$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fb5e281-d545-4001-97fa-007bbac7fd98.roa File: 0fb5e281-d545-4001-97fa-007bbac7fd98.roa (raw, json) Hash identifier: Dszuz6tlmDZrCxPgk6K7Bv3ZB0nC9MoaOvAX9ULyB3A= Subject key identifier: 45:66:93:A4:4E:BC:F2:7B:86:49:19:ED:5B:C3:3B:9F:C6:CD:CB:E8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6A32811A847F02632BF7E18A1949591963B33784 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fb5e281-d545-4001-97fa-007bbac7fd98.roa Signing time: Tue 28 Feb 2023 00:00:00 +0000 ROA not before: Tue 28 Feb 2023 00:00:00 +0000 ROA not after: Tue 04 Apr 2023 23:59:59 +0000 asID: 16509 IP address blocks: 152.25.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 16 Mar 2023 10:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:32:81:1a:84:7f:02:63:2b:f7:e1:8a:19:49:59:19:63:b3:37:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 00:00:00 2023 GMT Not After : Apr 4 23:59:59 2023 GMT Subject: serialNumber=4e4b0471b72148342ae200ba8753c72e12283ef5a889942652f47ea036a15bb6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225, OU=Amazon RPKI, O=Amazon.com Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:34:df:7d:8e:88:09:5d:08:8f:fa:7a:60:fb: c2:9d:68:f7:f6:84:15:43:4c:87:9d:a7:a0:e0:68: bc:50:42:a5:51:95:21:33:27:6d:df:70:ee:52:fd: 7c:65:93:c6:57:83:59:c9:6c:98:e0:0a:af:c3:cd: 0f:27:48:9b:b8:f1:e0:d6:a3:c7:bd:02:68:87:8b: d5:d7:1e:60:37:cf:b7:49:3b:60:5d:b7:80:29:84: f7:83:6f:8c:52:15:b8:ec:a6:05:fc:4d:f9:35:52: c3:9a:10:68:d1:8d:6e:03:66:d3:9f:52:70:bc:bc: 3a:bb:c2:48:eb:37:9d:2f:6d:fa:d9:74:07:d3:64: a1:c1:c7:10:50:97:39:d5:c3:be:eb:f0:7d:0f:e1: aa:c2:cf:3e:20:6e:24:cf:86:35:d4:7c:4b:46:96: de:0f:cb:92:8c:4d:aa:b1:22:c2:8c:f7:2d:86:43: e6:30:a1:6c:25:40:fd:a4:7f:a1:4d:51:dc:87:9d: 48:fc:bb:9f:ed:13:f4:30:1d:67:45:27:35:6a:e4: 49:b5:0e:3d:e9:de:09:d4:8a:4b:16:fa:65:79:46: 0a:5a:e8:6b:85:07:dc:19:5f:c8:ab:37:0d:4b:0e: 33:44:e5:68:be:1d:d1:f2:41:be:d3:bb:6e:9f:17: 25:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:66:93:A4:4E:BC:F2:7B:86:49:19:ED:5B:C3:3B:9F:C6:CD:CB:E8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fb5e281-d545-4001-97fa-007bbac7fd98.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.25.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:13:f2:9f:c4:38:4e:89:b3:0a:2a:0f:94:43:d6:cb:2c:a4: 48:7e:17:58:62:94:58:14:19:7f:02:23:da:9f:fb:4b:41:75: 05:9c:8d:e9:da:75:07:2e:e3:8f:1a:b5:3b:ec:2f:6e:4a:ee: 9d:79:7d:29:84:96:b9:e8:cd:73:c9:e0:90:08:a4:05:82:78: c2:90:8b:7b:e7:94:04:4a:76:c8:b2:9f:25:01:75:6a:43:4f: a9:94:9a:f5:f0:d0:0f:e5:c9:95:3a:f9:c3:f2:8a:9b:60:dd: 06:20:8c:6e:e8:38:ac:57:9d:85:2f:b6:cf:a0:20:69:ce:17: 72:e0:74:9b:51:cd:c4:c9:f4:b1:06:60:19:82:0b:0c:07:71: 4a:4d:87:3d:e7:a4:a2:b6:9f:9c:99:74:c1:00:e8:c2:4e:75: 11:a4:69:20:81:d6:0a:21:3e:6f:49:de:54:87:ba:62:93:e4: d5:fc:00:16:af:b1:cc:fe:1b:c2:89:f9:ca:d6:69:23:4c:bd: 19:f0:ed:45:b9:3f:4e:43:a1:b6:05:d3:0b:bc:ae:5c:93:c1: d2:c9:52:39:e5:7c:1c:bf:8a:d8:62:c6:7d:ad:77:db:f4:93: 65:8f:6d:16:87:1a:9b:35:83:1f:3f:88:04:0c:07:6e:68:da: 35:a3:ca:c9 -----BEGIN CERTIFICATE----- MIIGIzCCBQugAwIBAgIUajKBGoR/AmMr9+GKGUlZGWOzN4QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwMjI4MDAwMDAwWhcNMjMwNDA0MjM1OTU5 WjCBpTFJMEcGA1UEBRNANGU0YjA0NzFiNzIxNDgzNDJhZTIwMGJhODc1M2M3MmUx MjI4M2VmNWE4ODk5NDI2NTJmNDdlYTAzNmExNWJiNjEtMCsGA1UEAxMkNWYyNzYw NDUtNWI5Zi00NWVmLTkyM2QtZjNmY2UyNGE2MjI1MRQwEgYDVQQLEwtBbWF6b24g UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANg0332OiAldCI/6emD7wp1o9/aEFUNMh52noOBovFBCpVGVITMn bd9w7lL9fGWTxleDWclsmOAKr8PNDydIm7jx4Najx70CaIeL1dceYDfPt0k7YF23 gCmE94NvjFIVuOymBfxN+TVSw5oQaNGNbgNm059ScLy8OrvCSOs3nS9t+tl0B9Nk ocHHEFCXOdXDvuvwfQ/hqsLPPiBuJM+GNdR8S0aW3g/LkoxNqrEiwoz3LYZD5jCh bCVA/aR/oU1R3IedSPy7n+0T9DAdZ0UnNWrkSbUOPeneCdSKSxb6ZXlGClroa4UH 3BlfyKs3DUsOM0TlaL4d0fJBvtO7bp8XJTkCAwEAAaOCArAwggKsMB0GA1UdDgQW BBRFZpOkTrzye4ZJGe1bwzufxs3L6DAfBgNVHSMEGDAWgBQlrdNCsB63pY6tGZAm iLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMmEy NDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEzMmEt NDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRm YTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6 b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02ZjgwOTA0 ZTQyZDIvMGZiNWUyODEtZDU0NS00MDAxLTk3ZmEtMDA3YmJhYzdmZDk4LnJvYTCB iAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AJgZMA0GCSqGSIb3DQEBCwUAA4IBAQA5E/KfxDhOibMKKg+UQ9bLLKRIfhdYYpRY FBl/AiPan/tLQXUFnI3p2nUHLuOPGrU77C9uSu6deX0phJa56M1zyeCQCKQFgnjC kIt755QESnbIsp8lAXVqQ0+plJr18NAP5cmVOvnD8oqbYN0GIIxu6DisV52FL7bP oCBpzhdy4HSbUc3EyfSxBmAZggsMB3FKTYc956Sitp+cmXTBAOjCTnURpGkggdYK IT5vSd5Uh7pik+TV/AAWr7HM/hvCifnK1mkjTL0Z8O1FuT9OQ6G2BdMLvK5ck8HS yVI55Xwcv4rYYsZ9rXfb9JNlj20WhxqbNYMfP4gEDAduaNo1o8rJ -----END CERTIFICATE-----Generated at Wed Mar 15 11:52:46 2023 by rpki-client on console-fra.rpki-client.org