$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa File: 33276cb0-fd16-405f-bdae-0bcc070e07f8.roa (raw, json) Hash identifier: 1l9BjNUjPbfykO+CeARIl4/q+qIXKU7ChJykEqbfzGU= Subject key identifier: E3:59:00:6F:29:4C:9B:82:FD:B2:A3:0C:56:F9:14:84:B9:92:58:C7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3DC02931B12026C44F8747E3831F1C14D0FAAF69 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa Signing time: Wed 22 Oct 2025 19:45:11 +0000 ROA not before: Wed 22 Oct 2025 19:45:11 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c0:29:31:b1:20:26:c4:4f:87:47:e3:83:1f:1c:14:d0:fa:af:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 22 19:45:11 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=ae803766fa2b9937655c7ca263db7914fe654660dee2ca68e016fa9115d49f04, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ef:e4:c0:e9:f9:41:7a:6d:31:11:0a:4a:95: 76:11:5b:54:cf:46:af:63:66:34:94:97:dd:73:3c: a6:a1:48:a6:95:bd:02:f5:c0:5e:5a:1a:cd:d5:3f: fb:ad:e9:68:3d:25:3e:07:40:25:d9:8f:99:a0:f3: 7f:a3:a1:73:60:7e:41:00:98:44:1b:fb:98:76:35: b0:6c:53:76:1b:b0:37:21:57:2e:af:c3:28:cc:50: 96:cf:4e:3f:f6:03:80:71:cc:5f:b6:c3:24:83:b8: d7:10:09:95:1f:54:a3:f9:f6:ee:e1:fe:0c:d8:65: 01:47:36:c1:5b:10:ff:7b:fb:6a:84:fa:aa:46:07: fa:e9:48:7d:c5:cf:3a:76:2a:37:7a:a5:ef:54:67: 1a:71:1c:d8:91:b4:68:8d:8b:48:89:88:eb:a4:d6: 2a:10:14:7d:02:30:c1:63:29:71:7d:2e:79:c9:fa: fd:50:5d:44:74:29:dc:fe:7c:fe:ec:42:e9:a6:f4: ee:00:c8:56:91:93:b9:2a:24:55:10:45:5b:39:c2: 03:69:77:fb:2f:97:d5:bf:84:33:5a:ff:12:c4:16: 0b:33:90:df:cd:1c:25:70:2a:f7:4f:60:1a:16:b4: 0a:04:40:de:01:50:21:99:68:4f:95:48:bc:39:52: ec:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:59:00:6F:29:4C:9B:82:FD:B2:A3:0C:56:F9:14:84:B9:92:58:C7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.164.0/22 Signature Algorithm: sha256WithRSAEncryption 13:d3:6c:c2:c0:1b:1c:99:e9:f3:62:92:49:db:8a:d4:62:96: c6:00:7f:c8:de:2b:4c:47:27:d1:eb:b4:fa:d4:41:96:59:de: 6b:a5:54:23:b3:ce:e4:30:4b:c4:7f:2b:a9:67:d6:da:28:ae: 17:9d:f4:86:bf:b5:b0:67:04:cd:9d:3c:48:1a:f9:d2:4c:12: db:a9:0c:21:ea:5b:73:dd:a1:b3:d9:ad:ab:9e:9e:bc:c4:2c: ae:d2:66:ba:f8:4a:40:ab:61:b7:44:a2:81:d0:5f:73:f1:63: e0:08:dd:1d:ce:a8:e6:09:74:37:35:fe:18:52:82:83:b5:5d: ab:7c:e0:d1:15:0b:98:3d:2c:b3:dc:a8:9e:56:18:08:db:31: 58:af:58:fd:07:7a:a6:0d:a9:cd:9f:b5:6b:a7:1a:5b:66:f8: 53:fa:26:55:1c:e7:66:b2:ee:11:7d:b7:7f:b3:4c:58:e7:62: ac:c9:7d:b7:96:b1:e9:18:3f:d0:6c:49:68:60:d9:88:29:bc: c2:bf:7c:56:a1:4d:cf:c2:9c:6e:27:47:3d:90:94:7d:ae:a1: ec:ab:92:c4:25:69:7e:70:a9:4f:e0:e4:87:25:ac:74:48:7c: 1b:35:12:14:31:af:01:9c:68:f4:a8:64:59:50:b8:4b:6a:4c: 05:fa:25:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPcApMbEgJsRPh0fjgx8cFND6r2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDIyMTk0NTExWhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTgwMzc2NmZhMmI5OTM3NjU1YzdjYTI2M2RiNzkxNGZl NjU0NjYwZGVlMmNhNjhlMDE2ZmE5MTE1ZDQ5ZjA0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo7+TA6flBem0xEQpKlXYRW1TPRq9jZjSUl91zPKahSKaV vQL1wF5aGs3VP/ut6Wg9JT4HQCXZj5mg83+joXNgfkEAmEQb+5h2NbBsU3YbsDch Vy6vwyjMUJbPTj/2A4BxzF+2wySDuNcQCZUfVKP59u7h/gzYZQFHNsFbEP97+2qE +qpGB/rpSH3Fzzp2Kjd6pe9UZxpxHNiRtGiNi0iJiOuk1ioQFH0CMMFjKXF9LnnJ +v1QXUR0Kdz+fP7sQumm9O4AyFaRk7kqJFUQRVs5wgNpd/svl9W/hDNa/xLEFgsz kN/NHCVwKvdPYBoWtAoEQN4BUCGZaE+VSLw5Uuy9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU41kAbylMm4L9sqMMVvkUhLmSWMcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMzMjc2Y2IwLWZkMTYtNDA1Zi1iZGFlLTBiY2MwNzBlMDdmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALM9qQwDQYJKoZIhvcNAQELBQADggEBABPTbMLAGxyZ6fNikknbitRilsYA f8jeK0xHJ9HrtPrUQZZZ3mulVCOzzuQwS8R/K6ln1toorhed9Ia/tbBnBM2dPEga +dJMEtupDCHqW3PdobPZrauenrzELK7SZrr4SkCrYbdEooHQX3PxY+AI3R3OqOYJ dDc1/hhSgoO1Xat84NEVC5g9LLPcqJ5WGAjbMVivWP0HeqYNqc2ftWunGltm+FP6 JlUc52ay7hF9t3+zTFjnYqzJfbeWsekYP9BsSWhg2YgpvMK/fFahTc/CnG4nRz2Q lH2uoeyrksQlaX5wqU/g5IclrHRIfBs1EhQxrwGcaPSoZFlQuEtqTAX6JQ4= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:29 2025 by rpki-client