$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c3e2897-84d0-4db5-8e5d-726c9120de43.roa File: 1c3e2897-84d0-4db5-8e5d-726c9120de43.roa (raw, json) Hash identifier: xfg5kMdAMYMxYssOuL7OfgUvM33XJvV13WS/zBS9FBY= Subject key identifier: B9:17:DD:F8:D7:A2:A5:B6:72:21:00:08:6A:86:36:69:AA:F3:7B:C3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 01DD3F18E976675447C17D8E163B7271007D2D0B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c3e2897-84d0-4db5-8e5d-726c9120de43.roa Signing time: Sat 25 Mar 2023 00:00:00 +0000 ROA not before: Sat 25 Mar 2023 00:00:00 +0000 ROA not after: Sat 29 Apr 2023 23:59:59 +0000 asID: 16509 IP address blocks: 18.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 26 Mar 2023 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:dd:3f:18:e9:76:67:54:47:c1:7d:8e:16:3b:72:71:00:7d:2d:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 25 00:00:00 2023 GMT Not After : Apr 29 23:59:59 2023 GMT Subject: serialNumber=eebf1baa311d85072f4bdf65cfbfd193ee90f144aa28c34dfbc1e278a89c173e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225, OU=Amazon RPKI, O=Amazon.com Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0f:0f:2b:a9:8c:3e:88:5f:1a:f2:12:d6:91: 1c:83:6c:c1:18:a3:a2:14:c4:24:e2:01:b9:fe:70: e4:10:9c:2e:bd:34:5a:31:a7:59:6d:8e:7a:b3:7a: c5:c6:62:32:e8:ac:dc:fd:1c:d8:d5:8f:ea:93:86: 4f:02:e2:a4:0d:b5:27:4b:aa:2c:f3:4d:02:46:78: 8a:d8:da:28:3b:83:86:91:e7:4b:83:eb:30:ca:f5: 44:b3:81:7b:1f:f1:45:0b:70:34:07:7e:e6:40:22: a9:a4:d8:ea:78:82:2c:fb:db:6e:15:81:b7:bf:66: 88:c3:04:45:07:bc:d4:0b:bd:90:30:01:4f:b0:fa: 82:01:ab:d2:e4:91:f4:18:ff:83:90:56:50:fc:2b: 43:e3:61:51:b0:72:2b:35:f8:74:22:b4:9e:e4:27: 18:36:48:49:76:8b:64:d0:7b:6e:4b:2a:c0:01:c5: 4c:1c:34:7a:45:b8:bc:42:37:9e:33:ea:7e:2b:a0: df:0e:d6:fd:9a:f4:a4:51:b3:44:ba:98:69:a6:91: 23:fd:28:60:46:6f:be:63:49:4b:c1:d0:8d:d4:96: e2:d8:6b:b8:4d:2f:45:e7:19:e4:3e:cc:28:1d:e8: a8:15:dd:8c:e3:03:32:14:12:18:7b:94:c5:09:07: 53:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:17:DD:F8:D7:A2:A5:B6:72:21:00:08:6A:86:36:69:AA:F3:7B:C3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c3e2897-84d0-4db5-8e5d-726c9120de43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:68:b2:df:9a:bb:30:80:9b:ad:de:86:c7:46:31:41:c9:c0: 9c:f9:6b:41:e1:90:58:7d:29:ca:98:63:d7:2a:f1:fd:a7:41: fb:72:71:e7:d5:f5:23:6c:8e:9a:d2:79:2b:05:b9:40:c5:1d: bc:b3:80:0b:0a:d7:a0:2b:a0:c9:50:e8:b5:79:58:4e:4a:57: 4e:a9:e1:24:4c:ae:09:70:a8:b3:dd:a9:b6:a1:bf:b9:c9:be: 23:33:f9:40:83:4a:c2:c4:98:91:00:8e:e5:3b:73:06:c8:8a: ff:c6:40:f1:d7:7f:59:f3:5f:23:7e:e1:6f:46:4d:ef:67:b1: c0:0d:b9:68:d5:15:38:d1:4c:5b:4d:5e:4c:2a:b2:44:fa:fe: 60:64:ef:f2:ff:1d:35:7a:37:ce:a9:c5:1e:f1:98:ff:50:59: 4e:ef:07:a1:a8:10:51:6d:25:88:04:46:e3:fa:3f:12:9d:91: 9d:b9:b7:6f:92:cc:0b:83:bb:8e:d3:28:b9:e7:36:88:55:c0: d7:e2:08:3a:1b:e6:75:af:56:30:ac:8d:8a:b5:df:17:c9:3a: 2f:b5:42:7b:02:8f:0c:6d:b8:ed:26:10:07:83:c4:53:0c:83: cd:24:71:54:0e:8f:75:e3:d0:93:33:fd:8a:8a:27:f8:6f:e6: 88:19:90:3c -----BEGIN CERTIFICATE----- MIIGIzCCBQugAwIBAgIUAd0/GOl2Z1RHwX2OFjtycQB9LQswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwMzI1MDAwMDAwWhcNMjMwNDI5MjM1OTU5 WjCBpTFJMEcGA1UEBRNAZWViZjFiYWEzMTFkODUwNzJmNGJkZjY1Y2ZiZmQxOTNl ZTkwZjE0NGFhMjhjMzRkZmJjMWUyNzhhODljMTczZTEtMCsGA1UEAxMkNWYyNzYw NDUtNWI5Zi00NWVmLTkyM2QtZjNmY2UyNGE2MjI1MRQwEgYDVQQLEwtBbWF6b24g UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALAPDyupjD6IXxryEtaRHINswRijohTEJOIBuf5w5BCcLr00WjGn WW2OerN6xcZiMuis3P0c2NWP6pOGTwLipA21J0uqLPNNAkZ4itjaKDuDhpHnS4Pr MMr1RLOBex/xRQtwNAd+5kAiqaTY6niCLPvbbhWBt79miMMERQe81Au9kDABT7D6 ggGr0uSR9Bj/g5BWUPwrQ+NhUbByKzX4dCK0nuQnGDZISXaLZNB7bksqwAHFTBw0 ekW4vEI3njPqfiug3w7W/Zr0pFGzRLqYaaaRI/0oYEZvvmNJS8HQjdSW4thruE0v RecZ5D7MKB3oqBXdjOMDMhQSGHuUxQkHU5cCAwEAAaOCArAwggKsMB0GA1UdDgQW BBS5F93416KltnIhAAhqhjZpqvN7wzAfBgNVHSMEGDAWgBQlrdNCsB63pY6tGZAm iLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMmEy NDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEzMmEt NDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRm YTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6 b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02ZjgwOTA0 ZTQyZDIvMWMzZTI4OTctODRkMC00ZGI1LThlNWQtNzI2YzkxMjBkZTQzLnJvYTCB iAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ABLJMA0GCSqGSIb3DQEBCwUAA4IBAQBnaLLfmrswgJut3obHRjFBycCc+WtB4ZBY fSnKmGPXKvH9p0H7cnHn1fUjbI6a0nkrBblAxR28s4ALCtegK6DJUOi1eVhOSldO qeEkTK4JcKiz3am2ob+5yb4jM/lAg0rCxJiRAI7lO3MGyIr/xkDx139Z818jfuFv Rk3vZ7HADblo1RU40UxbTV5MKrJE+v5gZO/y/x01ejfOqcUe8Zj/UFlO7wehqBBR bSWIBEbj+j8SnZGdubdvkswLg7uO0yi55zaIVcDX4gg6G+Z1r1YwrI2Ktd8XyTov tUJ7Ao8MbbjtJhAHg8RTDIPNJHFUDo9149CTM/2Kiif4b+aIGZA8 -----END CERTIFICATE-----Generated at Sat Mar 25 16:43:14 2023 by rpki-client on console-ams.rpki-client.org