$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9f311c10-d585-4c44-a4a1-93872919313e.roa File: 9f311c10-d585-4c44-a4a1-93872919313e.roa (raw, json) Hash identifier: DlJVsjF43X2iQQ2p5i20P+A0ySYnkM+S5XckR9DTTtM= Subject key identifier: B8:5B:8E:EF:D9:DD:B6:24:5E:F0:33:53:E1:2C:1F:B7:A7:63:19:88 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 20957636F790AA4EC0AD45C0F99E4E5EE530721E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9f311c10-d585-4c44-a4a1-93872919313e.roa Signing time: Wed 22 Oct 2025 19:53:16 +0000 ROA not before: Wed 22 Oct 2025 19:53:16 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:95:76:36:f7:90:aa:4e:c0:ad:45:c0:f9:9e:4e:5e:e5:30:72:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 22 19:53:16 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=081dd5445318a10b32b3d6f3db4d2f9d782bc3b0979562622a8cecf82f4603b8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:33:79:ed:a1:87:c9:f6:fc:b1:e4:35:b4:08: c2:e2:72:b8:9d:6b:4d:24:3e:24:34:2d:8b:18:0d: 80:52:79:c7:96:aa:ee:f6:cf:dd:c5:5b:8b:a7:5d: 7f:80:6d:54:b6:67:da:ac:72:93:86:d6:3c:97:0f: da:11:da:f8:d1:5d:c0:67:20:a5:83:19:19:3f:94: 76:f7:49:d4:db:9e:35:8d:25:c8:fb:6b:23:67:21: c4:09:45:6e:22:f9:47:2c:a4:b5:35:63:82:17:17: e8:a1:37:a5:95:1d:d2:a4:83:7f:2e:39:c7:f3:29: 92:d3:7a:4c:02:a0:e8:03:a4:c9:0f:76:84:4c:95: a3:be:b3:80:96:56:96:76:a2:eb:5d:4c:2c:20:74: 52:b5:18:94:48:ec:01:91:59:87:32:24:01:31:94: 8a:ea:67:bb:96:97:09:3a:0d:06:e9:b4:e7:34:01: df:4e:ff:42:4b:97:77:19:0b:53:0a:a7:c8:46:e1: 9a:e6:29:04:27:33:4f:28:9d:bf:dc:c5:97:dc:95: 93:1a:e0:b0:6c:ec:51:c2:82:40:b9:ea:8d:1b:01: 02:14:83:39:3b:bc:69:95:4f:6c:aa:00:2e:2d:fb: 23:fc:b2:60:1d:13:5e:84:ae:3c:68:e0:91:50:5a: ba:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5B:8E:EF:D9:DD:B6:24:5E:F0:33:53:E1:2C:1F:B7:A7:63:19:88 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9f311c10-d585-4c44-a4a1-93872919313e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.56.0/23 Signature Algorithm: sha256WithRSAEncryption 54:9f:68:62:bf:e4:20:aa:e9:6e:c1:7f:4a:35:49:cc:1f:ab: ef:9a:40:cd:5e:2c:b6:69:c1:99:f9:e5:af:6d:9e:b4:4b:28: 0b:19:e4:9b:74:fc:85:f6:23:c6:5c:ef:c1:1d:f4:14:e0:54: be:50:2c:54:67:9d:74:60:74:1e:aa:42:82:85:26:a2:0a:52: 0e:be:bd:f9:92:08:2a:55:5b:69:15:e3:18:29:f1:0a:e7:b6: a0:bc:b8:4d:10:a2:10:ef:ec:0a:ca:3f:98:a5:28:5b:47:fe: 20:6f:eb:e2:ef:4a:de:df:d6:5d:69:f4:e6:5a:e9:c1:f2:8e: c7:d3:d8:f9:e7:7c:77:b8:44:07:c9:07:e4:42:86:e9:18:73: b2:07:b3:87:95:72:12:9b:49:d4:27:fa:1a:1e:39:53:9c:37: 06:32:91:0e:7e:79:e7:6a:2e:c3:cd:7b:31:1a:43:a5:c7:00: 08:98:49:11:dd:59:1a:41:b5:97:84:20:40:e6:06:ac:4c:d3: 51:7b:df:d3:14:4f:f6:14:bf:13:59:f4:ae:6e:db:ea:72:df: 8a:cf:dc:b5:0a:25:8d:08:68:32:da:aa:a0:b3:ec:21:03:ba: 6b:59:5a:19:cc:36:4b:8d:1a:b1:10:e5:e2:cd:41:a1:0b:83: 23:07:e2:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIJV2NveQqk7ArUXA+Z5OXuUwch4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDIyMTk1MzE2WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODFkZDU0NDUzMThhMTBiMzJiM2Q2ZjNkYjRkMmY5ZDc4 MmJjM2IwOTc5NTYyNjIyYThjZWNmODJmNDYwM2I4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyM3ntoYfJ9vyx5DW0CMLicrida00kPiQ0LYsYDYBSeceW qu72z93FW4unXX+AbVS2Z9qscpOG1jyXD9oR2vjRXcBnIKWDGRk/lHb3SdTbnjWN Jcj7ayNnIcQJRW4i+UcspLU1Y4IXF+ihN6WVHdKkg38uOcfzKZLTekwCoOgDpMkP doRMlaO+s4CWVpZ2outdTCwgdFK1GJRI7AGRWYcyJAExlIrqZ7uWlwk6DQbptOc0 Ad9O/0JLl3cZC1MKp8hG4ZrmKQQnM08onb/cxZfclZMa4LBs7FHCgkC56o0bAQIU gzk7vGmVT2yqAC4t+yP8smAdE16Erjxo4JFQWrpxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuFuO79ndtiRe8DNT4Swft6djGYgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzlmMzExYzEwLWQ1ODUtNGM0NC1hNGExLTkzODcyOTE5MzEzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYiTgwDQYJKoZIhvcNAQELBQADggEBAFSfaGK/5CCq6W7Bf0o1Scwfq++a QM1eLLZpwZn55a9tnrRLKAsZ5Jt0/IX2I8Zc78Ed9BTgVL5QLFRnnXRgdB6qQoKF JqIKUg6+vfmSCCpVW2kV4xgp8QrntqC8uE0QohDv7ArKP5ilKFtH/iBv6+LvSt7f 1l1p9OZa6cHyjsfT2PnnfHe4RAfJB+RChukYc7IHs4eVchKbSdQn+hoeOVOcNwYy kQ5+eedqLsPNezEaQ6XHAAiYSRHdWRpBtZeEIEDmBqxM01F739MUT/YUvxNZ9K5u 2+py34rP3LUKJY0IaDLaqqCz7CEDumtZWhnMNkuNGrEQ5eLNQaELgyMH4gs= -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:30 2025 by rpki-client