$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b848658-4164-428a-8193-6b1f9a289da2.roa File: 3b848658-4164-428a-8193-6b1f9a289da2.roa (raw, json) Hash identifier: FboXDReicuj4TvwBbHHVbkn4LrQ0wLg9kzq+Ypqfl7s= Subject key identifier: 86:C5:B1:EB:47:74:82:1D:2B:12:AA:31:FC:6B:55:D3:D9:3A:F5:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15827A812791B12EED77A5A63679767ED8B31565 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b848658-4164-428a-8193-6b1f9a289da2.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 93.77.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:82:7a:81:27:91:b1:2e:ed:77:a5:a6:36:79:76:7e:d8:b3:15:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=d4b250fafba82232b0b081db6a04aeecb40d0cab91409e8efee0dacf99f26d14, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:41:39:b6:46:f0:0c:61:f0:5d:a8:e1:03: bf:6c:2e:c2:ea:53:0f:a3:6f:d4:fd:46:5b:ca:43: c8:d0:3c:36:45:ec:9c:28:5f:b3:7f:7e:50:ed:bc: f5:fd:bb:da:45:aa:ff:6e:bd:e9:15:02:3a:af:20: 3f:ea:09:f5:a2:03:2e:02:88:c8:7b:dc:a1:f7:12: 2c:51:45:02:07:b6:57:ac:e2:f1:d5:82:b8:91:64: 92:3c:d4:0d:8e:b4:ce:35:f1:6f:40:3c:bc:14:6d: 24:2f:8b:0f:d0:d0:45:c6:69:ed:e0:4b:3a:65:d2: 48:fa:56:71:19:0a:4d:eb:26:38:fb:c5:1b:61:68: fc:33:4d:38:04:27:f2:77:b7:eb:85:26:fd:2c:7c: 6a:5b:4f:be:fa:b7:02:af:0f:fa:84:36:2d:ec:e6: 3e:a2:25:c5:44:66:30:c4:68:c9:f4:2f:c1:ca:f7: b9:a0:87:c1:2a:ad:b7:c0:08:71:ac:df:c8:28:07: 9f:c9:31:3d:96:a8:a4:7d:7c:66:e9:e6:49:62:c7: 4d:0f:8b:23:63:74:f7:b1:75:87:c6:f5:a4:5f:02: ae:40:69:94:5d:a1:ba:40:b0:71:de:75:23:0a:91: d5:16:81:72:70:7e:67:c7:a4:23:e6:d5:96:2b:a1: 0f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C5:B1:EB:47:74:82:1D:2B:12:AA:31:FC:6B:55:D3:D9:3A:F5:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b848658-4164-428a-8193-6b1f9a289da2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.77.192.0/18 Signature Algorithm: sha256WithRSAEncryption 0d:e1:40:e5:6f:0f:7d:9e:7c:05:c1:46:eb:28:68:e0:15:fd: 28:a1:45:95:b5:7d:23:98:7b:81:39:38:9e:d7:55:8a:65:da: 31:a0:1b:96:2d:b5:c0:fd:8d:db:7d:a4:cc:e8:e4:d2:0a:c0: e0:96:3e:7a:f7:4a:f2:97:fa:6e:58:47:fd:10:3d:1c:9e:64: c4:02:a6:3d:b9:bc:46:c4:9e:5a:d8:fe:61:43:9f:5b:e4:e2: 2a:bd:8c:6c:2e:83:4a:d1:a9:5b:b8:f1:ca:f5:2d:f9:86:1a: 06:ad:70:1c:89:3c:c8:b0:c4:91:a5:2b:6e:2b:ef:90:26:de: f2:ea:8f:a0:62:e1:30:6d:27:8e:ae:45:36:4c:22:fc:3b:02: 3b:86:54:35:e2:b6:a6:b1:b7:41:b1:63:61:64:05:98:04:d8: 9d:91:1b:a5:50:95:f0:65:e3:24:ef:f1:c7:ed:0a:a9:97:b3: 41:7a:82:20:fa:b1:0e:6b:2a:4f:40:0f:27:cb:59:12:80:37: b3:fe:4e:fc:e5:54:0b:3a:d9:cc:5d:5a:cf:1d:1b:07:97:8e: 60:28:4e:8a:b6:19:84:8a:97:e2:b9:b5:72:a7:b5:bc:12:56: 09:23:99:ab:af:9a:7c:1f:5b:73:84:86:4e:9c:01:3f:79:ab: bc:90:a0:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFYJ6gSeRsS7td6WmNnl2ftizFWUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGIyNTBmYWZiYTgyMjMyYjBiMDgxZGI2YTA0YWVlY2I0 MGQwY2FiOTE0MDllOGVmZWUwZGFjZjk5ZjI2ZDE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEDkE5tkbwDGHwXajhA79sLsLqUw+jb9T9RlvKQ8jQPDZF 7JwoX7N/flDtvPX9u9pFqv9uvekVAjqvID/qCfWiAy4CiMh73KH3EixRRQIHtles 4vHVgriRZJI81A2OtM418W9APLwUbSQviw/Q0EXGae3gSzpl0kj6VnEZCk3rJjj7 xRthaPwzTTgEJ/J3t+uFJv0sfGpbT776twKvD/qENi3s5j6iJcVEZjDEaMn0L8HK 97mgh8EqrbfACHGs38goB5/JMT2WqKR9fGbp5klix00PiyNjdPexdYfG9aRfAq5A aZRdobpAsHHedSMKkdUWgXJwfmfHpCPm1ZYroQ9tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhsWx60d0gh0rEqox/GtV09k69cUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiODQ4NjU4LTQxNjQtNDI4YS04MTkzLTZiMWY5YTI4OWRhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZdTcAwDQYJKoZIhvcNAQELBQADggEBAA3hQOVvD32efAXBRusoaOAV/Sih RZW1fSOYe4E5OJ7XVYpl2jGgG5YttcD9jdt9pMzo5NIKwOCWPnr3SvKX+m5YR/0Q PRyeZMQCpj25vEbEnlrY/mFDn1vk4iq9jGwug0rRqVu48cr1LfmGGgatcByJPMiw xJGlK24r75Am3vLqj6Bi4TBtJ46uRTZMIvw7AjuGVDXitqaxt0GxY2FkBZgE2J2R G6VQlfBl4yTv8cftCqmXs0F6giD6sQ5rKk9ADyfLWRKAN7P+TvzlVAs62cxdWs8d GweXjmAoToq2GYSKl+K5tXKntbwSVgkjmauvmnwfW3OEhk6cAT95q7yQoIs= -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:29 2024 by rpki-client on console-ams.rpki-client.org