$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba8c4477-737d-45a5-ba08-a32718f33e85.roa File: ba8c4477-737d-45a5-ba08-a32718f33e85.roa (raw, json) Hash identifier: njbCcw8BRA7YtvfeCwqA2n0Fl5jRCHutmxzXuG9di+4= Subject key identifier: BB:A6:06:F0:36:C8:BF:7F:71:5A:53:D2:7E:E4:4D:36:41:D3:98:E5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4E513F732DF713E472D5E83061FC736C336785BE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba8c4477-737d-45a5-ba08-a32718f33e85.roa Signing time: Sun 19 Oct 2025 12:32:39 +0000 ROA not before: Sun 19 Oct 2025 12:32:39 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.224.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:51:3f:73:2d:f7:13:e4:72:d5:e8:30:61:fc:73:6c:33:67:85:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 12:32:39 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=0f0cf2169d788de12a606f145cb192b786a06f1ea609679ef5f5aafb8fa0c4dc, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:26:03:5f:2a:11:37:ab:c2:c9:56:56:f1:5a: ef:0b:2d:56:00:f8:de:0e:c4:fd:50:30:ba:ec:88: 3b:fc:22:31:48:8d:11:cc:2f:20:18:ae:7c:d6:4e: 72:35:dc:cc:6d:1f:93:1e:d8:60:de:9d:e5:1b:6a: 8d:16:1f:19:52:f4:6a:3a:c6:13:9e:a8:05:5c:b7: 3e:3d:13:ed:6b:b3:f3:a3:1d:67:4c:8c:ca:30:eb: e3:d0:c7:eb:2d:98:64:d1:20:1f:a2:b3:c9:7d:b0: ef:79:7e:17:3b:10:f3:ba:17:bc:16:06:fa:d2:6f: 6b:85:2f:a5:69:29:fe:ce:51:eb:36:1d:62:87:cb: fc:f6:b2:0e:b2:40:67:c3:0e:46:6a:95:57:6a:69: 3e:e0:d4:a4:77:50:d3:b7:d3:df:bf:fe:68:35:14: 01:47:b1:bb:03:59:9b:fa:01:16:1a:aa:6e:a3:5c: bc:66:3a:c4:0c:56:8f:64:bd:38:66:5d:0c:e5:99: 72:fe:37:5a:4d:07:a5:ef:60:d3:b8:89:ba:a4:95: 2c:00:a3:5f:f7:bf:c9:0b:cb:b1:b0:fc:6b:75:ea: 0a:25:a0:82:c0:90:17:a8:e5:60:fd:4b:28:b4:f8: 71:b3:5a:36:37:5d:8f:21:44:83:e5:b8:87:01:10: 34:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A6:06:F0:36:C8:BF:7F:71:5A:53:D2:7E:E4:4D:36:41:D3:98:E5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ba8c4477-737d-45a5-ba08-a32718f33e85.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.224.180.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:b3:3c:dc:64:54:68:74:55:5c:36:1b:b0:dc:f3:aa:02:58: 35:c5:94:d5:07:a1:71:81:51:7e:6c:c7:98:bd:10:78:a0:fc: 0d:1a:f9:4b:7a:f8:e1:e4:00:8a:7b:70:ab:82:c9:2a:bf:fe: 11:23:76:37:14:7e:f8:d8:31:a6:3e:0d:c4:58:0a:fd:97:f2: a3:8d:51:a2:21:d3:99:35:03:b0:39:17:f7:8c:b5:88:a7:f9: da:82:6f:88:7e:80:45:6f:a7:aa:94:f1:56:69:bf:ed:27:1c: 07:4c:e7:a3:99:8b:1a:8e:0f:04:b3:7b:06:90:46:e9:cf:61: 34:55:9d:42:a3:61:8c:ec:e1:f2:98:15:00:33:6e:85:6f:55: 35:44:46:49:31:cf:a7:ab:9b:00:47:88:6b:55:81:b9:6a:0e: af:1d:ae:97:77:7b:1c:07:63:5b:7b:21:15:2b:c6:e9:67:9e: 6b:3a:46:55:14:f4:83:cc:2b:ee:80:00:f7:eb:f4:be:5c:a9: 7e:7d:ef:99:e6:73:17:97:f6:a7:a6:90:8f:da:c7:5c:ea:48: 70:3f:f7:e0:9f:a8:fc:df:63:b1:12:f3:74:af:df:e6:bc:18: 6c:45:09:a9:cb:81:5a:f0:ab:af:d0:18:5b:fa:eb:b9:f5:dd: 7a:c3:20:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTlE/cy33E+Ry1egwYfxzbDNnhb4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTIzMjM5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjBjZjIxNjlkNzg4ZGUxMmE2MDZmMTQ1Y2IxOTJiNzg2 YTA2ZjFlYTYwOTY3OWVmNWY1YWFmYjhmYTBjNGRjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6JgNfKhE3q8LJVlbxWu8LLVYA+N4OxP1QMLrsiDv8IjFI jRHMLyAYrnzWTnI13MxtH5Me2GDeneUbao0WHxlS9Go6xhOeqAVctz49E+1rs/Oj HWdMjMow6+PQx+stmGTRIB+is8l9sO95fhc7EPO6F7wWBvrSb2uFL6VpKf7OUes2 HWKHy/z2sg6yQGfDDkZqlVdqaT7g1KR3UNO309+//mg1FAFHsbsDWZv6ARYaqm6j XLxmOsQMVo9kvThmXQzlmXL+N1pNB6XvYNO4ibqklSwAo1/3v8kLy7Gw/Gt16gol oILAkBeo5WD9Syi0+HGzWjY3XY8hRIPluIcBEDSFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu6YG8DbIv39xWlPSfuRNNkHTmOUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JhOGM0NDc3LTczN2QtNDVhNS1iYTA4LWEzMjcxOGYzM2U4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN4LQwDQYJKoZIhvcNAQELBQADggEBAHqzPNxkVGh0VVw2G7Dc86oCWDXF lNUHoXGBUX5sx5i9EHig/A0a+Ut6+OHkAIp7cKuCySq//hEjdjcUfvjYMaY+DcRY Cv2X8qONUaIh05k1A7A5F/eMtYin+dqCb4h+gEVvp6qU8VZpv+0nHAdM56OZixqO DwSzewaQRunPYTRVnUKjYYzs4fKYFQAzboVvVTVERkkxz6ermwBHiGtVgblqDq8d rpd3exwHY1t7IRUrxulnnms6RlUU9IPMK+6AAPfr9L5cqX5975nmcxeX9qemkI/a x1zqSHA/9+CfqPzfY7ES83Sv3+a8GGxFCanLgVrwq6/QGFv667n13XrDIOM= -----END CERTIFICATE-----Generated at Mon Oct 20 08:29:46 2025 by rpki-client