$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa File: 690a6427-0431-4128-b562-6a43d052c2a9.roa (raw, json) Hash identifier: OhX370AYurl9+Xxqt7T9/32mhywQT+GzOXMTVcaXd9o= Subject key identifier: 8F:F3:D7:A9:0D:36:96:42:A8:C3:85:BD:35:A9:A0:76:59:86:4B:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C40804ABC533FFEB72767544D9E8FBA1C220AEB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa Signing time: Mon 04 Aug 2025 15:41:43 +0000 ROA not before: Mon 04 Aug 2025 15:41:43 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:40:80:4a:bc:53:3f:fe:b7:27:67:54:4d:9e:8f:ba:1c:22:0a:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:41:43 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=a1130c3076c5d664a5e5ec58f9bcaa369be51be66d2ef6ff519f12f4d711280a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a7:20:f5:7a:c1:ca:18:55:70:29:bc:e4:af: 3e:c0:37:ab:40:85:a4:bc:ff:8c:1a:f8:90:f6:62: da:10:10:83:0b:fb:53:f2:5c:e7:f4:62:c5:61:9b: 8b:7a:6f:ca:62:ca:9c:5d:5a:45:ab:7b:2b:a0:81: a1:36:d5:e8:ce:1d:a9:d6:4a:9a:7a:90:22:14:46: 85:01:15:25:98:48:6a:87:be:2e:a7:57:a8:ad:1b: 16:b8:d6:ec:54:dc:67:f0:75:b1:bb:df:16:d1:be: 16:a0:33:34:a4:00:9a:8d:c5:fb:86:f1:a2:92:34: 02:68:93:8d:ee:12:20:a1:2d:de:1a:49:32:7b:9e: 06:d6:05:43:e4:03:cb:39:ce:27:ab:d1:db:ed:6c: 37:e0:67:d0:b1:c8:f9:a2:eb:9f:0c:82:6e:b7:a3: 89:8f:38:87:5f:6a:53:2e:f0:7e:98:a4:05:55:86: b4:23:57:0a:71:59:b4:10:49:33:5c:da:0e:cc:b4: f3:c0:ae:ff:07:6f:86:ca:9e:35:05:c8:92:9e:45: fe:65:18:62:4c:e0:17:49:a0:be:5e:22:f5:a0:f0: d3:7b:96:c4:8d:4f:fe:49:41:ed:6b:97:6c:50:45: a0:e9:5b:26:bb:ec:27:a5:a1:06:22:bb:9d:65:3e: 37:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F3:D7:A9:0D:36:96:42:A8:C3:85:BD:35:A9:A0:76:59:86:4B:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.72.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:5b:5a:af:a1:f5:8b:55:24:6a:7a:8f:7f:7e:d6:45:62:35: f9:2f:c4:a3:f3:43:79:eb:b6:18:a7:ac:f4:e0:c7:bd:6e:a5: b3:72:fc:92:db:56:19:50:02:63:4f:e7:13:79:4b:98:ac:36: 5a:5c:90:8c:e5:7b:39:02:0a:4c:ab:33:3a:87:36:a3:e9:43: 26:e6:70:f7:4e:9c:f6:fc:d7:6f:8d:90:06:54:9a:32:18:f4: ae:df:c0:e3:5e:bd:a2:ea:25:cb:ef:2d:7f:58:d1:18:c8:39: 78:7c:d5:35:e3:10:b2:f3:8b:c4:94:aa:8f:94:59:34:e7:27: 19:ad:d2:c1:69:f1:de:4d:ba:bf:55:5e:2b:77:96:8d:07:63: 6b:29:3d:eb:22:e4:05:87:37:fb:ed:9c:d4:1d:c9:28:ec:6e: b6:dd:8c:b4:ba:1b:69:2a:07:b4:9b:f0:50:69:00:cd:cd:6b: 09:07:f4:f5:73:50:61:e6:61:17:e3:ea:22:75:c6:dd:60:0f: f3:a5:9a:ac:b8:9b:0e:0c:53:37:dd:71:0d:9b:99:53:8d:e8: 10:19:27:0e:a8:8d:25:5b:29:45:9a:52:32:78:f0:91:ec:c1: c8:d4:83:e5:ea:25:1f:49:47:33:fc:90:f7:8c:28:76:35:f3: b8:41:c3:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXECASrxTP/63J2dUTZ6PuhwiCuswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU0MTQzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTEzMGMzMDc2YzVkNjY0YTVlNWVjNThmOWJjYWEzNjli ZTUxYmU2NmQyZWY2ZmY1MTlmMTJmNGQ3MTEyODBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMpyD1esHKGFVwKbzkrz7AN6tAhaS8/4wa+JD2YtoQEIML +1PyXOf0YsVhm4t6b8piypxdWkWreyuggaE21ejOHanWSpp6kCIURoUBFSWYSGqH vi6nV6itGxa41uxU3GfwdbG73xbRvhagMzSkAJqNxfuG8aKSNAJok43uEiChLd4a STJ7ngbWBUPkA8s5zier0dvtbDfgZ9CxyPmi658Mgm63o4mPOIdfalMu8H6YpAVV hrQjVwpxWbQQSTNc2g7MtPPArv8Hb4bKnjUFyJKeRf5lGGJM4BdJoL5eIvWg8NN7 lsSNT/5JQe1rl2xQRaDpWya77CeloQYiu51lPjejAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj/PXqQ02lkKow4W9NamgdlmGS3swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5MGE2NDI3LTA0MzEtNDEyOC1iNTYyLTZhNDNkMDUyYzJhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIXF0gwDQYJKoZIhvcNAQELBQADggEBAA1bWq+h9YtVJGp6j39+1kViNfkv xKPzQ3nrthinrPTgx71upbNy/JLbVhlQAmNP5xN5S5isNlpckIzlezkCCkyrMzqH NqPpQybmcPdOnPb812+NkAZUmjIY9K7fwONevaLqJcvvLX9Y0RjIOXh81TXjELLz i8SUqo+UWTTnJxmt0sFp8d5Nur9VXit3lo0HY2spPesi5AWHN/vtnNQdySjsbrbd jLS6G2kqB7Sb8FBpAM3NawkH9PVzUGHmYRfj6iJ1xt1gD/Olmqy4mw4MUzfdcQ2b mVON6BAZJw6ojSVbKUWaUjJ48JHswcjUg+XqJR9JRzP8kPeMKHY187hBw6A= -----END CERTIFICATE-----Generated at Sat Aug 9 10:41:13 2025 by rpki-client