$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa File: a1e648bb-cfc9-4252-8342-da6740732696.roa (raw, json) Hash identifier: AxZ7pdlKN2PV0jLyWgykF9ZeiuqKZJxVWn1hGd3tyjY= Subject key identifier: 29:61:96:08:95:CE:DE:7B:B7:26:6C:1A:8D:7B:E9:91:F5:CA:DA:FB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0DF35E253693D0224248390E1D5BD6E26845FDEB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa Signing time: Sun 02 Nov 2025 00:40:07 +0000 ROA not before: Sun 02 Nov 2025 00:40:07 +0000 ROA not after: Sun 07 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f3:5e:25:36:93:d0:22:42:48:39:0e:1d:5b:d6:e2:68:45:fd:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 2 00:40:07 2025 GMT Not After : Dec 7 23:59:59 2025 GMT Subject: serialNumber=1acb80f222917e45fbdb32e6ee693467862ea097dce13f1e8bb4a2998c673650, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e2:bd:1d:c9:a0:9d:00:2a:46:96:10:a1:8b: 2d:97:2a:7f:55:21:87:3c:27:6b:38:f8:1c:fa:e6: 54:4c:ff:19:97:90:80:e6:de:62:41:9c:68:23:b4: 14:7b:8b:af:dd:b2:da:f5:36:36:36:4e:e7:2b:18: 5a:4e:28:df:fc:60:56:89:2e:8c:4e:4c:e2:7b:0c: 9a:d7:4b:8e:7f:15:95:9a:64:3d:22:56:41:ca:4d: 72:19:f6:b0:29:27:2e:3c:f5:e2:f5:35:5d:a4:39: 02:37:78:bd:24:77:bc:a8:d0:af:ee:cf:b0:df:a2: 06:ce:e9:04:e0:cc:f9:fc:6d:66:e1:ce:10:e4:1f: e8:e1:15:e2:63:1c:e5:a4:a6:07:d2:1c:2b:d0:61: 6d:2a:9e:94:67:9f:7c:13:50:f9:ee:3a:dd:90:37: c2:ee:d6:1c:f9:c9:23:f7:1d:6a:2e:bb:e9:0a:90: 95:c8:d0:37:6b:2c:50:4c:79:98:a4:b8:4e:a4:31: 06:f6:8d:a9:e6:96:8e:6d:04:01:c1:8a:7e:b3:01: d8:7b:bb:5c:d1:47:da:47:00:be:9f:fd:ed:a7:fb: ed:70:13:3e:d0:cc:2e:ab:df:38:34:14:38:8a:3d: 40:1e:5c:a6:f0:10:b3:76:58:8c:58:cc:b0:54:34: 04:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:61:96:08:95:CE:DE:7B:B7:26:6C:1A:8D:7B:E9:91:F5:CA:DA:FB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.240.0/22 Signature Algorithm: sha256WithRSAEncryption 04:88:c4:95:61:bb:d3:cc:45:07:b5:52:70:62:e4:d8:95:c8: 8b:7e:23:7e:4c:22:38:31:3d:43:0c:d4:88:4a:ae:11:25:9a: 08:f1:1b:c5:e8:1b:37:3c:de:2b:4a:50:60:cb:3d:b7:29:42: 37:33:da:08:1c:11:9b:80:d2:b8:f1:56:e9:63:cb:33:9b:5d: 5f:b4:82:6e:2f:ac:c4:f9:10:60:25:ec:af:7a:bd:7c:06:6e: a2:df:7a:92:cb:c4:82:98:ae:30:16:ff:0e:ae:69:ed:e4:6f: ae:5b:59:75:4e:33:6b:02:49:41:53:6d:8f:16:8e:3d:6d:fc: 87:f8:7d:4f:8e:c0:14:58:fa:ae:5f:5a:9b:36:c1:3c:c5:c8: 73:11:74:9d:88:bc:0d:fa:69:43:f4:e5:7c:d3:5e:b7:29:50: 8b:19:b3:7b:b5:00:a2:62:5c:a8:8a:c0:40:b7:7d:6f:e3:40: ba:5d:a0:f8:91:89:2a:34:c2:b2:5b:2f:84:71:0b:ec:1b:49: df:1d:f8:0c:38:93:a6:32:25:4b:a7:83:01:00:0a:e6:f3:3c: 43:10:78:b8:c2:e6:f0:04:21:96:a0:f3:80:95:63:61:84:7d: 89:bb:ff:18:10:3c:5d:3a:17:e6:20:29:a0:94:49:80:5d:32: fc:22:3f:25 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDfNeJTaT0CJCSDkOHVvW4mhF/eswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTAyMDA0MDA3WhcNMjUxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWNiODBmMjIyOTE3ZTQ1ZmJkYjMyZTZlZTY5MzQ2Nzg2 MmVhMDk3ZGNlMTNmMWU4YmI0YTI5OThjNjczNjUwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDc4r0dyaCdACpGlhChiy2XKn9VIYc8J2s4+Bz65lRM/xmX kIDm3mJBnGgjtBR7i6/dstr1NjY2TucrGFpOKN/8YFaJLoxOTOJ7DJrXS45/FZWa ZD0iVkHKTXIZ9rApJy489eL1NV2kOQI3eL0kd7yo0K/uz7DfogbO6QTgzPn8bWbh zhDkH+jhFeJjHOWkpgfSHCvQYW0qnpRnn3wTUPnuOt2QN8Lu1hz5ySP3HWouu+kK kJXI0DdrLFBMeZikuE6kMQb2janmlo5tBAHBin6zAdh7u1zRR9pHAL6f/e2n++1w Ez7QzC6r3zg0FDiKPUAeXKbwELN2WIxYzLBUNARTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKWGWCJXO3nu3JmwajXvpkfXK2vswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ExZTY0OGJiLWNmYzktNDI1Mi04MzQyLWRhNjc0MDczMjY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+/AwDQYJKoZIhvcNAQELBQADggEBAASIxJVhu9PMRQe1UnBi5NiVyIt+ I35MIjgxPUMM1IhKrhElmgjxG8XoGzc83itKUGDLPbcpQjcz2ggcEZuA0rjxVulj yzObXV+0gm4vrMT5EGAl7K96vXwGbqLfepLLxIKYrjAW/w6uae3kb65bWXVOM2sC SUFTbY8Wjj1t/If4fU+OwBRY+q5fWps2wTzFyHMRdJ2IvA36aUP05XzTXrcpUIsZ s3u1AKJiXKiKwEC3fW/jQLpdoPiRiSo0wrJbL4RxC+wbSd8d+Aw4k6YyJUungwEA CubzPEMQeLjC5vAEIZag84CVY2GEfYm7/xgQPF06F+YgKaCUSYBdMvwiPyU= -----END CERTIFICATE-----Generated at Wed Nov 5 20:47:23 2025 by rpki-client