$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b4af20-fcdc-4748-8f25-2b0606d1a509.roa File: 24b4af20-fcdc-4748-8f25-2b0606d1a509.roa (raw, json) Hash identifier: 1M5tu5fyuID52qyAjz1ioAIeKI5vrb8z2FIJIYlFpws= Subject key identifier: 54:A2:83:7F:04:47:7F:27:01:BB:9F:BB:CB:27:8E:E7:D3:B4:3F:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C51FCD7B2295E99120EF8579A5E51B7F5CF7ABE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b4af20-fcdc-4748-8f25-2b0606d1a509.roa Signing time: Mon 19 May 2025 18:41:56 +0000 ROA not before: Mon 19 May 2025 18:41:56 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 31.1.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:51:fc:d7:b2:29:5e:99:12:0e:f8:57:9a:5e:51:b7:f5:cf:7a:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:41:56 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=550f056f7996e422b24dff1f19c2181c851885c530847283123f82317c5b80b7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a2:53:da:17:45:21:2c:5b:7c:d9:19:df:81: 0f:3a:bb:85:df:c5:8a:36:54:7b:28:06:3e:b5:2f: 49:82:79:fc:4d:ba:87:9b:e1:a2:3d:3a:c9:23:c3: eb:9f:3b:d1:a7:4b:e2:c4:b2:53:5f:84:d0:9e:f2: 20:be:99:fa:22:45:c1:07:59:9f:2e:b0:4c:fb:fc: 75:a7:8f:cb:57:54:d7:63:5c:f9:90:31:fd:a8:83: c3:b6:6b:6a:cd:03:c0:20:b9:fd:28:8c:01:14:6f: b6:f6:d5:32:3b:c8:2e:20:c0:73:1d:e4:7c:03:fe: 59:14:ff:1c:0e:0f:42:7d:1c:fc:6a:fc:a8:4d:db: bc:b9:26:ed:cc:97:7b:a8:62:df:6e:3f:a9:da:22: 2b:3b:e6:3a:f4:87:83:96:b2:e2:60:60:fa:f6:5b: 03:42:20:c1:a9:2b:b9:c3:81:86:d7:df:4b:3f:38: c8:ba:84:99:55:b1:d7:2a:cc:5f:4f:f4:e3:b1:d4: 25:10:d2:2c:c4:76:6e:18:8d:b0:a9:30:f7:64:f7: 87:05:6d:13:27:2b:80:cb:aa:9b:84:6d:ef:25:7c: c7:0c:d8:5f:a0:be:63:89:ca:c7:12:1e:54:59:04: b6:7f:b8:f0:81:fb:ee:19:8f:a4:1d:dc:24:09:3a: 6a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A2:83:7F:04:47:7F:27:01:BB:9F:BB:CB:27:8E:E7:D3:B4:3F:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b4af20-fcdc-4748-8f25-2b0606d1a509.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:a7:7f:95:67:91:a2:86:0a:95:4a:75:c6:e4:5e:f6:53:02: f6:fd:ab:52:78:a1:83:a6:8d:86:07:9a:89:d6:81:be:1b:50: 6a:55:ab:c7:54:a8:1e:8e:63:2e:2d:a2:47:0b:69:9a:1b:a2: 5c:14:08:75:03:e7:5a:12:9e:e6:11:8c:49:c2:97:0b:9d:fe: 32:a3:30:a1:1a:87:5b:be:77:40:25:e7:1f:e1:50:f3:8d:3f: 0b:f7:2e:e1:a3:c2:c1:c1:1d:32:b4:d8:4e:41:6f:03:b7:51: 85:25:e8:d1:56:02:17:78:07:d7:09:77:ae:d0:26:ca:ac:f3: 30:dd:6c:04:98:b0:29:10:de:5b:11:d4:3e:f7:fc:1e:05:28: 27:a7:13:23:68:61:d1:3b:3b:6b:a6:5e:ce:1e:3d:b9:6d:79: 14:64:b1:3e:ba:04:27:9f:4b:ce:cc:fe:38:92:4b:b5:98:ac: c8:73:2f:72:a9:4a:bc:3b:75:43:2d:41:29:36:f0:3b:14:59: 9c:4d:b5:8e:22:2c:4a:46:d1:b7:43:37:cf:37:23:6d:ae:ef: 7c:0b:38:8d:1a:f4:64:fd:3a:4a:a1:89:20:c9:76:5f:46:d9: 87:e8:0a:ce:31:40:16:01:03:ac:dd:91:4d:d2:81:57:a6:36: 1c:18:86:23 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXFH817IpXpkSDvhXml5Rt/XPer4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTg0MTU2WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTBmMDU2Zjc5OTZlNDIyYjI0ZGZmMWYxOWMyMTgxYzg1 MTg4NWM1MzA4NDcyODMxMjNmODIzMTdjNWI4MGI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdolPaF0UhLFt82RnfgQ86u4XfxYo2VHsoBj61L0mCefxN uoeb4aI9Oskjw+ufO9GnS+LEslNfhNCe8iC+mfoiRcEHWZ8usEz7/HWnj8tXVNdj XPmQMf2og8O2a2rNA8Aguf0ojAEUb7b21TI7yC4gwHMd5HwD/lkU/xwOD0J9HPxq /KhN27y5Ju3Ml3uoYt9uP6naIis75jr0h4OWsuJgYPr2WwNCIMGpK7nDgYbX30s/ OMi6hJlVsdcqzF9P9OOx1CUQ0izEdm4YjbCpMPdk94cFbRMnK4DLqpuEbe8lfMcM 2F+gvmOJyscSHlRZBLZ/uPCB++4Zj6Qd3CQJOmrTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVKKDfwRHfycBu5+7yyeO59O0PxcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0YjRhZjIwLWZjZGMtNDc0OC04ZjI1LTJiMDYwNmQxYTUwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAfATANBgkqhkiG9w0BAQsFAAOCAQEATqd/lWeRooYKlUp1xuRe9lMC9v2r Unihg6aNhgeaidaBvhtQalWrx1SoHo5jLi2iRwtpmhuiXBQIdQPnWhKe5hGMScKX C53+MqMwoRqHW753QCXnH+FQ840/C/cu4aPCwcEdMrTYTkFvA7dRhSXo0VYCF3gH 1wl3rtAmyqzzMN1sBJiwKRDeWxHUPvf8HgUoJ6cTI2hh0Ts7a6Zezh49uW15FGSx ProEJ59Lzsz+OJJLtZisyHMvcqlKvDt1Qy1BKTbwOxRZnE21jiIsSkbRt0M3zzcj ba7vfAs4jRr0ZP06SqGJIMl2X0bZh+gKzjFAFgEDrN2RTdKBV6Y2HBiGIw== -----END CERTIFICATE-----Generated at Sun Jun 1 05:16:53 2025 by rpki-client