$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa File: 690a6427-0431-4128-b562-6a43d052c2a9.roa (raw, json) Hash identifier: C+srK7tDzka2uq7lahkPXyTrVtQW8a1wtVOZj/p2KqU= Subject key identifier: 36:21:4B:2E:DC:0A:9E:82:91:F5:9F:73:57:B3:B0:DD:02:B3:AB:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B5E75A3793E27F9B1FC7574D87C4AD0C65BBFF0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa Signing time: Fri 25 Apr 2025 00:21:57 +0000 ROA not before: Fri 25 Apr 2025 00:21:57 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:5e:75:a3:79:3e:27:f9:b1:fc:75:74:d8:7c:4a:d0:c6:5b:bf:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:21:57 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=5d1a194bc3206d581a830f2ab07a9542fa07f883fda48de1834de8cf22cf6228, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:62:a2:8d:ff:9c:21:28:5d:18:46:64:7a:df: 4a:62:6a:53:bc:84:ce:61:9a:58:57:45:cf:96:79: 41:7a:52:26:81:35:df:b7:93:8d:c0:97:e2:39:57: 10:70:36:34:f7:26:80:72:c1:5b:a4:79:51:54:ec: ef:a3:75:ab:7c:4d:24:df:c5:23:e2:40:1a:56:ec: fd:9a:91:eb:71:97:bb:80:30:ff:4c:b0:6b:eb:8c: fa:34:92:58:b5:a1:09:3a:83:74:f4:fd:52:a0:37: 45:c8:3c:05:19:da:06:d3:66:ea:65:d6:fd:42:c0: 39:30:3c:41:45:ee:dc:78:ea:b0:1f:e6:d2:0f:40: 52:02:cc:09:e7:cb:17:d3:24:26:36:26:1a:09:f6: ad:11:79:c1:c5:92:27:01:10:8d:b1:d7:a4:c9:36: 91:b8:cf:80:ef:40:6e:90:dd:ad:2c:5d:3d:08:4c: 3a:11:5f:6a:73:17:03:b9:37:0f:df:22:69:dc:c1: e0:98:b4:e0:38:1d:8b:1e:bc:b8:d4:a6:ca:61:34: 1a:5e:32:c6:77:ef:c8:33:79:53:ef:64:eb:2d:01: 23:4c:4e:da:bd:e1:6e:52:98:30:05:75:59:44:65: 30:c3:07:85:60:d2:e4:84:7d:99:bb:e6:0d:53:51: 6f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:21:4B:2E:DC:0A:9E:82:91:F5:9F:73:57:B3:B0:DD:02:B3:AB:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.72.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:5d:ee:c1:57:9c:99:84:e2:ed:ed:b4:e2:f3:ac:f9:fd:ee: e5:73:fb:5a:fb:27:63:de:91:05:e3:7a:06:6e:a7:25:a1:c2: 73:34:b7:0a:11:18:d2:56:fa:06:46:b8:63:b6:c2:e1:d3:2b: 9e:a2:a6:65:33:4e:c4:da:71:1f:60:b3:b3:17:63:44:aa:b8: 8e:14:17:4a:ae:48:ca:4e:47:c5:bc:c1:78:17:64:31:67:41: f2:a9:d7:bd:da:49:cb:77:b6:6a:3d:d2:f5:6c:a0:75:2d:2d: 81:99:47:92:8c:f0:d2:d2:be:dd:79:bd:e9:78:07:b5:63:15: 83:f7:b5:57:fc:e1:96:12:86:80:0f:cd:0c:a5:c3:4d:ca:21: 06:42:07:6d:ca:12:c0:a5:2c:ae:69:bb:f3:76:3c:de:e5:ee: 51:aa:cd:78:df:86:be:d9:57:b3:e5:bd:79:ff:ff:0d:d6:6f: 98:74:72:21:d1:29:0a:7e:05:ee:d3:5c:62:b6:bd:ef:02:96: 19:af:17:2a:f6:ac:d6:a9:f3:15:6f:98:85:84:06:46:68:2e: e2:2d:44:fd:17:3a:89:cc:a3:57:cf:e3:91:f9:39:02:1e:3f: 5e:bc:d3:9d:ea:77:fe:2e:54:5f:31:54:dd:3f:e1:45:1e:e6: c9:4a:8f:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG151o3k+J/mx/HV02HxK0MZbv/AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAyMTU3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDFhMTk0YmMzMjA2ZDU4MWE4MzBmMmFiMDdhOTU0MmZh MDdmODgzZmRhNDhkZTE4MzRkZThjZjIyY2Y2MjI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaYqKN/5whKF0YRmR630pialO8hM5hmlhXRc+WeUF6UiaB Nd+3k43Al+I5VxBwNjT3JoBywVukeVFU7O+jdat8TSTfxSPiQBpW7P2aketxl7uA MP9MsGvrjPo0kli1oQk6g3T0/VKgN0XIPAUZ2gbTZupl1v1CwDkwPEFF7tx46rAf 5tIPQFICzAnnyxfTJCY2JhoJ9q0RecHFkicBEI2x16TJNpG4z4DvQG6Q3a0sXT0I TDoRX2pzFwO5Nw/fImncweCYtOA4HYsevLjUpsphNBpeMsZ378gzeVPvZOstASNM Ttq94W5SmDAFdVlEZTDDB4Vg0uSEfZm75g1TUW+vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNiFLLtwKnoKR9Z9zV7Ow3QKzq1EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5MGE2NDI3LTA0MzEtNDEyOC1iNTYyLTZhNDNkMDUyYzJhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIXF0gwDQYJKoZIhvcNAQELBQADggEBAA5d7sFXnJmE4u3ttOLzrPn97uVz +1r7J2PekQXjegZupyWhwnM0twoRGNJW+gZGuGO2wuHTK56ipmUzTsTacR9gs7MX Y0SquI4UF0quSMpOR8W8wXgXZDFnQfKp173aSct3tmo90vVsoHUtLYGZR5KM8NLS vt15vel4B7VjFYP3tVf84ZYShoAPzQylw03KIQZCB23KEsClLK5pu/N2PN7l7lGq zXjfhr7ZV7PlvXn//w3Wb5h0ciHRKQp+Be7TXGK2ve8ClhmvFyr2rNap8xVvmIWE BkZoLuItRP0XOonMo1fP45H5OQIeP168053qd/4uVF8xVN0/4UUe5slKj2g= -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:14 2025 by rpki-client