$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2bb31ac-01a0-4e71-907b-7505af3898df.roa File: a2bb31ac-01a0-4e71-907b-7505af3898df.roa (raw, json) Hash identifier: 8afTG+1F4IH8cQWyR+UrSq7CK1ulbrvDLvIp1p3JQmw= Subject key identifier: 65:8B:8C:C0:CB:DA:C1:B4:12:EF:9F:B0:FE:22:6F:20:14:CA:02:79 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 79E94FE40A517C9F622F2AA9649F48144E468296 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2bb31ac-01a0-4e71-907b-7505af3898df.roa Signing time: Fri 07 Nov 2025 01:10:15 +0000 ROA not before: Fri 07 Nov 2025 01:10:15 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:e9:4f:e4:0a:51:7c:9f:62:2f:2a:a9:64:9f:48:14:4e:46:82:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 7 01:10:15 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=5a19c0243d9dfebd4df46c960f98865f33d247e80ade6157b8e65aaed6d07dab, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cd:d5:31:12:4b:fb:bc:21:c0:60:9e:e3:09: 7d:c2:17:3a:94:11:cc:b1:33:c2:a1:1c:df:27:5e: b4:2d:ec:94:56:04:14:da:24:ab:56:48:a5:0c:cf: d7:56:d5:eb:0f:94:67:63:15:12:66:4a:7f:f5:5a: e4:e0:c8:fa:8d:c9:04:35:48:fc:e8:68:13:1e:2e: 59:98:6d:94:f6:62:17:23:7a:a5:a3:da:67:f9:ee: 60:27:18:5d:b6:27:a2:b1:cb:7b:53:7f:3a:67:92: 05:4f:f3:45:0e:e0:3c:4d:9c:08:eb:61:a6:01:fb: 69:ec:ad:de:2b:99:12:f9:c3:27:1f:ac:04:46:f8: db:c7:36:bf:2e:63:58:2e:f8:f0:f9:0e:bb:ca:4f: dd:43:bb:e7:8b:7c:98:5f:d4:5a:f4:9e:00:05:bb: 6a:41:7f:b5:a3:b0:5e:13:cb:00:ed:d5:ba:05:d3: 48:b5:00:d8:47:e9:f6:1e:30:3b:19:ef:78:44:37: 49:22:e9:c9:2e:35:b0:ae:1a:9f:75:24:d7:cc:10: 3b:de:e8:93:45:48:d1:36:9d:f6:d3:32:4c:c6:1d: 1c:84:af:3b:d8:29:1d:8d:f5:f3:24:e8:ce:48:20: d3:3c:c6:94:be:ae:c7:ab:08:01:72:1c:ba:0b:dc: 5d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:8B:8C:C0:CB:DA:C1:B4:12:EF:9F:B0:FE:22:6F:20:14:CA:02:79 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2bb31ac-01a0-4e71-907b-7505af3898df.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.48.0/21 Signature Algorithm: sha256WithRSAEncryption 6f:ff:43:a4:6c:5e:1d:25:da:76:d2:51:f0:dc:6d:f4:c2:a2: c5:33:ed:ba:87:bd:93:8f:a2:11:f2:91:fe:cb:10:98:b0:ee: 14:21:fa:1b:66:ed:48:9e:3a:f5:4f:28:47:19:e6:a3:88:d3: 20:7b:f5:01:5e:c2:a8:fa:05:5c:15:6e:2d:a0:cc:44:7d:5e: a8:ab:5c:a5:49:5c:fe:db:d4:d4:fe:30:b1:0a:3c:aa:77:e3: 11:0a:e5:b9:16:b4:45:fd:84:52:e7:2c:fc:36:db:f1:0d:70: 67:e2:44:ec:cc:79:dd:21:54:26:11:84:2e:35:7c:a5:8f:bd: a9:6d:9d:5e:61:2d:75:fb:e4:a1:4c:7d:3d:8b:5b:98:8d:9b: 83:82:f1:f8:55:f8:22:4c:9e:be:c6:35:0f:66:25:5f:b0:74: b9:7e:3f:e6:95:96:93:65:eb:a6:d1:9b:47:5c:4e:ae:f6:fb: 27:00:ac:2d:39:2f:b2:6d:93:37:cd:c4:9c:82:78:d4:e3:99: d9:f7:b6:07:f5:c9:87:1d:c2:bd:8d:25:fa:e3:21:6d:a5:65: 82:c8:52:b4:65:31:4c:22:a6:df:42:4d:75:ff:22:45:97:95: ee:4b:5e:b1:45:7f:2f:7c:ff:dc:c9:bd:0c:a8:fe:c0:bf:f5: ae:80:b1:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeelP5ApRfJ9iLyqpZJ9IFE5GgpYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA3MDExMDE1WhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTE5YzAyNDNkOWRmZWJkNGRmNDZjOTYwZjk4ODY1ZjMz ZDI0N2U4MGFkZTYxNTdiOGU2NWFhZWQ2ZDA3ZGFiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5zdUxEkv7vCHAYJ7jCX3CFzqUEcyxM8KhHN8nXrQt7JRW BBTaJKtWSKUMz9dW1esPlGdjFRJmSn/1WuTgyPqNyQQ1SPzoaBMeLlmYbZT2Yhcj eqWj2mf57mAnGF22J6Kxy3tTfzpnkgVP80UO4DxNnAjrYaYB+2nsrd4rmRL5wycf rARG+NvHNr8uY1gu+PD5DrvKT91Du+eLfJhf1Fr0ngAFu2pBf7WjsF4TywDt1boF 00i1ANhH6fYeMDsZ73hEN0ki6ckuNbCuGp91JNfMEDve6JNFSNE2nfbTMkzGHRyE rzvYKR2N9fMk6M5IINM8xpS+rserCAFyHLoL3F2dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZYuMwMvawbQS75+w/iJvIBTKAnkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyYmIzMWFjLTAxYTAtNGU3MS05MDdiLTc1MDVhZjM4OThkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYiTAwDQYJKoZIhvcNAQELBQADggEBAG//Q6RsXh0l2nbSUfDcbfTCosUz 7bqHvZOPohHykf7LEJiw7hQh+htm7UieOvVPKEcZ5qOI0yB79QFewqj6BVwVbi2g zER9XqirXKVJXP7b1NT+MLEKPKp34xEK5bkWtEX9hFLnLPw22/ENcGfiROzMed0h VCYRhC41fKWPvaltnV5hLXX75KFMfT2LW5iNm4OC8fhV+CJMnr7GNQ9mJV+wdLl+ P+aVlpNl66bRm0dcTq72+ycArC05L7JtkzfNxJyCeNTjmdn3tgf1yYcdwr2NJfrj IW2lZYLIUrRlMUwipt9CTXX/IkWXle5LXrFFfy98/9zJvQyo/sC/9a6AsQY= -----END CERTIFICATE-----Generated at Tue Nov 18 10:39:25 2025 by rpki-client