$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db4ef3c9-3999-4ca9-95a6-f167379a1331.roa File: db4ef3c9-3999-4ca9-95a6-f167379a1331.roa (raw, json) Hash identifier: bnNdIEI3uoSVdiHrzTtZwCrwoknZWHuVErJfRu/gG1o= Subject key identifier: 65:BF:2C:EF:BC:04:44:CA:5F:58:8F:91:BC:51:70:13:57:1C:33:8D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4397F399545246C361B877CA516DBF1AA6573588 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db4ef3c9-3999-4ca9-95a6-f167379a1331.roa Signing time: Fri 07 Nov 2025 01:00:08 +0000 ROA not before: Fri 07 Nov 2025 01:00:08 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:97:f3:99:54:52:46:c3:61:b8:77:ca:51:6d:bf:1a:a6:57:35:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 7 01:00:08 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=7859f36c575825d007a0e29cdefff188bfacc25e75bfcab316e9af0cde5a83a1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:42:5f:3f:65:d7:26:01:c8:b8:49:92:1d:05: 62:69:db:43:b4:57:e5:4e:e2:00:ab:8f:4a:ee:12: f4:b9:2e:de:63:cc:a3:bb:0e:67:1d:c7:20:7a:73: 38:f9:24:c2:9d:51:c7:7a:a6:17:eb:e6:01:36:76: 2f:7a:43:cd:a8:f1:e9:d7:4f:82:84:7c:ff:79:f6: 8b:3f:8a:e4:35:8f:ff:13:8c:41:32:fa:6b:be:a5: 03:8d:6e:81:a1:dc:1f:20:bc:ed:97:d5:3c:5b:9c: e6:a2:78:b5:94:4d:48:47:0c:26:f8:6f:1b:60:25: e1:99:2a:68:91:ce:03:b3:14:4f:b5:af:be:66:9d: 96:0f:f3:b8:c7:85:47:de:80:86:d9:80:b6:71:f3: 7b:9a:0d:9d:f3:b9:a7:52:98:c0:8a:b5:55:bb:b5: 38:14:81:91:d0:68:6b:b4:5e:96:de:4a:1d:05:47: e6:b5:7c:35:22:5d:f8:88:df:ee:98:74:0c:08:ce: 28:65:9c:39:44:d5:cd:d4:b4:97:ae:ac:30:a0:90: a8:c0:84:77:0c:fc:2d:24:f6:8d:0d:cb:d3:33:19: d6:73:48:4d:8f:36:ff:ee:0d:19:2b:98:8a:7e:06: bd:b1:49:fa:a9:0c:19:b4:20:7f:7b:c4:9a:7d:a8: 41:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BF:2C:EF:BC:04:44:CA:5F:58:8F:91:BC:51:70:13:57:1C:33:8D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db4ef3c9-3999-4ca9-95a6-f167379a1331.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.52.0/22 Signature Algorithm: sha256WithRSAEncryption 30:36:a2:05:98:d5:36:be:83:e4:35:e1:d9:3a:dc:a7:bf:2f: bf:8a:f3:93:14:f4:83:b5:66:ff:d5:ef:87:4e:2c:ea:f4:d1: d4:f6:a4:5c:ec:69:59:9e:ff:61:bd:b7:81:1f:75:e1:9a:be: 51:57:80:33:bf:64:de:68:b6:07:a6:5e:5f:be:ef:cf:96:17: d5:0f:c6:e2:8d:1d:d9:5a:55:a7:dd:ab:37:50:06:9a:b6:d3: fb:f4:a7:c3:4e:3b:0f:ef:df:6f:bd:1b:a9:f1:e6:84:07:25: 4b:6e:c7:1f:95:08:9e:9b:2a:f1:4a:f9:e5:94:6d:71:a5:da: 3f:64:d6:67:94:65:2d:aa:45:cd:2e:85:f2:58:c9:db:96:1d: 44:b5:37:72:03:a4:ff:2b:4a:e2:38:08:b5:04:67:2a:da:0d: 57:4f:a3:8b:7b:31:d9:66:ba:03:8c:31:94:3b:a1:61:30:05: 42:90:3e:b6:0f:67:12:4f:8d:d5:4c:a5:28:0e:6c:dc:87:5c: 03:f1:58:5a:e4:5b:dc:fe:51:4a:d2:6f:51:f6:09:1c:ca:70: 57:1d:7f:34:03:2c:2d:f3:ed:c3:5a:09:8d:3f:86:15:73:e9: 65:81:a0:b8:c1:ac:2e:ac:10:90:91:79:14:9b:19:57:9f:ca: dc:de:3c:86 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ5fzmVRSRsNhuHfKUW2/GqZXNYgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA3MDEwMDA4WhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODU5ZjM2YzU3NTgyNWQwMDdhMGUyOWNkZWZmZjE4OGJm YWNjMjVlNzViZmNhYjMxNmU5YWYwY2RlNWE4M2ExMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsQl8/ZdcmAci4SZIdBWJp20O0V+VO4gCrj0ruEvS5Lt5j zKO7DmcdxyB6czj5JMKdUcd6phfr5gE2di96Q82o8enXT4KEfP959os/iuQ1j/8T jEEy+mu+pQONboGh3B8gvO2X1TxbnOaieLWUTUhHDCb4bxtgJeGZKmiRzgOzFE+1 r75mnZYP87jHhUfegIbZgLZx83uaDZ3zuadSmMCKtVW7tTgUgZHQaGu0XpbeSh0F R+a1fDUiXfiI3+6YdAwIzihlnDlE1c3UtJeurDCgkKjAhHcM/C0k9o0Ny9MzGdZz SE2PNv/uDRkrmIp+Br2xSfqpDBm0IH97xJp9qEGzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZb8s77wERMpfWI+RvFFwE1ccM40wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RiNGVmM2M5LTM5OTktNGNhOS05NWE2LWYxNjczNzlhMTMzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYiTQwDQYJKoZIhvcNAQELBQADggEBADA2ogWY1Ta+g+Q14dk63Ke/L7+K 85MU9IO1Zv/V74dOLOr00dT2pFzsaVme/2G9t4EfdeGavlFXgDO/ZN5otgemXl++ 78+WF9UPxuKNHdlaVafdqzdQBpq20/v0p8NOOw/v32+9G6nx5oQHJUtuxx+VCJ6b KvFK+eWUbXGl2j9k1meUZS2qRc0uhfJYyduWHUS1N3IDpP8rSuI4CLUEZyraDVdP o4t7MdlmugOMMZQ7oWEwBUKQPrYPZxJPjdVMpSgObNyHXAPxWFrkW9z+UUrSb1H2 CRzKcFcdfzQDLC3z7cNaCY0/hhVz6WWBoLjBrC6sEJCReRSbGVefytzePIY= -----END CERTIFICATE-----Generated at Tue Nov 18 09:37:21 2025 by rpki-client