsKc3hmIDoC/0NPZlOKifah3ep58uU4VKPi/u3tJ CHvLZK0LYM/xY1tncF3DOaMJsUtW/+4ckmJj4FKu/jE6kfUF2l/TNJQ4fiz2/INi bpjGjZCwbcWxUONmwdidjUmEM/YPEr1g2dgub6ZRmVcyIPxTCKKY18Oj3yQ= -----END CERTIFICATE-----Generated at Tue Nov 18 10:39:48 2025 by rpki-client