$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dd50c87c-3211-4a1a-aabe-7919e6a06a41.roa File: dd50c87c-3211-4a1a-aabe-7919e6a06a41.roa (raw, json) Hash identifier: NPqBLvXjHkf25KAO83r4TtXQBf2RrEIopapjAOG4uMA= Subject key identifier: 39:3F:F8:90:DF:5D:01:2F:1B:E0:0E:BE:24:5A:E9:60:93:A3:12:C8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 252736539A702B8016581B61D7359A61CE86167D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dd50c87c-3211-4a1a-aabe-7919e6a06a41.roa Signing time: Fri 07 Nov 2025 01:00:43 +0000 ROA not before: Fri 07 Nov 2025 01:00:43 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:27:36:53:9a:70:2b:80:16:58:1b:61:d7:35:9a:61:ce:86:16:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 7 01:00:43 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=18d2dac0d1dc19204f86761fcfc890a07d136f29fd8355ac27041bab6454ca4d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:88:31:44:d9:2b:40:c4:b2:67:36:68:23:13: 3f:2b:7a:68:9f:24:8d:a5:7c:69:55:2e:53:a0:68: 3d:51:9a:ce:6f:05:e9:a2:83:87:bb:d4:1f:43:80: 5a:c4:9d:35:54:0d:ba:d0:4b:cf:10:80:9e:00:ca: 76:86:d0:c6:09:6b:a5:39:c6:d7:18:9f:06:81:08: b1:da:10:2e:eb:9c:94:da:97:36:8a:d5:7b:83:0f: 62:5d:b4:56:1c:63:40:28:5c:bb:65:2f:53:83:56: 7f:9f:62:4f:14:b4:e0:f3:9e:73:d2:63:1c:cf:5f: 45:2e:ad:5f:b1:23:1a:c7:2b:fb:25:b2:65:97:e7: 5a:05:db:35:97:9d:7b:ce:6d:52:6a:3a:b9:23:d3: 5f:53:7f:64:37:20:d3:af:d7:5a:4d:6a:f9:ef:71: d5:70:0e:95:c6:b4:c9:2b:ae:a4:7a:cc:05:64:93: a3:75:7e:84:ba:51:c5:66:b5:4d:ee:8c:c9:49:65: 00:98:a5:01:6d:83:e7:1b:a6:39:02:4f:fb:fb:bd: 3b:f9:46:d2:1e:c5:ce:39:1b:11:e2:28:ad:3d:cb: 96:61:40:ba:61:93:24:97:32:f1:52:9d:a1:da:33: 9c:35:24:9c:e5:52:1e:d5:a1:a0:75:9a:62:b9:71: d7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3F:F8:90:DF:5D:01:2F:1B:E0:0E:BE:24:5A:E9:60:93:A3:12:C8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dd50c87c-3211-4a1a-aabe-7919e6a06a41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.204.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:da:f9:2e:1b:22:80:d5:47:cb:5f:ae:e5:5b:68:f9:f2:97: d9:4d:bd:62:81:f8:c4:ed:17:0f:bc:63:6c:7c:97:36:7f:6c: cf:7f:03:4c:68:df:35:3e:13:2d:05:72:d7:9e:cc:32:21:44: f7:3a:47:df:42:88:b7:59:b9:6d:dc:f5:04:07:8c:05:b1:04: de:40:6c:d9:9b:01:63:f7:c8:d1:9a:d2:31:ca:b5:b0:ee:56: b3:65:22:60:47:de:62:51:10:13:66:2c:e9:6b:46:22:77:24: 48:11:70:46:f4:93:79:c4:28:ab:1b:9c:7c:53:01:38:d3:78: 1a:53:09:5a:5c:f2:99:ec:ee:f6:4a:67:ce:a8:02:64:97:2c: a2:e3:16:7a:ff:40:64:aa:9f:d4:75:7e:3f:62:10:1c:c6:dc: 69:22:f5:34:74:d9:16:9b:6c:0e:9b:c7:db:de:e6:18:fa:de: 04:bd:44:c4:55:e4:77:fd:18:ce:01:75:de:61:46:c1:83:26: 0f:98:54:10:f2:24:ab:8f:1f:1c:c3:0f:2e:02:88:e8:72:4d: 65:4c:10:e0:53:fa:91:15:56:10:b2:0d:2f:dc:c8:20:89:69: d8:7c:4d:a4:b3:28:6a:ae:92:06:76:61:e0:a1:5d:72:9e:1e: ed:89:6b:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJSc2U5pwK4AWWBth1zWaYc6GFn0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA3MDEwMDQzWhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGQyZGFjMGQxZGMxOTIwNGY4Njc2MWZjZmM4OTBhMDdk MTM2ZjI5ZmQ4MzU1YWMyNzA0MWJhYjY0NTRjYTRkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDiDFE2StAxLJnNmgjEz8remifJI2lfGlVLlOgaD1Rms5v Bemig4e71B9DgFrEnTVUDbrQS88QgJ4AynaG0MYJa6U5xtcYnwaBCLHaEC7rnJTa lzaK1XuDD2JdtFYcY0AoXLtlL1ODVn+fYk8UtODznnPSYxzPX0UurV+xIxrHK/sl smWX51oF2zWXnXvObVJqOrkj019Tf2Q3INOv11pNavnvcdVwDpXGtMkrrqR6zAVk k6N1foS6UcVmtU3ujMlJZQCYpQFtg+cbpjkCT/v7vTv5RtIexc45GxHiKK09y5Zh QLphkySXMvFSnaHaM5w1JJzlUh7VoaB1mmK5cdfFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOT/4kN9dAS8b4A6+JFrpYJOjEsgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RkNTBjODdjLTMyMTEtNGExYS1hYWJlLTc5MTllNmEwNmE0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHN+8wwDQYJKoZIhvcNAQELBQADggEBAC7a+S4bIoDVR8tfruVbaPnyl9lN vWKB+MTtFw+8Y2x8lzZ/bM9/A0xo3zU+Ey0FcteezDIhRPc6R99CiLdZuW3c9QQH jAWxBN5AbNmbAWP3yNGa0jHKtbDuVrNlImBH3mJREBNmLOlrRiJ3JEgRcEb0k3nE KKsbnHxTATjTeBpTCVpc8pns7vZKZ86oAmSXLKLjFnr/QGSqn9R1fj9iEBzG3Gki 9TR02RabbA6bx9ve5hj63gS9RMRV5Hf9GM4Bdd5hRsGDJg+YVBDyJKuPHxzDDy4C iOhyTWVMEOBT+pEVVhCyDS/cyCCJadh8TaSzKGqukgZ2YeChXXKeHu2Ja64= -----END CERTIFICATE-----Generated at Tue Nov 18 10:40:14 2025 by rpki-client