$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9d0e16e-bce5-4522-b44e-614362edb054.roa File: e9d0e16e-bce5-4522-b44e-614362edb054.roa (raw, json) Hash identifier: T/9JZwVfL3hE8v4UtMh2ApN7OyWAP1aE+VpeK1Uqst0= Subject key identifier: 1F:77:F2:72:4C:5E:E4:55:F9:4B:20:23:02:41:5F:B0:64:F0:76:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A98CB24AFEAE4352A06DC5ECD922E89994C200C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9d0e16e-bce5-4522-b44e-614362edb054.roa Signing time: Tue 15 Apr 2025 00:41:41 +0000 ROA not before: Tue 15 Apr 2025 00:41:41 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:98:cb:24:af:ea:e4:35:2a:06:dc:5e:cd:92:2e:89:99:4c:20:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:41:41 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=b99c7f3f5551e1ef549661ddd3ec7c2927671d1f365d560ca19828aa5ac091f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:98:5a:2f:4f:f3:7c:5c:df:c4:41:97:fc:50: 13:be:09:41:dd:86:38:29:0e:b9:39:16:70:ae:7b: b0:71:bf:94:83:b9:9e:cd:00:23:43:09:31:b7:ec: 6c:c4:79:b3:37:f6:6c:af:13:05:d0:05:95:04:b0: 99:76:7b:dc:6e:18:1d:5d:e3:7d:e3:e1:c7:77:31: 37:8a:0d:fc:30:af:4d:bf:7f:eb:fb:3b:86:74:ea: 8b:dc:7d:37:07:26:fd:ad:cd:23:e8:10:8b:ef:a1: f6:ec:c1:a7:8d:c9:7d:da:e9:23:42:b7:44:51:b6: 4a:04:55:02:c6:0b:9d:d2:17:63:8f:45:0b:74:b1: 87:23:c2:7d:02:78:0d:73:99:71:d5:c8:61:02:eb: 09:35:53:c1:da:85:12:df:c4:2d:cf:ce:a5:d2:e2: 64:9d:9b:0c:a2:d8:7c:13:a7:04:4c:14:a4:60:47: 98:e4:e6:b5:87:9f:89:62:82:d5:23:6d:77:3f:d1: 38:4a:07:39:1b:c7:4c:e2:2e:a6:ba:43:98:0c:ad: 96:0d:ad:d6:de:64:11:c8:d2:7b:c3:bc:c8:67:9f: e9:0b:08:fb:04:64:ef:d6:b6:62:f9:f3:db:7d:2d: 8c:1b:85:e0:a5:53:fb:17:9f:30:05:0a:d7:fa:4c: 87:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:77:F2:72:4C:5E:E4:55:F9:4B:20:23:02:41:5F:B0:64:F0:76:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9d0e16e-bce5-4522-b44e-614362edb054.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.74.0/24 Signature Algorithm: sha256WithRSAEncryption 73:2d:c7:86:83:a1:21:ec:b4:12:13:55:50:95:bc:57:1f:f0: 79:69:24:e0:be:68:79:90:74:99:51:7a:7f:b3:26:69:19:af: b4:f4:0b:fe:a2:cd:03:bb:86:40:13:38:e0:76:b1:c6:53:de: a7:90:1f:85:9a:41:0a:8a:37:bd:3f:7a:87:db:69:df:f2:98: 97:00:e4:b8:8a:c0:b7:c6:14:12:08:fe:54:ab:35:6d:a1:59: 2c:90:19:a3:3a:58:8e:79:6e:9c:22:78:80:67:34:82:ac:d1: 5d:88:62:ef:bf:43:c0:5b:59:10:dc:84:7d:3b:3b:a0:b4:f4: 04:42:48:99:ed:7d:97:ae:0c:3b:f5:b4:5d:55:16:e8:89:ea: 09:db:ef:97:78:74:8a:06:27:ce:b6:cc:99:8b:c3:67:14:6f: 05:b1:14:50:b9:af:df:1f:1f:86:ec:c4:8b:d4:25:16:d8:87: 83:ba:49:bc:6e:0f:96:aa:3d:63:f2:18:45:a6:dd:ea:dc:78: 67:df:14:c6:d9:59:d9:ea:c0:fa:9f:dc:a1:7b:bc:df:09:62: db:a1:0b:3d:4b:c4:86:45:0e:dc:c3:48:ca:a9:c8:f0:86:9c: eb:3c:6c:f7:36:15:15:7a:9d:d5:9c:4d:dc:8d:3f:9e:ab:13: ef:a4:9e:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCpjLJK/q5DUqBtxezZIuiZlMIAwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDA0MTQxWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTljN2YzZjU1NTFlMWVmNTQ5NjYxZGRkM2VjN2MyOTI3 NjcxZDFmMzY1ZDU2MGNhMTk4MjhhYTVhYzA5MWYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0mFovT/N8XN/EQZf8UBO+CUHdhjgpDrk5FnCue7Bxv5SD uZ7NACNDCTG37GzEebM39myvEwXQBZUEsJl2e9xuGB1d433j4cd3MTeKDfwwr02/ f+v7O4Z06ovcfTcHJv2tzSPoEIvvofbswaeNyX3a6SNCt0RRtkoEVQLGC53SF2OP RQt0sYcjwn0CeA1zmXHVyGEC6wk1U8HahRLfxC3PzqXS4mSdmwyi2HwTpwRMFKRg R5jk5rWHn4ligtUjbXc/0ThKBzkbx0ziLqa6Q5gMrZYNrdbeZBHI0nvDvMhnn+kL CPsEZO/WtmL589t9LYwbheClU/sXnzAFCtf6TIcFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUH3fyckxe5FX5SyAjAkFfsGTwdmwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5ZDBlMTZlLWJjZTUtNDUyMi1iNDRlLTYxNDM2MmVkYjA1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl0owDQYJKoZIhvcNAQELBQADggEBAHMtx4aDoSHstBITVVCVvFcf8Hlp JOC+aHmQdJlRen+zJmkZr7T0C/6izQO7hkATOOB2scZT3qeQH4WaQQqKN70/eofb ad/ymJcA5LiKwLfGFBII/lSrNW2hWSyQGaM6WI55bpwieIBnNIKs0V2IYu+/Q8Bb WRDchH07O6C09ARCSJntfZeuDDv1tF1VFuiJ6gnb75d4dIoGJ862zJmLw2cUbwWx FFC5r98fH4bsxIvUJRbYh4O6SbxuD5aqPWPyGEWm3erceGffFMbZWdnqwPqf3KF7 vN8JYtuhCz1LxIZFDtzDSMqpyPCGnOs8bPc2FRV6ndWcTdyNP56rE++knuw= -----END CERTIFICATE-----Generated at Sat Apr 26 19:25:15 2025 by rpki-client