$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa File: a1e648bb-cfc9-4252-8342-da6740732696.roa (raw, json) Hash identifier: sPLLFVXavV3prFztKjbUwawkQAXWaRkeQwBaYmK1Ohc= Subject key identifier: AD:3D:33:A6:D1:84:A4:AE:4D:3D:67:58:22:02:A3:BE:45:64:F1:80 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 558F343EF0D562E730520B8AD0FB518C827FBDD9 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa Signing time: Wed 08 Oct 2025 00:51:18 +0000 ROA not before: Wed 08 Oct 2025 00:51:18 +0000 ROA not after: Wed 12 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:8f:34:3e:f0:d5:62:e7:30:52:0b:8a:d0:fb:51:8c:82:7f:bd:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 8 00:51:18 2025 GMT Not After : Nov 12 23:59:59 2025 GMT Subject: serialNumber=85631553ebb7ece20a5de60f17f6700f97e15920018c9aa41a509daed611d58c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:71:14:cf:e6:0c:ce:bf:4d:dc:aa:eb:1a:05: f6:a8:4d:fb:8c:57:58:a7:dd:0d:d2:33:97:70:e2: 8a:b5:5c:15:5a:40:72:29:0a:b7:49:94:3f:85:9e: b3:d0:eb:0b:19:1e:4a:88:00:cb:04:a4:2f:c9:39: 80:42:1a:68:bc:f5:c9:ed:55:92:ac:d7:37:49:0a: 1e:78:62:47:3d:1d:6a:9d:f3:0f:79:c4:ea:35:1b: 86:b4:60:35:9c:db:2a:41:4a:18:56:d1:b5:37:a6: aa:ce:f7:3c:42:55:b3:60:c3:55:55:1f:eb:63:05: 27:b2:e1:92:3f:f3:0f:2d:cb:7f:9a:63:43:01:b1: 18:e2:2a:09:4d:38:60:a7:56:59:e4:95:de:c4:bd: 08:67:6a:1a:25:f0:ad:8f:2f:ac:40:65:a9:12:ca: db:a6:61:bc:2d:0d:7e:6a:cc:f7:33:c7:b5:25:2c: d4:b4:eb:3b:94:db:ea:07:e4:99:23:b4:2c:70:8d: be:1b:d5:48:34:32:8e:60:83:c2:07:37:9c:4a:ac: ee:37:f4:22:89:a2:61:ce:5e:e2:03:8e:c8:3d:ab: 7b:3e:c5:e0:68:1b:3a:99:96:fc:29:bd:7a:a3:96: 04:17:66:67:a5:09:ce:a6:8b:9b:0a:f3:53:11:0c: fa:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:3D:33:A6:D1:84:A4:AE:4D:3D:67:58:22:02:A3:BE:45:64:F1:80 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.240.0/22 Signature Algorithm: sha256WithRSAEncryption 51:f8:b4:14:fc:fd:9b:aa:2c:74:b2:d5:6c:8b:ff:18:87:4d: aa:28:22:4b:e5:e3:c4:52:d9:e5:30:4b:6e:58:0f:bf:6c:7f: 63:4a:05:1a:43:3f:36:57:a4:44:2b:63:d5:ba:06:1f:5c:8a: 3b:a9:e4:75:c8:c1:ec:89:42:6c:59:fc:7b:f5:fe:32:19:00: d7:14:e2:78:9f:59:ce:8b:b7:6f:8a:8d:2d:7f:f9:fd:dd:7b: 4c:76:d5:93:fd:b4:76:31:8f:0e:d5:33:d6:65:ca:72:52:48: da:d8:88:16:97:fd:3b:3f:2f:eb:7d:0f:9c:fc:80:17:c3:c4: fd:a7:59:42:dc:c0:bf:83:41:f3:2f:9f:71:9f:f0:3b:04:33: 91:db:3f:47:1a:08:8b:47:3d:c5:3f:75:65:74:ab:9e:3b:ce: 16:d1:79:5e:43:dc:1d:5e:0a:d9:61:b7:3e:7f:00:5d:38:8b: eb:35:b0:f3:02:5f:2e:42:2d:f1:0c:ef:de:90:3a:7d:5c:05: cd:62:5c:89:c6:59:e9:d7:59:6c:a1:83:cb:94:4d:56:bb:c2: 7a:e6:ee:fa:41:84:45:41:97:c9:d3:3c:46:26:d2:0a:1d:77: 3f:37:e6:66:bc:fb:58:94:5f:92:9e:1a:b1:06:39:bc:65:cb: 33:94:2e:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVY80PvDVYucwUguK0PtRjIJ/vdkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDA4MDA1MTE4WhcNMjUxMTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTYzMTU1M2ViYjdlY2UyMGE1ZGU2MGYxN2Y2NzAwZjk3 ZTE1OTIwMDE4YzlhYTQxYTUwOWRhZWQ2MTFkNThjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbcRTP5gzOv03cqusaBfaoTfuMV1in3Q3SM5dw4oq1XBVa QHIpCrdJlD+FnrPQ6wsZHkqIAMsEpC/JOYBCGmi89cntVZKs1zdJCh54Ykc9HWqd 8w95xOo1G4a0YDWc2ypBShhW0bU3pqrO9zxCVbNgw1VVH+tjBSey4ZI/8w8ty3+a Y0MBsRjiKglNOGCnVlnkld7EvQhnahol8K2PL6xAZakSytumYbwtDX5qzPczx7Ul LNS06zuU2+oH5JkjtCxwjb4b1Ug0Mo5gg8IHN5xKrO439CKJomHOXuIDjsg9q3s+ xeBoGzqZlvwpvXqjlgQXZmelCc6mi5sK81MRDPqLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrT0zptGEpK5NPWdYIgKjvkVk8YAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ExZTY0OGJiLWNmYzktNDI1Mi04MzQyLWRhNjc0MDczMjY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+/AwDQYJKoZIhvcNAQELBQADggEBAFH4tBT8/ZuqLHSy1WyL/xiHTaoo Ikvl48RS2eUwS25YD79sf2NKBRpDPzZXpEQrY9W6Bh9cijup5HXIweyJQmxZ/Hv1 /jIZANcU4nifWc6Lt2+KjS1/+f3de0x21ZP9tHYxjw7VM9ZlynJSSNrYiBaX/Ts/ L+t9D5z8gBfDxP2nWULcwL+DQfMvn3Gf8DsEM5HbP0caCItHPcU/dWV0q547zhbR eV5D3B1eCtlhtz5/AF04i+s1sPMCXy5CLfEM796QOn1cBc1iXInGWenXWWyhg8uU TVa7wnrm7vpBhEVBl8nTPEYm0goddz835ma8+1iUX5KeGrEGObxlyzOULi0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:14 2025 by rpki-client