$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba899484-5882-499b-8b7f-4bcbdb569b44.roa File: ba899484-5882-499b-8b7f-4bcbdb569b44.roa (raw, json) Hash identifier: GQvPx2qU3WAOXsS+GvdLh3PRsC/EhbeDz98SfEGU9/g= Subject key identifier: F2:EC:4A:08:3C:11:58:72:B5:AA:C2:41:B4:AF:53:66:00:45:7A:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F873177C42FA15ED6272B10228EA1235102407B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba899484-5882-499b-8b7f-4bcbdb569b44.roa Signing time: Mon 28 Apr 2025 15:21:17 +0000 ROA not before: Mon 28 Apr 2025 15:21:17 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 45.57.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:87:31:77:c4:2f:a1:5e:d6:27:2b:10:22:8e:a1:23:51:02:40:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:21:17 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=c88ee181fc6f2a301ef6d63fc1799b9b4c127b35dc9ab904bd0d3a9979b52afb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:17:90:f3:d4:98:63:54:56:da:dd:97:be:fe: 4c:77:60:e2:82:4b:6b:d2:bf:28:3e:d6:ba:16:6f: 36:65:5e:17:74:b5:5f:ea:42:40:18:85:6f:85:53: b7:43:b7:98:3b:2f:bb:dc:0e:94:eb:4c:6a:eb:69: e9:37:18:a8:bd:0b:34:d3:fd:fd:61:84:9b:8e:d7: aa:6e:94:f2:52:e5:40:8e:2c:37:6f:51:9f:7e:62: a3:07:14:c0:86:70:92:bd:56:65:76:50:84:0a:82: 3c:a8:74:06:cf:d3:a3:5d:5c:8b:01:a7:a9:51:f8: 46:88:3d:d6:28:11:62:64:7f:26:6f:08:13:7b:d9: c3:ae:af:db:8e:5f:6c:e6:93:c6:4e:b3:0a:39:44: 9e:57:5d:fc:7e:04:ab:5d:5b:e3:96:90:4b:45:be: ec:e2:3a:14:54:5a:4f:e6:14:c8:cc:c8:da:5e:90: 26:e0:05:c5:d9:d3:46:7e:c7:83:1f:08:27:1f:a9: 36:1a:f0:58:a7:20:14:e5:4d:33:fe:d6:34:8d:b0: c9:f1:89:72:f8:d6:68:f5:d3:4e:85:bd:a9:56:45: df:2b:02:a3:34:13:dd:61:9a:50:8e:81:06:24:4f: 7c:49:3c:7a:54:11:5a:92:fc:17:5d:3a:d5:1d:7a: 62:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EC:4A:08:3C:11:58:72:B5:AA:C2:41:B4:AF:53:66:00:45:7A:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba899484-5882-499b-8b7f-4bcbdb569b44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.57.128.0/17 Signature Algorithm: sha256WithRSAEncryption a3:19:9d:11:27:d9:fe:fa:58:81:70:48:22:0e:cd:c8:d1:45: ab:39:89:53:bd:ca:26:8f:30:93:16:78:19:8d:ea:92:6b:0a: 2c:21:ec:ee:37:b5:ab:3f:48:bb:7d:eb:71:40:44:c8:6c:cd: c9:fc:a4:c3:8c:f0:06:b7:b4:90:ff:5a:83:0a:f6:20:eb:77: 3c:7a:c6:64:a0:d3:3d:54:5b:00:b7:98:99:51:1f:37:6a:49: 9b:34:af:36:ed:b9:d2:7b:d1:7c:01:1b:0b:99:03:92:d8:18: e5:65:5a:fc:04:6f:7a:e4:d7:9f:e0:0e:a2:e5:50:4e:c6:72: e3:b7:ff:f2:36:92:17:ed:08:91:f4:0c:3f:da:37:2e:6a:88: 7d:a0:61:d1:08:bd:9d:ac:63:e7:8a:21:0a:10:20:a2:13:18: 49:5b:54:5f:8c:9e:84:39:d5:18:d5:45:5e:bb:4d:33:a3:d4: 3f:74:88:ce:fe:70:05:58:d7:35:87:a6:49:e9:27:d3:ea:b8: ae:d1:08:88:9d:73:60:d0:58:0a:dc:16:d5:37:87:2f:20:ef: 38:72:58:44:41:3e:d2:d0:95:b1:ec:04:0a:8a:87:ee:0e:ee: 05:24:87:86:9a:49:77:94:ab:47:f0:21:90:11:ed:e9:38:c5: 11:a7:1e:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD4cxd8QvoV7WJysQIo6hI1ECQHswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUyMTE3WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjODhlZTE4MWZjNmYyYTMwMWVmNmQ2M2ZjMTc5OWI5YjRj MTI3YjM1ZGM5YWI5MDRiZDBkM2E5OTc5YjUyYWZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqF5Dz1JhjVFba3Ze+/kx3YOKCS2vSvyg+1roWbzZlXhd0 tV/qQkAYhW+FU7dDt5g7L7vcDpTrTGrraek3GKi9CzTT/f1hhJuO16pulPJS5UCO LDdvUZ9+YqMHFMCGcJK9VmV2UIQKgjyodAbP06NdXIsBp6lR+EaIPdYoEWJkfyZv CBN72cOur9uOX2zmk8ZOswo5RJ5XXfx+BKtdW+OWkEtFvuziOhRUWk/mFMjMyNpe kCbgBcXZ00Z+x4MfCCcfqTYa8FinIBTlTTP+1jSNsMnxiXL41mj1006FvalWRd8r AqM0E91hmlCOgQYkT3xJPHpUEVqS/BddOtUdemJ7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8uxKCDwRWHK1qsJBtK9TZgBFehEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhODk5NDg0LTU4ODItNDk5Yi04YjdmLTRiY2JkYjU2OWI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBActOYAwDQYJKoZIhvcNAQELBQADggEBAKMZnREn2f76WIFwSCIOzcjRRas5 iVO9yiaPMJMWeBmN6pJrCiwh7O43tas/SLt963FARMhszcn8pMOM8Aa3tJD/WoMK 9iDrdzx6xmSg0z1UWwC3mJlRHzdqSZs0rzbtudJ70XwBGwuZA5LYGOVlWvwEb3rk 15/gDqLlUE7GcuO3//I2khftCJH0DD/aNy5qiH2gYdEIvZ2sY+eKIQoQIKITGElb VF+MnoQ51RjVRV67TTOj1D90iM7+cAVY1zWHpknpJ9PquK7RCIidc2DQWArcFtU3 hy8g7zhyWERBPtLQlbHsBAqKh+4O7gUkh4aaSXeUq0fwIZAR7ek4xRGnHlg= -----END CERTIFICATE-----Generated at Sun May 11 22:55:36 2025 by rpki-client