$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa File: 22f4d3b0-2537-48ed-bf15-840b585b2b11.roa (raw, json) Hash identifier: KvYaxqb2/OmvQNB0w5JtKiC3gaueuDC2Agd0QqdJilM= Subject key identifier: 07:95:9F:A7:40:DF:60:FE:E4:16:4B:6E:5E:70:6D:D0:FD:88:18:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52A82EDA93C2018082A28F7B47C0C2B3FA8AB2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa Signing time: Mon 02 Jun 2025 15:21:29 +0000 ROA not before: Mon 02 Jun 2025 15:21:29 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 31.220.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a8:2e:da:93:c2:01:80:82:a2:8f:7b:47:c0:c2:b3:fa:8a:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:21:29 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=4f16ad09cdbc8163344a8367c8fdfbcfedcc524a8f41d1d05cf3e494ecf7abf1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2b:0f:25:c1:4f:ad:46:43:da:69:31:6f:6a: eb:b3:dd:60:cc:aa:15:b4:cb:c8:be:90:06:35:3d: a7:5a:ed:ac:f1:da:d6:dc:88:1a:27:a3:ac:21:36: 2a:f9:ba:9b:d8:8c:6a:a2:2d:fc:22:8c:b0:61:d9: 56:e2:c7:6d:b9:fb:e3:38:07:86:53:98:d8:72:2c: da:ab:35:16:30:dd:71:0e:6c:55:4a:bf:a0:99:44: b0:75:5c:5d:03:13:09:cc:81:0e:d2:42:4d:9a:d3: 8b:f9:44:2f:85:46:8f:e4:e2:54:20:a2:70:b8:2b: 22:46:49:91:a5:a4:48:18:67:be:44:a5:6b:24:ba: 91:7d:bd:46:f0:69:80:f4:ad:b6:9e:e5:12:b8:da: eb:03:78:7f:66:36:38:23:d6:a2:57:5c:6f:65:ab: e8:1a:11:5a:8a:7a:c4:1e:28:a2:12:9d:62:5c:e1: 66:ec:2c:2b:28:56:e0:10:58:a2:a5:4c:d0:6a:10: a5:81:3f:2a:84:de:c2:80:8c:dd:e8:3c:ac:7c:19: 93:ae:ba:64:36:9d:4f:3d:d0:81:2e:86:19:4c:f0: da:1e:26:8c:6e:4c:d2:5f:be:7e:72:00:bc:71:7a: 85:c3:92:2d:48:aa:31:a5:bb:1c:57:be:9f:f8:3f: fc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:95:9F:A7:40:DF:60:FE:E4:16:4B:6E:5E:70:6D:D0:FD:88:18:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.235.0/24 Signature Algorithm: sha256WithRSAEncryption 87:cd:b8:32:50:82:17:4d:dc:2c:7d:27:34:65:fe:4c:67:de: d2:8b:08:e9:6d:39:37:a6:79:b0:f6:88:72:8b:9e:01:dd:5d: 40:95:e8:16:60:fa:6a:b5:fb:41:36:bb:91:57:b1:99:7e:63: ce:d3:3b:d3:38:b2:ce:32:73:83:8e:57:c6:99:8c:e1:59:ae: e4:05:73:5b:03:d6:39:b4:29:ee:35:a1:e4:2a:f2:d5:c8:3d: 3b:3d:00:35:07:5c:cb:df:1f:ff:74:8d:77:80:ed:84:ce:5a: 4f:9d:d1:3e:6d:30:80:9d:82:9e:45:65:01:bc:fe:b0:33:b1: 6c:ba:2a:ef:6d:85:58:a6:a9:e6:a4:02:03:74:2a:de:89:b7: 58:a6:5f:45:5e:85:86:5a:bb:36:e3:53:52:b0:c7:fb:6a:9a: 96:ac:e0:7d:c8:b1:ee:7d:e9:f8:79:5e:22:75:4f:b1:22:a4: 77:b9:ae:4a:c8:b2:55:74:ed:a5:63:ca:bd:ff:6f:1c:3c:46: 2d:2b:9a:9a:6c:b9:09:b3:df:e0:ee:bd:c6:70:d0:31:79:53: d8:b0:4b:f5:ed:5e:a6:2c:42:d4:b7:7c:6d:d6:3e:a6:fe:70: a0:d0:7f:3b:23:5a:22:36:04:3b:25:db:c3:8c:ce:69:69:88: 1c:1f:1f:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITUqgu2pPCAYCCoo97R8DCs/qKsjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MDIxNTIxMjlaFw0yNTA3MDcyMzU5NTla MHoxSTBHBgNVBAUTQDRmMTZhZDA5Y2RiYzgxNjMzNDRhODM2N2M4ZmRmYmNmZWRj YzUyNGE4ZjQxZDFkMDVjZjNlNDk0ZWNmN2FiZjExLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL4rDyXBT61GQ9ppMW9q67PdYMyqFbTLyL6QBjU9p1rtrPHa 1tyIGiejrCE2Kvm6m9iMaqIt/CKMsGHZVuLHbbn74zgHhlOY2HIs2qs1FjDdcQ5s VUq/oJlEsHVcXQMTCcyBDtJCTZrTi/lEL4VGj+TiVCCicLgrIkZJkaWkSBhnvkSl ayS6kX29RvBpgPSttp7lErja6wN4f2Y2OCPWoldcb2Wr6BoRWop6xB4oohKdYlzh ZuwsKyhW4BBYoqVM0GoQpYE/KoTewoCM3eg8rHwZk666ZDadTz3QgS6GGUzw2h4m jG5M0l++fnIAvHF6hcOSLUiqMaW7HFe+n/g//O0CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQHlZ+nQN9g/uQWS25ecG3Q/YgY+DAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMjJmNGQzYjAtMjUzNy00OGVkLWJmMTUtODQwYjU4NWIyYjExLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAB/c6zANBgkqhkiG9w0BAQsFAAOCAQEAh824MlCCF03cLH0nNGX+TGfe0osI 6W05N6Z5sPaIcoueAd1dQJXoFmD6arX7QTa7kVexmX5jztM70ziyzjJzg45XxpmM 4Vmu5AVzWwPWObQp7jWh5Cry1cg9Oz0ANQdcy98f/3SNd4DthM5aT53RPm0wgJ2C nkVlAbz+sDOxbLoq722FWKap5qQCA3Qq3om3WKZfRV6Fhlq7NuNTUrDH+2qalqzg fcix7n3p+HleInVPsSKkd7muSsiyVXTtpWPKvf9vHDxGLSuammy5CbPf4O69xnDQ MXlT2LBL9e1epixC1Ld8bdY+pv5woNB/OyNaIjYEOyXbw4zOaWmIHB8f9A== -----END CERTIFICATE-----Generated at Sat Jun 14 07:07:23 2025 by rpki-client