$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbb2c05d-a62f-48bf-92eb-7334e4a7e202.roa File: bbb2c05d-a62f-48bf-92eb-7334e4a7e202.roa (raw, json) Hash identifier: fTw/xhW52PFex2RspcjyCF1tr+Xfgxhd1CQ0OUTFlzg= Subject key identifier: 29:4C:21:82:0F:EA:D4:3D:B4:1F:99:6C:4E:D4:BC:78:3A:60:8E:34 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0D3C9AB7D6A99722ACE0AFA0FF0DD1D54BEE36A7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbb2c05d-a62f-48bf-92eb-7334e4a7e202.roa Signing time: Tue 04 Nov 2025 02:01:03 +0000 ROA not before: Tue 04 Nov 2025 02:01:03 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.18.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:3c:9a:b7:d6:a9:97:22:ac:e0:af:a0:ff:0d:d1:d5:4b:ee:36:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 02:01:03 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=5651e543af5716c0a809c53d809d53228f8a1b35b20e714e9e71a211719db7f5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8a:7e:66:eb:c5:8e:dc:3b:78:53:3a:6e:60: 4f:98:8e:8c:7a:c6:1e:5d:fb:ad:57:b9:44:09:99: de:24:e0:ed:40:06:be:76:5c:f8:b8:f3:79:f1:f5: 87:18:c3:e4:a5:f3:e3:01:ed:23:a9:fd:5a:34:0d: 85:6f:c7:db:62:9c:17:9e:8f:d8:e7:96:62:ff:25: 80:30:0c:7c:cc:33:d4:57:c6:20:e1:94:64:bf:94: fb:12:55:5b:38:36:dc:b0:6f:03:49:ed:a4:23:d9: 38:c5:9e:3d:b6:4d:7e:4f:98:55:10:56:3a:c9:79: 0f:8d:c3:a3:e8:94:18:0f:eb:e7:a2:87:89:5b:e6: 01:e9:d4:2f:99:41:8c:90:fa:bb:91:f0:43:e6:3b: 80:46:c3:40:da:17:01:8a:e3:86:1d:0c:04:45:c5: 65:9d:16:f5:36:9b:0a:d4:b0:37:03:ec:45:6c:ba: 18:bd:aa:24:97:c3:47:42:ab:5a:a3:10:be:2b:72: 88:5a:a3:e7:ac:b4:1a:30:49:98:b9:70:e5:7b:90: f7:4f:4d:27:79:57:4d:24:02:62:04:3f:05:42:8a: c9:b3:1a:d1:b7:41:92:3d:43:37:14:41:80:a7:e1: 16:c4:db:e5:0f:28:1a:5c:73:71:12:cb:26:83:98: db:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:4C:21:82:0F:EA:D4:3D:B4:1F:99:6C:4E:D4:BC:78:3A:60:8E:34 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbb2c05d-a62f-48bf-92eb-7334e4a7e202.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.18.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5c:8a:c5:c7:35:14:cf:3c:5c:d4:96:d7:e0:a3:9c:b2:3f:ca: 69:9f:ea:ea:80:44:fb:72:74:d9:4b:18:b8:c0:0a:5d:c9:08: 01:1b:ed:c4:80:aa:6c:cb:fe:1b:94:5d:52:90:02:57:14:3b: 1a:f7:45:96:a4:e4:96:7a:b6:1d:a0:3a:90:33:23:28:f1:ef: 8c:57:7a:cd:a7:54:62:2d:22:18:20:7f:99:cb:53:68:8a:ea: f7:7a:bf:16:6b:5d:95:69:e7:d7:05:b9:26:a7:03:b9:bd:2a: 31:9e:5d:f4:aa:e6:47:4e:f5:00:50:13:a8:21:78:22:9d:3e: df:b6:83:91:66:6d:6e:5f:2d:08:f9:66:4c:8e:ed:7c:02:46: 51:b3:38:4a:35:62:27:b7:75:74:5c:00:7a:8d:1d:41:27:8d: c1:33:54:70:dc:bf:34:13:66:c6:21:59:b2:13:71:c2:d4:f6: a3:f6:60:71:e6:2a:22:3f:90:c0:67:71:1a:55:50:40:03:e2: fb:8c:b7:9c:82:05:2b:94:da:68:f7:65:80:d1:ae:34:a7:86: 8b:5a:80:23:aa:63:0c:85:99:71:cb:be:f8:ff:58:8e:09:bd: bb:d7:9a:bd:a5:2e:d9:12:80:21:43:41:93:85:62:63:3c:01: 1c:66:3b:7a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDTyat9aplyKs4K+g/w3R1UvuNqcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDIwMTAzWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjUxZTU0M2FmNTcxNmMwYTgwOWM1M2Q4MDlkNTMyMjhm OGExYjM1YjIwZTcxNGU5ZTcxYTIxMTcxOWRiN2Y1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqin5m68WO3Dt4UzpuYE+Yjox6xh5d+61XuUQJmd4k4O1A Br52XPi483nx9YcYw+Sl8+MB7SOp/Vo0DYVvx9tinBeej9jnlmL/JYAwDHzMM9RX xiDhlGS/lPsSVVs4NtywbwNJ7aQj2TjFnj22TX5PmFUQVjrJeQ+Nw6PolBgP6+ei h4lb5gHp1C+ZQYyQ+ruR8EPmO4BGw0DaFwGK44YdDARFxWWdFvU2mwrUsDcD7EVs uhi9qiSXw0dCq1qjEL4rcohao+estBowSZi5cOV7kPdPTSd5V00kAmIEPwVCismz GtG3QZI9QzcUQYCn4RbE2+UPKBpcc3ESyyaDmNv5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKUwhgg/q1D20H5lsTtS8eDpgjjQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JiYjJjMDVkLWE2MmYtNDhiZi05MmViLTczMzRlNGE3ZTIwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA0EjANBgkqhkiG9w0BAQsFAAOCAQEAXIrFxzUUzzxc1JbX4KOcsj/KaZ/q 6oBE+3J02UsYuMAKXckIARvtxICqbMv+G5RdUpACVxQ7GvdFlqTklnq2HaA6kDMj KPHvjFd6zadUYi0iGCB/mctTaIrq93q/FmtdlWnn1wW5JqcDub0qMZ5d9KrmR071 AFATqCF4Ip0+37aDkWZtbl8tCPlmTI7tfAJGUbM4SjViJ7d1dFwAeo0dQSeNwTNU cNy/NBNmxiFZshNxwtT2o/ZgceYqIj+QwGdxGlVQQAPi+4y3nIIFK5TaaPdlgNGu NKeGi1qAI6pjDIWZccu++P9Yjgm9u9eavaUu2RKAIUNBk4ViYzwBHGY7eg== -----END CERTIFICATE-----Generated at Wed Nov 5 03:34:36 2025 by rpki-client