$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a835678f-5f70-47e3-84c1-3cc2113f8057.roa File: a835678f-5f70-47e3-84c1-3cc2113f8057.roa (raw, json) Hash identifier: aCXs12iR/ItVYexKGMKzZKeI+hdIB4XzeaOvenma28I= Subject key identifier: DF:0B:30:24:46:1B:1A:39:46:BC:EE:99:5D:44:ED:7E:DF:A3:F7:2F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 478C269517052D59F654F017AC7BBC15B5D692B2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a835678f-5f70-47e3-84c1-3cc2113f8057.roa Signing time: Thu 18 Sep 2025 19:52:32 +0000 ROA not before: Thu 18 Sep 2025 19:52:32 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:8c:26:95:17:05:2d:59:f6:54:f0:17:ac:7b:bc:15:b5:d6:92:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:52:32 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=d51b2bade0ae1038a552f18b52921694924f860eb5b74ddde67e62e4e81d7680, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7f:ba:b5:28:4f:82:62:0b:5c:57:12:98:9e: 8d:8e:36:fb:a4:78:b0:fe:8f:a8:ca:dd:bf:b7:41: 15:da:cb:56:52:11:54:31:dc:fd:b8:97:b8:9c:ca: 15:e9:ca:4a:fc:88:7c:22:7b:0b:c7:5a:54:30:ab: 2b:65:6f:63:4b:e9:8f:87:3f:78:01:73:28:cd:c9: 99:38:de:09:ae:24:b2:bd:03:3a:e5:5c:f1:fb:f6: ba:66:4a:6a:4d:24:b8:26:71:0b:fb:2a:f7:cf:91: d6:47:f6:c6:bb:a9:6e:56:b2:9a:f5:0c:01:51:09: 2f:ed:31:78:c7:e4:50:ed:09:c7:48:a1:c1:8e:44: 0c:0c:b5:ee:d8:eb:f6:b2:07:aa:71:67:f8:f5:f9: 1e:24:4b:b0:0b:5f:24:a4:7d:4f:a3:49:e8:fb:5b: 38:d3:bb:ab:f8:1d:3f:25:c4:07:c5:d7:51:5d:bd: 6c:db:f5:89:d8:b6:6a:71:69:9f:3c:33:d3:ec:fd: 8d:2b:5b:5d:89:2c:0c:bd:32:1f:2b:3e:ee:38:43: 31:cb:01:92:48:f8:79:4b:6f:e2:6c:7f:ab:2d:f1: 5c:91:0a:5e:bb:ed:5e:02:51:ca:b1:fa:08:bd:e9: 20:bf:c1:4e:bd:5d:69:3a:a1:4b:83:9f:a3:59:a1: 90:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:0B:30:24:46:1B:1A:39:46:BC:EE:99:5D:44:ED:7E:DF:A3:F7:2F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a835678f-5f70-47e3-84c1-3cc2113f8057.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.213.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:cb:c7:21:63:bd:44:fd:a8:e6:2f:d4:94:bd:05:b4:f2:45: 2b:8a:0d:a8:29:59:c2:96:f1:66:2c:2d:10:a4:6c:10:4b:0c: 9f:d0:4c:02:9a:f7:83:8b:91:b4:a0:5e:75:b1:66:e9:4c:7e: dd:c0:af:e4:b7:c6:fc:64:66:b3:29:6a:f0:1d:69:e6:08:7a: 45:0f:67:54:bf:ff:f9:c9:ab:d9:91:f4:0c:71:03:8d:b0:a1: 2d:de:a2:ab:7d:80:c6:77:cb:bb:ec:b0:50:87:fa:be:85:87: 55:e0:12:5e:2d:f5:d3:e4:3d:7b:32:a8:df:9e:b3:ee:f7:4e: b8:1b:37:c6:cc:d3:e4:4f:f6:d7:51:bd:fe:a4:d5:dc:42:9f: e1:35:46:4a:b5:0b:dc:6b:85:91:24:fc:ad:9c:bb:22:55:6c: e9:96:8b:69:d0:11:38:4a:7d:fe:f4:44:46:d9:06:70:e5:ee: 30:13:ab:4a:72:92:6f:b4:c1:aa:3d:41:44:c8:5c:5b:6c:ca: e5:a6:c3:62:72:19:72:b5:63:ec:89:73:bc:3b:b2:98:82:f9: b7:c5:98:c3:58:fe:65:dc:a9:3a:90:20:c6:d4:5e:58:5c:a2: 9e:dc:af:c7:bf:a6:75:fa:0f:a4:07:67:ac:ed:d4:3c:12:4d: d2:33:db:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR4wmlRcFLVn2VPAXrHu8FbXWkrIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTk1MjMyWhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTFiMmJhZGUwYWUxMDM4YTU1MmYxOGI1MjkyMTY5NDky NGY4NjBlYjViNzRkZGRlNjdlNjJlNGU4MWQ3NjgwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOf7q1KE+CYgtcVxKYno2ONvukeLD+j6jK3b+3QRXay1ZS EVQx3P24l7icyhXpykr8iHwiewvHWlQwqytlb2NL6Y+HP3gBcyjNyZk43gmuJLK9 AzrlXPH79rpmSmpNJLgmcQv7KvfPkdZH9sa7qW5Wspr1DAFRCS/tMXjH5FDtCcdI ocGORAwMte7Y6/ayB6pxZ/j1+R4kS7ALXySkfU+jSej7WzjTu6v4HT8lxAfF11Fd vWzb9YnYtmpxaZ88M9Ps/Y0rW12JLAy9Mh8rPu44QzHLAZJI+HlLb+Jsf6st8VyR Cl677V4CUcqx+gi96SC/wU69XWk6oUuDn6NZoZC7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3wswJEYbGjlGvO6ZXUTtft+j9y8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E4MzU2NzhmLTVmNzAtNDdlMy04NGMxLTNjYzIxMTNmODA1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+9UwDQYJKoZIhvcNAQELBQADggEBAE/LxyFjvUT9qOYv1JS9BbTyRSuK DagpWcKW8WYsLRCkbBBLDJ/QTAKa94OLkbSgXnWxZulMft3Ar+S3xvxkZrMpavAd aeYIekUPZ1S///nJq9mR9AxxA42woS3eoqt9gMZ3y7vssFCH+r6Fh1XgEl4t9dPk PXsyqN+es+73TrgbN8bM0+RP9tdRvf6k1dxCn+E1Rkq1C9xrhZEk/K2cuyJVbOmW i2nQEThKff70REbZBnDl7jATq0pykm+0wao9QUTIXFtsyuWmw2JyGXK1Y+yJc7w7 spiC+bfFmMNY/mXcqTqQIMbUXlhcop7cr8e/pnX6D6QHZ6zt1DwSTdIz214= -----END CERTIFICATE-----Generated at Fri Sep 19 04:37:50 2025 by rpki-client