$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/66731bd3-5684-4104-984a-eaeb37688d26.roa File: 66731bd3-5684-4104-984a-eaeb37688d26.roa (raw, json) Hash identifier: qVUJXwvlTwONYsnXuALDnBRsICb7iHJ7YCLOSKMW5ws= Subject key identifier: 16:78:18:8A:D0:FC:4B:89:CF:24:C5:62:ED:B0:FB:58:3A:FE:C1:2E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6B2683B1861E7A104133FC796C1612D0B924FAAC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/66731bd3-5684-4104-984a-eaeb37688d26.roa Signing time: Sun 02 Nov 2025 00:40:08 +0000 ROA not before: Sun 02 Nov 2025 00:40:08 +0000 ROA not after: Sun 07 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:26:83:b1:86:1e:7a:10:41:33:fc:79:6c:16:12:d0:b9:24:fa:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 2 00:40:08 2025 GMT Not After : Dec 7 23:59:59 2025 GMT Subject: serialNumber=81b771fe8c8d558792fff8c3c8b4d92b4f36e73606b42cb6925178314ebb6b48, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:24:31:08:4c:e5:63:64:5b:2c:ea:9e:f2: 41:e2:2c:e7:36:f9:e8:ba:77:27:1b:eb:00:65:0a: 0e:30:68:f6:8d:ba:bf:a2:52:fd:93:56:97:7c:de: fe:d8:67:d0:91:8c:c2:f7:90:51:3b:74:aa:1c:62: ff:7e:e2:d9:2e:3f:41:a8:f7:09:a1:d9:3a:44:1c: 15:af:fc:b2:f6:40:ea:cb:d1:63:f8:b9:fa:d1:26: 3f:d4:c9:ec:d2:99:e6:a4:d3:37:4b:5c:bf:38:92: be:2c:3f:54:8b:5c:ba:b1:65:26:c2:79:f7:08:52: 84:f5:38:8a:1d:62:30:6d:cc:69:ad:80:c7:24:b8: 3f:0d:d8:f8:da:e8:cb:03:2f:b1:0a:bd:89:2f:ac: f5:d5:6d:b7:69:0a:d1:67:b9:f6:c9:d6:9d:06:52: 8e:26:a7:f2:a3:50:a5:55:dc:29:5e:79:a1:04:8d: 34:1c:8c:8f:db:8f:c7:94:d1:b1:38:6a:f9:94:3e: 77:cd:fc:f2:78:50:be:49:66:8d:ad:c9:3a:32:fe: 81:76:ae:a2:7c:79:ac:34:63:35:d2:61:3a:d0:24: 8f:72:58:a1:40:ac:68:eb:84:4b:90:cb:cc:88:9a: c5:70:34:ce:b6:d9:99:38:b6:4e:d4:ae:f1:06:97: da:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:78:18:8A:D0:FC:4B:89:CF:24:C5:62:ED:B0:FB:58:3A:FE:C1:2E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/66731bd3-5684-4104-984a-eaeb37688d26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.244.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:2a:56:5b:6e:e4:21:f7:a5:da:94:79:01:02:18:0b:54:c7: 04:a9:50:c6:0d:a0:72:18:ba:f9:27:03:27:28:e7:d7:bb:eb: e9:00:5b:08:5b:0e:2f:ba:3b:6c:b5:41:f5:2c:bb:12:52:d0: 75:41:24:1d:c5:b8:41:eb:8f:45:4d:37:1c:b7:6f:c7:d2:0a: 2a:e5:c2:44:8d:53:9c:b0:ba:e8:39:da:ce:e6:7a:aa:69:23: 43:5e:7a:da:39:51:74:cc:44:ff:59:84:cc:b1:90:8d:2b:07: fa:51:41:53:60:8b:4a:0f:37:ee:81:86:ea:72:aa:75:af:8c: 50:b1:5d:a4:ae:75:54:ce:37:9d:49:69:10:0e:ce:bf:14:d3: c7:1c:a2:8a:46:ab:11:b0:6f:39:10:80:05:24:a7:d8:c6:bb: 8d:ad:1d:b1:cb:b9:80:30:07:b9:08:6b:c0:53:78:63:69:28: 1a:bf:f0:f4:b6:8d:cb:32:9c:ab:b4:27:f0:d1:12:bc:74:b6: 2f:4a:11:a6:91:8d:57:ee:f1:7c:eb:a4:c6:90:d5:9f:ed:8b: 17:46:32:da:ab:5b:2f:dc:00:18:ef:11:8c:20:b1:23:f3:0f: 97:5f:8f:0f:14:c2:18:cf:11:b6:a3:4f:96:08:96:9c:a0:8f: 95:96:9e:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUayaDsYYeehBBM/x5bBYS0Lkk+qwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTAyMDA0MDA4WhcNMjUxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWI3NzFmZThjOGQ1NTg3OTJmZmY4YzNjOGI0ZDkyYjRm MzZlNzM2MDZiNDJjYjY5MjUxNzgzMTRlYmI2YjQ4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZASQxCEzlY2RbLOqe8kHiLOc2+ei6dycb6wBlCg4waPaN ur+iUv2TVpd83v7YZ9CRjML3kFE7dKocYv9+4tkuP0Go9wmh2TpEHBWv/LL2QOrL 0WP4ufrRJj/UyezSmeak0zdLXL84kr4sP1SLXLqxZSbCefcIUoT1OIodYjBtzGmt gMckuD8N2Pja6MsDL7EKvYkvrPXVbbdpCtFnufbJ1p0GUo4mp/KjUKVV3CleeaEE jTQcjI/bj8eU0bE4avmUPnfN/PJ4UL5JZo2tyToy/oF2rqJ8eaw0YzXSYTrQJI9y WKFArGjrhEuQy8yImsVwNM622Zk4tk7UrvEGl9rxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFngYitD8S4nPJMVi7bD7WDr+wS4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY2NzMxYmQzLTU2ODQtNDEwNC05ODRhLWVhZWIzNzY4OGQyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+/QwDQYJKoZIhvcNAQELBQADggEBADsqVltu5CH3pdqUeQECGAtUxwSp UMYNoHIYuvknAyco59e76+kAWwhbDi+6O2y1QfUsuxJS0HVBJB3FuEHrj0VNNxy3 b8fSCirlwkSNU5ywuug52s7meqppI0Neeto5UXTMRP9ZhMyxkI0rB/pRQVNgi0oP N+6BhupyqnWvjFCxXaSudVTON51JaRAOzr8U08ccoopGqxGwbzkQgAUkp9jGu42t HbHLuYAwB7kIa8BTeGNpKBq/8PS2jcsynKu0J/DRErx0ti9KEaaRjVfu8XzrpMaQ 1Z/tixdGMtqrWy/cABjvEYwgsSPzD5dfjw8UwhjPEbajT5YIlpygj5WWnqw= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:36 2025 by rpki-client