$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbeb3a94-9af7-486c-ac63-d5e8dc68b3e1.roa File: bbeb3a94-9af7-486c-ac63-d5e8dc68b3e1.roa (raw, json) Hash identifier: O94xGMA2bD8bbc6duY4WY+RMliyhtVbc4j7j5C73SP8= Subject key identifier: 93:DF:BF:4F:F6:3F:CB:67:90:9C:D6:04:33:0B:89:4A:A9:05:7F:4B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2DDD4DD61CD54659AF37FBDBDBD3987D2F4C686F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbeb3a94-9af7-486c-ac63-d5e8dc68b3e1.roa Signing time: Sat 18 Oct 2025 15:43:38 +0000 ROA not before: Sat 18 Oct 2025 15:43:38 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.155.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:dd:4d:d6:1c:d5:46:59:af:37:fb:db:db:d3:98:7d:2f:4c:68:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 15:43:38 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=7e6878b0b0a9cc497093e87ec14b81a68a2bd3ccb901a12c397fa8ffd7cf26de, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1f:9c:e8:cd:ab:36:e4:46:20:4b:07:a3:ca: 4b:81:53:50:01:dd:3d:4b:71:93:20:a1:c2:10:1f: 0f:21:a7:eb:41:df:85:74:0c:fa:32:25:64:67:df: 51:db:de:6e:38:bb:24:52:7b:aa:a6:f3:6a:fa:57: 2b:79:03:20:d4:d0:cb:eb:05:7b:56:11:7a:69:e9: f8:fb:8d:af:3a:1a:fc:bd:21:51:8d:1c:8c:99:ee: b6:dd:7a:88:99:db:bc:cb:fe:b2:fd:df:71:88:84: a4:95:b3:f7:6c:b5:15:a6:34:19:93:c8:e4:cd:71: 31:72:44:78:db:2e:0a:3e:d9:51:d9:84:32:59:b2: ea:fa:9d:b8:f8:75:a2:ce:92:64:f3:75:46:57:00: 91:7b:d6:9f:8a:f6:6f:fd:35:a7:e6:ff:80:01:66: 8d:9e:12:38:da:bb:23:ca:1c:3d:69:17:ba:96:1f: bb:e2:af:d3:11:6c:8d:12:2f:ed:ca:4e:40:e8:31: ff:7b:72:eb:6d:d2:70:d4:d1:3e:4f:6a:17:4f:74: fd:68:2d:b3:2d:47:e2:e0:36:30:7c:79:1c:4e:e9: 8a:4a:f8:80:e0:09:8d:ad:97:12:23:d8:26:85:c9: 77:6f:be:a6:31:dc:a2:58:c4:de:7d:30:d9:d5:19: 0b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:DF:BF:4F:F6:3F:CB:67:90:9C:D6:04:33:0B:89:4A:A9:05:7F:4B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbeb3a94-9af7-486c-ac63-d5e8dc68b3e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.155.148.0/23 Signature Algorithm: sha256WithRSAEncryption 91:76:9f:9f:21:20:de:5a:10:5f:d1:fd:eb:4d:7d:86:05:a2: b3:e3:ec:81:5b:5c:9c:14:34:30:f2:2e:6f:cc:1c:c4:70:24: 21:e6:0b:54:4a:19:57:29:ab:f9:86:f4:89:33:bf:0f:15:d6: c8:f6:5a:5e:72:60:65:25:dc:4e:2f:53:70:99:48:ef:06:ed: 07:c9:58:cb:b7:76:af:03:c9:f0:7f:b7:97:83:ec:29:a6:95: a9:dd:5f:57:0e:f3:6e:e7:88:25:ad:55:4c:9f:a8:66:2f:7d: 3d:2e:e5:41:02:c3:15:3b:cc:e1:7c:9a:60:b9:91:a9:e0:6b: e2:de:40:8e:e8:d9:64:76:a5:b1:c2:45:c4:bd:bd:be:16:81: 68:29:e3:ce:ac:61:61:2d:fa:9d:55:6a:aa:95:88:a5:3f:2f: d0:2f:ed:6d:8a:7d:3f:6e:90:10:ae:3b:45:89:15:02:00:b0: e6:33:54:7d:62:93:4b:4c:3e:e6:25:52:d9:f4:6d:79:79:22: 9f:94:c5:cd:90:d3:8b:94:e0:83:67:57:59:95:17:93:96:06: 61:2c:9c:0f:e0:a1:4f:49:a5:9e:31:4f:e4:e7:02:a3:cf:64: 16:b2:5c:0b:00:0b:39:a4:7c:62:cb:f8:df:2b:18:31:2d:21: 60:af:53:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULd1N1hzVRlmvN/vb29OYfS9MaG8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTU0MzM4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTY4NzhiMGIwYTljYzQ5NzA5M2U4N2VjMTRiODFhNjhh MmJkM2NjYjkwMWExMmMzOTdmYThmZmQ3Y2YyNmRlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHH5zozas25EYgSwejykuBU1AB3T1LcZMgocIQHw8hp+tB 34V0DPoyJWRn31Hb3m44uyRSe6qm82r6Vyt5AyDU0MvrBXtWEXpp6fj7ja86Gvy9 IVGNHIyZ7rbdeoiZ27zL/rL933GIhKSVs/dstRWmNBmTyOTNcTFyRHjbLgo+2VHZ hDJZsur6nbj4daLOkmTzdUZXAJF71p+K9m/9Nafm/4ABZo2eEjjauyPKHD1pF7qW H7vir9MRbI0SL+3KTkDoMf97cutt0nDU0T5PahdPdP1oLbMtR+LgNjB8eRxO6YpK +IDgCY2tlxIj2CaFyXdvvqYx3KJYxN59MNnVGQtVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk9+/T/Y/y2eQnNYEMwuJSqkFf0swHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JiZWIzYTk0LTlhZjctNDg2Yy1hYzYzLWQ1ZThkYzY4YjNlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESm5QwDQYJKoZIhvcNAQELBQADggEBAJF2n58hIN5aEF/R/etNfYYForPj 7IFbXJwUNDDyLm/MHMRwJCHmC1RKGVcpq/mG9Ikzvw8V1sj2Wl5yYGUl3E4vU3CZ SO8G7QfJWMu3dq8DyfB/t5eD7CmmlandX1cO827niCWtVUyfqGYvfT0u5UECwxU7 zOF8mmC5kanga+LeQI7o2WR2pbHCRcS9vb4WgWgp486sYWEt+p1VaqqViKU/L9Av 7W2KfT9ukBCuO0WJFQIAsOYzVH1ik0tMPuYlUtn0bXl5Ip+Uxc2Q04uU4INnV1mV F5OWBmEsnA/goU9JpZ4xT+TnAqPPZBayXAsACzmkfGLL+N8rGDEtIWCvU80= -----END CERTIFICATE-----Generated at Mon Oct 20 18:11:55 2025 by rpki-client