$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416af2b-ba98-4a16-8089-6f9fa9a25132.roa File: c416af2b-ba98-4a16-8089-6f9fa9a25132.roa (raw, json) Hash identifier: pHcJ/C9OfvRoclWmGHAgxnS2l1TkuOEKiMMRicqVNNc= Subject key identifier: 49:3F:AC:00:5E:10:4C:8F:1D:8B:14:91:0F:47:AE:85:F8:95:8B:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01593ACC4E12B5DCEFEA147A2F8CF1F7EF308728 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416af2b-ba98-4a16-8089-6f9fa9a25132.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 93.77.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:59:3a:cc:4e:12:b5:dc:ef:ea:14:7a:2f:8c:f1:f7:ef:30:87:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=31f43c66fdcc307f393c2156bb978b9f2bd0d330fb1cca4cf9717579c66366f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:b2:b0:0a:f5:d9:ab:c3:93:6a:a9:54:40:e6: 52:b1:a0:1d:85:18:16:96:54:fc:03:73:56:cf:d5: ed:44:1c:ef:f7:4a:80:fb:11:e4:09:01:67:4b:88: 9c:02:0c:78:38:e4:bb:dd:c5:8b:a9:17:f6:e0:34: de:cd:cb:1f:82:4c:16:b3:45:ef:73:cb:26:36:08: 32:68:8e:ca:2d:a1:53:81:9c:43:47:c6:9c:65:34: 31:54:c9:80:db:74:b4:36:38:84:de:82:53:52:41: 73:9b:3c:15:04:6c:fb:ee:1e:e2:fd:41:fc:a9:03: 09:3f:5c:9b:6c:46:89:8f:ea:88:b2:cf:35:33:6d: e5:ec:7d:a6:a2:75:c6:ad:33:1d:6b:c0:ef:81:68: 57:8c:a7:04:67:ff:4a:28:40:88:98:fb:1d:29:76: 5e:ad:4a:ce:2d:2c:5a:41:72:45:9f:37:b1:cc:7b: 30:34:bb:98:cf:d0:99:74:24:58:ec:0d:33:f8:f2: f7:f4:74:06:33:71:88:91:cd:fb:bd:4e:5e:1f:02: 1c:4a:4a:47:76:5e:f2:cc:a7:2f:e2:12:80:b1:22: 4b:6e:bb:e2:12:0c:15:5d:43:51:51:bb:fc:47:68: 3c:06:b1:96:00:3e:cd:18:74:70:f7:c5:de:49:24: 6b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:3F:AC:00:5E:10:4C:8F:1D:8B:14:91:0F:47:AE:85:F8:95:8B:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416af2b-ba98-4a16-8089-6f9fa9a25132.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.77.0.0/17 Signature Algorithm: sha256WithRSAEncryption c4:ca:34:dc:ea:3b:32:a9:96:6c:2d:fb:8b:7f:10:c4:3b:97: 89:21:cd:73:76:6c:9e:f1:9e:b3:99:91:1a:81:20:bb:12:ea: 7e:88:ec:f5:f9:14:1e:44:41:85:55:ad:80:cb:47:44:98:56: 72:42:88:67:65:f5:66:44:5d:04:bd:9c:09:7c:6d:8f:ed:83: 9e:b4:3a:9d:36:20:c1:d3:e3:66:b3:2c:4a:29:04:3d:22:0c: ce:f2:9f:c7:d2:77:7c:c8:af:3e:04:64:64:af:cc:34:6c:77: 4f:b2:88:f2:9c:d4:ce:43:94:4d:72:f5:1e:94:ea:aa:d2:c4: 48:28:8a:f5:aa:e8:c2:53:82:20:dc:17:e8:3d:b3:7b:52:38: 32:c4:1e:b3:d0:23:c2:cc:bd:8c:c2:10:27:94:83:89:9e:85: 57:69:f6:07:4a:cf:1d:b3:5e:e1:01:1a:fc:15:aa:6a:04:bc: 30:c9:95:a5:19:d0:a4:fa:59:4a:ff:be:01:56:da:3b:09:54: 06:b7:fe:42:84:7d:8f:90:06:fd:15:30:db:1a:55:c2:e6:9b: 0e:e7:c1:58:54:49:61:7d:e2:52:cf:fe:73:9c:fb:94:00:6c: 5f:3f:2d:b2:6c:55:3a:a5:74:21:5a:2a:cf:2e:44:b3:1d:83: 16:f3:c0:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAVk6zE4Stdzv6hR6L4zx9+8whygwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWY0M2M2NmZkY2MzMDdmMzkzYzIxNTZiYjk3OGI5ZjJi ZDBkMzMwZmIxY2NhNGNmOTcxNzU3OWM2NjM2NmYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIsrAK9dmrw5NqqVRA5lKxoB2FGBaWVPwDc1bP1e1EHO/3 SoD7EeQJAWdLiJwCDHg45LvdxYupF/bgNN7Nyx+CTBazRe9zyyY2CDJojsotoVOB nENHxpxlNDFUyYDbdLQ2OITeglNSQXObPBUEbPvuHuL9QfypAwk/XJtsRomP6oiy zzUzbeXsfaaidcatMx1rwO+BaFeMpwRn/0ooQIiY+x0pdl6tSs4tLFpBckWfN7HM ezA0u5jP0Jl0JFjsDTP48vf0dAYzcYiRzfu9Tl4fAhxKSkd2XvLMpy/iEoCxIktu u+ISDBVdQ1FRu/xHaDwGsZYAPs0YdHD3xd5JJGsrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUST+sAF4QTI8dixSRD0euhfiVi3wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0MTZhZjJiLWJhOTgtNGExNi04MDg5LTZmOWZhOWEyNTEzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddTQAwDQYJKoZIhvcNAQELBQADggEBAMTKNNzqOzKplmwt+4t/EMQ7l4kh zXN2bJ7xnrOZkRqBILsS6n6I7PX5FB5EQYVVrYDLR0SYVnJCiGdl9WZEXQS9nAl8 bY/tg560Op02IMHT42azLEopBD0iDM7yn8fSd3zIrz4EZGSvzDRsd0+yiPKc1M5D lE1y9R6U6qrSxEgoivWq6MJTgiDcF+g9s3tSODLEHrPQI8LMvYzCECeUg4mehVdp 9gdKzx2zXuEBGvwVqmoEvDDJlaUZ0KT6WUr/vgFW2jsJVAa3/kKEfY+QBv0VMNsa VcLmmw7nwVhUSWF94lLP/nOc+5QAbF8/LbJsVTqldCFaKs8uRLMdgxbzwGE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:28 2024 by rpki-client on console-fra.rpki-client.org