$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e7cc5010-bd30-4cf1-998d-4dd412e3985a.roa File: e7cc5010-bd30-4cf1-998d-4dd412e3985a.roa (raw, json) Hash identifier: ekZTilDEpkNjIGXQia41TB2bb7p552MJ/TqgiApFkjw= Subject key identifier: 40:56:30:B1:C3:28:0E:79:1B:17:31:58:A8:5E:05:AA:BF:33:9F:38 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 22B5B49660741A1DC49B1EEA500C96AF2D943B36 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e7cc5010-bd30-4cf1-998d-4dd412e3985a.roa Signing time: Thu 18 Sep 2025 19:39:44 +0000 ROA not before: Thu 18 Sep 2025 19:39:44 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b5:b4:96:60:74:1a:1d:c4:9b:1e:ea:50:0c:96:af:2d:94:3b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 18 19:39:44 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=b1c22cb7d7a1c7ce97bf26036773719c7b56eef32896489ab97961844f9f6789, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9a:cd:6f:13:0b:f5:01:77:d9:4f:42:42:55: 93:92:b5:90:ce:c9:a0:ec:f8:10:b8:5b:a0:60:93: fb:b4:f3:bb:0e:07:8f:ae:2f:8a:5b:76:ba:05:31: 0b:ba:ba:8c:a8:eb:32:cc:f7:43:f7:5f:25:20:38: b3:6b:10:30:ac:bf:ed:21:4b:1a:5b:d7:b9:14:da: 84:b4:4c:8c:85:7e:d7:4d:44:1a:84:b7:ab:07:5d: 6b:c1:2e:8f:48:bc:b7:c7:5c:b3:cd:1e:e3:ee:f1: c5:56:70:fe:a8:54:eb:99:e1:fe:3d:6d:d4:8a:78: 85:bd:7a:05:08:13:05:82:98:fc:f4:17:cb:e4:04: 98:17:f5:79:91:0a:6e:e3:88:80:43:1f:95:9d:b0: 56:5b:6d:f3:53:9f:37:c0:09:88:3c:18:95:5d:58: ba:58:89:a4:d4:80:62:0b:7c:83:b4:71:93:95:25: ef:24:4f:a3:74:19:23:6c:f9:47:e7:07:ab:7c:d9: 85:e6:a9:94:f4:40:d6:a4:6f:7d:7a:df:63:a4:a7: ad:f8:6c:26:81:44:e0:c8:eb:fc:43:fe:41:16:5f: e7:0f:d5:51:e4:e1:c1:49:28:60:67:fc:1d:ff:77: ad:00:25:62:87:0b:0b:16:07:31:f1:d9:62:2a:f7: 89:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:56:30:B1:C3:28:0E:79:1B:17:31:58:A8:5E:05:AA:BF:33:9F:38 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e7cc5010-bd30-4cf1-998d-4dd412e3985a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.181.0/24 Signature Algorithm: sha256WithRSAEncryption 95:21:0a:4e:a7:76:35:d2:25:34:1e:67:0f:9f:5f:8d:b3:cc: e9:cd:b4:4e:fc:ad:c9:e0:8d:63:92:09:0b:66:23:f7:fe:34: f7:2c:4c:dd:0a:9e:27:6c:26:39:41:b6:fa:77:e7:79:8c:15: 6e:d8:59:65:97:6f:95:53:49:e0:1a:ed:d4:e3:18:64:2d:42: ae:8c:a1:37:42:9d:3e:17:cc:32:c9:45:a2:3a:a0:81:7d:40: d1:26:ac:52:4d:23:11:b3:06:af:73:49:2f:17:59:00:d0:bd: 8d:47:44:84:a9:75:26:27:ef:fa:5e:6b:6a:5b:b5:22:05:22: 81:df:36:36:43:81:f8:f6:28:37:2f:4d:11:0d:06:38:b5:ef: 79:91:61:d2:27:18:11:ab:c3:bd:cc:0a:73:2b:e7:c9:91:9d: cc:02:d5:21:cc:57:b5:72:a8:7a:04:cf:96:d7:fc:f8:60:0c: 1b:29:ee:29:32:e0:64:0d:6f:ca:c3:16:c5:60:36:de:d6:35: 32:7c:ae:40:4a:6b:ed:24:5f:60:2e:c1:fc:5b:08:df:b7:8b: fd:b7:f2:33:41:8c:1f:ea:29:f5:83:9d:dd:50:66:96:c1:9a: 01:9e:b8:43:be:13:a6:51:8a:86:6b:2e:c1:10:57:3f:b1:d3: 41:e1:d4:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIrW0lmB0Gh3Emx7qUAyWry2UOzYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTE4MTkzOTQ0WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWMyMmNiN2Q3YTFjN2NlOTdiZjI2MDM2NzczNzE5Yzdi NTZlZWYzMjg5NjQ4OWFiOTc5NjE4NDRmOWY2Nzg5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgms1vEwv1AXfZT0JCVZOStZDOyaDs+BC4W6Bgk/u087sO B4+uL4pbdroFMQu6uoyo6zLM90P3XyUgOLNrEDCsv+0hSxpb17kU2oS0TIyFftdN RBqEt6sHXWvBLo9IvLfHXLPNHuPu8cVWcP6oVOuZ4f49bdSKeIW9egUIEwWCmPz0 F8vkBJgX9XmRCm7jiIBDH5WdsFZbbfNTnzfACYg8GJVdWLpYiaTUgGILfIO0cZOV Je8kT6N0GSNs+UfnB6t82YXmqZT0QNakb31632Okp634bCaBRODI6/xD/kEWX+cP 1VHk4cFJKGBn/B3/d60AJWKHCwsWBzHx2WIq94npAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQFYwscMoDnkbFzFYqF4Fqr8znzgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2U3Y2M1MDEwLWJkMzAtNGNmMS05OThkLTRkZDQxMmUzOTg1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADM9rUwDQYJKoZIhvcNAQELBQADggEBAJUhCk6ndjXSJTQeZw+fX42zzOnN tE78rcngjWOSCQtmI/f+NPcsTN0KnidsJjlBtvp353mMFW7YWWWXb5VTSeAa7dTj GGQtQq6MoTdCnT4XzDLJRaI6oIF9QNEmrFJNIxGzBq9zSS8XWQDQvY1HRISpdSYn 7/pea2pbtSIFIoHfNjZDgfj2KDcvTRENBji173mRYdInGBGrw73MCnMr58mRncwC 1SHMV7VyqHoEz5bX/PhgDBsp7iky4GQNb8rDFsVgNt7WNTJ8rkBKa+0kX2Auwfxb CN+3i/238jNBjB/qKfWDnd1QZpbBmgGeuEO+E6ZRioZrLsEQVz+x00Hh1IU= -----END CERTIFICATE-----Generated at Fri Sep 19 06:03:39 2025 by rpki-client