$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa File: ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa (raw, json) Hash identifier: +Iq4DEnHqHr8nmmoCmnadTwDyzgVNrW6LNUo8Rc70vU= Subject key identifier: 4A:FD:45:1D:80:55:8C:4A:D5:9B:E5:21:BB:A0:76:2F:E5:1D:A4:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1752EB3DA62E474EEC15FEFAEC59F04CF35FAAF4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa Signing time: Mon 08 Sep 2025 15:41:59 +0000 ROA not before: Mon 08 Sep 2025 15:41:59 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:52:eb:3d:a6:2e:47:4e:ec:15:fe:fa:ec:59:f0:4c:f3:5f:aa:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:41:59 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=c60ca640834e4c4d73e6bc789af45c59829055faca8616ed752d8b07eddde2d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5e:28:9d:f3:dc:b1:36:c0:8c:95:50:67:fa: cd:3a:92:a7:5f:ba:f5:a1:14:1e:fb:a0:54:ed:e1: 0b:c7:78:c5:44:f3:9c:28:e7:be:f1:dc:39:b9:ff: 51:da:3c:b3:5c:54:fd:1f:01:67:cd:66:04:52:d1: 05:14:f2:05:f2:e1:13:ef:a2:d4:8c:2a:f0:02:1f: f3:55:39:ff:24:97:63:ca:70:ff:c8:3b:ff:11:60: f0:5b:dc:46:24:3e:83:34:22:bb:03:1c:ea:70:85: 87:26:65:f2:68:f8:53:b8:dc:7a:d5:1a:cb:15:da: 1f:52:e4:c0:57:97:61:09:97:5e:c5:bc:d0:2d:d5: 30:9d:40:28:fd:f0:bb:86:9e:87:01:ff:bd:d0:43: 5b:75:33:31:a7:6f:22:7c:7b:38:16:4e:12:89:b0: 5a:76:76:74:0d:70:8b:ca:2f:8e:ee:d9:62:51:4d: 0c:14:b4:ad:69:07:48:65:83:51:af:1e:ec:bf:5d: 0d:f4:93:14:61:29:5a:c8:a1:48:a9:e9:e6:6b:e2: b2:9a:d7:93:22:a4:a9:d2:37:d7:60:f7:52:bb:3a: f7:87:45:f6:46:50:e0:21:37:53:b6:1e:05:8a:e0: d6:a4:79:14:46:02:2c:b0:2e:43:01:80:d5:4e:c8: 38:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FD:45:1D:80:55:8C:4A:D5:9B:E5:21:BB:A0:76:2F:E5:1D:A4:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.112.0/21 Signature Algorithm: sha256WithRSAEncryption 98:03:93:67:78:49:6c:0b:df:c7:e9:d6:c6:8e:cb:7b:0b:22: 8e:b9:a5:3b:28:9d:a6:c0:a6:d3:cf:4b:15:ce:4c:40:41:8e: db:65:54:8e:7b:6f:2e:fe:73:6f:0f:e1:da:d2:fb:8a:32:15: 29:a1:c9:3c:5c:81:0d:4a:8b:6b:5d:3e:68:3e:36:e4:17:42: 05:79:bd:f3:fd:01:d8:08:73:9d:0d:ed:55:92:9f:07:17:be: 39:9e:98:8e:b8:55:37:2b:08:34:46:ac:bd:26:17:bd:f9:49: 50:e5:e1:2a:cf:c9:b3:21:cf:0e:70:65:d8:9b:e8:fd:c6:9c: da:85:a2:ea:9c:bb:25:26:09:7a:9d:af:95:00:67:90:ba:a9: 8a:d1:21:58:6e:36:b3:7e:24:59:c0:70:9d:00:a8:d5:c6:25: 07:c3:65:62:7a:c8:86:62:f5:db:db:70:bb:a3:a9:0e:f6:64: 6a:0a:22:3c:3c:ac:21:c5:4e:ba:5f:5d:cb:33:c6:11:9a:30: 1e:79:ac:84:ea:1a:61:6d:f3:0f:12:ac:5b:a4:90:28:a9:42: 12:05:b7:00:03:ce:9f:82:36:e6:63:7e:68:5c:91:a7:03:99: 2f:ea:52:25:db:d9:98:56:75:21:a0:b0:1e:0d:a8:25:42:fc: ed:3d:c4:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF1LrPaYuR07sFf767FnwTPNfqvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTU0MTU5WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjBjYTY0MDgzNGU0YzRkNzNlNmJjNzg5YWY0NWM1OTgy OTA1NWZhY2E4NjE2ZWQ3NTJkOGIwN2VkZGRlMmQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMXiid89yxNsCMlVBn+s06kqdfuvWhFB77oFTt4QvHeMVE 85wo577x3Dm5/1HaPLNcVP0fAWfNZgRS0QUU8gXy4RPvotSMKvACH/NVOf8kl2PK cP/IO/8RYPBb3EYkPoM0IrsDHOpwhYcmZfJo+FO43HrVGssV2h9S5MBXl2EJl17F vNAt1TCdQCj98LuGnocB/73QQ1t1MzGnbyJ8ezgWThKJsFp2dnQNcIvKL47u2WJR TQwUtK1pB0hlg1GvHuy/XQ30kxRhKVrIoUip6eZr4rKa15MipKnSN9dg91K7OveH RfZGUOAhN1O2HgWK4NakeRRGAiywLkMBgNVOyDgdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSv1FHYBVjErVm+Uhu6B2L+UdpJswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhOTljZjJiLWY5OGQtNDU2ZS1hMTg1LWY0ZjBhYmY0YzVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANG6HAwDQYJKoZIhvcNAQELBQADggEBAJgDk2d4SWwL38fp1saOy3sLIo65 pTsonabAptPPSxXOTEBBjttlVI57by7+c28P4drS+4oyFSmhyTxcgQ1Ki2tdPmg+ NuQXQgV5vfP9AdgIc50N7VWSnwcXvjmemI64VTcrCDRGrL0mF735SVDl4SrPybMh zw5wZdib6P3GnNqFouqcuyUmCXqdr5UAZ5C6qYrRIVhuNrN+JFnAcJ0AqNXGJQfD ZWJ6yIZi9dvbcLujqQ72ZGoKIjw8rCHFTrpfXcszxhGaMB55rITqGmFt8w8SrFuk kCipQhIFtwADzp+CNuZjfmhckacDmS/qUiXb2ZhWdSGgsB4NqCVC/O09xIE= -----END CERTIFICATE-----Generated at Wed Sep 17 14:21:38 2025 by rpki-client