$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97124c90-e9d4-44e2-aad7-a1d216f69aa7.roa File: 97124c90-e9d4-44e2-aad7-a1d216f69aa7.roa (raw, json) Hash identifier: XK600LY0gijarGLuKSzcJmf0VkglJcxOXmTCH1+Npbg= Subject key identifier: 23:99:CE:6C:B6:3E:01:1E:BE:02:B7:9E:6E:C1:70:2F:B8:5B:F7:D1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 62308F6D7811FCE125F658127491D49171C6A003 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97124c90-e9d4-44e2-aad7-a1d216f69aa7.roa Signing time: Wed 09 Jul 2025 00:32:10 +0000 ROA not before: Wed 09 Jul 2025 00:32:10 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:30:8f:6d:78:11:fc:e1:25:f6:58:12:74:91:d4:91:71:c6:a0:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:32:10 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=849202332fc4b117e7afb601b10fe19f6a7ffd59f2d99f3cf1131e94c88dfb9d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:90:07:d7:0f:ac:c7:49:c7:77:4f:93:b0:6c: 1c:f0:a1:e7:44:a9:7d:38:93:7c:eb:82:df:4e:a4: 94:66:ec:44:c1:ef:38:4c:1a:b3:da:5f:64:c4:58: 84:c3:d8:14:43:37:2d:c2:cf:09:a2:83:ed:b2:49: 5a:3a:80:30:a4:03:1f:e5:56:23:1b:22:87:09:e0: a6:1f:dd:69:d5:81:00:7a:64:a0:e1:c3:0d:4a:4b: be:a2:25:be:97:5c:d9:0d:e0:43:e4:33:5e:aa:45: 14:35:8f:0d:76:97:df:90:b2:9b:8e:03:30:b8:c2: d1:94:10:8d:75:bd:34:e2:15:e5:d8:f2:9c:8a:1f: 16:f4:63:7f:0e:81:00:47:fb:b5:cc:75:7b:87:a6: 4a:1e:16:10:35:3d:b8:61:2e:82:a4:be:50:6c:af: d2:2c:ff:d8:14:87:3c:5d:92:3c:04:f3:51:a1:be: b4:4d:07:e0:0c:2e:94:a6:f9:99:e9:66:35:9b:21: 72:d0:1d:ee:80:55:a0:d0:e6:f3:5d:d2:4d:ef:1b: a1:d3:1e:91:e9:1e:8a:50:05:28:cc:5f:b3:35:75: eb:77:61:cc:bd:63:f7:ec:56:31:d8:f8:7c:54:41: c7:3f:ce:9a:11:b6:f0:80:54:18:24:9d:f0:86:73: 49:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:99:CE:6C:B6:3E:01:1E:BE:02:B7:9E:6E:C1:70:2F:B8:5B:F7:D1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97124c90-e9d4-44e2-aad7-a1d216f69aa7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.76.0/22 Signature Algorithm: sha256WithRSAEncryption a4:56:1a:4f:b5:7e:6b:ce:f1:e1:f3:0b:2a:c4:4e:f8:8e:e2: 7d:06:a4:f3:04:a0:a4:bf:70:1e:5c:97:c7:97:26:3e:9d:ac: 53:c7:8f:d6:ca:6e:2a:44:d9:53:9e:1b:35:2a:25:5f:5d:3e: e6:df:11:1c:1d:2b:ac:79:29:55:0e:30:87:13:d4:5e:01:0c: 78:42:d8:9c:3e:b5:ac:32:99:91:ac:1f:82:b4:af:04:1a:95: 16:d5:d6:2c:bb:e2:82:c0:73:a5:bb:7c:49:44:22:f9:d8:26: 1e:4c:6f:2e:47:30:54:80:06:76:99:82:b2:95:73:e2:20:30: af:58:7e:0c:4e:f9:06:60:0f:e7:fd:9c:cb:f4:78:2e:2d:e5: f8:d7:68:e4:e1:98:bb:a0:c6:df:4c:e9:81:99:96:75:8f:69: ea:ec:72:5b:b4:8d:52:7b:7b:60:e3:6d:e9:aa:25:9b:2e:ff: c5:3e:0d:5f:f3:f4:35:f6:a0:b5:61:68:0f:89:73:cc:c1:57: 9a:b5:47:17:6e:8f:5c:d9:cc:af:5d:ac:05:03:6a:36:b5:de: 63:38:df:c8:d2:e2:e3:08:e5:b4:53:39:c9:12:d0:a8:09:9f: 04:69:08:6c:10:3f:e4:1f:ce:f0:2f:94:dc:b0:4e:1d:af:c7: a7:87:ba:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYjCPbXgR/OEl9lgSdJHUkXHGoAMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAzMjEwWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDkyMDIzMzJmYzRiMTE3ZTdhZmI2MDFiMTBmZTE5ZjZh N2ZmZDU5ZjJkOTlmM2NmMTEzMWU5NGM4OGRmYjlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqkAfXD6zHScd3T5OwbBzwoedEqX04k3zrgt9OpJRm7ETB 7zhMGrPaX2TEWITD2BRDNy3Czwmig+2ySVo6gDCkAx/lViMbIocJ4KYf3WnVgQB6 ZKDhww1KS76iJb6XXNkN4EPkM16qRRQ1jw12l9+QspuOAzC4wtGUEI11vTTiFeXY 8pyKHxb0Y38OgQBH+7XMdXuHpkoeFhA1PbhhLoKkvlBsr9Is/9gUhzxdkjwE81Gh vrRNB+AMLpSm+ZnpZjWbIXLQHe6AVaDQ5vNd0k3vG6HTHpHpHopQBSjMX7M1det3 Ycy9Y/fsVjHY+HxUQcc/zpoRtvCAVBgknfCGc0mNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI5nObLY+AR6+AreebsFwL7hb99EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3MTI0YzkwLWU5ZDQtNDRlMi1hYWQ3LWExZDIxNmY2OWFhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIXF0wwDQYJKoZIhvcNAQELBQADggEBAKRWGk+1fmvO8eHzCyrETviO4n0G pPMEoKS/cB5cl8eXJj6drFPHj9bKbipE2VOeGzUqJV9dPubfERwdK6x5KVUOMIcT 1F4BDHhC2Jw+tawymZGsH4K0rwQalRbV1iy74oLAc6W7fElEIvnYJh5Mby5HMFSA BnaZgrKVc+IgMK9YfgxO+QZgD+f9nMv0eC4t5fjXaOThmLugxt9M6YGZlnWPaers clu0jVJ7e2DjbemqJZsu/8U+DV/z9DX2oLVhaA+Jc8zBV5q1Rxduj1zZzK9drAUD aja13mM438jS4uMI5bRTOckS0KgJnwRpCGwQP+QfzvAvlNywTh2vx6eHukM= -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:37 2025 by rpki-client