$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba79b965-3c04-49c6-b440-c6c4492f4006.roa File: ba79b965-3c04-49c6-b440-c6c4492f4006.roa (raw, json) Hash identifier: YrwIc7B2Qi2mtkfXB6YFrWIPjcFIhjVFWBQD/Nrci3Y= Subject key identifier: 46:0D:FE:0C:DC:8F:2A:0B:A4:AD:9E:81:23:CD:41:0D:BD:E4:7D:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05E38DD1D9271156024EEE40541C2F37F33E787E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba79b965-3c04-49c6-b440-c6c4492f4006.roa Signing time: Fri 13 Jun 2025 16:01:47 +0000 ROA not before: Fri 13 Jun 2025 16:01:47 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.128.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e3:8d:d1:d9:27:11:56:02:4e:ee:40:54:1c:2f:37:f3:3e:78:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:01:47 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=d845edd479d8f3a7338a8cd3580d933ede5acc5ed5fed0b813021d2d0e0fda2e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:09:3e:fc:30:e1:0b:3f:31:de:60:2f:f5:21: 0c:88:be:85:2c:c2:05:ad:38:2b:47:18:87:9e:3d: 2c:95:3e:78:cc:cd:13:cd:97:a2:82:bb:ac:2f:d9: 07:92:a6:9a:19:98:8e:68:4c:0c:66:57:0c:78:2a: ab:ab:01:4e:92:8e:0c:f6:89:ca:ad:87:b7:2b:3b: 03:b1:ec:86:b0:8c:66:d3:29:7a:21:a2:75:c5:16: 77:92:e0:8e:f1:ff:3c:16:d2:66:0d:31:6e:0b:1c: 7b:b5:19:11:98:b2:99:b6:f9:0d:cd:4e:37:82:9e: a3:81:ec:58:7b:7d:b6:2c:32:72:7b:6e:d6:09:55: 1c:06:ad:82:d3:b6:64:1b:e1:d2:14:ee:b9:ba:b4: dc:2a:f7:24:40:c0:40:bb:8c:52:7e:bf:78:4d:44: b8:cb:91:22:7d:59:59:56:c6:d1:6d:66:39:fa:2a: 8d:f8:fa:d2:ad:4d:af:fb:ab:56:29:84:7a:f4:2f: 81:05:82:20:37:ea:37:94:8d:2b:43:e6:61:87:40: 3e:54:a5:97:3e:4d:c3:f3:d6:40:46:54:93:db:d5: 78:bb:0e:01:92:b2:a4:8e:d7:b2:b3:e2:62:72:60: 01:b9:4c:95:a2:46:33:a5:45:d0:a5:13:56:81:44: f5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:0D:FE:0C:DC:8F:2A:0B:A4:AD:9E:81:23:CD:41:0D:BD:E4:7D:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba79b965-3c04-49c6-b440-c6c4492f4006.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.128.0.0/13 Signature Algorithm: sha256WithRSAEncryption 30:17:b3:b5:28:48:f3:ed:83:51:63:c8:c1:b7:63:8c:78:8c: 0c:33:83:cf:54:f2:d9:a7:3e:53:77:42:36:a6:b9:2b:4c:27: cf:df:45:d0:ba:e0:c9:60:7c:44:e3:7b:3b:28:3e:47:85:0e: e9:fd:67:5a:3d:b1:82:fb:e5:62:9b:ec:42:14:98:07:a3:ec: 77:47:8f:f3:49:9b:e2:c0:61:27:8c:47:9e:ee:ad:0a:06:2f: 60:f5:d3:07:6a:11:73:0e:b6:5f:e2:27:1f:bb:5b:44:20:95: 39:b0:8c:6b:9f:40:03:47:ea:4c:be:cf:e7:c6:ca:73:ff:87: e0:fd:35:77:af:b9:3e:94:40:cb:f5:6e:2a:75:94:c8:5e:d0: 6e:f6:95:29:ee:be:e5:ea:f5:37:32:df:54:df:e4:9f:b6:5c: 2b:76:0a:b2:98:b4:6f:5f:b3:79:9a:26:d7:ee:bf:93:cb:b6: 21:60:23:0e:6b:49:bf:a2:30:52:d3:5a:f9:bb:70:5b:23:5f: 1c:b2:6d:fa:31:5f:92:6b:4f:a5:09:d1:ff:1e:19:62:68:d6: c1:b1:b4:70:86:dd:41:3f:ec:9c:e9:3a:10:4f:f7:07:fc:f1: bb:9e:0e:e7:37:8e:5a:5e:7f:bc:a8:62:bb:52:52:6c:b1:be: 7d:3a:aa:e2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBeON0dknEVYCTu5AVBwvN/M+eH4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYwMTQ3WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODQ1ZWRkNDc5ZDhmM2E3MzM4YThjZDM1ODBkOTMzZWRl NWFjYzVlZDVmZWQwYjgxMzAyMWQyZDBlMGZkYTJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPCT78MOELPzHeYC/1IQyIvoUswgWtOCtHGIeePSyVPnjM zRPNl6KCu6wv2QeSppoZmI5oTAxmVwx4KqurAU6Sjgz2icqth7crOwOx7IawjGbT KXohonXFFneS4I7x/zwW0mYNMW4LHHu1GRGYspm2+Q3NTjeCnqOB7Fh7fbYsMnJ7 btYJVRwGrYLTtmQb4dIU7rm6tNwq9yRAwEC7jFJ+v3hNRLjLkSJ9WVlWxtFtZjn6 Ko34+tKtTa/7q1YphHr0L4EFgiA36jeUjStD5mGHQD5UpZc+TcPz1kBGVJPb1Xi7 DgGSsqSO17Kz4mJyYAG5TJWiRjOlRdClE1aBRPWDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURg3+DNyPKgukrZ6BI81BDb3kfdcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhNzliOTY1LTNjMDQtNDljNi1iNDQwLWM2YzQ0OTJmNDAwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwNsgDANBgkqhkiG9w0BAQsFAAOCAQEAMBeztShI8+2DUWPIwbdjjHiMDDOD z1Ty2ac+U3dCNqa5K0wnz99F0LrgyWB8RON7Oyg+R4UO6f1nWj2xgvvlYpvsQhSY B6Psd0eP80mb4sBhJ4xHnu6tCgYvYPXTB2oRcw62X+InH7tbRCCVObCMa59AA0fq TL7P58bKc/+H4P01d6+5PpRAy/VuKnWUyF7QbvaVKe6+5er1NzLfVN/kn7ZcK3YK spi0b1+zeZom1+6/k8u2IWAjDmtJv6IwUtNa+btwWyNfHLJt+jFfkmtPpQnR/x4Z YmjWwbG0cIbdQT/snOk6EE/3B/zxu54O5zeOWl5/vKhiu1JSbLG+fTqq4g== -----END CERTIFICATE-----Generated at Sat Jun 14 06:46:30 2025 by rpki-client