$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa File: ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa (raw, json) Hash identifier: CYnxg1X8oPOa0scx+W/TAB5ZFIc4GF+QcDwrZGaWT7A= Subject key identifier: 90:EA:A6:BC:19:AA:5D:C8:53:7A:5D:27:12:B5:15:22:E0:59:A1:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CC9FE64714C8DC4C84F7C976D813856BEAF2BF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa Signing time: Mon 11 Aug 2025 15:00:28 +0000 ROA not before: Mon 11 Aug 2025 15:00:28 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.186.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c9:fe:64:71:4c:8d:c4:c8:4f:7c:97:6d:81:38:56:be:af:2b:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:00:28 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=5c11d055557e738473229f4b693fc56e2181cefc12bec8c64631d71276843041, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:64:a8:1c:a6:8f:70:85:83:ec:fc:59:e0:4e: 52:d5:cd:ba:9b:a2:6b:a4:be:d4:4a:9c:2b:1e:71: f5:6b:95:35:22:37:02:3d:9c:ef:20:cd:bf:30:9a: 53:12:a6:d9:82:d5:5e:2c:ed:96:a8:c2:4e:54:9a: 62:62:c5:ac:82:75:86:b5:d7:ba:a7:76:d1:a0:39: a6:bb:39:8c:82:81:75:da:d3:4b:55:04:be:a5:94: b4:f4:d9:d7:35:03:74:5b:10:38:8c:94:d0:21:b4: 52:59:9d:ae:7c:b4:c0:16:05:82:85:13:63:1a:8f: 2a:58:4c:85:e3:8a:e6:4d:0f:a2:cb:6b:ab:bc:4a: 02:a4:1c:2e:5d:6f:ae:a7:66:41:53:41:44:1a:6e: 0e:6f:1c:d0:dd:43:72:9d:5e:29:70:e3:a9:73:c5: 63:04:b9:fa:59:4b:b4:db:44:b5:19:44:d3:04:4b: 36:ba:1b:d1:75:1a:d1:95:3a:18:b5:63:7f:9f:4a: 9f:05:18:59:da:1c:24:f1:9b:55:a4:b3:1e:d7:40: 0f:39:6b:6f:53:d0:ec:ac:9e:7d:97:22:0d:1a:dd: 5b:8c:7f:a0:98:dd:6d:fe:00:cd:74:20:c2:c7:6c: 71:13:15:b5:ff:e9:e9:cb:df:01:5f:e7:c1:92:28: 65:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:EA:A6:BC:19:AA:5D:C8:53:7A:5D:27:12:B5:15:22:E0:59:A1:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.186.32.0/19 Signature Algorithm: sha256WithRSAEncryption 78:c4:0b:66:2f:17:a3:fe:56:25:c7:c3:d2:41:88:78:e7:30: 3a:4c:ce:8b:93:65:51:7a:90:89:f0:d1:5c:36:5e:db:70:f4: 3b:3a:11:b2:99:16:2b:80:c0:1e:d9:26:f2:e7:e4:38:70:ca: 74:7c:fc:05:c9:90:f1:5f:1e:5a:a0:37:62:9b:ee:cb:76:b5: 0a:98:9c:ef:b1:30:44:bc:01:6c:c6:40:fb:f3:6e:9b:27:cc: a6:51:bb:fb:47:5a:83:b6:06:8c:db:85:59:cc:1a:3d:3e:92: ad:3b:53:ec:5c:95:57:5d:e4:41:49:dd:19:f2:b6:ce:98:e5: ec:29:16:b3:33:8a:b5:ec:3c:24:4d:ef:31:fa:8c:27:c3:b7: fd:f0:26:87:43:97:aa:56:da:bd:d1:72:dc:db:8b:04:b0:f5: 9c:08:67:a8:d8:7b:ce:13:b8:20:1f:8f:7b:83:3c:fd:67:2a: 79:cd:fe:86:c4:2f:e9:0e:9d:6c:e5:5a:21:4e:d4:d9:fa:f6: 72:86:14:b7:64:9f:95:5a:b1:6c:a0:30:5a:ca:1f:c1:8e:94: 76:ae:aa:3b:ad:a6:09:51:3c:4d:d4:3c:60:0b:67:b7:fe:6b: b2:6f:ad:e9:d7:e4:4a:16:77:27:07:7a:14:6a:3f:ab:c5:41: ed:0b:3f:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbMn+ZHFMjcTIT3yXbYE4Vr6vK/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUwMDI4WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzExZDA1NTU1N2U3Mzg0NzMyMjlmNGI2OTNmYzU2ZTIx ODFjZWZjMTJiZWM4YzY0NjMxZDcxMjc2ODQzMDQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXZKgcpo9whYPs/FngTlLVzbqbomukvtRKnCsecfVrlTUi NwI9nO8gzb8wmlMSptmC1V4s7Zaowk5UmmJixayCdYa117qndtGgOaa7OYyCgXXa 00tVBL6llLT02dc1A3RbEDiMlNAhtFJZna58tMAWBYKFE2MajypYTIXjiuZND6LL a6u8SgKkHC5db66nZkFTQUQabg5vHNDdQ3KdXilw46lzxWMEufpZS7TbRLUZRNME Sza6G9F1GtGVOhi1Y3+fSp8FGFnaHCTxm1Wksx7XQA85a29T0Oysnn2XIg0a3VuM f6CY3W3+AM10IMLHbHETFbX/6enL3wFf58GSKGUZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkOqmvBmqXchTel0nErUVIuBZoYgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMmE0YTIwLTFhZDgtNDlhYi05NmM0LWVjNDEyNzhhMDM5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWCuiAwDQYJKoZIhvcNAQELBQADggEBAHjEC2YvF6P+ViXHw9JBiHjnMDpM zouTZVF6kInw0Vw2Xttw9Ds6EbKZFiuAwB7ZJvLn5DhwynR8/AXJkPFfHlqgN2Kb 7st2tQqYnO+xMES8AWzGQPvzbpsnzKZRu/tHWoO2BozbhVnMGj0+kq07U+xclVdd 5EFJ3Rnyts6Y5ewpFrMzirXsPCRN7zH6jCfDt/3wJodDl6pW2r3RctzbiwSw9ZwI Z6jYe84TuCAfj3uDPP1nKnnN/obEL+kOnWzlWiFO1Nn69nKGFLdkn5VasWygMFrK H8GOlHauqjutpglRPE3UPGALZ7f+a7JvrenX5EoWdycHehRqP6vFQe0LPx8= -----END CERTIFICATE-----Generated at Sat Aug 23 06:56:22 2025 by rpki-client