$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba694444-566a-4643-ab64-491712a1b999.roa File: ba694444-566a-4643-ab64-491712a1b999.roa (raw, json) Hash identifier: PcZAbQ/+J3YtrjfRF4VLwHiqt/qfFwIG/crvbD1sv18= Subject key identifier: 2D:84:8A:7C:3B:53:A9:4E:C9:D7:B7:D3:27:92:30:8F:15:CF:C9:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DE0953A30463454A586C44D85636209FB322191 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba694444-566a-4643-ab64-491712a1b999.roa Signing time: Fri 25 Apr 2025 00:40:16 +0000 ROA not before: Fri 25 Apr 2025 00:40:16 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.39.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e0:95:3a:30:46:34:54:a5:86:c4:4d:85:63:62:09:fb:32:21:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:40:16 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=14c0986287e2d7805359c46a46a90bbbfacba70ab2fde11d5aef880fb7c92e25, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:27:9b:cb:c6:4c:dd:5e:12:cd:27:f4:71:8f: 23:d3:eb:b7:1d:99:d0:f6:33:f2:b5:56:cd:ff:9b: ee:70:94:be:93:b0:ab:51:ef:f4:7a:be:4d:1f:cc: 8b:a4:d9:d7:fb:76:c5:db:25:84:52:d3:9b:2a:7b: 71:77:9b:5c:5e:dc:8b:58:bf:7b:40:a3:67:a3:ac: d8:29:ff:5e:b1:c7:b2:90:3f:7c:a1:f9:c1:0f:df: 5c:22:f8:13:9a:fb:e1:34:7c:dd:50:13:ae:e6:7c: f7:89:93:ff:7c:c2:0a:58:1b:3a:25:77:4b:6f:d2: 1f:df:7b:ad:ac:a6:d4:82:2e:9b:28:b1:25:56:04: ab:a8:68:5b:75:65:68:f4:27:43:88:82:30:43:fe: 85:24:41:51:b2:de:77:f6:27:77:5c:8f:10:5b:e4: 1a:fb:57:19:7e:e9:a7:9c:b9:62:0d:3b:41:bc:3a: 1f:94:d7:fc:b5:a5:80:dc:67:55:27:b7:d0:dd:06: 7a:24:2e:61:2b:71:8a:e1:15:1b:44:57:5c:c5:a0: e7:ce:0a:9d:a9:1c:c8:1b:a8:40:bc:dd:02:27:bf: d1:cb:ad:d5:ab:b1:10:be:f6:24:6d:33:17:53:64: a7:3a:82:d7:a1:40:fa:81:df:d1:ea:e3:95:3e:1f: 5a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:84:8A:7C:3B:53:A9:4E:C9:D7:B7:D3:27:92:30:8F:15:CF:C9:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba694444-566a-4643-ab64-491712a1b999.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.39.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0f:13:f9:49:c7:ac:6a:65:ec:2a:5a:39:3a:16:a4:8f:4f:c8: 6c:c0:99:42:6c:01:bc:18:88:cb:fc:9f:92:ed:cf:1e:0d:6f: 00:48:71:e9:88:24:b4:d1:58:f4:87:bb:ce:ca:cd:f8:6b:cd: 69:78:ea:60:40:f5:2e:03:55:27:4c:b5:93:47:2d:cd:36:41: c4:46:86:bb:b9:1a:3d:bc:61:20:d9:ba:ff:fa:a3:92:28:c7: e3:7d:30:cb:60:7b:f1:df:5a:81:0d:0c:e0:f6:7d:05:67:64: 86:8b:86:d2:17:02:5e:9c:5f:68:5b:a2:4b:ea:dd:69:ca:77: 7e:85:6d:1e:15:0c:23:f8:74:87:62:a6:fd:38:82:c0:a5:12: 75:09:3c:63:b6:c7:09:f1:ac:ac:4c:5c:f6:43:70:c7:6e:07: ed:68:4b:52:23:d4:ab:58:ef:b3:22:af:c3:a5:aa:df:f5:05: 77:15:42:ce:4c:6a:ce:03:6c:be:f9:73:f1:6c:89:ca:01:b8: aa:ef:a8:f0:02:b7:ef:81:54:1f:2f:d6:da:39:ac:70:5e:68: 88:b8:94:56:83:e6:30:22:c3:23:74:43:3a:19:0e:82:0e:2a: d3:64:ca:c1:7c:d8:2a:2a:23:f5:8a:03:58:fe:25:71:25:47: 20:b4:28:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTeCVOjBGNFSlhsRNhWNiCfsyIZEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA0MDE2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNGMwOTg2Mjg3ZTJkNzgwNTM1OWM0NmE0NmE5MGJiYmZh Y2JhNzBhYjJmZGUxMWQ1YWVmODgwZmI3YzkyZTI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzJ5vLxkzdXhLNJ/RxjyPT67cdmdD2M/K1Vs3/m+5wlL6T sKtR7/R6vk0fzIuk2df7dsXbJYRS05sqe3F3m1xe3ItYv3tAo2ejrNgp/16xx7KQ P3yh+cEP31wi+BOa++E0fN1QE67mfPeJk/98wgpYGzold0tv0h/fe62sptSCLpso sSVWBKuoaFt1ZWj0J0OIgjBD/oUkQVGy3nf2J3dcjxBb5Br7Vxl+6aecuWINO0G8 Oh+U1/y1pYDcZ1Unt9DdBnokLmErcYrhFRtEV1zFoOfOCp2pHMgbqEC83QInv9HL rdWrsRC+9iRtMxdTZKc6gtehQPqB39Hq45U+H1qBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULYSKfDtTqU7J17fTJ5IwjxXPya8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhNjk0NDQ0LTU2NmEtNDY0My1hYjY0LTQ5MTcxMmExYjk5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoJzANBgkqhkiG9w0BAQsFAAOCAQEADxP5ScesamXsKlo5Ohakj0/IbMCZ QmwBvBiIy/yfku3PHg1vAEhx6YgktNFY9Ie7zsrN+GvNaXjqYED1LgNVJ0y1k0ct zTZBxEaGu7kaPbxhINm6//qjkijH430wy2B78d9agQ0M4PZ9BWdkhouG0hcCXpxf aFuiS+rdacp3foVtHhUMI/h0h2Km/TiCwKUSdQk8Y7bHCfGsrExc9kNwx24H7WhL UiPUq1jvsyKvw6Wq3/UFdxVCzkxqzgNsvvlz8WyJygG4qu+o8AK374FUHy/W2jms cF5oiLiUVoPmMCLDI3RDOhkOgg4q02TKwXzYKioj9YoDWP4lcSVHILQomA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:44:50 2025 by rpki-client