$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba71b3f3-cdf6-4786-89eb-629b258ad834.roa File: ba71b3f3-cdf6-4786-89eb-629b258ad834.roa (raw, json) Hash identifier: XWLxAk2dS9+BhzS2Gd7osaMhn/zAUq6D8bx4fS9pNtA= Subject key identifier: D8:65:37:B6:24:5A:B1:B5:E7:95:50:C3:03:D1:D2:41:BB:62:C6:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6AEA253EC3BECD30D7A5611CCD750639867E4F0E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba71b3f3-cdf6-4786-89eb-629b258ad834.roa Signing time: Wed 28 May 2025 00:02:05 +0000 ROA not before: Wed 28 May 2025 00:02:05 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 141.242.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:ea:25:3e:c3:be:cd:30:d7:a5:61:1c:cd:75:06:39:86:7e:4f:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:02:05 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=ab41039ce68977099f844228006527708fddbf50637a30f063a8bdfc7bc6904d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a4:5d:76:b1:f0:b7:e1:29:4f:b6:0f:80:2c: ae:3a:4f:bd:59:50:33:1b:f1:02:9d:6f:31:cb:2f: 36:a4:e4:47:5f:10:ac:50:87:73:e3:1a:56:48:ac: 08:94:e7:35:26:9b:07:f3:80:83:07:94:a6:1d:15: 65:07:e0:72:71:ce:26:5b:9b:cf:54:b0:a4:5a:8b: 55:47:1d:fa:f9:42:b4:44:81:d0:02:6e:d6:d0:8c: 31:b7:e3:55:0c:c4:ea:07:b8:ab:43:33:5c:cf:ac: 5b:d8:38:d1:ad:98:13:96:52:d5:c0:0c:44:71:51: 9a:b9:4b:05:a6:53:2e:3b:c6:db:f5:2c:ea:49:27: 99:0e:3e:3a:57:06:af:53:58:59:f3:d6:01:8f:f6: 6b:39:a7:a8:40:6b:95:ab:e0:43:6f:fb:0d:c9:94: 31:79:a1:a5:74:2b:52:87:b7:79:c6:ae:e5:6a:35: a2:e7:a9:ca:17:e1:c5:35:9a:12:d4:20:d7:79:6a: 0e:ef:1e:80:61:79:f6:02:56:83:11:06:b3:76:e7: 59:89:37:b9:41:39:9a:aa:e1:7a:68:21:a2:c8:4f: 53:32:8d:a9:e1:2e:1b:96:27:0d:3c:9b:a6:c3:49: a0:3c:35:d3:7b:59:3c:5c:8d:c1:06:2e:a1:89:aa: aa:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:65:37:B6:24:5A:B1:B5:E7:95:50:C3:03:D1:D2:41:BB:62:C6:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba71b3f3-cdf6-4786-89eb-629b258ad834.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.242.0.0/16 Signature Algorithm: sha256WithRSAEncryption ac:0a:a7:c2:ee:c4:20:bc:f6:9f:5c:a2:fc:86:0f:1a:03:e7: 1a:1f:82:7a:1b:9d:37:60:d2:8d:98:ba:04:10:7d:ca:70:35: 98:10:61:fe:18:0e:4e:de:c1:c4:94:4b:f7:70:49:06:ea:e6: ac:1e:51:cb:ef:1a:0c:8a:99:82:d1:29:33:19:ca:15:35:b8: 43:b6:f4:d9:e0:16:46:9f:2a:2d:c1:d9:de:71:df:ce:aa:67: bc:3c:cf:67:b6:b7:dd:2d:15:de:f1:5a:68:fc:3e:43:30:8d: e4:f9:10:bd:3f:20:ab:e6:fe:22:88:61:59:eb:f5:3f:54:ad: 1a:d0:17:a0:f1:6c:12:8e:79:a4:a2:e7:ec:cc:fc:30:27:85: c7:eb:bb:15:1d:6d:e5:9f:60:74:99:2c:e1:97:0f:4f:91:9b: 2b:23:a1:37:39:ca:a0:f0:eb:76:db:07:b6:ff:bf:47:ab:c9: f0:ed:bb:e1:e9:7c:6b:d8:b4:85:ea:6f:00:03:54:f7:e3:be: b1:84:cb:d0:70:6c:5f:7c:57:6c:ec:dc:c0:0f:60:a8:bb:3d: 1e:33:cc:9d:9a:5c:95:cb:3f:90:75:84:ea:43:b4:4e:9d:fe: c2:a4:5b:f4:f5:aa:03:df:cc:b4:45:7e:3b:29:d3:65:8a:21: df:11:fb:c2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUauolPsO+zTDXpWEczXUGOYZ+Tw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMjA1WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjQxMDM5Y2U2ODk3NzA5OWY4NDQyMjgwMDY1Mjc3MDhm ZGRiZjUwNjM3YTMwZjA2M2E4YmRmYzdiYzY5MDRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUpF12sfC34SlPtg+ALK46T71ZUDMb8QKdbzHLLzak5Edf EKxQh3PjGlZIrAiU5zUmmwfzgIMHlKYdFWUH4HJxziZbm89UsKRai1VHHfr5QrRE gdACbtbQjDG341UMxOoHuKtDM1zPrFvYONGtmBOWUtXADERxUZq5SwWmUy47xtv1 LOpJJ5kOPjpXBq9TWFnz1gGP9ms5p6hAa5Wr4ENv+w3JlDF5oaV0K1KHt3nGruVq NaLnqcoX4cU1mhLUINd5ag7vHoBhefYCVoMRBrN251mJN7lBOZqq4XpoIaLIT1My janhLhuWJw08m6bDSaA8NdN7WTxcjcEGLqGJqqpzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2GU3tiRasbXnlVDDA9HSQbtixjwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhNzFiM2YzLWNkZjYtNDc4Ni04OWViLTYyOWIyNThhZDgzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCN8jANBgkqhkiG9w0BAQsFAAOCAQEArAqnwu7EILz2n1yi/IYPGgPnGh+C ehudN2DSjZi6BBB9ynA1mBBh/hgOTt7BxJRL93BJBurmrB5Ry+8aDIqZgtEpMxnK FTW4Q7b02eAWRp8qLcHZ3nHfzqpnvDzPZ7a33S0V3vFaaPw+QzCN5PkQvT8gq+b+ IohhWev1P1StGtAXoPFsEo55pKLn7Mz8MCeFx+u7FR1t5Z9gdJks4ZcPT5GbKyOh NznKoPDrdtsHtv+/R6vJ8O274el8a9i0hepvAANU9+O+sYTL0HBsX3xXbOzcwA9g qLs9HjPMnZpclcs/kHWE6kO0Tp3+wqRb9PWqA9/MtEV+OynTZYoh3xH7wg== -----END CERTIFICATE-----Generated at Sun Jun 1 05:03:06 2025 by rpki-client