$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9cd01a84-700c-47a6-9c4a-a49fe785d210.roa File: 9cd01a84-700c-47a6-9c4a-a49fe785d210.roa (raw, json) Hash identifier: 30cfwgBHZ0FN0hkYenpI7lWtxWdYe5bWFGmE/56bysQ= Subject key identifier: 22:BB:6E:CA:44:50:DB:44:82:DB:E1:9F:BD:E4:0F:8A:FD:98:F2:82 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0D9A60410CF1CB2C523859526C20EAD37B32E0B9 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9cd01a84-700c-47a6-9c4a-a49fe785d210.roa Signing time: Thu 18 Sep 2025 19:54:36 +0000 ROA not before: Thu 18 Sep 2025 19:54:36 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9a:60:41:0c:f1:cb:2c:52:38:59:52:6c:20:ea:d3:7b:32:e0:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:54:36 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=09f8e71191755979288bdb9b6dc03a1c5f0459b96383eac3a319d22b05cda661, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f1:29:bc:ac:73:99:6b:dd:35:47:3e:d4:53: 18:8d:c6:d0:e4:c9:98:35:a8:d2:af:2c:74:29:e0: d6:4a:bd:44:9a:8d:4e:97:05:6e:fe:a9:58:8b:47: 6d:2c:20:d4:2f:ca:b7:a4:1a:32:42:b9:7d:ac:dc: 1f:fb:50:25:c3:06:f0:f8:44:0e:89:a0:ee:15:97: f8:d0:53:49:50:fb:ef:b3:62:12:93:d2:dc:22:4a: 3d:fd:32:b5:19:30:0b:8d:26:ef:43:29:96:31:bf: 87:2f:3e:c6:47:3d:80:23:12:c8:a6:9a:59:2c:90: 1e:2e:bd:9e:54:a6:ae:b6:f6:49:0d:c9:9b:f1:28: 0f:0b:9e:fa:b3:4a:52:43:3c:72:d3:9d:f4:b9:fd: 80:3b:24:1a:2f:1c:e8:6c:e4:cc:b9:a8:e8:88:d5: 8e:e0:64:ff:14:89:d7:df:ef:c8:d7:69:8d:5d:ac: 98:43:40:ff:a0:f5:2a:84:24:dd:e3:96:27:97:20: 55:74:d1:95:7d:20:be:ca:89:58:ce:66:6b:40:6e: d5:11:4e:1d:df:ae:41:1a:f7:68:ce:3f:3e:e9:c8: 74:6c:67:95:3c:1e:45:70:93:be:5e:a9:8e:90:ea: 15:f0:5f:a0:78:f4:0e:8e:95:29:fd:f0:81:73:a2: 1c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:BB:6E:CA:44:50:DB:44:82:DB:E1:9F:BD:E4:0F:8A:FD:98:F2:82 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9cd01a84-700c-47a6-9c4a-a49fe785d210.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.220.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:5b:19:0a:09:de:e6:62:fc:18:95:4e:b4:29:e4:58:40:2e: 7c:ce:64:dd:ce:56:99:e6:ea:c6:72:0a:19:f8:e1:ba:d4:e8: 47:a0:ad:c7:23:f5:e0:e3:ef:6a:dd:35:4e:66:78:b1:2d:87: 5e:ae:28:81:4a:aa:6a:cf:4a:5c:48:03:50:d7:8f:a1:03:0f: bf:60:d5:63:64:03:58:86:fd:56:7e:a2:30:18:3f:47:51:75: e3:99:57:0b:ee:a0:65:4a:f2:0e:ee:be:3f:fe:6a:7f:ed:b1: 48:4c:44:19:d7:0a:b4:61:bc:f1:fc:cc:c4:c7:d3:b9:6f:36: 5f:82:d8:bd:00:af:ff:26:d8:ce:4f:c1:cf:31:2c:06:03:6d: c9:72:5b:50:9a:a1:b1:a7:8b:31:78:01:69:53:87:d6:1f:ba: fd:89:80:58:af:54:48:ee:c2:e4:c7:1c:53:aa:f9:78:82:a0: 85:3f:f2:51:c9:9c:c4:eb:b2:ea:49:1a:2c:77:ec:0b:fc:8c: 4f:3b:05:e9:63:93:b5:d9:80:95:58:f6:23:03:fd:d1:3b:ff: 65:f7:3d:23:1f:d7:e2:35:8e:ac:0e:c4:ac:d6:ea:d2:53:ad: 41:91:68:ab:49:6b:05:a8:62:70:38:38:4a:6b:63:3e:80:b4: cf:80:55:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDZpgQQzxyyxSOFlSbCDq03sy4LkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTk1NDM2WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWY4ZTcxMTkxNzU1OTc5Mjg4YmRiOWI2ZGMwM2ExYzVm MDQ1OWI5NjM4M2VhYzNhMzE5ZDIyYjA1Y2RhNjYxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs8Sm8rHOZa901Rz7UUxiNxtDkyZg1qNKvLHQp4NZKvUSa jU6XBW7+qViLR20sINQvyrekGjJCuX2s3B/7UCXDBvD4RA6JoO4Vl/jQU0lQ+++z YhKT0twiSj39MrUZMAuNJu9DKZYxv4cvPsZHPYAjEsimmlkskB4uvZ5Upq629kkN yZvxKA8LnvqzSlJDPHLTnfS5/YA7JBovHOhs5My5qOiI1Y7gZP8Uidff78jXaY1d rJhDQP+g9SqEJN3jlieXIFV00ZV9IL7KiVjOZmtAbtURTh3frkEa92jOPz7pyHRs Z5U8HkVwk75eqY6Q6hXwX6B49A6OlSn98IFzohyNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIrtuykRQ20SC2+GfveQPiv2Y8oIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzljZDAxYTg0LTcwMGMtNDdhNi05YzRhLWE0OWZlNzg1ZDIxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+9wwDQYJKoZIhvcNAQELBQADggEBAA5bGQoJ3uZi/BiVTrQp5FhALnzO ZN3OVpnm6sZyChn44brU6Eegrccj9eDj72rdNU5meLEth16uKIFKqmrPSlxIA1DX j6EDD79g1WNkA1iG/VZ+ojAYP0dRdeOZVwvuoGVK8g7uvj/+an/tsUhMRBnXCrRh vPH8zMTH07lvNl+C2L0Ar/8m2M5Pwc8xLAYDbclyW1CaobGnizF4AWlTh9Yfuv2J gFivVEjuwuTHHFOq+XiCoIU/8lHJnMTrsupJGix37Av8jE87Beljk7XZgJVY9iMD /dE7/2X3PSMf1+I1jqwOxKzW6tJTrUGRaKtJawWoYnA4OEprYz6AtM+AVeM= -----END CERTIFICATE-----Generated at Fri Sep 19 04:38:19 2025 by rpki-client