$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa File: ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa (raw, json) Hash identifier: enrXKTEkSAxEh6ZM5Ox4o4gv8fly+X0x5K5x/hEc07I= Subject key identifier: D6:D4:1E:9B:A2:D3:C1:9D:D7:9D:A5:56:23:A9:44:19:A1:23:78:F1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 69F99AA187F083F3B8FC1B3F401F35D205E6EFF8 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa Signing time: Sat 26 Jul 2025 00:30:54 +0000 ROA not before: Sat 26 Jul 2025 00:30:54 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:f9:9a:a1:87:f0:83:f3:b8:fc:1b:3f:40:1f:35:d2:05:e6:ef:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 26 00:30:54 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=caf474558a7f9a1cf65871cdfb2b2257a4f08ed00613cb892c33d93ca0819d3e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:98:a9:76:bb:70:b2:32:64:cf:b5:63:68:ee: ae:8d:bb:38:68:f4:8f:f3:0c:1d:75:2a:57:67:36: 01:4f:79:c0:11:50:92:ea:4d:86:83:20:39:fb:fd: 44:5a:61:38:1c:f8:95:e7:71:be:a0:8f:82:84:dd: c7:26:87:d0:84:fd:4a:80:5b:19:26:3b:62:f6:94: 42:3a:d3:c3:39:7b:a8:9c:30:62:04:9d:d5:e9:1b: fd:80:9e:f8:67:ba:b1:85:de:9a:22:24:24:db:12: 53:9d:52:04:29:7d:cc:95:1f:29:4c:ec:d9:dc:4c: b5:45:e6:f2:1c:17:0c:b2:09:0c:ce:7a:e2:68:a3: b7:c2:10:37:5e:57:dc:2c:98:7f:80:c7:88:e6:99: d6:d9:c8:fc:0f:b9:38:dd:02:01:b4:3f:22:63:42: 6e:89:c7:ea:d8:2a:32:b5:6f:b1:8f:0d:0d:11:40: 92:19:52:62:62:ef:e0:33:89:6d:c7:52:47:60:cd: 12:c4:a0:4c:40:6d:eb:0c:f7:60:3c:28:fa:77:8b: 17:c9:aa:10:be:24:88:47:20:f9:46:5b:33:dd:b7: e3:6c:1d:7d:54:37:fd:3a:13:1f:da:8b:36:32:4e: 64:be:63:1a:3a:1a:f1:1f:61:1d:96:c0:24:11:75: d2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:D4:1E:9B:A2:D3:C1:9D:D7:9D:A5:56:23:A9:44:19:A1:23:78:F1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba9dfe59-e2a2-4074-b3a7-998fd9738bd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.146.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:a0:df:1d:56:f2:e6:94:24:ee:6e:69:e5:c6:5c:06:de:76: 30:e1:d2:24:2b:bd:b9:09:c1:e7:c8:01:2c:04:47:6c:43:4d: 93:b5:00:f8:8a:d3:32:ee:55:80:95:39:d1:43:43:55:25:6f: 67:7b:04:d3:a6:56:0e:ec:29:de:18:e2:87:a5:dd:dd:bc:58: 98:e4:b6:ab:51:fe:81:69:3a:ca:c1:de:30:b9:ff:1c:5a:eb: 91:8c:f3:74:eb:24:e3:4d:0c:8a:9b:06:89:c6:0b:d1:3b:1c: 4e:be:c1:63:90:d7:1e:28:2b:46:9c:be:d1:5d:89:03:7f:02: 52:4f:67:85:9e:e0:11:8e:7b:08:71:db:92:39:13:ba:e9:88: 28:d9:bb:bc:26:f8:22:bd:5d:e9:0e:84:d0:39:e5:33:94:8d: 20:47:82:a8:32:ca:91:3f:77:d2:fd:ba:a0:5c:23:b1:70:04: 3a:31:df:32:2d:95:52:eb:2f:18:00:98:bd:92:5c:c1:aa:82: 36:e4:55:c8:36:9d:1d:26:a0:4b:8d:d5:38:94:b2:0c:a2:10: 74:ea:db:a9:51:a3:ad:ff:95:d4:27:71:39:c0:1d:f7:9a:46: 0d:95:95:11:66:3d:96:2a:1f:c6:d8:df:41:1d:79:6a:4c:a4: 7c:55:d0:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUafmaoYfwg/O4/Bs/QB810gXm7/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI2MDAzMDU0WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWY0NzQ1NThhN2Y5YTFjZjY1ODcxY2RmYjJiMjI1N2E0 ZjA4ZWQwMDYxM2NiODkyYzMzZDkzY2EwODE5ZDNlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpmKl2u3CyMmTPtWNo7q6Nuzho9I/zDB11KldnNgFPecAR UJLqTYaDIDn7/URaYTgc+JXncb6gj4KE3ccmh9CE/UqAWxkmO2L2lEI608M5e6ic MGIEndXpG/2AnvhnurGF3poiJCTbElOdUgQpfcyVHylM7NncTLVF5vIcFwyyCQzO euJoo7fCEDdeV9wsmH+Ax4jmmdbZyPwPuTjdAgG0PyJjQm6Jx+rYKjK1b7GPDQ0R QJIZUmJi7+AziW3HUkdgzRLEoExAbesM92A8KPp3ixfJqhC+JIhHIPlGWzPdt+Ns HX1UN/06Ex/aizYyTmS+Yxo6GvEfYR2WwCQRddJhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1tQem6LTwZ3XnaVWI6lEGaEjePEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JhOWRmZTU5LWUyYTItNDA3NC1iM2E3LTk5OGZkOTczOGJkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEP3JIwDQYJKoZIhvcNAQELBQADggEBAAqg3x1W8uaUJO5uaeXGXAbedjDh 0iQrvbkJwefIASwER2xDTZO1APiK0zLuVYCVOdFDQ1Ulb2d7BNOmVg7sKd4Y4oel 3d28WJjktqtR/oFpOsrB3jC5/xxa65GM83TrJONNDIqbBonGC9E7HE6+wWOQ1x4o K0acvtFdiQN/AlJPZ4We4BGOewhx25I5E7rpiCjZu7wm+CK9XekOhNA55TOUjSBH gqgyypE/d9L9uqBcI7FwBDox3zItlVLrLxgAmL2SXMGqgjbkVcg2nR0moEuN1TiU sgyiEHTq26lRo63/ldQncTnAHfeaRg2VlRFmPZYqH8bY30EdeWpMpHxV0Gg= -----END CERTIFICATE-----Generated at Mon Aug 4 21:43:32 2025 by rpki-client