$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa File: ecba0557-c004-41c2-bd5b-63142dbee294.roa (raw, json) Hash identifier: OViFW5vQ+Qohe8U9tRUg+AWTPDMilkyD8e42VxegrGg= Subject key identifier: 78:F7:40:A5:19:FD:DC:3B:88:A2:68:B6:83:2F:38:09:2C:7C:AA:BE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 76ADB03BEA926809F32501987DB74582CD455B8B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa Signing time: Sat 13 Sep 2025 00:50:14 +0000 ROA not before: Sat 13 Sep 2025 00:50:14 +0000 ROA not after: Sat 18 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ad:b0:3b:ea:92:68:09:f3:25:01:98:7d:b7:45:82:cd:45:5b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 13 00:50:14 2025 GMT Not After : Oct 18 23:59:59 2025 GMT Subject: serialNumber=25b9d236ffe230c3de34071d5e2771f4dd60324aceefde09284dd2a0255de6f2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c8:91:72:81:2e:25:d3:b0:85:61:97:6d:f4: 85:62:fa:6e:9b:ec:d2:65:88:85:09:57:92:14:fc: a4:49:1c:b0:dd:ed:d3:33:0e:7b:87:43:7d:db:79: 3c:6b:80:89:46:3c:9c:3a:62:4b:2c:35:1b:a8:10: 24:03:bf:91:0f:39:17:d7:a7:10:85:4b:22:5e:a5: 25:8c:77:1a:3c:87:99:88:aa:c4:9a:37:de:da:5c: f0:83:67:4f:35:a4:63:f8:a9:8a:c7:52:72:1e:dc: 69:17:ef:4e:5d:df:55:57:b5:d9:e6:bf:97:90:db: fa:4d:70:ed:72:bd:1f:19:77:28:2d:d6:3b:6d:8e: ec:fd:ac:cf:f4:d9:7d:2a:6e:37:4a:50:ed:4f:85: b1:7a:e9:1c:b6:a8:8e:b4:4b:a7:bd:86:61:e8:3c: 51:d1:6e:c0:de:52:6f:c0:8d:9e:c0:e3:22:9a:cd: ae:c4:bd:c0:bc:43:f6:ea:f5:9b:f8:05:c5:78:5d: 2c:81:7d:73:43:39:11:99:ee:dc:05:db:a8:62:82: 48:85:b1:6f:ec:ef:0d:86:60:ea:7e:93:77:3b:b2: 08:30:d2:cf:dd:d8:81:14:9b:e9:3e:cf:1d:ae:1d: df:6d:dc:28:ff:73:9c:82:a9:d9:7b:c0:ce:18:58: e2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F7:40:A5:19:FD:DC:3B:88:A2:68:B6:83:2F:38:09:2C:7C:AA:BE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.248.0/24 Signature Algorithm: sha256WithRSAEncryption 40:07:20:ae:6e:a8:f6:a9:5b:cf:75:36:62:e8:13:15:f7:33: b2:f0:24:9b:84:d1:fe:0f:9a:5a:b2:10:98:e1:53:0e:93:0b: d4:34:93:56:39:6d:cc:89:62:58:20:34:27:13:21:1d:8b:86: 8e:bb:54:be:8b:36:cd:69:0a:97:60:2e:48:88:b7:bc:1d:c9: 53:63:a5:0d:16:5c:01:7d:0e:10:e8:11:c5:75:d2:b6:c0:fc: db:18:64:3e:86:5f:be:78:f8:6d:13:6a:93:ba:0a:f0:97:60: 52:2b:9b:29:41:77:ee:e3:79:14:e1:b8:84:c1:59:31:17:d5: 8e:01:bb:08:6a:48:94:40:3c:a9:42:f0:2c:e8:09:48:39:f6: aa:fe:c7:35:1f:b8:1d:b7:07:74:a5:2a:64:02:32:cf:b2:09: 54:7d:dc:c0:b9:1f:42:95:bc:38:a5:94:52:5a:5b:56:14:ca: 12:88:c6:db:b6:18:8f:3d:11:34:06:d0:f3:2b:74:40:ec:4b: 39:2b:c4:e1:61:a2:61:56:65:05:c7:5b:56:25:2e:f6:5c:58: f9:6b:5c:b0:08:ee:7a:17:2a:7a:c0:72:d4:1b:df:0e:0e:35: 21:06:c4:64:21:0a:2c:9b:97:a5:72:5f:f1:6e:5a:e6:23:71: 12:40:3e:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdq2wO+qSaAnzJQGYfbdFgs1FW4swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTEzMDA1MDE0WhcNMjUxMDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWI5ZDIzNmZmZTIzMGMzZGUzNDA3MWQ1ZTI3NzFmNGRk NjAzMjRhY2VlZmRlMDkyODRkZDJhMDI1NWRlNmYyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNyJFygS4l07CFYZdt9IVi+m6b7NJliIUJV5IU/KRJHLDd 7dMzDnuHQ33beTxrgIlGPJw6YkssNRuoECQDv5EPORfXpxCFSyJepSWMdxo8h5mI qsSaN97aXPCDZ081pGP4qYrHUnIe3GkX705d31VXtdnmv5eQ2/pNcO1yvR8Zdygt 1jttjuz9rM/02X0qbjdKUO1PhbF66Ry2qI60S6e9hmHoPFHRbsDeUm/AjZ7A4yKa za7EvcC8Q/bq9Zv4BcV4XSyBfXNDORGZ7twF26higkiFsW/s7w2GYOp+k3c7sggw 0s/d2IEUm+k+zx2uHd9t3Cj/c5yCqdl7wM4YWOIjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUePdApRn93DuIomi2gy84CSx8qr4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2VjYmEwNTU3LWMwMDQtNDFjMi1iZDViLTYzMTQyZGJlZTI5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/gwDQYJKoZIhvcNAQELBQADggEBAEAHIK5uqPapW891NmLoExX3M7Lw JJuE0f4PmlqyEJjhUw6TC9Q0k1Y5bcyJYlggNCcTIR2Lho67VL6LNs1pCpdgLkiI t7wdyVNjpQ0WXAF9DhDoEcV10rbA/NsYZD6GX754+G0TapO6CvCXYFIrmylBd+7j eRThuITBWTEX1Y4BuwhqSJRAPKlC8CzoCUg59qr+xzUfuB23B3SlKmQCMs+yCVR9 3MC5H0KVvDillFJaW1YUyhKIxtu2GI89ETQG0PMrdEDsSzkrxOFhomFWZQXHW1Yl LvZcWPlrXLAI7noXKnrActQb3w4ONSEGxGQhCiybl6VyX/FuWuYjcRJAPiw= -----END CERTIFICATE-----Generated at Thu Sep 18 17:25:11 2025 by rpki-client