$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa File: 4d588aef-dd6d-4314-86bb-29808b3e63c0.roa (raw, json) Hash identifier: 84OeuO209Qv3090xs5Ml5Ph7bsoKCg6oMJNDXVJuevM= Subject key identifier: 6B:59:81:18:48:A0:B4:17:7E:F9:B7:9E:AB:32:22:3A:0E:54:D3:3B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 03908682FBB61D417B274555B7FF5EC6D6799568 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa Signing time: Wed 22 Oct 2025 19:53:14 +0000 ROA not before: Wed 22 Oct 2025 19:53:14 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:90:86:82:fb:b6:1d:41:7b:27:45:55:b7:ff:5e:c6:d6:79:95:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 22 19:53:14 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=ea88232a71dd47ba32eea92263833df17ed42cba43652dd730cce77dab70c6b4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:40:0f:5e:6b:8c:ee:92:41:43:8d:d8:e5:27: f5:3d:94:16:5a:fa:4e:11:39:0c:a1:29:64:61:66: a0:2b:a5:30:72:3b:d2:ab:c3:1a:79:56:f2:9f:6e: b8:e0:9e:cf:e3:d3:c6:1a:e9:8e:01:59:47:a6:47: 4e:46:38:4c:72:2e:c3:e6:b5:20:1d:5c:00:6a:98: 44:1d:9f:aa:3f:cd:b7:c2:91:f8:cc:c5:0f:13:e0: 59:86:84:dc:2b:dc:75:c7:1f:a6:d4:f0:18:75:5e: 60:5c:76:09:1b:97:12:93:3d:e9:ab:4e:70:47:bb: 62:12:cf:50:3d:e6:8c:84:0e:a3:d0:93:43:a6:d7: be:db:b5:3f:46:e6:9f:3a:8a:b6:bc:57:61:9f:b8: bb:28:20:57:af:f6:3a:71:a7:af:c9:8c:96:ad:73: 54:33:6b:b6:80:59:64:bd:a9:ba:a4:15:61:df:a7: 7e:b6:01:03:23:09:97:21:a7:e8:ff:e4:30:92:3c: f3:40:fc:42:0f:aa:11:78:19:df:24:5f:0b:b5:83: 85:03:2d:ed:59:9d:12:9e:23:41:d7:05:73:87:8c: 9e:d8:fe:ef:c9:61:93:67:5f:04:ec:38:db:62:9a: 09:25:62:63:66:70:a7:26:86:46:1d:15:11:3e:cc: 35:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:59:81:18:48:A0:B4:17:7E:F9:B7:9E:AB:32:22:3A:0E:54:D3:3B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.40.0/21 Signature Algorithm: sha256WithRSAEncryption 76:f5:6f:39:6f:6c:aa:d5:31:2f:60:98:f8:b1:d4:ef:86:20: 65:b8:b3:83:ca:38:cf:2f:6e:b6:ce:2d:6b:5f:d1:96:cc:09: 4c:bc:5f:fa:46:30:12:ed:28:2c:45:c4:02:59:b2:24:8b:e2: 31:af:cf:ed:ed:4f:b3:fe:38:a7:5e:fa:49:c4:f4:f9:76:cd: ec:fa:f9:a0:cc:c8:10:47:80:f0:53:4e:eb:66:47:9d:da:81: bf:1c:1c:cb:f1:2a:06:e6:39:fb:82:6a:5f:78:85:19:3f:23: 98:81:16:7b:33:72:e6:65:d7:31:e6:9c:de:5c:6c:85:4b:20: 81:a7:0a:ea:50:76:57:a4:fe:12:1c:af:ea:05:58:40:1e:a2: 83:ac:ba:11:7c:44:4a:09:85:af:30:dc:81:2c:b4:47:e6:bf: 6c:e2:c0:c7:6f:6e:41:1a:f3:f3:c0:3b:4a:85:6f:1a:3a:0c: c9:cc:eb:64:4f:fe:b2:c5:f0:7d:e5:6e:7d:98:cf:68:04:fe: 87:58:c4:18:88:b6:37:80:55:1c:d0:1c:7c:81:f2:a8:dd:86: c5:3e:87:2a:f2:2b:1f:6c:c9:7d:56:4a:12:86:de:16:e1:28: 50:6d:de:b1:45:17:32:66:a6:b3:79:69:27:2d:26:77:cd:1f: b3:ad:f3:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA5CGgvu2HUF7J0VVt/9extZ5lWgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDIyMTk1MzE0WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTg4MjMyYTcxZGQ0N2JhMzJlZWE5MjI2MzgzM2RmMTdl ZDQyY2JhNDM2NTJkZDczMGNjZTc3ZGFiNzBjNmI0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDQA9ea4zukkFDjdjlJ/U9lBZa+k4ROQyhKWRhZqArpTBy O9Krwxp5VvKfbrjgns/j08Ya6Y4BWUemR05GOExyLsPmtSAdXABqmEQdn6o/zbfC kfjMxQ8T4FmGhNwr3HXHH6bU8Bh1XmBcdgkblxKTPemrTnBHu2ISz1A95oyEDqPQ k0Om177btT9G5p86ira8V2GfuLsoIFev9jpxp6/JjJatc1Qza7aAWWS9qbqkFWHf p362AQMjCZchp+j/5DCSPPNA/EIPqhF4Gd8kXwu1g4UDLe1ZnRKeI0HXBXOHjJ7Y /u/JYZNnXwTsONtimgklYmNmcKcmhkYdFRE+zDW7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa1mBGEigtBd++beeqzIiOg5U0zswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRkNTg4YWVmLWRkNmQtNDMxNC04NmJiLTI5ODA4YjNlNjNjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYiSgwDQYJKoZIhvcNAQELBQADggEBAHb1bzlvbKrVMS9gmPix1O+GIGW4 s4PKOM8vbrbOLWtf0ZbMCUy8X/pGMBLtKCxFxAJZsiSL4jGvz+3tT7P+OKde+knE 9Pl2zez6+aDMyBBHgPBTTutmR53agb8cHMvxKgbmOfuCal94hRk/I5iBFnszcuZl 1zHmnN5cbIVLIIGnCupQdlek/hIcr+oFWEAeooOsuhF8REoJha8w3IEstEfmv2zi wMdvbkEa8/PAO0qFbxo6DMnM62RP/rLF8H3lbn2Yz2gE/odYxBiItjeAVRzQHHyB 8qjdhsU+hyryKx9syX1WShKG3hbhKFBt3rFFFzJmprN5aSctJnfNH7Ot8yM= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:29 2025 by rpki-client