$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa File: ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa (raw, json) Hash identifier: 7xmEGiRiDYPnvP2gtTLE4RhHZ3HAuJR8m7dcde10Amw= Subject key identifier: FD:0A:AE:68:87:FA:41:16:AF:FF:BB:53:4D:74:F6:DA:F2:50:40:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CDD22770677C2886267EC8BCDDD272C7DE77FB4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa Signing time: Wed 13 Aug 2025 00:40:20 +0000 ROA not before: Wed 13 Aug 2025 00:40:20 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:dd:22:77:06:77:c2:88:62:67:ec:8b:cd:dd:27:2c:7d:e7:7f:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:40:20 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=11b9d87749ea210ef66104d4e6623376e944deb07eef3066dab48525325d524d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:19:71:e1:13:f7:cc:11:bb:3a:33:2c:37:a9: dc:f0:ca:f3:f3:83:39:71:c9:cb:ec:15:c8:b1:b4: 90:4c:53:bf:af:71:b6:a4:e9:7e:07:8e:3b:7f:f9: 62:a2:eb:39:a2:85:d9:11:c4:fa:1f:2c:a8:a7:6a: e1:5b:9f:06:c4:9c:b4:3f:68:da:2d:77:47:b6:15: f0:6b:05:12:6b:a1:dc:c4:0e:45:08:df:a5:01:a0: 97:42:d9:05:03:ac:0f:69:41:2f:fb:df:e3:49:a4: c6:93:d4:f0:47:d0:39:53:76:ec:c9:d5:00:f4:e8: f5:92:92:0c:2d:9d:d1:99:db:21:88:0e:3c:d9:a6: a5:ae:22:dc:ae:b2:0b:57:b0:62:17:5d:c5:72:c2: 30:ea:d1:f1:1d:75:40:07:5d:4d:c5:cc:6e:a5:02: 1b:95:ce:53:7b:48:2b:64:4e:e0:9b:42:83:ac:86: cc:ef:b9:41:af:b4:f0:88:d1:7c:ab:4a:8b:95:23: 3e:e7:41:80:d5:f5:d7:90:f3:68:b5:a4:15:cf:b4: 1c:bb:a0:a0:11:7b:50:b9:3d:02:d4:68:bf:31:54: 56:28:7c:09:25:08:b9:dc:25:34:24:d9:d0:85:83: 5c:ad:92:82:78:a2:df:e5:44:99:43:49:14:da:2d: 3c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:0A:AE:68:87:FA:41:16:AF:FF:BB:53:4D:74:F6:DA:F2:50:40:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.112.0/21 Signature Algorithm: sha256WithRSAEncryption 25:29:07:40:b0:42:3c:71:91:e8:28:1b:6b:41:6a:81:89:0a: be:02:f4:cb:f7:9d:3d:bb:5b:d9:56:c3:ef:f9:f6:38:7d:b8: dc:f5:0a:ab:d3:16:b6:22:04:63:ee:8d:88:02:5d:29:b5:56: 9c:f8:6d:72:a2:c0:f5:4f:8a:4c:7c:bb:84:92:bf:6c:aa:ce: cc:e5:fa:2a:4f:cf:65:7f:75:26:9f:6b:4b:9e:db:86:e5:6e: 97:2c:61:84:30:8b:6d:f8:f0:de:6e:cc:d1:20:e3:57:55:ad: 90:b9:d6:64:c6:c1:1f:4a:4a:98:6a:c6:e8:88:1c:64:20:b4: 0e:c3:ab:44:44:94:3c:d8:cc:0e:51:3e:40:7b:17:ff:83:8c: 3c:25:1b:98:17:b0:f4:14:0e:37:54:dd:a4:76:26:7c:cf:90: b5:ca:f6:81:e8:1c:d3:c3:17:09:48:71:10:21:87:31:10:d7: 04:6a:6b:32:5c:8e:96:b8:3d:58:3d:d7:25:07:7d:30:48:64: 25:a0:5f:00:95:95:21:cf:9f:71:a7:b8:b6:ad:2e:35:9d:34: e4:86:4a:68:c8:54:90:20:9a:6d:8e:3c:16:72:4f:98:ba:23: 01:ab:96:21:25:12:fc:02:02:0d:b5:39:c5:17:94:17:ed:b4: f0:65:12:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfN0idwZ3wohiZ+yLzd0nLH3nf7QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA0MDIwWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMWI5ZDg3NzQ5ZWEyMTBlZjY2MTA0ZDRlNjYyMzM3NmU5 NDRkZWIwN2VlZjMwNjZkYWI0ODUyNTMyNWQ1MjRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqGXHhE/fMEbs6Myw3qdzwyvPzgzlxycvsFcixtJBMU7+v cbak6X4Hjjt/+WKi6zmihdkRxPofLKinauFbnwbEnLQ/aNotd0e2FfBrBRJrodzE DkUI36UBoJdC2QUDrA9pQS/73+NJpMaT1PBH0DlTduzJ1QD06PWSkgwtndGZ2yGI DjzZpqWuItyusgtXsGIXXcVywjDq0fEddUAHXU3FzG6lAhuVzlN7SCtkTuCbQoOs hszvuUGvtPCI0XyrSouVIz7nQYDV9deQ82i1pBXPtBy7oKARe1C5PQLUaL8xVFYo fAklCLncJTQk2dCFg1ytkoJ4ot/lRJlDSRTaLTztAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/QquaIf6QRav/7tTTXT22vJQQHwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhOTljZjJiLWY5OGQtNDU2ZS1hMTg1LWY0ZjBhYmY0YzVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANG6HAwDQYJKoZIhvcNAQELBQADggEBACUpB0CwQjxxkegoG2tBaoGJCr4C 9Mv3nT27W9lWw+/59jh9uNz1CqvTFrYiBGPujYgCXSm1Vpz4bXKiwPVPikx8u4SS v2yqzszl+ipPz2V/dSafa0ue24blbpcsYYQwi2348N5uzNEg41dVrZC51mTGwR9K SphqxuiIHGQgtA7Dq0RElDzYzA5RPkB7F/+DjDwlG5gXsPQUDjdU3aR2JnzPkLXK 9oHoHNPDFwlIcRAhhzEQ1wRqazJcjpa4PVg91yUHfTBIZCWgXwCVlSHPn3GnuLat LjWdNOSGSmjIVJAgmm2OPBZyT5i6IwGrliElEvwCAg21OcUXlBfttPBlEnw= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:41 2025 by rpki-client