$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa File: a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa (raw, json) Hash identifier: 0pRK7ZK/s9fapiHCr3w+EfmQq35PrhrE6Oxl0pre0NI= Subject key identifier: 52:7D:4A:B7:3F:4A:B7:A2:E6:B1:57:21:3D:5F:91:93:55:04:10:A8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 04C06A0F82404224D746064D0F0E12A022E1B821 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa Signing time: Wed 08 Oct 2025 00:51:19 +0000 ROA not before: Wed 08 Oct 2025 00:51:19 +0000 ROA not after: Wed 12 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.171.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 25 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c0:6a:0f:82:40:42:24:d7:46:06:4d:0f:0e:12:a0:22:e1:b8:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 8 00:51:19 2025 GMT Not After : Nov 12 23:59:59 2025 GMT Subject: serialNumber=f2ac45196700b113b92594907358f33fc1677c6f16d97141485858d77c652197, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a4:e0:6a:ed:0e:f8:bc:36:07:c4:52:ba:4a: 11:33:8f:48:6f:b4:ee:b7:22:ed:a5:16:5f:26:c8: f2:60:f1:de:27:77:fc:7e:f9:ef:60:83:91:f9:3f: e5:be:be:14:81:ec:db:e2:44:18:8a:31:a0:b4:ea: 8d:ec:bd:0e:2d:ba:85:76:61:93:72:39:c9:32:85: 13:a8:de:c0:6d:8a:a0:78:30:06:94:cc:e4:2d:a1: fd:4e:65:07:db:e7:c6:6a:82:a6:b4:3e:ba:a1:0c: e4:8e:f3:da:22:2e:51:4d:ad:d7:d3:8f:5b:66:6f: 0e:14:42:23:0a:a7:4d:02:0d:f6:99:f9:e9:3b:62: 9a:0d:a0:bb:03:2f:7e:22:7b:f1:e4:d3:8e:e4:28: d5:9b:e1:1e:88:97:cc:db:c8:36:92:d2:b7:65:81: 4a:e7:7a:e3:04:c7:b0:bc:e9:8b:e9:c5:4b:34:31: 2d:8a:8e:1d:f6:34:e8:1d:03:37:b6:70:d5:5c:94: 08:bc:72:69:a6:32:2c:f9:d5:62:fa:81:9d:81:0a: 90:cb:09:8c:1a:cc:3a:51:a0:5e:13:d0:60:a4:af: 00:f7:14:c1:03:17:53:c8:61:56:3d:dd:4b:09:9f: c5:1b:8a:2c:f2:eb:1f:5a:cc:06:ce:92:90:8c:2a: 09:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7D:4A:B7:3F:4A:B7:A2:E6:B1:57:21:3D:5F:91:93:55:04:10:A8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/19 Signature Algorithm: sha256WithRSAEncryption 18:d3:ce:f9:56:be:69:3f:8b:52:5e:95:9c:f4:ac:c8:79:b1: 26:55:ad:84:a8:16:38:ba:81:43:87:83:3e:e1:e8:cb:47:42: 0f:b7:0f:ca:e1:ce:31:85:de:a6:01:ef:1a:fc:fc:d8:ac:ce: 41:89:d7:73:16:4a:5e:df:a7:10:58:32:84:f3:5b:9f:f1:e7: 57:a5:22:e4:5c:3d:98:19:70:48:6d:d3:f3:e0:8c:f7:49:cf: b2:56:f3:02:32:d3:07:a1:80:e3:8a:81:0a:60:ac:95:ed:79: d2:fe:76:22:48:9c:0d:69:24:4f:11:67:4f:14:4b:6b:3d:7a: d9:b6:37:f6:a5:80:90:b5:06:1a:ff:d0:cb:3b:c0:fa:42:9d: 38:9f:f4:40:bd:d7:92:a9:2f:97:be:38:4f:1a:54:cc:e9:65: 3e:3f:bc:cc:ca:62:d2:dd:fc:ee:7e:b0:b3:97:8f:9c:28:59: 1d:95:1d:63:1a:84:ae:3f:a5:99:d1:34:07:f2:e4:bf:32:4d: e9:35:cf:d0:69:a0:35:01:19:57:af:2b:f3:4c:2c:7f:a0:dd: b2:9e:c1:15:6c:01:73:70:18:d0:28:4f:cc:80:d2:89:c1:13: 63:f4:4a:27:66:01:3f:f8:3e:2c:f6:b6:45:b8:b6:e4:03:14: 37:c2:ea:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBMBqD4JAQiTXRgZNDw4SoCLhuCEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDA4MDA1MTE5WhcNMjUxMTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmFjNDUxOTY3MDBiMTEzYjkyNTk0OTA3MzU4ZjMzZmMx Njc3YzZmMTZkOTcxNDE0ODU4NThkNzdjNjUyMTk3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFpOBq7Q74vDYHxFK6ShEzj0hvtO63Iu2lFl8myPJg8d4n d/x++e9gg5H5P+W+vhSB7NviRBiKMaC06o3svQ4tuoV2YZNyOckyhROo3sBtiqB4 MAaUzOQtof1OZQfb58Zqgqa0PrqhDOSO89oiLlFNrdfTj1tmbw4UQiMKp00CDfaZ +ek7YpoNoLsDL34ie/Hk047kKNWb4R6Il8zbyDaS0rdlgUrneuMEx7C86YvpxUs0 MS2Kjh32NOgdAze2cNVclAi8cmmmMiz51WL6gZ2BCpDLCYwazDpRoF4T0GCkrwD3 FMEDF1PIYVY93UsJn8Ubiizy6x9azAbOkpCMKgn/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUn1Ktz9Kt6LmsVchPV+Rk1UEEKgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyM2Y1N2JmLTM5NDctNDhjNC05MWYxLWU0MzY0YjdkOTRhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXPq6AwDQYJKoZIhvcNAQELBQADggEBABjTzvlWvmk/i1JelZz0rMh5sSZV rYSoFji6gUOHgz7h6MtHQg+3D8rhzjGF3qYB7xr8/NiszkGJ13MWSl7fpxBYMoTz W5/x51elIuRcPZgZcEht0/PgjPdJz7JW8wIy0wehgOOKgQpgrJXtedL+diJInA1p JE8RZ08US2s9etm2N/algJC1Bhr/0Ms7wPpCnTif9EC915KpL5e+OE8aVMzpZT4/ vMzKYtLd/O5+sLOXj5woWR2VHWMahK4/pZnRNAfy5L8yTek1z9BpoDUBGVevK/NM LH+g3bKewRVsAXNwGNAoT8yA0onBE2P0SidmAT/4Piz2tkW4tuQDFDfC6qc= -----END CERTIFICATE-----Generated at Fri Oct 24 08:28:24 2025 by rpki-client