$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa File: 3455edb0-5870-49ae-aead-be18a7eaffdc.roa (raw, json) Hash identifier: xo5ayVbkhQ2QMhvk42kG38b4cPQCnub8LfHfb19Rk4M= Subject key identifier: 3D:89:A0:6C:CA:19:85:D8:42:43:0E:30:EB:65:B1:2E:48:5B:26:1A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 246DD163D071D159E4476A6614E1DF676E574CD7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa Signing time: Wed 22 Oct 2025 19:45:15 +0000 ROA not before: Wed 22 Oct 2025 19:45:15 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:6d:d1:63:d0:71:d1:59:e4:47:6a:66:14:e1:df:67:6e:57:4c:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 22 19:45:15 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=6d739cf02461bd90811d0e8051e5fd8568ad067cce3690e8332779a50d939b80, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c9:b8:18:cd:42:55:83:fc:82:63:64:90:00: d4:1c:f3:5f:7d:19:e7:be:a7:41:ee:6b:e5:44:9c: 3a:78:c7:4c:49:24:83:74:ef:fc:ec:d5:6c:38:13: d3:9d:1d:78:05:ba:bf:6e:2b:15:6c:01:fc:c9:7a: c9:44:9e:6d:10:27:dd:1e:78:e3:56:82:82:a7:70: d3:24:23:e0:04:28:62:99:32:6f:16:5e:b5:26:74: 19:83:05:a3:2e:bd:da:75:30:d4:5f:00:9c:c4:9b: 1e:52:4d:b8:b9:c3:92:e7:68:29:5d:8f:3b:8c:f1: f2:18:31:29:75:f0:6f:14:fd:a6:cd:b0:fe:ba:a7: 76:bd:f6:79:4a:ed:4c:5f:b1:e9:6d:cb:6d:e6:c5: 1d:bc:ed:8e:7c:33:d5:e6:9b:fc:49:1d:55:b0:b4: 3b:8d:fd:6a:79:da:71:d0:fc:09:c1:e2:bb:d9:28: 47:b2:a3:60:09:68:ae:7f:c5:00:12:1f:9e:7b:36: 26:94:67:05:d2:f0:43:8d:34:79:5a:58:a8:85:6f: 1c:13:c7:4f:d0:1c:c5:01:7c:fa:c4:f6:66:06:7f: 0d:09:a5:49:73:55:56:96:d0:bc:31:5c:9a:25:4c: 5e:e0:be:0b:96:6d:01:fa:bd:45:52:db:de:6d:fd: 2c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:89:A0:6C:CA:19:85:D8:42:43:0E:30:EB:65:B1:2E:48:5B:26:1A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.186.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:5f:e9:c0:b8:5c:44:6c:73:f7:e6:1f:b2:db:19:26:ba:a7: b2:63:43:9f:c9:bf:77:36:1d:7a:b3:47:6f:15:be:71:dc:dc: ff:d6:b0:73:31:42:d3:6d:ed:19:24:c4:30:45:4b:ad:15:b6: b0:20:13:c7:c2:33:7f:04:a4:9b:da:fe:20:3c:4a:58:2e:e4: fe:00:ff:b3:49:f8:42:61:b6:1a:6f:b8:eb:2e:13:19:54:76: 03:9d:61:4c:05:b6:ca:4b:83:95:5d:fa:75:de:8e:ef:2c:60: b2:c6:d4:85:eb:5e:48:00:15:d3:ee:4e:e9:20:b7:82:a5:62: c6:92:30:5b:ea:ab:04:0d:3a:6d:6f:ce:1d:67:0a:9b:60:c4: e9:f2:12:ec:88:25:5b:87:07:b9:38:50:0c:23:ee:8a:31:b4: c0:b0:b3:8b:91:96:d8:3d:e1:3c:f3:58:14:75:7d:67:c3:e3: 1f:b6:1b:2d:3b:fc:4f:e9:0b:5d:61:35:f8:b0:fc:b2:73:87: 36:b7:6b:ed:e8:b1:b8:9f:62:e1:48:b5:a0:43:bd:bb:0c:63: b5:33:e0:74:14:10:4b:2c:bc:47:b1:92:d1:b1:fd:e0:fa:85: 3b:59:c7:4f:f5:39:2c:79:62:b3:c1:f1:d6:83:95:d9:30:4e: 54:aa:fd:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJG3RY9Bx0VnkR2pmFOHfZ25XTNcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDIyMTk0NTE1WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDczOWNmMDI0NjFiZDkwODExZDBlODA1MWU1ZmQ4NTY4 YWQwNjdjY2UzNjkwZTgzMzI3NzlhNTBkOTM5YjgwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5ybgYzUJVg/yCY2SQANQc8199Gee+p0Hua+VEnDp4x0xJ JIN07/zs1Ww4E9OdHXgFur9uKxVsAfzJeslEnm0QJ90eeONWgoKncNMkI+AEKGKZ Mm8WXrUmdBmDBaMuvdp1MNRfAJzEmx5STbi5w5LnaCldjzuM8fIYMSl18G8U/abN sP66p3a99nlK7Uxfselty23mxR287Y58M9Xmm/xJHVWwtDuN/Wp52nHQ/AnB4rvZ KEeyo2AJaK5/xQASH557NiaUZwXS8EONNHlaWKiFbxwTx0/QHMUBfPrE9mYGfw0J pUlzVVaW0LwxXJolTF7gvguWbQH6vUVS295t/SyTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPYmgbMoZhdhCQw4w62WxLkhbJhowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM0NTVlZGIwLTU4NzAtNDlhZS1hZWFkLWJlMThhN2VhZmZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHM9rowDQYJKoZIhvcNAQELBQADggEBAH5f6cC4XERsc/fmH7LbGSa6p7Jj Q5/Jv3c2HXqzR28VvnHc3P/WsHMxQtNt7RkkxDBFS60VtrAgE8fCM38EpJva/iA8 Slgu5P4A/7NJ+EJhthpvuOsuExlUdgOdYUwFtspLg5Vd+nXeju8sYLLG1IXrXkgA FdPuTukgt4KlYsaSMFvqqwQNOm1vzh1nCptgxOnyEuyIJVuHB7k4UAwj7ooxtMCw s4uRltg94TzzWBR1fWfD4x+2Gy07/E/pC11hNfiw/LJzhza3a+3osbifYuFItaBD vbsMY7Uz4HQUEEssvEexktGx/eD6hTtZx0/1OSx5YrPB8daDldkwTlSq/TA= -----END CERTIFICATE-----Generated at Wed Nov 5 09:26:57 2025 by rpki-client