$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa File: ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa (raw, json) Hash identifier: wwo/7p60co02KUX3E1vQSF7UnwHKoalmCbwyzUPOgas= Subject key identifier: 78:C1:D4:C5:28:3E:3F:1B:8B:A2:AC:C8:3C:84:1F:3A:19:2F:D2:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C905D58B1692A36F7DFC589D605023D5A5CD73C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:90:5d:58:b1:69:2a:36:f7:df:c5:89:d6:05:02:3d:5a:5c:d7:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6a:f9:6f:df:dd:bc:88:3c:ef:60:53:c9:83: 65:71:81:35:e3:9d:e8:48:fe:ca:e5:5e:de:90:f0: 8a:c5:b4:c5:06:ab:c7:85:d2:d9:ab:b8:25:bb:e5: 28:6a:b9:2d:ce:fd:7b:d8:3e:8d:9d:c6:ce:4c:43: cb:e8:75:39:99:80:cf:0c:7c:09:30:72:92:59:41: 90:67:4e:7b:9f:f4:ae:da:87:dc:72:82:c1:95:95: 0f:eb:6b:e4:b9:b7:a2:26:54:a1:7d:d3:8c:4b:2f: ab:6e:b7:df:be:50:42:ee:a4:6d:66:52:e3:52:02: 71:da:8c:b3:38:c4:30:87:35:23:2d:a6:e6:76:c3: cd:6b:d7:3b:1a:0f:ef:d6:d2:50:9f:cd:6f:1f:e6: aa:fc:68:6f:7b:60:ea:0b:08:c2:be:f5:a6:eb:af: 9c:4c:19:cf:b7:e0:39:a6:a5:7b:07:35:ed:e4:48: 4e:f4:85:ea:b3:bb:d9:1b:ec:d8:7e:98:53:ce:a8: b4:f7:a5:38:7a:91:6e:62:33:1d:51:6f:13:57:7a: e7:6f:bd:e0:bb:9e:c1:aa:20:4e:b6:36:53:a0:33: 48:9e:24:c8:94:51:0e:40:f3:b5:09:de:cc:a4:65: 6e:30:a7:27:3b:ad:10:12:41:e7:14:79:ae:59:3c: 53:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C1:D4:C5:28:3E:3F:1B:8B:A2:AC:C8:3C:84:1F:3A:19:2F:D2:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.112.0/21 Signature Algorithm: sha256WithRSAEncryption 72:ec:5e:45:d4:67:41:c1:93:02:c3:59:2d:f1:0c:c3:08:97: d2:0f:30:c0:41:3f:07:4c:f7:b0:d1:fe:a6:02:01:49:eb:dc: ac:47:9d:55:f3:04:28:2d:14:d2:47:ae:ee:98:fd:6b:10:49: 74:2c:43:62:f9:ac:ef:e1:53:85:a9:fb:83:43:9b:64:4c:cb: 32:b6:7a:20:44:8a:2f:6e:07:06:9c:97:7a:fd:7b:1d:73:ed: a8:71:35:2f:de:11:d0:94:b6:6a:06:90:d8:ae:33:ef:e2:5c: c1:04:c6:d9:b2:56:10:4f:92:67:4a:f8:13:54:91:92:29:04: 33:94:36:af:4f:1b:e7:4c:50:fe:2b:e2:67:44:33:d8:23:b7: 57:f1:83:d0:e9:7b:e6:4e:aa:52:6a:d1:6c:7b:ea:e6:a5:d2: 84:3f:86:4d:7d:05:ec:dc:dd:7e:d3:e9:79:6e:dc:51:71:0b: 71:5c:ff:04:40:84:88:88:d6:d8:4f:bc:8e:ec:94:e8:a7:33: 4e:4a:8e:1e:59:6b:91:5a:75:80:88:80:61:f6:0f:10:b1:99: d4:b6:98:61:79:e7:d5:2c:de:3b:a0:59:30:a1:24:cf:0b:66: 48:e8:c4:c9:5a:92:68:6c:d5:0b:41:ab:b9:34:e4:78:11:b6: bc:9d:78:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXJBdWLFpKjb338WJ1gUCPVpc1zwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzFlNTgwZWMwYTJmNGVhZDFmOWE5MDIyY2YwZTJhNmM5 ZjI3MTcxMGI0YzJiMWJjZGE5M2IwZjIzNThmMWE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuavlv3928iDzvYFPJg2VxgTXjnehI/srlXt6Q8IrFtMUG q8eF0tmruCW75ShquS3O/XvYPo2dxs5MQ8vodTmZgM8MfAkwcpJZQZBnTnuf9K7a h9xygsGVlQ/ra+S5t6ImVKF904xLL6tut9++UELupG1mUuNSAnHajLM4xDCHNSMt puZ2w81r1zsaD+/W0lCfzW8f5qr8aG97YOoLCMK+9abrr5xMGc+34DmmpXsHNe3k SE70heqzu9kb7Nh+mFPOqLT3pTh6kW5iMx1RbxNXeudvveC7nsGqIE62NlOgM0ie JMiUUQ5A87UJ3sykZW4wpyc7rRASQecUea5ZPFPVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeMHUxSg+PxuLoqzIPIQfOhkv0p0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhOTljZjJiLWY5OGQtNDU2ZS1hMTg1LWY0ZjBhYmY0YzVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANG6HAwDQYJKoZIhvcNAQELBQADggEBAHLsXkXUZ0HBkwLDWS3xDMMIl9IP MMBBPwdM97DR/qYCAUnr3KxHnVXzBCgtFNJHru6Y/WsQSXQsQ2L5rO/hU4Wp+4ND m2RMyzK2eiBEii9uBwacl3r9ex1z7ahxNS/eEdCUtmoGkNiuM+/iXMEExtmyVhBP kmdK+BNUkZIpBDOUNq9PG+dMUP4r4mdEM9gjt1fxg9Dpe+ZOqlJq0Wx76ual0oQ/ hk19Bezc3X7T6Xlu3FFxC3Fc/wRAhIiI1thPvI7slOinM05Kjh5Za5FadYCIgGH2 DxCxmdS2mGF559Us3jugWTChJM8LZkjoxMlakmhs1QtBq7k05HgRtrydeNA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:30:21 2025 by rpki-client