$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96e165dc-4d07-4326-aacf-c4700465f695.roa File: 96e165dc-4d07-4326-aacf-c4700465f695.roa (raw, json) Hash identifier: sMsXrcYHWyHT+yuouktAlFH88US6i40/Fm0G9bz8ERg= Subject key identifier: D9:0D:A1:50:DE:B4:D9:FE:99:65:DF:0F:CA:B1:C9:39:BF:78:D2:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6FD98187EF3A9FEC130A42C8C47004DB36C223B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96e165dc-4d07-4326-aacf-c4700465f695.roa Signing time: Fri 25 Apr 2025 15:11:35 +0000 ROA not before: Fri 25 Apr 2025 15:11:35 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.130.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:d9:81:87:ef:3a:9f:ec:13:0a:42:c8:c4:70:04:db:36:c2:23:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:11:35 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=0d9efe33df25238445076f88fd90b693c1c2caf88476ab4c23860bf1482f5a44, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:66:a3:d8:b5:8d:a7:5c:bb:b3:29:8c:e0:5f: 2e:98:46:7a:a5:51:40:1f:6f:b8:74:81:63:4e:a1: a8:79:35:f0:a3:50:b2:05:4a:d2:43:3c:42:e5:7c: 4f:02:2b:3b:97:74:23:1b:aa:99:79:cd:42:a0:a9: 34:12:47:b7:e8:cc:df:e9:98:8e:85:6d:bf:d7:93: cd:3d:45:c0:87:92:8d:60:18:e9:cd:6c:cd:3e:a6: e6:5a:86:5b:37:da:0a:c8:10:3d:10:f6:15:8e:d0: df:13:71:5c:f5:8b:8a:f6:c4:cb:27:0e:5c:38:5a: 4e:51:99:96:8a:46:53:2f:59:1f:0b:74:47:d6:ac: b8:f7:2b:65:17:ff:21:d8:1d:26:b8:3e:1e:6c:da: 5b:a7:0b:90:c7:df:03:44:54:fc:cc:71:57:32:57: 95:aa:75:a3:76:c7:1f:a3:6a:fb:99:9c:60:9d:a9: 48:84:ec:b1:a5:cf:e2:a0:ff:b1:2c:68:ad:cf:11: 02:09:b9:82:a1:b3:24:55:90:9d:de:f9:31:42:b6: ff:47:47:06:a9:21:c0:ab:63:33:87:6e:9b:40:48: ea:8a:85:ee:b6:a7:13:fb:c9:65:b0:cc:13:dc:0a: f8:74:d0:f8:fe:cb:83:c3:29:e2:ef:bc:73:a7:ba: 07:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:0D:A1:50:DE:B4:D9:FE:99:65:DF:0F:CA:B1:C9:39:BF:78:D2:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96e165dc-4d07-4326-aacf-c4700465f695.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.130.0.0/15 Signature Algorithm: sha256WithRSAEncryption d4:4a:01:fe:7b:0d:8e:5f:1d:e2:1d:cb:b4:f3:df:b2:0a:35: ca:e5:2a:16:b0:af:c7:5b:3d:d7:33:82:53:b2:48:8c:80:00: ac:6f:be:fe:7b:af:1a:f2:7a:87:ee:29:ee:53:ba:f6:f6:76: eb:2a:30:3d:af:b2:50:85:cb:fb:a2:23:cc:9a:43:17:8a:c0: bf:67:55:2b:fd:a5:7a:dc:c9:b9:e4:c0:a4:aa:d8:4a:99:9c: 84:92:f4:20:57:2c:d1:70:6f:e9:17:62:17:e1:89:63:10:39: d7:f2:2b:77:c3:35:90:2d:54:b6:fd:f3:58:dc:87:9f:9b:b7: 04:ac:2e:c2:77:58:fa:3d:ae:76:15:ff:cd:10:48:f3:6e:c8: a7:7b:7a:c7:99:85:a1:cc:58:67:2c:6c:16:c5:b7:ea:67:d0: a0:2a:4d:80:6f:ec:06:34:b9:a6:39:90:e6:6c:31:11:db:58: 30:d1:66:ba:44:5c:f6:2e:88:37:ed:9a:e3:9c:13:03:92:ca: cc:52:22:a5:df:7a:00:44:0b:74:72:12:b9:70:74:92:22:26: 84:ab:67:87:c6:18:f1:f0:ec:69:60:c2:b7:d7:42:8b:f1:d1: af:92:73:49:d5:46:45:40:0b:63:7e:14:96:51:59:20:5f:6b: 74:6d:56:3b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUb9mBh+86n+wTCkLIxHAE2zbCI7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUxMTM1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDllZmUzM2RmMjUyMzg0NDUwNzZmODhmZDkwYjY5M2Mx YzJjYWY4ODQ3NmFiNGMyMzg2MGJmMTQ4MmY1YTQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2ZqPYtY2nXLuzKYzgXy6YRnqlUUAfb7h0gWNOoah5NfCj ULIFStJDPELlfE8CKzuXdCMbqpl5zUKgqTQSR7fozN/pmI6Fbb/Xk809RcCHko1g GOnNbM0+puZahls32grIED0Q9hWO0N8TcVz1i4r2xMsnDlw4Wk5RmZaKRlMvWR8L dEfWrLj3K2UX/yHYHSa4Ph5s2lunC5DH3wNEVPzMcVcyV5WqdaN2xx+javuZnGCd qUiE7LGlz+Kg/7EsaK3PEQIJuYKhsyRVkJ3e+TFCtv9HRwapIcCrYzOHbptASOqK he62pxP7yWWwzBPcCvh00Pj+y4PDKeLvvHOnugcnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2Q2hUN602f6ZZd8PyrHJOb940uMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk2ZTE2NWRjLTRkMDctNDMyNi1hYWNmLWM0NzAwNDY1ZjY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFigjANBgkqhkiG9w0BAQsFAAOCAQEA1EoB/nsNjl8d4h3LtPPfsgo1yuUq FrCvx1s91zOCU7JIjIAArG++/nuvGvJ6h+4p7lO69vZ26yowPa+yUIXL+6IjzJpD F4rAv2dVK/2letzJueTApKrYSpmchJL0IFcs0XBv6RdiF+GJYxA51/Ird8M1kC1U tv3zWNyHn5u3BKwuwndY+j2udhX/zRBI827Ip3t6x5mFocxYZyxsFsW36mfQoCpN gG/sBjS5pjmQ5mwxEdtYMNFmukRc9i6IN+2a45wTA5LKzFIipd96AEQLdHISuXB0 kiImhKtnh8YY8fDsaWDCt9dCi/HRr5JzSdVGRUALY34UllFZIF9rdG1WOw== -----END CERTIFICATE-----Generated at Sat Apr 26 18:38:16 2025 by rpki-client