$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa File: 0c5be2da-ccb4-465a-b0a1-1151979c0998.roa (raw, json) Hash identifier: DD8IliX45XhJD8cr/YkPFEPTLI8pXhxkxy9V5wBVwrE= Subject key identifier: 73:01:76:65:72:66:BB:43:02:9B:93:0B:9E:3D:69:C3:7F:BF:61:55 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5ED9E55A7A9317D87D6E64A5E92BA1CF1E6CD332 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa Signing time: Tue 21 Oct 2025 02:25:41 +0000 ROA not before: Tue 21 Oct 2025 02:25:41 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 22394 IP address blocks: 155.146.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 02 Nov 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d9:e5:5a:7a:93:17:d8:7d:6e:64:a5:e9:2b:a1:cf:1e:6c:d3:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 02:25:41 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=7cdddd65bb6496d3035431d004cf30dee49d7d11ba3511d86edd2df906d0c5cb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ca:8e:a1:79:af:9c:50:df:c0:30:de:c7:b7: 0b:65:3d:ab:71:99:ee:5b:6b:6d:ec:15:76:39:1a: 59:d9:0d:07:1e:c0:63:d1:c8:99:3d:46:a6:66:85: 44:96:e6:e8:4e:e4:80:3d:c3:83:27:46:d7:71:4e: 58:36:5c:af:10:8e:22:e6:b6:4a:46:dd:30:6d:9b: 66:5e:f0:d7:94:23:3b:0d:d9:a4:7c:86:fc:e4:f5: f0:44:10:ce:6e:01:dd:5f:73:b7:7d:97:c6:28:f7: 6f:60:c7:76:95:7f:00:76:9b:72:ed:bc:1b:9e:e8: 34:5e:ab:a8:33:47:6e:71:cc:c0:9c:a5:54:39:c8: 17:0f:7b:c0:7d:f8:ca:a8:d9:b3:cf:9d:16:2f:ea: 02:5b:02:cc:c2:a9:5a:5a:fd:07:30:f0:e5:7e:96: 0f:42:cf:94:a8:f5:a9:64:24:aa:f1:89:f4:2f:40: b6:02:19:c9:93:08:f9:9e:9e:41:6b:b0:56:36:7f: be:b1:3a:11:6b:09:4b:10:b1:13:e4:e8:ee:eb:66: 9f:3b:f8:7f:2d:4a:42:25:3e:2d:dd:9c:89:f2:27: e1:0b:a5:b9:6f:73:e9:2d:b5:20:05:3f:06:4c:d4: de:a4:83:37:df:db:74:a2:48:48:1a:f7:be:5e:d6: b6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:01:76:65:72:66:BB:43:02:9B:93:0B:9E:3D:69:C3:7F:BF:61:55 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.146.96.0/20 Signature Algorithm: sha256WithRSAEncryption a3:f2:e5:70:40:ac:bc:fd:99:60:c3:43:da:41:ee:70:20:58: bc:81:8a:b6:cf:c5:07:81:4b:9b:e8:5f:60:3d:2e:fa:ec:32: 8e:9c:ce:a2:8e:99:24:48:28:60:ac:0b:d8:72:dc:79:d5:6d: de:5d:24:8a:1c:06:c6:bc:60:ac:87:1e:f2:c3:89:b3:aa:cb: f8:9e:3f:d5:7e:48:15:6f:82:a1:55:d6:b6:c4:f2:d7:0a:9a: 6b:a7:bd:f0:f9:19:9d:43:e4:e8:92:2a:48:a4:8b:c0:cb:8e: 98:49:d4:66:73:7d:09:db:af:fc:2c:b5:d6:f8:13:8f:19:de: 19:93:93:87:f1:09:88:2c:b5:02:81:27:04:c2:1b:e1:60:67: 86:2f:09:7a:d7:c2:bd:90:ec:0e:ff:da:78:d5:69:a6:26:6d: c6:fc:40:06:b9:a2:55:d1:03:62:c3:c0:01:83:16:0e:8f:7a: ce:b0:e2:52:1a:0c:79:a4:77:ce:68:0d:9f:79:c8:eb:b8:50: 25:15:e0:4a:19:d3:92:2c:45:a7:c5:00:e4:86:1a:bc:e9:6d: e1:28:2a:39:30:ca:c3:19:84:97:e1:15:2f:1b:46:fd:47:ff: bb:06:ef:2c:6d:0c:1d:35:9d:2d:37:61:40:62:1a:85:fa:f5: f3:29:06:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXtnlWnqTF9h9bmSl6Suhzx5s0zIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDIyNTQxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2RkZGQ2NWJiNjQ5NmQzMDM1NDMxZDAwNGNmMzBkZWU0 OWQ3ZDExYmEzNTExZDg2ZWRkMmRmOTA2ZDBjNWNiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwyo6hea+cUN/AMN7HtwtlPatxme5ba23sFXY5GlnZDQce wGPRyJk9RqZmhUSW5uhO5IA9w4MnRtdxTlg2XK8QjiLmtkpG3TBtm2Ze8NeUIzsN 2aR8hvzk9fBEEM5uAd1fc7d9l8Yo929gx3aVfwB2m3LtvBue6DReq6gzR25xzMCc pVQ5yBcPe8B9+Mqo2bPPnRYv6gJbAszCqVpa/Qcw8OV+lg9Cz5So9alkJKrxifQv QLYCGcmTCPmenkFrsFY2f76xOhFrCUsQsRPk6O7rZp87+H8tSkIlPi3dnInyJ+EL pblvc+kttSAFPwZM1N6kgzff23SiSEga975e1rYXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcwF2ZXJmu0MCm5MLnj1pw3+/YVUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBjNWJlMmRhLWNjYjQtNDY1YS1iMGExLTExNTE5NzljMDk5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASbkmAwDQYJKoZIhvcNAQELBQADggEBAKPy5XBArLz9mWDDQ9pB7nAgWLyB irbPxQeBS5voX2A9LvrsMo6czqKOmSRIKGCsC9hy3HnVbd5dJIocBsa8YKyHHvLD ibOqy/ieP9V+SBVvgqFV1rbE8tcKmmunvfD5GZ1D5OiSKkiki8DLjphJ1GZzfQnb r/wstdb4E48Z3hmTk4fxCYgstQKBJwTCG+FgZ4YvCXrXwr2Q7A7/2njVaaYmbcb8 QAa5olXRA2LDwAGDFg6Pes6w4lIaDHmkd85oDZ95yOu4UCUV4EoZ05IsRafFAOSG GrzpbeEoKjkwysMZhJfhFS8bRv1H/7sG7yxtDB01nS03YUBiGoX69fMpBlE= -----END CERTIFICATE-----Generated at Sat Nov 1 15:27:32 2025 by rpki-client