$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9b148834-bac1-4fe7-b723-ac66d452de59.roa File: 9b148834-bac1-4fe7-b723-ac66d452de59.roa (raw, json) Hash identifier: TFaD9EoRxuCpAxW55Iw02CM9MtbHHPe5v+bY/2rxAHM= Subject key identifier: AA:F8:33:9A:70:DE:9F:76:40:BA:6E:61:28:CB:07:46:07:C8:D7:2B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 75F496EB64614F5E684B590191223BB81ED7971A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9b148834-bac1-4fe7-b723-ac66d452de59.roa Signing time: Thu 18 Sep 2025 19:55:52 +0000 ROA not before: Thu 18 Sep 2025 19:55:52 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f4:96:eb:64:61:4f:5e:68:4b:59:01:91:22:3b:b8:1e:d7:97:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:55:52 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=2e058a45f1fef86e9e6dd3b869e02d1a76fcca9da0855764ac6f4e7d2a1c0533, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:67:36:ed:f3:23:3c:2a:df:02:98:6c:5f:bb: b9:47:fc:e8:b7:fb:aa:5b:f1:f9:b0:cc:b8:67:30: 62:ba:a2:e2:c9:5c:f4:c5:f9:9c:44:d5:6c:4d:8f: 16:0c:92:71:c4:0e:e6:5a:67:71:d7:b3:35:bb:64: 62:27:43:6f:3a:1f:5d:15:57:db:7b:21:1c:d4:e4: e5:26:51:7c:92:03:7f:79:3a:b3:bb:d6:9d:93:92: 2c:9b:d8:02:8c:ed:8a:65:9f:be:d6:78:6f:fd:5b: ea:4a:3d:ea:5c:fd:24:52:83:6c:46:73:c5:cc:c3: 8b:48:13:4b:d9:9c:eb:39:96:01:51:f4:f1:e2:08: 2b:cf:a9:4f:39:12:4c:81:df:9b:9f:f8:d8:66:8d: 7f:f2:7f:25:3f:44:6e:0e:3c:60:5b:a0:5b:cf:b1: 50:aa:e4:54:69:d0:20:49:79:0f:bc:6a:b4:7b:a5: 64:43:84:96:75:05:71:b3:33:88:fb:d1:5b:d7:52: d0:3b:ca:f9:e4:fa:f6:93:63:46:2d:19:f0:b9:74: e3:ab:f5:97:b9:08:c8:6e:ef:2c:91:37:c7:ed:aa: a7:08:4d:c6:d9:b2:e2:bb:2c:dd:bb:d6:b4:db:3d: 5f:fc:9b:58:c7:00:c2:94:37:46:f9:97:4d:68:2e: b3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:F8:33:9A:70:DE:9F:76:40:BA:6E:61:28:CB:07:46:07:C8:D7:2B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9b148834-bac1-4fe7-b723-ac66d452de59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.36.0/24 Signature Algorithm: sha256WithRSAEncryption 72:2d:9d:99:c8:a6:d9:44:e1:89:e9:3c:87:3a:43:5f:bd:c1: c7:41:8e:1c:55:ee:39:d3:af:1e:43:88:f3:85:5b:fb:a6:d4: 4e:91:07:89:36:53:c1:29:2e:88:85:31:3b:ad:95:54:53:c9: b4:12:67:93:86:00:7c:64:44:5e:59:55:1e:f2:ec:6b:6b:66: 66:3b:2a:67:e8:3f:16:2f:88:62:d6:73:d9:b3:54:6a:f8:8c: 3d:11:69:53:93:04:f9:92:5f:7e:ab:04:0e:2f:91:09:d0:0a: 97:12:0b:e1:00:61:a6:ae:47:0c:2f:06:9e:e6:19:37:9f:e9: 98:9b:af:d0:4c:de:5b:fd:13:80:73:af:d8:5e:d4:bc:ce:7d: 4b:a9:8f:53:c0:ee:73:02:2c:61:9a:72:f5:37:61:53:c2:5b: 7e:fd:77:15:8a:a6:3f:b8:39:e9:cc:f3:d3:f6:fb:d9:1e:26: 04:bd:00:82:e1:82:9c:dc:bd:72:9b:8d:81:d8:07:24:48:ec: 03:8d:b7:ca:90:94:7a:5a:a9:3a:eb:e6:bd:1b:b7:01:cf:3d: 21:6f:64:83:4e:38:69:cb:fe:32:c9:1a:53:62:e3:59:aa:19: 37:bc:8e:b8:8f:27:d3:ba:b3:70:12:db:21:e6:1d:80:d3:65: 25:66:f7:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdfSW62RhT15oS1kBkSI7uB7XlxowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTk1NTUyWhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTA1OGE0NWYxZmVmODZlOWU2ZGQzYjg2OWUwMmQxYTc2 ZmNjYTlkYTA4NTU3NjRhYzZmNGU3ZDJhMWMwNTMzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYZzbt8yM8Kt8CmGxfu7lH/Oi3+6pb8fmwzLhnMGK6ouLJ XPTF+ZxE1WxNjxYMknHEDuZaZ3HXszW7ZGInQ286H10VV9t7IRzU5OUmUXySA395 OrO71p2Tkiyb2AKM7Ypln77WeG/9W+pKPepc/SRSg2xGc8XMw4tIE0vZnOs5lgFR 9PHiCCvPqU85EkyB35uf+NhmjX/yfyU/RG4OPGBboFvPsVCq5FRp0CBJeQ+8arR7 pWRDhJZ1BXGzM4j70VvXUtA7yvnk+vaTY0YtGfC5dOOr9Ze5CMhu7yyRN8ftqqcI TcbZsuK7LN271rTbPV/8m1jHAMKUN0b5l01oLrOZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqvgzmnDen3ZAum5hKMsHRgfI1yswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzliMTQ4ODM0LWJhYzEtNGZlNy1iNzIzLWFjNjZkNDUyZGU1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADYiSQwDQYJKoZIhvcNAQELBQADggEBAHItnZnIptlE4YnpPIc6Q1+9wcdB jhxV7jnTrx5DiPOFW/um1E6RB4k2U8EpLoiFMTutlVRTybQSZ5OGAHxkRF5ZVR7y 7GtrZmY7KmfoPxYviGLWc9mzVGr4jD0RaVOTBPmSX36rBA4vkQnQCpcSC+EAYaau RwwvBp7mGTef6Zibr9BM3lv9E4Bzr9he1LzOfUupj1PA7nMCLGGacvU3YVPCW379 dxWKpj+4OenM89P2+9keJgS9AILhgpzcvXKbjYHYByRI7AONt8qQlHpaqTrr5r0b twHPPSFvZINOOGnL/jLJGlNi41mqGTe8jriPJ9O6s3AS2yHmHYDTZSVm9+U= -----END CERTIFICATE-----Generated at Fri Sep 19 04:37:37 2025 by rpki-client