$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba664681-dc41-4fe7-b691-a5e571debf17.roa File: ba664681-dc41-4fe7-b691-a5e571debf17.roa (raw, json) Hash identifier: O9T5TTE+1u1NgUowGx/zHQU48koeGjLxpqQ9UXHullo= Subject key identifier: 94:CC:8D:95:EE:9B:A2:2B:EE:94:A2:22:9F:9D:4A:96:C4:7F:2B:B4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4EA1A8EBEAE50762F6878ABE8316FD7731185E1B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba664681-dc41-4fe7-b691-a5e571debf17.roa Signing time: Thu 16 Oct 2025 21:51:41 +0000 ROA not before: Thu 16 Oct 2025 21:51:41 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.182.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a1:a8:eb:ea:e5:07:62:f6:87:8a:be:83:16:fd:77:31:18:5e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 21:51:41 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=52eb9563cc5194d90921b17351862709970107a20095669b05ea05a61c9bdbd9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:55:e6:e0:0c:01:b0:a6:c8:72:a5:81:13:5a: 84:32:fe:e1:d4:99:64:77:9b:8e:d2:b4:fb:ff:64: 72:ef:a3:53:aa:6e:c5:de:73:5a:62:97:dc:a3:7e: 59:6b:50:3a:74:2b:34:a3:a7:5b:9a:43:c3:73:51: f8:b6:a4:f4:7d:4e:60:d6:fa:a9:31:1b:cc:03:e2: 34:3a:69:18:f9:ba:ad:9d:82:90:4a:15:ef:ba:48: ae:5b:00:64:6a:0e:39:77:fc:bc:c2:e9:b4:2e:da: 3d:4f:16:fd:e4:b1:c1:ca:ad:b3:65:2c:f8:19:63: b2:83:b3:b1:62:09:67:0f:73:1f:ff:17:01:fd:d9: a0:dd:82:64:81:0b:c2:11:00:f8:21:75:12:bb:c5: 23:2b:d5:99:f2:8a:1d:71:0c:78:3a:7b:a9:73:40: a0:70:b1:cd:5f:94:fc:e4:d8:07:f0:50:6e:02:75: 99:ba:dd:c4:09:76:29:87:8c:14:04:0f:9c:7e:52: a6:bf:96:d6:da:38:a3:1e:8d:8a:aa:c3:5e:e6:cc: e3:17:90:aa:fb:b1:ab:e3:cf:c5:4c:44:1e:cc:02: f8:6b:d1:fb:06:90:71:44:b0:d1:c0:3c:38:4a:b7: 34:df:27:a6:b7:1b:2b:45:8d:db:12:06:e7:5b:a0: ab:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:CC:8D:95:EE:9B:A2:2B:EE:94:A2:22:9F:9D:4A:96:C4:7F:2B:B4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba664681-dc41-4fe7-b691-a5e571debf17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.182.76.0/22 Signature Algorithm: sha256WithRSAEncryption 31:9e:08:2d:56:f7:22:76:f2:d2:54:2f:63:46:ff:a5:26:aa: 7b:14:ec:16:b9:ac:54:6d:0b:89:3d:85:4b:b9:8d:b3:0e:22: b2:4d:1f:67:d9:f4:5c:60:51:48:22:f1:b9:28:b7:17:e7:00: 2d:ad:d1:eb:ff:33:0f:d8:81:b5:49:6d:ac:e2:db:5f:05:67: 10:25:33:d9:f7:12:45:b1:05:de:64:65:de:a5:04:f2:08:aa: 0f:a9:13:c6:ef:52:bb:d9:5e:20:b2:4d:69:98:83:2f:ed:c7: 18:fb:b6:ed:a3:e3:56:41:fa:7c:44:90:e2:4a:d9:8b:26:3d: 28:69:bd:dc:f3:af:b6:bd:6d:dd:98:1c:cf:07:f1:14:c1:9a: 5f:28:ba:be:f3:55:d6:ea:a6:3f:cf:bc:38:a7:b1:7c:44:82: 63:df:29:f7:83:4d:c3:d5:f1:6f:c8:e3:2d:d0:80:19:d8:31: d1:0a:c9:1e:4b:10:e2:23:ea:8b:0d:f4:61:07:f1:9e:70:03: 7e:24:6d:21:3a:eb:81:61:00:44:4a:4a:8e:89:ee:6a:a2:d0: 24:fa:9d:c9:8e:4c:e6:9e:88:c9:d7:fc:26:3a:9d:21:b0:ba: fa:24:ba:9c:71:3a:f0:2d:45:0d:7d:ae:fe:43:e7:5f:3e:bf: f2:5e:bd:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTqGo6+rlB2L2h4q+gxb9dzEYXhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MjE1MTQxWhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmViOTU2M2NjNTE5NGQ5MDkyMWIxNzM1MTg2MjcwOTk3 MDEwN2EyMDA5NTY2OWIwNWVhMDVhNjFjOWJkYmQ5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnVebgDAGwpshypYETWoQy/uHUmWR3m47StPv/ZHLvo1Oq bsXec1pil9yjfllrUDp0KzSjp1uaQ8NzUfi2pPR9TmDW+qkxG8wD4jQ6aRj5uq2d gpBKFe+6SK5bAGRqDjl3/LzC6bQu2j1PFv3kscHKrbNlLPgZY7KDs7FiCWcPcx// FwH92aDdgmSBC8IRAPghdRK7xSMr1Znyih1xDHg6e6lzQKBwsc1flPzk2AfwUG4C dZm63cQJdimHjBQED5x+Uqa/ltbaOKMejYqqw17mzOMXkKr7savjz8VMRB7MAvhr 0fsGkHFEsNHAPDhKtzTfJ6a3GytFjdsSBudboKv3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlMyNle6boivulKIin51KlsR/K7QwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JhNjY0NjgxLWRjNDEtNGZlNy1iNjkxLWE1ZTU3MWRlYmYxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI2tkwwDQYJKoZIhvcNAQELBQADggEBADGeCC1W9yJ28tJUL2NG/6UmqnsU 7Ba5rFRtC4k9hUu5jbMOIrJNH2fZ9FxgUUgi8bkotxfnAC2t0ev/Mw/YgbVJbazi 218FZxAlM9n3EkWxBd5kZd6lBPIIqg+pE8bvUrvZXiCyTWmYgy/txxj7tu2j41ZB +nxEkOJK2YsmPShpvdzzr7a9bd2YHM8H8RTBml8our7zVdbqpj/PvDinsXxEgmPf KfeDTcPV8W/I4y3QgBnYMdEKyR5LEOIj6osN9GEH8Z5wA34kbSE664FhAERKSo6J 7mqi0CT6ncmOTOaeiMnX/CY6nSGwuvokupxxOvAtRQ19rv5D518+v/JevaA= -----END CERTIFICATE-----Generated at Wed Nov 5 01:53:16 2025 by rpki-client