$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b848658-4164-428a-8193-6b1f9a289da2.roa File: 3b848658-4164-428a-8193-6b1f9a289da2.roa (raw, json) Hash identifier: 3HBRLvQ8HJL63fuNGqeJY05rA9I1yhLVk9cNr7637co= Subject key identifier: 4A:B4:3A:40:F3:D1:52:02:F3:EC:11:BC:B8:96:50:7B:D7:19:36:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 494278E5A8A4DB27CE08AC7D55936A21E081838D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b848658-4164-428a-8193-6b1f9a289da2.roa Signing time: Sat 27 Apr 2024 00:00:00 +0000 ROA not before: Sat 27 Apr 2024 00:00:00 +0000 ROA not after: Sat 01 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 93.77.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:42:78:e5:a8:a4:db:27:ce:08:ac:7d:55:93:6a:21:e0:81:83:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:00:00 2024 GMT Not After : Jun 1 23:59:59 2024 GMT Subject: serialNumber=a4a9cf0a675883eef7e93c0918ee5957a795fa207483bb3a882f62ccbcab3426, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8d:47:f8:38:5f:20:76:a1:41:4f:61:75:8a: 58:2e:a3:20:e1:2d:d3:cb:2f:60:16:42:96:70:e4: 1a:7f:d4:ee:a5:c3:c2:ec:78:03:ba:0a:5d:5b:7a: 01:a9:f6:b1:a9:0e:7f:2a:03:a6:db:f4:10:6a:ab: a4:4a:e1:86:19:33:10:22:9f:07:ba:ba:5b:a7:f6: 64:9e:bd:5f:86:05:cd:dc:08:4a:41:50:b2:b6:69: 3e:23:ba:2b:2a:62:95:85:23:9b:b3:bc:45:64:45: 74:83:d1:29:92:bb:1c:00:95:89:8a:13:16:37:38: 4a:5e:9c:1a:d2:c8:50:a9:5f:24:33:60:0c:94:06: 80:68:3c:35:5b:6b:4f:d7:68:62:87:53:db:c5:60: bb:16:ee:d6:39:d5:b2:61:04:7c:01:1a:4c:0f:cb: 9a:14:ba:e0:53:a3:6d:99:7d:ca:f6:85:1d:12:e2: d3:e5:bc:a3:e8:24:12:1f:d1:f5:34:52:70:cf:70: b1:10:19:fe:58:66:33:76:ad:3a:54:74:f1:72:f2: 35:9a:75:73:21:cd:a7:65:27:e7:ea:9f:a8:5d:61: e1:e9:de:55:62:dd:b8:fd:99:57:be:0e:cf:b2:48: 7d:3f:4f:dc:6e:28:c9:e5:c5:51:c5:d1:36:87:6c: fc:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B4:3A:40:F3:D1:52:02:F3:EC:11:BC:B8:96:50:7B:D7:19:36:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b848658-4164-428a-8193-6b1f9a289da2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.77.192.0/18 Signature Algorithm: sha256WithRSAEncryption d3:4a:d3:0f:67:44:0a:44:e1:b5:cc:7d:e6:14:1b:0a:6e:16: 35:d5:95:1d:0e:91:bf:36:b3:fb:27:54:1e:ea:5b:31:d0:7a: 79:b3:66:f4:91:95:00:64:c7:9e:70:b6:7f:67:18:a1:81:1b: 98:2f:14:7f:5f:df:00:9d:79:19:13:69:91:1b:0b:44:0e:56: b2:fa:10:c4:ea:d1:cc:49:09:c6:33:74:9f:52:8a:4b:d8:0c: 29:1e:de:06:3a:79:25:88:d8:0c:c3:19:77:e0:b9:e1:a5:6d: 1c:41:2e:df:d6:e4:61:6a:bc:f0:ad:21:2c:5d:2e:87:1a:08: 1b:a8:b2:f9:48:41:b6:29:41:a8:ad:82:66:3d:b8:9e:b3:70: 6a:8f:61:ef:01:1f:fe:26:b1:51:d5:b4:29:1d:1e:27:48:6f: b9:e5:21:7b:67:73:90:c8:59:d1:6d:0d:d3:91:a1:09:51:f3: b1:8f:a7:65:35:b7:23:67:d8:85:24:b9:f2:4b:0b:69:2e:05: d1:c0:4c:25:b5:11:ea:11:6f:d6:7f:ee:ee:f6:75:97:39:22: 1f:23:b4:a6:03:51:f9:c4:4f:2d:f6:57:b4:ec:cc:b5:aa:48: c5:a7:36:f5:72:9f:ed:f3:06:fa:66:bf:b3:eb:be:b4:64:e6: 1e:16:90:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSUJ45aik2yfOCKx9VZNqIeCBg40wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI3MDAwMDAwWhcNMjQwNjAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGE5Y2YwYTY3NTg4M2VlZjdlOTNjMDkxOGVlNTk1N2E3 OTVmYTIwNzQ4M2JiM2E4ODJmNjJjY2JjYWIzNDI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFjUf4OF8gdqFBT2F1ilguoyDhLdPLL2AWQpZw5Bp/1O6l w8LseAO6Cl1begGp9rGpDn8qA6bb9BBqq6RK4YYZMxAinwe6ulun9mSevV+GBc3c CEpBULK2aT4juisqYpWFI5uzvEVkRXSD0SmSuxwAlYmKExY3OEpenBrSyFCpXyQz YAyUBoBoPDVba0/XaGKHU9vFYLsW7tY51bJhBHwBGkwPy5oUuuBTo22Zfcr2hR0S 4tPlvKPoJBIf0fU0UnDPcLEQGf5YZjN2rTpUdPFy8jWadXMhzadlJ+fqn6hdYeHp 3lVi3bj9mVe+Ds+ySH0/T9xuKMnlxVHF0TaHbPyRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSrQ6QPPRUgLz7BG8uJZQe9cZNmcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiODQ4NjU4LTQxNjQtNDI4YS04MTkzLTZiMWY5YTI4OWRhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZdTcAwDQYJKoZIhvcNAQELBQADggEBANNK0w9nRApE4bXMfeYUGwpuFjXV lR0Okb82s/snVB7qWzHQenmzZvSRlQBkx55wtn9nGKGBG5gvFH9f3wCdeRkTaZEb C0QOVrL6EMTq0cxJCcYzdJ9SikvYDCke3gY6eSWI2AzDGXfgueGlbRxBLt/W5GFq vPCtISxdLocaCBuosvlIQbYpQaitgmY9uJ6zcGqPYe8BH/4msVHVtCkdHidIb7nl IXtnc5DIWdFtDdORoQlR87GPp2U1tyNn2IUkufJLC2kuBdHATCW1EeoRb9Z/7u72 dZc5Ih8jtKYDUfnETy32V7TszLWqSMWnNvVyn+3zBvpmv7PrvrRk5h4WkOs= -----END CERTIFICATE-----Generated at Thu May 9 01:25:26 2024 by rpki-client on console-fra.rpki-client.org