$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb020af7-c6e0-4589-9d16-80dff5d5de6f.roa File: bb020af7-c6e0-4589-9d16-80dff5d5de6f.roa (raw, json) Hash identifier: eZLfjvRbCUO2M42F2/CWCW6quLnQSew8SQ82i2kM0t0= Subject key identifier: 11:EA:4E:EB:CB:6F:EB:86:7F:F4:15:CE:0C:0C:D1:D5:30:7A:B8:83 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5C4BDC42215026A99077802D0733C0F29EDD9FF5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb020af7-c6e0-4589-9d16-80dff5d5de6f.roa Signing time: Sat 18 Oct 2025 11:33:47 +0000 ROA not before: Sat 18 Oct 2025 11:33:47 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.239.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4b:dc:42:21:50:26:a9:90:77:80:2d:07:33:c0:f2:9e:dd:9f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 11:33:47 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=891cbfc5774355a18e767290d30e03f51e8744b1fc14c8990c7f8f58c898ddb0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ee:5f:a4:d4:6e:fb:89:c8:bb:30:a8:93:02: ce:2b:d3:9a:ac:36:fc:20:fd:eb:44:b5:d7:7e:79: 21:ab:58:41:c5:f7:aa:62:a3:d2:8a:be:ef:60:ab: 95:e0:b8:bb:5f:7d:17:3b:2d:39:c4:8e:e5:16:c8: d5:ad:7b:d2:11:25:f0:dd:80:1d:bc:37:b6:55:25: b2:71:b2:fb:e7:e3:ca:d8:08:7d:ca:14:8f:d2:0f: 69:0e:14:ed:e0:3f:87:8e:01:54:17:c5:27:3c:c7: 78:64:1d:2d:be:9a:7a:88:6c:3b:af:53:bd:c9:3c: f6:dd:6d:4d:2b:b0:a8:32:51:62:62:6a:9b:65:89: 7f:47:65:d5:c5:c1:be:8c:74:95:b3:61:74:84:55: c9:f3:64:1c:d2:96:b9:4b:37:6b:b5:bf:cc:59:e8: 38:d6:16:49:4c:9d:87:e4:68:b0:50:6a:05:e1:e2: 53:3b:d8:ba:6e:02:32:0b:88:ee:a0:f9:e2:26:0e: 9a:a0:5a:0f:ab:31:91:3f:05:e5:f9:d3:21:56:1f: c4:ba:4b:00:2d:e0:92:84:e7:7d:39:58:35:b4:5a: 1b:74:79:b0:bf:71:8d:bb:91:d6:82:67:a2:a0:2a: 03:aa:c0:50:c6:80:86:36:8c:52:a7:6a:7b:0b:e7: 13:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:EA:4E:EB:CB:6F:EB:86:7F:F4:15:CE:0C:0C:D1:D5:30:7A:B8:83 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb020af7-c6e0-4589-9d16-80dff5d5de6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.239.58.0/23 Signature Algorithm: sha256WithRSAEncryption b0:30:90:99:54:bc:71:65:97:df:b9:fa:25:39:b2:61:47:79: db:bc:f4:10:ec:39:ef:eb:da:5d:35:14:ed:dc:cd:d4:f2:fe: 9b:29:35:6a:33:64:c7:d9:4e:53:42:dd:51:40:f1:00:60:08: 77:20:60:1a:39:7c:d8:b6:00:44:e6:14:e2:a2:6d:96:30:82: e0:22:1b:1a:f7:69:de:e8:cc:ec:93:9b:d0:49:8f:5e:67:19: 65:38:28:f8:52:c7:5b:02:35:42:f9:2b:b9:3d:76:40:14:a1: d7:b5:b0:b1:c4:47:9f:09:38:b6:32:89:6e:37:9d:b0:86:46: d1:a0:a5:8a:1c:3e:b3:be:ab:f0:66:75:08:13:9b:88:79:a7: eb:96:8b:99:c5:56:09:51:bf:41:c4:c6:9f:92:72:76:d4:08: fe:59:cf:70:8d:ab:79:dd:7b:4a:e9:96:d7:41:fa:0e:7c:8a: 00:3a:87:46:62:98:58:d1:62:da:0b:d1:f2:ba:f8:36:01:e9: 41:df:69:d0:78:18:23:56:0e:be:c2:03:16:9d:c4:1d:32:31: 19:f7:ac:c3:cf:75:56:3f:04:33:d9:f8:67:53:b6:f8:d2:c2: 2f:5f:d4:8c:0e:2c:b5:b7:5d:a9:e1:d9:5e:51:79:27:a9:ff: 62:71:77:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXEvcQiFQJqmQd4AtBzPA8p7dn/UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTEzMzQ3WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTFjYmZjNTc3NDM1NWExOGU3NjcyOTBkMzBlMDNmNTFl ODc0NGIxZmMxNGM4OTkwYzdmOGY1OGM4OThkZGIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC77l+k1G77ici7MKiTAs4r05qsNvwg/etEtdd+eSGrWEHF 96pio9KKvu9gq5XguLtffRc7LTnEjuUWyNWte9IRJfDdgB28N7ZVJbJxsvvn48rY CH3KFI/SD2kOFO3gP4eOAVQXxSc8x3hkHS2+mnqIbDuvU73JPPbdbU0rsKgyUWJi aptliX9HZdXFwb6MdJWzYXSEVcnzZBzSlrlLN2u1v8xZ6DjWFklMnYfkaLBQagXh 4lM72LpuAjILiO6g+eImDpqgWg+rMZE/BeX50yFWH8S6SwAt4JKE5305WDW0Wht0 ebC/cY27kdaCZ6KgKgOqwFDGgIY2jFKnansL5xPvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEepO68tv64Z/9BXODAzR1TB6uIMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JiMDIwYWY3LWM2ZTAtNDU4OS05ZDE2LTgwZGZmNWQ1ZGU2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAES7zowDQYJKoZIhvcNAQELBQADggEBALAwkJlUvHFll9+5+iU5smFHedu8 9BDsOe/r2l01FO3czdTy/pspNWozZMfZTlNC3VFA8QBgCHcgYBo5fNi2AETmFOKi bZYwguAiGxr3ad7ozOyTm9BJj15nGWU4KPhSx1sCNUL5K7k9dkAUode1sLHER58J OLYyiW43nbCGRtGgpYocPrO+q/BmdQgTm4h5p+uWi5nFVglRv0HExp+ScnbUCP5Z z3CNq3nde0rpltdB+g58igA6h0ZimFjRYtoL0fK6+DYB6UHfadB4GCNWDr7CAxad xB0yMRn3rMPPdVY/BDPZ+GdTtvjSwi9f1IwOLLW3Xanh2V5ReSep/2Jxdxs= -----END CERTIFICATE-----Generated at Mon Oct 20 06:12:16 2025 by rpki-client