$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416af2b-ba98-4a16-8089-6f9fa9a25132.roa File: c416af2b-ba98-4a16-8089-6f9fa9a25132.roa (raw, json) Hash identifier: YySLoq1z7jZlxaumU3k93E5Bxn9XCYj1xZv7Q8Evx0A= Subject key identifier: 74:87:78:C1:31:79:FC:70:A9:E6:87:19:E8:E9:E5:2C:3E:B9:05:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0406AC1E02094C2F41A63F9A0AEB28CF0C384510 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416af2b-ba98-4a16-8089-6f9fa9a25132.roa Signing time: Sat 27 Apr 2024 00:00:00 +0000 ROA not before: Sat 27 Apr 2024 00:00:00 +0000 ROA not after: Sat 01 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 93.77.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:06:ac:1e:02:09:4c:2f:41:a6:3f:9a:0a:eb:28:cf:0c:38:45:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:00:00 2024 GMT Not After : Jun 1 23:59:59 2024 GMT Subject: serialNumber=fe764f1c48a016a84ad55464bdf97d958a04e42a7e1f21239e1cd87c08a4b9d3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d1:b4:09:d8:6b:e0:c3:4e:e0:c4:77:56:64: 66:0b:d9:f3:3f:9e:a1:cf:27:9c:b3:91:9e:d2:07: 71:94:2a:f4:ef:a7:ed:62:59:b3:29:f7:15:15:ac: 7c:c5:90:df:db:a1:6c:24:bb:43:02:08:05:49:53: 4f:98:0f:51:39:e1:bc:d0:c0:70:ee:b2:7d:a1:9d: 61:50:3a:47:c7:bd:c0:74:32:9d:f5:59:98:b0:d5: 86:56:fc:e6:e9:7d:6e:73:23:d3:76:91:20:de:8b: c0:66:b8:96:e4:ad:7f:fd:af:2b:37:09:cd:c7:97: 73:2b:04:5f:f1:e0:bf:f6:04:8f:cb:f1:6b:20:63: 0e:a6:31:fe:e6:2a:8c:76:36:34:4a:e6:07:ad:e2: f0:c7:87:3a:a2:39:57:7f:11:a5:b6:a3:7d:e3:de: 0e:cc:a7:ea:6e:16:0a:e4:3b:d8:f9:1a:7d:5b:c5: bb:80:38:ec:71:07:84:e3:b9:d4:36:e2:78:44:f2: 66:76:8c:25:8d:a4:02:b8:a5:7b:67:e8:c6:cd:a9: dc:95:9e:d2:14:a5:71:09:b6:f8:ed:67:01:c6:8f: 91:8b:a2:25:5f:23:18:d4:24:aa:b6:88:68:72:d9: 0c:56:ab:4c:ae:6c:e8:96:25:4b:b0:6d:6a:97:dc: 91:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:87:78:C1:31:79:FC:70:A9:E6:87:19:E8:E9:E5:2C:3E:B9:05:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416af2b-ba98-4a16-8089-6f9fa9a25132.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.77.0.0/17 Signature Algorithm: sha256WithRSAEncryption 40:bc:75:e7:b5:f2:8c:c1:7e:e0:21:53:fb:2b:63:6e:61:d0: 67:d6:88:43:fc:21:29:cc:96:79:a4:41:09:21:68:5a:7d:95: 59:57:40:77:d1:7b:cd:ca:76:62:32:ac:14:2a:92:10:d5:93: 12:ce:eb:c0:db:63:36:83:f3:a8:97:6a:df:ba:4f:e2:61:fa: c2:f5:03:e9:81:71:07:af:c3:6b:17:4e:fc:d3:2a:2f:8c:f9: ad:f1:98:ae:c9:92:11:fc:4b:c9:2d:95:46:57:c9:b2:ad:a0: 42:25:9f:54:fc:20:41:69:49:dc:c7:50:9c:6e:f6:0c:f0:18: fb:0a:7d:b7:bc:68:e0:fc:25:dd:67:b9:de:22:97:db:a7:eb: 31:69:21:00:e8:26:f5:d0:ed:db:d2:cd:bc:b6:0f:c3:ba:9e: c1:45:8b:31:4f:5e:69:34:ee:a2:6e:ea:07:bf:18:e5:fa:8a: fb:4e:cc:c0:a3:bf:af:46:be:20:69:15:f8:7e:7d:91:c3:32: 3d:7b:28:5e:55:ef:eb:2d:51:c6:41:d7:7f:09:52:4a:da:a9: 0f:4b:fb:58:d9:65:a2:79:a2:92:6d:30:29:c1:a7:76:01:d8: fa:8f:b3:fd:fd:2a:a5:ba:1a:80:63:32:c9:2e:99:8a:3d:e6: cb:92:91:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBAasHgIJTC9Bpj+aCusozww4RRAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI3MDAwMDAwWhcNMjQwNjAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTc2NGYxYzQ4YTAxNmE4NGFkNTU0NjRiZGY5N2Q5NThh MDRlNDJhN2UxZjIxMjM5ZTFjZDg3YzA4YTRiOWQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC50bQJ2Gvgw07gxHdWZGYL2fM/nqHPJ5yzkZ7SB3GUKvTv p+1iWbMp9xUVrHzFkN/boWwku0MCCAVJU0+YD1E54bzQwHDusn2hnWFQOkfHvcB0 Mp31WZiw1YZW/ObpfW5zI9N2kSDei8BmuJbkrX/9rys3Cc3Hl3MrBF/x4L/2BI/L 8WsgYw6mMf7mKox2NjRK5get4vDHhzqiOVd/EaW2o33j3g7Mp+puFgrkO9j5Gn1b xbuAOOxxB4TjudQ24nhE8mZ2jCWNpAK4pXtn6MbNqdyVntIUpXEJtvjtZwHGj5GL oiVfIxjUJKq2iGhy2QxWq0yubOiWJUuwbWqX3JFBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdId4wTF5/HCp5ocZ6OnlLD65BcwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0MTZhZjJiLWJhOTgtNGExNi04MDg5LTZmOWZhOWEyNTEzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddTQAwDQYJKoZIhvcNAQELBQADggEBAEC8dee18ozBfuAhU/srY25h0GfW iEP8ISnMlnmkQQkhaFp9lVlXQHfRe83KdmIyrBQqkhDVkxLO68DbYzaD86iXat+6 T+Jh+sL1A+mBcQevw2sXTvzTKi+M+a3xmK7JkhH8S8ktlUZXybKtoEIln1T8IEFp SdzHUJxu9gzwGPsKfbe8aOD8Jd1nud4il9un6zFpIQDoJvXQ7dvSzby2D8O6nsFF izFPXmk07qJu6ge/GOX6ivtOzMCjv69GviBpFfh+fZHDMj17KF5V7+stUcZB138J UkraqQ9L+1jZZaJ5opJtMCnBp3YB2PqPs/39KqW6GoBjMskumYo95suSkf0= -----END CERTIFICATE-----Generated at Thu May 9 01:25:46 2024 by rpki-client on console-fra.rpki-client.org