$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba76842c-5966-4bc0-ba7c-d2c447d3c6d5.roa File: ba76842c-5966-4bc0-ba7c-d2c447d3c6d5.roa (raw, json) Hash identifier: qq+NFlDocHg6TGBmLgqATXIU8GTy6Yi9WyUq3+uj30U= Subject key identifier: 99:D1:80:1E:D7:F5:6E:04:66:B5:0B:3A:C4:D1:F9:FA:83:3A:CD:01 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1446231534665FE08DE7854D40FAE2D8CBE1CCB3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba76842c-5966-4bc0-ba7c-d2c447d3c6d5.roa Signing time: Sat 18 Oct 2025 08:23:44 +0000 ROA not before: Sat 18 Oct 2025 08:23:44 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.154.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:46:23:15:34:66:5f:e0:8d:e7:85:4d:40:fa:e2:d8:cb:e1:cc:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 08:23:44 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=b4062873b7c66e1b4ad4b8280bae5e8d1b19187b2c08d437f4488ffb5ff826c4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8f:bf:a1:5f:c4:bc:ce:0a:2d:31:f9:2e:3a: 66:42:59:63:f1:2b:2a:dc:58:b4:ce:74:9e:1a:c9: 2b:c7:c8:4e:0a:4d:79:e9:72:88:30:eb:8d:6f:93: ad:99:e2:5f:b0:5b:8a:d4:03:ad:6f:c8:a4:2b:32: d0:2a:72:db:5d:25:7e:e9:a9:43:6a:92:bc:c8:97: 21:19:ab:e1:af:68:f6:d0:32:15:b7:2f:44:32:d6: 19:09:51:79:70:4d:0d:89:f0:e2:8e:1c:2f:28:b5: b6:76:7d:c9:ed:4a:c5:fc:d3:cf:3d:b4:1f:ee:38: a0:b4:0c:38:f6:c1:85:f9:6c:d9:fd:5a:3c:84:25: eb:4f:74:f9:43:ca:9a:5d:7d:e1:f2:11:63:01:20: 7b:23:9d:b1:d0:94:f9:78:c7:ae:74:02:da:28:14: 8f:62:76:b9:48:8f:d7:1c:44:2e:bb:2c:95:86:4a: a0:05:83:b7:49:83:14:e1:f4:1c:b0:16:59:8c:73: 71:a5:c9:9e:11:1c:d9:2a:15:af:7a:37:f1:38:ba: a9:4a:57:dc:c7:f8:78:2f:f7:2a:f7:53:e2:3d:33: 02:78:17:17:36:16:7f:7b:e9:dc:c9:08:34:3d:6d: 29:1c:bc:ea:df:3a:7e:61:7a:f8:ec:88:3c:98:13: 17:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D1:80:1E:D7:F5:6E:04:66:B5:0B:3A:C4:D1:F9:FA:83:3A:CD:01 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba76842c-5966-4bc0-ba7c-d2c447d3c6d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.154.0.0/15 Signature Algorithm: sha256WithRSAEncryption b3:b1:22:4d:bf:49:71:6d:85:a0:18:f6:19:42:ff:55:29:4a: 5c:94:60:3e:90:28:17:be:ab:b3:e4:ee:21:c6:22:be:27:80: 70:95:f6:3d:73:e6:90:d5:de:85:ce:e7:97:9c:c8:69:22:1a: 93:c1:9c:d2:a1:34:19:dd:ab:a7:96:75:e1:08:2f:8c:62:dd: 40:89:27:d4:f0:b0:de:fb:f9:2b:02:04:36:a2:b4:b4:5a:d9: 68:4d:5e:e5:58:08:5f:51:f7:1a:de:31:5d:9a:05:80:93:88: 7e:7b:8b:5b:01:8c:ed:d2:68:0e:5e:9e:5d:39:e7:ed:f7:ee: 75:6a:14:a3:e5:99:d5:7d:4d:58:57:c6:e7:31:48:5f:43:99: 8c:ed:d7:be:21:0c:22:ae:9a:26:e0:dd:e6:0d:0f:b0:1c:f5: 0f:d0:fc:dc:05:2a:55:3e:bd:62:6c:c0:9a:aa:5a:bb:f9:4e: cd:08:7a:48:7c:6f:cb:b9:82:2d:10:3d:a2:cd:21:47:e5:16: ae:b5:b0:c8:22:ac:7e:cc:ca:20:af:93:5b:0e:b0:a5:36:23: e3:6c:68:59:0b:b4:d5:67:15:0f:10:0e:f4:89:1c:12:26:c3: 47:88:95:19:e1:73:4b:96:a3:f1:cc:ae:7c:00:a8:2e:71:1c: f9:e7:02:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFEYjFTRmX+CN54VNQPri2MvhzLMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDgyMzQ0WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDA2Mjg3M2I3YzY2ZTFiNGFkNGI4MjgwYmFlNWU4ZDFi MTkxODdiMmMwOGQ0MzdmNDQ4OGZmYjVmZjgyNmM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRj7+hX8S8zgotMfkuOmZCWWPxKyrcWLTOdJ4aySvHyE4K TXnpcogw641vk62Z4l+wW4rUA61vyKQrMtAqcttdJX7pqUNqkrzIlyEZq+GvaPbQ MhW3L0Qy1hkJUXlwTQ2J8OKOHC8otbZ2fcntSsX80889tB/uOKC0DDj2wYX5bNn9 WjyEJetPdPlDyppdfeHyEWMBIHsjnbHQlPl4x650AtooFI9idrlIj9ccRC67LJWG SqAFg7dJgxTh9BywFlmMc3GlyZ4RHNkqFa96N/E4uqlKV9zH+Hgv9yr3U+I9MwJ4 Fxc2Fn976dzJCDQ9bSkcvOrfOn5hevjsiDyYExfnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmdGAHtf1bgRmtQs6xNH5+oM6zQEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JhNzY4NDJjLTU5NjYtNGJjMC1iYTdjLWQyYzQ0N2QzYzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwESmjANBgkqhkiG9w0BAQsFAAOCAQEAs7EiTb9JcW2FoBj2GUL/VSlKXJRg PpAoF76rs+TuIcYivieAcJX2PXPmkNXehc7nl5zIaSIak8Gc0qE0Gd2rp5Z14Qgv jGLdQIkn1PCw3vv5KwIENqK0tFrZaE1e5VgIX1H3Gt4xXZoFgJOIfnuLWwGM7dJo Dl6eXTnn7ffudWoUo+WZ1X1NWFfG5zFIX0OZjO3XviEMIq6aJuDd5g0PsBz1D9D8 3AUqVT69YmzAmqpau/lOzQh6SHxvy7mCLRA9os0hR+UWrrWwyCKsfszKIK+TWw6w pTYj42xoWQu01WcVDxAO9IkcEibDR4iVGeFzS5aj8cyufACoLnEc+ecCQQ== -----END CERTIFICATE-----Generated at Mon Oct 20 02:59:07 2025 by rpki-client