$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa File: 9c668317-9f28-4868-b993-30a89bb71db1.roa (raw, json) Hash identifier: cPPsjOUTOQfDS+UkGkUF/MZ5Xk0dbvRGFeknf9uzETY= Subject key identifier: 57:74:8E:E4:F1:03:ED:26:A4:EC:CE:56:E8:43:8A:60:1F:81:59:21 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7799AE829C5744D890368710746248F7F74CFB30 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa Signing time: Sun 02 Nov 2025 00:40:12 +0000 ROA not before: Sun 02 Nov 2025 00:40:12 +0000 ROA not after: Sun 07 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:99:ae:82:9c:57:44:d8:90:36:87:10:74:62:48:f7:f7:4c:fb:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 2 00:40:12 2025 GMT Not After : Dec 7 23:59:59 2025 GMT Subject: serialNumber=443276470b716404520b0e48593345494e159c2ea308e7613e8c84d5247720a3, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:90:9e:b8:40:7a:2b:6b:86:a2:e9:2e:2d:9e: bd:67:c1:fc:28:04:f4:74:f6:fc:8c:a1:21:5d:ef: 9b:8c:e2:5c:f7:f0:93:3c:0e:5a:78:ba:13:b8:b6: 4d:22:99:db:80:25:e1:85:6d:4b:63:ef:59:9a:6c: 21:e5:76:a4:86:99:78:76:d3:72:1f:f2:64:36:dd: d6:39:64:bb:22:23:7e:76:0e:fd:5f:73:c4:a5:38: 91:6e:22:5f:c6:17:f6:f0:cb:f7:cf:f1:8d:42:5d: ce:36:af:72:ab:53:25:ec:1b:fe:92:64:e2:e2:43: 36:d4:b0:1d:61:fd:c8:9f:23:7e:64:ef:c7:d9:00: 05:da:73:af:64:ef:ca:38:59:a5:07:01:1a:5c:1b: 55:99:9b:db:4c:94:ab:5a:0e:94:e1:9b:ad:29:05: 77:d1:34:4f:95:25:46:dc:e0:db:6d:ed:1a:db:51: 56:b5:1f:17:7c:3c:de:f3:b7:6f:b3:96:d4:64:4e: 25:62:19:e0:94:30:7b:f4:39:95:e9:25:3a:10:26: b3:77:ea:98:f1:b4:0d:bc:5e:47:05:88:6f:c6:62: ce:04:e3:4a:08:7e:21:1b:12:4f:6c:99:99:50:75: 2a:ff:f7:a7:2b:56:4a:b7:9f:86:e6:7c:b1:8c:96: ff:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:74:8E:E4:F1:03:ED:26:A4:EC:CE:56:E8:43:8A:60:1F:81:59:21 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption a1:6b:72:68:73:85:7e:75:60:d5:29:ad:90:d4:ba:d4:6a:99: f1:bf:8f:55:c3:8e:3c:82:2e:8b:34:75:0d:cb:b3:44:3b:f3: 5c:86:b8:15:72:37:38:21:68:41:dc:78:96:94:fd:c0:99:16: e8:16:ff:4a:bd:a5:92:a9:3f:57:0e:1a:fa:b4:52:cc:51:af: 7b:fa:9c:fe:e5:57:95:a5:f1:7d:6f:33:ab:10:4c:6a:b2:e5: c4:27:01:ea:28:88:ee:cb:60:ff:55:cb:46:0e:18:69:a4:18: 26:cf:4c:c4:66:80:97:c8:a2:34:55:9f:0b:8e:fa:5c:be:ae: dd:83:77:3f:ff:0d:79:f4:c0:33:9e:c9:8c:a1:30:7e:c3:21: 1e:fb:73:a5:6e:fb:38:6c:00:05:ab:0c:b8:0d:36:6a:19:4d: 58:db:b7:79:fc:6c:06:16:d0:d7:d5:0e:b4:83:4f:78:2b:34: 5c:7f:67:55:e5:bc:4b:78:61:ef:a1:4b:35:a4:f0:f9:49:3e: dd:c5:82:65:30:99:d8:27:9f:40:af:86:b4:1c:5c:70:20:1f: f7:bd:23:17:e1:d5:30:d3:6c:b0:2c:92:39:d5:c7:cd:e7:6e: ef:1e:c3:08:5c:f9:f8:1b:41:45:71:01:68:49:c1:d8:9f:3a: d6:38:3d:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd5mugpxXRNiQNocQdGJI9/dM+zAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTAyMDA0MDEyWhcNMjUxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDMyNzY0NzBiNzE2NDA0NTIwYjBlNDg1OTMzNDU0OTRl MTU5YzJlYTMwOGU3NjEzZThjODRkNTI0NzcyMGEzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCakJ64QHora4ai6S4tnr1nwfwoBPR09vyMoSFd75uM4lz3 8JM8Dlp4uhO4tk0imduAJeGFbUtj71mabCHldqSGmXh203If8mQ23dY5ZLsiI352 Dv1fc8SlOJFuIl/GF/bwy/fP8Y1CXc42r3KrUyXsG/6SZOLiQzbUsB1h/cifI35k 78fZAAXac69k78o4WaUHARpcG1WZm9tMlKtaDpThm60pBXfRNE+VJUbc4Ntt7Rrb UVa1Hxd8PN7zt2+zltRkTiViGeCUMHv0OZXpJToQJrN36pjxtA28XkcFiG/GYs4E 40oIfiEbEk9smZlQdSr/96crVkq3n4bmfLGMlv+7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV3SO5PED7Sak7M5W6EOKYB+BWSEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzljNjY4MzE3LTlmMjgtNDg2OC1iOTkzLTMwYTg5YmI3MWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBAKFrcmhzhX51YNUprZDUutRqmfG/ j1XDjjyCLos0dQ3Ls0Q781yGuBVyNzghaEHceJaU/cCZFugW/0q9pZKpP1cOGvq0 UsxRr3v6nP7lV5Wl8X1vM6sQTGqy5cQnAeooiO7LYP9Vy0YOGGmkGCbPTMRmgJfI ojRVnwuO+ly+rt2Ddz//DXn0wDOeyYyhMH7DIR77c6Vu+zhsAAWrDLgNNmoZTVjb t3n8bAYW0NfVDrSDT3grNFx/Z1XlvEt4Ye+hSzWk8PlJPt3FgmUwmdgnn0CvhrQc XHAgH/e9Ixfh1TDTbLAskjnVx83nbu8ewwhc+fgbQUVxAWhJwdifOtY4PYU= -----END CERTIFICATE-----Generated at Wed Nov 5 05:42:01 2025 by rpki-client