$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa File: ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa (raw, json) Hash identifier: IvQfbsZHXEbF2/K/Pf3uPxVISbxUd3ZbLzLEAC4TM2s= Subject key identifier: 29:E7:02:8C:5C:2A:3E:AD:95:56:52:7A:91:B9:EC:81:4D:6D:AC:71 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 03B0F65164742799A53D53C834837CE6A13ECAB7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa Signing time: Tue 04 Nov 2025 00:50:57 +0000 ROA not before: Tue 04 Nov 2025 00:50:57 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b0:f6:51:64:74:27:99:a5:3d:53:c8:34:83:7c:e6:a1:3e:ca:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 00:50:57 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=a92f981fbd29f46aea6b9453e12fb7a8da081473745fb12b497ff5c3e8341e39, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:99:d9:ee:f5:89:84:05:2a:0e:e2:e5:ca:17: 39:f8:1f:4e:37:57:72:79:e7:a7:cb:8f:e6:c3:e7: 37:f4:9c:eb:2e:55:77:f0:37:7d:e2:44:4f:20:60: 2e:f3:bf:37:ab:99:98:3d:92:d0:42:e4:55:e1:ae: 7a:14:21:7b:01:47:b3:8e:90:00:89:60:47:08:e2: 27:93:67:94:10:03:e3:43:cd:a0:42:24:64:0a:41: 7c:c5:74:c3:fc:29:00:a1:1d:78:83:ad:86:6d:22: f5:76:03:82:c9:a9:ad:06:41:92:33:d6:ac:ce:bf: 91:22:81:84:60:94:92:8c:c3:6c:33:02:9e:93:1d: 6f:2d:f9:c3:e3:bf:62:c6:f3:6b:c9:cd:c8:ef:46: e9:2b:27:ee:50:f9:3e:55:09:c1:9c:d4:a5:73:c4: a4:b4:12:f3:db:e3:b2:5d:20:7c:cf:09:e7:65:fb: 56:40:e0:aa:cf:6e:85:45:d6:2e:25:c2:b6:64:0a: 4b:f6:a1:23:e5:44:2f:7d:1d:96:2b:9d:2d:74:f9: 38:ff:ec:48:d7:f0:85:ed:ce:f8:0a:7e:8b:19:a3: 4a:e6:3f:7e:b0:1c:ae:05:a9:4b:4c:e1:ef:b1:a4: 86:0e:2d:57:48:6b:a1:96:14:50:8f:33:31:aa:0e: db:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E7:02:8C:5C:2A:3E:AD:95:56:52:7A:91:B9:EC:81:4D:6D:AC:71 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.146.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:f7:b2:b3:a2:3f:29:b7:a3:bb:29:b7:54:c1:6e:6b:bd:49: 7b:99:6e:71:11:3b:cb:ab:8c:a4:3d:44:d1:cf:b9:02:64:58: 3a:e0:95:be:3a:52:11:e0:5b:11:2b:ef:b2:b5:7e:be:b1:aa: 39:bd:27:20:7a:f3:d4:df:a9:7e:d8:2b:5d:8f:29:ee:c0:52: 2a:07:08:3d:8c:be:5e:78:6b:e9:be:6d:40:5e:c2:62:e7:8d: 80:f9:13:9e:29:7b:f0:e5:f8:28:b4:5a:2b:9d:51:33:e9:df: 2d:4c:35:5c:0e:51:21:51:46:2e:6a:51:5f:9b:3f:6b:73:73: 41:24:10:ec:61:bc:25:4a:23:6a:94:e1:af:c2:8a:04:b0:0b: ff:8c:86:5c:2d:cb:07:42:8a:f0:17:43:6d:4c:bd:68:d9:8c: c1:0f:06:aa:17:50:1d:93:34:d5:b4:86:1b:9b:97:99:03:0a: 46:aa:14:e8:b2:a8:a2:02:c9:7d:84:d7:36:96:b2:1d:a1:80: 78:a4:28:51:db:75:80:27:27:54:1d:79:99:08:5e:21:64:91: c1:8a:94:8e:8a:7d:a4:90:ad:99:92:b6:01:68:6b:a3:b5:a8: fc:39:a9:9c:d3:7f:3b:0f:3b:ab:f5:5d:40:ec:17:59:75:f0: f5:5f:43:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA7D2UWR0J5mlPVPININ85qE+yrcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDA1MDU3WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTJmOTgxZmJkMjlmNDZhZWE2Yjk0NTNlMTJmYjdhOGRh MDgxNDczNzQ1ZmIxMmI0OTdmZjVjM2U4MzQxZTM5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzmdnu9YmEBSoO4uXKFzn4H043V3J556fLj+bD5zf0nOsu VXfwN33iRE8gYC7zvzermZg9ktBC5FXhrnoUIXsBR7OOkACJYEcI4ieTZ5QQA+ND zaBCJGQKQXzFdMP8KQChHXiDrYZtIvV2A4LJqa0GQZIz1qzOv5EigYRglJKMw2wz Ap6THW8t+cPjv2LG82vJzcjvRukrJ+5Q+T5VCcGc1KVzxKS0EvPb47JdIHzPCedl +1ZA4KrPboVF1i4lwrZkCkv2oSPlRC99HZYrnS10+Tj/7EjX8IXtzvgKfosZo0rm P36wHK4FqUtM4e+xpIYOLVdIa6GWFFCPMzGqDttJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKecCjFwqPq2VVlJ6kbnsgU1trHEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JhOWRmZTU5LWUyYTItNDA3NC1iM2E3LTk5OGZkOTczOGJkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEP3JIwDQYJKoZIhvcNAQELBQADggEBAG/3srOiPym3o7spt1TBbmu9SXuZ bnERO8urjKQ9RNHPuQJkWDrglb46UhHgWxEr77K1fr6xqjm9JyB689TfqX7YK12P Ke7AUioHCD2Mvl54a+m+bUBewmLnjYD5E54pe/Dl+Ci0WiudUTPp3y1MNVwOUSFR Ri5qUV+bP2tzc0EkEOxhvCVKI2qU4a/CigSwC/+MhlwtywdCivAXQ21MvWjZjMEP BqoXUB2TNNW0hhubl5kDCkaqFOiyqKICyX2E1zaWsh2hgHikKFHbdYAnJ1QdeZkI XiFkkcGKlI6KfaSQrZmStgFoa6O1qPw5qZzTfzsPO6v1XUDsF1l18PVfQ6o= -----END CERTIFICATE-----Generated at Wed Nov 5 01:53:41 2025 by rpki-client