$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa File: ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa (raw, json) Hash identifier: gv//241UBOgAG2dhUBLr+dehgTBRb5qNQDk1rLAxIxE= Subject key identifier: DB:AE:B7:C1:0A:4B:14:F9:5C:C4:28:85:46:A0:22:E5:E1:3D:33:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 771758B0978C5398C51E25786D48B20B06DE7FC2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa Signing time: Wed 09 Apr 2025 00:31:09 +0000 ROA not before: Wed 09 Apr 2025 00:31:09 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:17:58:b0:97:8c:53:98:c5:1e:25:78:6d:48:b2:0b:06:de:7f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:31:09 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=74e312f3fcc86b4db80f51781bfac5eaa35b9e91c5fff4c9b0d2edf43ec887e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:82:e5:6e:06:af:44:f2:c8:94:28:59:e5:c5: 87:b8:43:29:06:2a:46:03:a4:30:6d:9b:19:26:78: 3a:b5:c1:ba:75:d4:41:02:74:21:ec:66:3d:24:ec: d6:f3:1a:85:36:5d:3f:1c:41:70:95:cb:45:2b:d8: 25:79:17:e0:6d:81:f8:53:bd:0e:4d:04:a8:27:11: 72:24:74:7b:ea:58:97:57:7c:33:0b:b8:9e:a5:24: 5c:76:b0:bb:2d:47:ad:27:b6:c3:d6:5e:29:08:d2: cf:96:9d:55:78:cd:87:9a:55:2f:bb:ce:96:63:fe: de:2b:d4:b2:66:49:88:84:b1:2d:5e:64:37:88:b4: 07:a1:ed:82:53:da:43:db:5d:8f:bd:e3:9a:9c:95: 7e:8d:0d:a5:40:e6:36:e4:e8:32:3c:0a:55:b9:96: fa:90:69:59:b1:40:9a:c8:ac:3f:6a:27:0d:75:0a: a8:07:ed:06:1d:98:90:02:74:25:2d:fa:91:6b:ce: dc:89:d9:aa:df:89:17:3b:df:5e:e1:45:ba:19:60: d6:28:0b:04:d2:6f:8d:30:e1:fc:69:b5:13:83:4a: d4:a6:5a:ad:bc:c5:8b:ed:b1:86:82:ad:53:ed:a5: b5:26:58:33:0c:b9:f6:56:a7:be:64:13:d3:70:cc: 6e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:AE:B7:C1:0A:4B:14:F9:5C:C4:28:85:46:A0:22:E5:E1:3D:33:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.112.0/21 Signature Algorithm: sha256WithRSAEncryption 77:52:3b:67:93:04:04:82:43:2b:b4:a2:5d:d4:ae:04:60:fd: 44:b1:62:65:7b:7a:57:a5:bc:54:aa:e3:3a:40:cc:23:25:5e: 6b:f3:c4:21:a0:90:3f:af:55:1b:d9:3d:6a:eb:41:4f:71:1c: 0d:76:29:98:bf:20:b2:cc:22:ab:d6:20:af:78:37:dc:a9:8b: f8:c9:20:4d:8b:a0:86:f1:c9:2a:8e:ca:01:47:65:db:e1:ae: e0:ff:69:f2:99:cf:82:64:ac:b3:39:54:99:d2:e4:58:f1:7e: db:05:b2:4c:45:36:c9:52:49:59:2d:d0:5a:11:a0:16:58:56: e3:fb:23:94:55:18:06:e0:bc:eb:6d:ca:b5:94:ee:21:ca:b9: 04:2f:fc:1e:9b:fe:7d:4a:d5:0c:66:21:2f:a0:2f:05:40:bf: c0:78:4f:4a:c2:ee:f3:1d:52:f8:57:d0:3e:27:26:86:2f:16: e0:9e:bf:f0:57:e9:ce:89:1a:92:7b:0e:cd:dc:e6:94:38:0a: 09:36:7c:17:cb:f8:68:0d:66:91:29:a7:ae:69:7b:74:0e:c8: 9e:b1:d3:40:4c:07:40:a7:00:a2:cb:1d:71:06:b6:c5:f6:fb: f5:4f:6b:f7:43:e2:09:c5:2b:bb:36:e3:54:7e:4e:ba:dc:81: d0:2e:4d:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdxdYsJeMU5jFHiV4bUiyCwbef8IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAzMTA5WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGUzMTJmM2ZjYzg2YjRkYjgwZjUxNzgxYmZhYzVlYWEz NWI5ZTkxYzVmZmY0YzliMGQyZWRmNDNlYzg4N2U5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQguVuBq9E8siUKFnlxYe4QykGKkYDpDBtmxkmeDq1wbp1 1EECdCHsZj0k7NbzGoU2XT8cQXCVy0Ur2CV5F+BtgfhTvQ5NBKgnEXIkdHvqWJdX fDMLuJ6lJFx2sLstR60ntsPWXikI0s+WnVV4zYeaVS+7zpZj/t4r1LJmSYiEsS1e ZDeItAeh7YJT2kPbXY+945qclX6NDaVA5jbk6DI8ClW5lvqQaVmxQJrIrD9qJw11 CqgH7QYdmJACdCUt+pFrztyJ2arfiRc7317hRboZYNYoCwTSb40w4fxptRODStSm Wq28xYvtsYaCrVPtpbUmWDMMufZWp75kE9NwzG6rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2663wQpLFPlcxCiFRqAi5eE9M2YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhOTljZjJiLWY5OGQtNDU2ZS1hMTg1LWY0ZjBhYmY0YzVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANG6HAwDQYJKoZIhvcNAQELBQADggEBAHdSO2eTBASCQyu0ol3UrgRg/USx YmV7elelvFSq4zpAzCMlXmvzxCGgkD+vVRvZPWrrQU9xHA12KZi/ILLMIqvWIK94 N9ypi/jJIE2LoIbxySqOygFHZdvhruD/afKZz4JkrLM5VJnS5FjxftsFskxFNslS SVkt0FoRoBZYVuP7I5RVGAbgvOttyrWU7iHKuQQv/B6b/n1K1QxmIS+gLwVAv8B4 T0rC7vMdUvhX0D4nJoYvFuCev/BX6c6JGpJ7Ds3c5pQ4Cgk2fBfL+GgNZpEpp65p e3QOyJ6x00BMB0CnAKLLHXEGtsX2+/VPa/dD4gnFK7s241R+TrrcgdAuTco= -----END CERTIFICATE-----Generated at Wed Apr 16 16:42:39 2025 by rpki-client