$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa File: ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa (raw, json) Hash identifier: OI+b5IvT1dLwAsoSsGvY8x/p4911YZL1sfgEhoRysOc= Subject key identifier: 5A:D6:8E:15:6A:B8:31:1B:44:EC:6B:69:79:8B:D9:4E:73:37:DA:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D33C6BE45250B933C71BED0921D0A7D2AA04E1E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa Signing time: Fri 02 May 2025 00:01:02 +0000 ROA not before: Fri 02 May 2025 00:01:02 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.186.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:33:c6:be:45:25:0b:93:3c:71:be:d0:92:1d:0a:7d:2a:a0:4e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:01:02 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=02e85b40afe780d802f868c59f161276c82d3fe109e4e9c4929252f3527327ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:25:02:f1:2b:5e:b0:86:36:55:96:09:53:27: 13:5f:cf:97:d1:ef:bd:e0:b2:5b:50:37:19:42:7f: 8e:cd:fc:5b:5d:99:0f:93:93:97:40:77:7d:43:c3: 11:96:d5:e8:74:ba:f8:c2:96:c1:c3:8b:e3:e4:d7: 8a:25:b4:4e:24:70:fa:e0:79:a3:3b:89:4e:76:d1: fa:ab:9a:5f:fe:5e:01:b7:d5:e0:35:79:c4:f3:00: 0f:5e:2d:42:bf:80:a8:ee:4f:32:ba:07:f8:e9:9d: a7:92:38:27:46:59:bf:62:7d:78:b8:2d:9d:bd:be: 19:14:5e:39:c7:57:50:1e:b7:17:4b:3c:d8:ea:24: de:dd:3b:f0:c7:74:d9:a9:34:ee:bb:50:2c:74:0e: 2d:52:db:98:19:79:41:51:83:99:f8:b2:51:0b:7e: 1c:a9:eb:79:56:08:8e:03:fd:35:0a:0d:b3:6e:d5: c0:bf:b1:bf:57:a6:f2:d6:32:d3:0c:f0:b0:0a:66: 42:e9:82:7a:d1:46:8a:8b:37:0a:ff:e7:79:b0:09: 34:63:9a:0a:c0:6d:86:e6:3e:38:7a:9d:1e:37:64: 2a:d6:ab:6f:fe:39:ef:8e:00:4d:2f:22:ec:86:4e: cc:8c:7f:53:a6:be:ad:cd:ef:d9:81:5d:f7:be:3f: da:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D6:8E:15:6A:B8:31:1B:44:EC:6B:69:79:8B:D9:4E:73:37:DA:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.186.32.0/19 Signature Algorithm: sha256WithRSAEncryption 10:84:1b:65:30:fe:d8:00:df:ad:92:6d:49:38:da:9e:19:fb: 29:e6:b6:5b:19:51:3d:e4:88:89:5f:33:dc:e2:fb:86:96:7e: ae:50:47:8d:2f:64:00:b8:cc:9e:65:7e:9a:83:a5:e5:7f:a5: a0:09:3f:f3:f2:c8:d0:5d:c1:5e:da:3f:98:31:de:ec:b8:83: 87:4c:cb:99:4c:dd:25:ad:23:40:70:69:d4:ea:ea:02:d6:2f: 17:06:27:58:a0:fe:c1:c8:81:14:44:53:53:82:65:e7:ee:34: 84:77:eb:d9:ca:46:f5:9a:36:b0:95:db:83:5b:c6:03:f4:85: df:af:42:00:2f:52:f4:72:3a:8f:2a:40:66:50:06:99:e7:63: fe:33:9c:cc:1c:ec:48:41:4d:1e:b6:a1:a2:7e:51:72:ea:83: 7d:cf:62:f1:b4:7d:79:dc:ee:01:61:49:6f:ed:a2:d8:f6:d3: 99:f5:d9:a5:73:2c:66:10:df:51:dc:b2:41:13:98:c0:6c:6b: ef:30:6b:f9:67:ce:6e:4f:a6:9a:49:16:99:85:3b:af:5c:30: 10:d9:19:9d:0d:c0:b0:7d:41:42:29:0b:1d:35:4d:ea:13:44: ff:44:66:a5:33:48:cc:c7:cc:58:48:2f:66:8b:ba:5a:7f:5b: 60:26:a6:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULTPGvkUlC5M8cb7Qkh0KfSqgTh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAwMTAyWhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmU4NWI0MGFmZTc4MGQ4MDJmODY4YzU5ZjE2MTI3NmM4 MmQzZmUxMDllNGU5YzQ5MjkyNTJmMzUyNzMyN2VmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFJQLxK16whjZVlglTJxNfz5fR773gsltQNxlCf47N/Ftd mQ+Tk5dAd31DwxGW1eh0uvjClsHDi+Pk14oltE4kcPrgeaM7iU520fqrml/+XgG3 1eA1ecTzAA9eLUK/gKjuTzK6B/jpnaeSOCdGWb9ifXi4LZ29vhkUXjnHV1AetxdL PNjqJN7dO/DHdNmpNO67UCx0Di1S25gZeUFRg5n4slELfhyp63lWCI4D/TUKDbNu 1cC/sb9XpvLWMtMM8LAKZkLpgnrRRoqLNwr/53mwCTRjmgrAbYbmPjh6nR43ZCrW q2/+Oe+OAE0vIuyGTsyMf1Omvq3N79mBXfe+P9rtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWtaOFWq4MRtE7GtpeYvZTnM32o8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMmE0YTIwLTFhZDgtNDlhYi05NmM0LWVjNDEyNzhhMDM5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWCuiAwDQYJKoZIhvcNAQELBQADggEBABCEG2Uw/tgA362SbUk42p4Z+ynm tlsZUT3kiIlfM9zi+4aWfq5QR40vZAC4zJ5lfpqDpeV/paAJP/PyyNBdwV7aP5gx 3uy4g4dMy5lM3SWtI0BwadTq6gLWLxcGJ1ig/sHIgRREU1OCZefuNIR369nKRvWa NrCV24NbxgP0hd+vQgAvUvRyOo8qQGZQBpnnY/4znMwc7EhBTR62oaJ+UXLqg33P YvG0fXnc7gFhSW/totj205n12aVzLGYQ31HcskETmMBsa+8wa/lnzm5PpppJFpmF O69cMBDZGZ0NwLB9QUIpCx01TeoTRP9EZqUzSMzHzFhIL2aLulp/W2Ampjg= -----END CERTIFICATE-----Generated at Sun May 11 09:42:50 2025 by rpki-client