$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9938a0c3-c0ff-4db4-a40f-f9a64d570786.roa File: 9938a0c3-c0ff-4db4-a40f-f9a64d570786.roa (raw, json) Hash identifier: 4m+VziJkhYpFB2+otrzFe8VeT6BS+ePb4bUwrvFDbeo= Subject key identifier: D9:36:01:48:F1:09:80:ED:A0:49:89:B6:D0:37:22:0F:F7:8D:B0:AC Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2203C56125DC49CE7D4E9C6B7F7740EFCA832878 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9938a0c3-c0ff-4db4-a40f-f9a64d570786.roa Signing time: Thu 18 Sep 2025 19:56:15 +0000 ROA not before: Thu 18 Sep 2025 19:56:15 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:03:c5:61:25:dc:49:ce:7d:4e:9c:6b:7f:77:40:ef:ca:83:28:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:56:15 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=5ba80cfd4d7cc298f6617a6166c4a36543376046975bedcd71e156ec7bc2d127, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:76:26:a5:95:bc:0a:b5:72:cc:2f:c7:b3:45: a3:36:a5:10:c4:a2:6f:0d:03:8c:bd:f5:a0:17:97: 9c:0a:0b:43:38:6f:42:e0:86:82:e5:27:9d:5f:4d: f3:a6:12:f3:7f:19:08:d2:e1:79:56:c0:4a:79:6f: 71:33:46:f8:d6:6a:31:3e:04:ff:7e:f9:ed:15:45: e9:fb:4e:c2:0b:b1:80:5a:51:fa:22:6e:01:2f:af: 9f:9c:17:75:76:8a:8d:83:cc:2f:e6:79:3b:ba:a5: 74:62:58:7a:27:b3:33:2b:aa:f3:b6:ed:b4:80:bc: 84:ba:70:de:c5:16:2f:23:cc:c4:63:e5:5b:85:f0: bb:3d:48:8d:f1:e1:1b:f9:c6:12:91:47:ad:b0:71: 77:ac:a4:89:ef:de:41:b0:ff:0e:13:b6:4e:c6:e1: b1:3a:58:ab:b5:da:56:b1:18:9f:9b:26:e7:8a:5c: d1:6c:e2:ba:dd:9f:60:ce:dd:fb:3b:67:1a:5d:9b: e3:a2:79:13:11:5d:5a:a4:5d:66:da:e3:f0:bb:ca: dd:43:e0:44:8a:91:a5:70:2a:99:a8:ab:63:28:10: b0:12:1e:6c:3e:d5:c7:f5:5e:5d:f1:29:81:81:e7: 6b:8e:95:c8:5a:9d:a5:66:29:ba:fd:c4:cf:9a:78: 27:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:36:01:48:F1:09:80:ED:A0:49:89:B6:D0:37:22:0F:F7:8D:B0:AC X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9938a0c3-c0ff-4db4-a40f-f9a64d570786.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.38.0/23 Signature Algorithm: sha256WithRSAEncryption 31:25:1c:6c:33:5e:be:1f:13:d3:8e:cd:82:c8:41:8c:e2:ed: cd:62:27:d5:cd:98:aa:47:54:20:39:35:bf:33:7f:84:61:46: f4:85:1f:64:42:58:49:2f:14:6e:ac:6f:15:83:22:86:48:3a: 1f:0e:dd:b8:fe:df:cd:5b:79:41:06:bd:9f:d2:5f:36:39:a9: c9:ef:a9:6d:16:2d:2f:c0:95:a6:14:b9:c8:96:d4:69:fd:0b: eb:f8:0d:b6:25:8c:e8:96:ec:78:0d:c0:69:89:20:a1:aa:9a: d1:4b:3e:5d:e2:02:ef:d8:5a:f7:97:e7:2d:ce:5d:b2:14:06: 5a:ea:cc:e4:cd:c8:62:16:cc:a6:1a:31:c5:ad:0b:f4:de:a0: a4:1b:bf:0e:f5:ff:19:2a:59:fb:9d:22:72:c5:73:1c:65:94: a2:ef:98:96:ab:d3:5c:59:71:7b:9c:22:bf:db:8d:43:d2:77: 9b:dc:63:f1:23:c3:c1:6c:12:2f:37:27:15:60:a7:2d:22:a6: a3:52:40:be:c2:2f:df:8f:66:e6:13:23:37:82:05:56:c1:e6: df:1e:18:66:dd:de:bb:4d:c5:ed:ba:29:02:9c:08:33:41:5b: 6e:88:06:76:67:05:06:a8:1c:e5:4e:e1:b0:5a:e0:9e:15:82: f8:85:1f:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIgPFYSXcSc59Tpxrf3dA78qDKHgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTk1NjE1WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YmE4MGNmZDRkN2NjMjk4ZjY2MTdhNjE2NmM0YTM2NTQz Mzc2MDQ2OTc1YmVkY2Q3MWUxNTZlYzdiYzJkMTI3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjdiallbwKtXLML8ezRaM2pRDEom8NA4y99aAXl5wKC0M4 b0LghoLlJ51fTfOmEvN/GQjS4XlWwEp5b3EzRvjWajE+BP9++e0VRen7TsILsYBa UfoibgEvr5+cF3V2io2DzC/meTu6pXRiWHonszMrqvO27bSAvIS6cN7FFi8jzMRj 5VuF8Ls9SI3x4Rv5xhKRR62wcXespInv3kGw/w4Ttk7G4bE6WKu12laxGJ+bJueK XNFs4rrdn2DO3fs7Zxpdm+OieRMRXVqkXWba4/C7yt1D4ESKkaVwKpmoq2MoELAS Hmw+1cf1Xl3xKYGB52uOlchanaVmKbr9xM+aeCcLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2TYBSPEJgO2gSYm20DciD/eNsKwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzk5MzhhMGMzLWMwZmYtNGRiNC1hNDBmLWY5YTY0ZDU3MDc4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYiSYwDQYJKoZIhvcNAQELBQADggEBADElHGwzXr4fE9OOzYLIQYzi7c1i J9XNmKpHVCA5Nb8zf4RhRvSFH2RCWEkvFG6sbxWDIoZIOh8O3bj+381beUEGvZ/S XzY5qcnvqW0WLS/AlaYUuciW1Gn9C+v4DbYljOiW7HgNwGmJIKGqmtFLPl3iAu/Y WveX5y3OXbIUBlrqzOTNyGIWzKYaMcWtC/TeoKQbvw71/xkqWfudInLFcxxllKLv mJar01xZcXucIr/bjUPSd5vcY/Ejw8FsEi83JxVgpy0ipqNSQL7CL9+PZuYTIzeC BVbB5t8eGGbd3rtNxe26KQKcCDNBW26IBnZnBQaoHOVO4bBa4J4VgviFHw0= -----END CERTIFICATE-----Generated at Fri Sep 19 11:16:04 2025 by rpki-client