$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba79b965-3c04-49c6-b440-c6c4492f4006.roa File: ba79b965-3c04-49c6-b440-c6c4492f4006.roa (raw, json) Hash identifier: JOYG3wQ19kOTfOuam8N3JJw6q9VcIsC1qw/0yTSFiQg= Subject key identifier: 5A:BA:8F:DF:44:C9:F6:7E:FE:6D:EE:3B:DC:BA:FB:70:61:CD:4C:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04CE17FF33D4C5FBB667EF44EC1B376821BB1BE5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba79b965-3c04-49c6-b440-c6c4492f4006.roa Signing time: Tue 22 Apr 2025 16:01:05 +0000 ROA not before: Tue 22 Apr 2025 16:01:05 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.128.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:ce:17:ff:33:d4:c5:fb:b6:67:ef:44:ec:1b:37:68:21:bb:1b:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:01:05 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=d3bfee0830c2ec5c7162832a6096e7e5fc542a17268b3215104991371395b167, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3b:59:b1:87:fe:eb:31:e5:64:40:37:52:5b: 33:c1:75:f9:46:04:e1:89:b8:72:6e:2c:e9:49:1b: 92:26:59:12:e8:3e:64:87:8f:2c:99:2e:13:3b:cc: bc:46:80:37:1e:eb:9a:75:69:a6:34:b7:44:f7:50: 2c:3e:40:35:09:16:ee:d7:5c:6d:be:b6:a5:0f:d5: 82:28:cc:57:8b:7b:2b:59:e3:e2:6d:06:6d:92:aa: d3:06:05:68:ac:72:83:5b:14:cb:5e:3d:cd:39:a1: c2:9a:f8:96:a3:87:6b:ea:aa:4c:bd:74:86:f9:e8: a6:0c:e6:92:dd:77:5c:a0:d8:20:8e:fa:d0:42:c3: 76:d8:e5:be:62:32:b9:99:6b:0f:06:16:85:d1:4d: 3a:ef:5b:b4:e6:05:7d:07:ae:ef:b2:8b:2c:0d:31: 6d:99:5f:27:3e:e4:7a:19:75:27:aa:e7:fc:a8:01: 8e:20:29:b1:40:ee:3a:b3:dc:af:b2:e0:83:61:d3: ba:92:c8:26:01:45:fd:27:ae:80:71:b7:8e:77:c2: 90:8a:b8:6f:29:d1:0e:73:e3:27:22:7a:34:5e:04: b6:49:b9:58:7c:b9:01:b6:0e:f0:1a:d1:f4:df:a5: bc:85:66:a9:26:2d:a5:81:88:fc:34:89:64:56:cb: 91:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:BA:8F:DF:44:C9:F6:7E:FE:6D:EE:3B:DC:BA:FB:70:61:CD:4C:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba79b965-3c04-49c6-b440-c6c4492f4006.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.128.0.0/13 Signature Algorithm: sha256WithRSAEncryption d6:d9:c3:72:c1:3f:41:f9:70:dd:31:f8:a3:51:82:39:07:cf: cb:eb:4b:cf:f7:76:19:dc:77:8d:35:13:77:f6:46:d5:bd:52: 24:0b:2b:a6:0c:f9:b1:81:32:49:eb:34:59:2b:0d:ed:0a:50: 2c:00:1f:a5:cc:9d:3c:f7:d0:fc:2f:ef:99:f7:c7:79:37:8d: 07:58:d6:ad:1b:8d:27:4f:d9:6e:fe:10:e7:6b:16:99:5e:7c: 51:68:9f:ca:f4:87:5d:15:88:62:f7:b1:9d:d0:62:ca:d2:a5: ef:17:be:1e:30:c9:1f:37:f4:3b:15:1e:47:af:a5:e4:1e:66: a6:dc:a5:bf:1b:54:80:5e:2c:12:a3:8c:e5:40:47:79:c5:2d: 2c:9a:30:d2:e5:c9:bd:b6:bd:c2:6c:2f:10:07:4a:21:64:38: c7:00:d1:fd:e4:e5:00:5b:c1:b2:a7:45:6b:da:97:b8:f2:6f: 8b:e0:7c:58:1c:3b:5a:67:b0:95:02:0d:8d:11:b3:8f:47:e1: 52:a7:b8:09:26:7c:8d:85:49:c8:7b:90:15:89:3a:c9:51:7e: c9:d1:0f:d6:de:8b:37:b0:81:49:33:3e:79:5f:fa:87:98:17: 74:b3:74:73:cc:4a:7c:a0:55:5f:4e:97:4c:64:ef:91:da:d6: be:bd:6e:04 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBM4X/zPUxfu2Z+9E7Bs3aCG7G+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYwMTA1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2JmZWUwODMwYzJlYzVjNzE2MjgzMmE2MDk2ZTdlNWZj NTQyYTE3MjY4YjMyMTUxMDQ5OTEzNzEzOTViMTY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYO1mxh/7rMeVkQDdSWzPBdflGBOGJuHJuLOlJG5ImWRLo PmSHjyyZLhM7zLxGgDce65p1aaY0t0T3UCw+QDUJFu7XXG2+tqUP1YIozFeLeytZ 4+JtBm2SqtMGBWiscoNbFMtePc05ocKa+Jajh2vqqky9dIb56KYM5pLdd1yg2CCO +tBCw3bY5b5iMrmZaw8GFoXRTTrvW7TmBX0Hru+yiywNMW2ZXyc+5HoZdSeq5/yo AY4gKbFA7jqz3K+y4INh07qSyCYBRf0nroBxt453wpCKuG8p0Q5z4yciejReBLZJ uVh8uQG2DvAa0fTfpbyFZqkmLaWBiPw0iWRWy5GxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWrqP30TJ9n7+be473Lr7cGHNTPYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhNzliOTY1LTNjMDQtNDljNi1iNDQwLWM2YzQ0OTJmNDAwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwNsgDANBgkqhkiG9w0BAQsFAAOCAQEA1tnDcsE/Qflw3TH4o1GCOQfPy+tL z/d2Gdx3jTUTd/ZG1b1SJAsrpgz5sYEySes0WSsN7QpQLAAfpcydPPfQ/C/vmffH eTeNB1jWrRuNJ0/Zbv4Q52sWmV58UWifyvSHXRWIYvexndBiytKl7xe+HjDJHzf0 OxUeR6+l5B5mptylvxtUgF4sEqOM5UBHecUtLJow0uXJvba9wmwvEAdKIWQ4xwDR /eTlAFvBsqdFa9qXuPJvi+B8WBw7WmewlQINjRGzj0fhUqe4CSZ8jYVJyHuQFYk6 yVF+ydEP1t6LN7CBSTM+eV/6h5gXdLN0c8xKfKBVX06XTGTvkdrWvr1uBA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:13 2025 by rpki-client