$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a317fb-ba14-406a-befd-f4127c6b8e5e.roa File: 76a317fb-ba14-406a-befd-f4127c6b8e5e.roa (raw, json) Hash identifier: QXwOwQK+uw0V/LdiV68S/H+j4ylVxe3P6p1mR25YKl8= Subject key identifier: 2C:F3:CD:FD:A4:A8:C6:F3:7B:92:83:A9:53:87:95:9A:45:13:88:51 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 636F734B5F755306100779A05112F0C54940B039 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a317fb-ba14-406a-befd-f4127c6b8e5e.roa Signing time: Sat 25 Mar 2023 00:00:00 +0000 ROA not before: Sat 25 Mar 2023 00:00:00 +0000 ROA not after: Sat 29 Apr 2023 23:59:59 +0000 asID: 16509 IP address blocks: 13.40.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 26 Mar 2023 12:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:6f:73:4b:5f:75:53:06:10:07:79:a0:51:12:f0:c5:49:40:b0:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 25 00:00:00 2023 GMT Not After : Apr 29 23:59:59 2023 GMT Subject: serialNumber=78fe9b0c9cb90064f7a6c893b936806f1b52920703592062b7ffd92123163224, CN=5f276045-5b9f-45ef-923d-f3fce24a6225, OU=Amazon RPKI, O=Amazon.com Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:88:83:48:ba:f6:ac:68:36:79:2b:ff:39:df: 0e:52:c0:46:28:62:cb:99:94:79:56:2b:6d:31:77: ac:14:55:3f:1b:45:23:93:1c:80:47:6d:0b:34:0d: 2a:d0:a0:1b:45:14:89:e3:6c:63:97:60:1a:e2:f0: 0d:a3:89:c1:16:b6:c2:1c:b5:7e:ef:d9:2a:e9:a9: 7f:91:4c:93:cd:b5:3d:91:26:2c:17:3c:aa:90:af: 6b:39:69:3c:b3:e4:0b:65:7e:b7:dc:7b:63:7f:ab: fe:08:be:34:4b:1c:64:a6:ba:34:cf:d1:1c:ac:b6: 5c:7b:ef:31:84:be:9c:71:bf:34:47:d1:c1:8f:5d: 20:62:01:a4:c4:74:47:1d:e8:a7:6c:5b:1b:e5:78: 9e:05:ab:ff:df:b0:f8:7f:dd:bf:4f:c8:a0:c9:3d: e0:23:6d:df:ff:d3:da:d4:00:b0:e2:b3:51:ec:71: 4c:9b:68:b9:15:ab:fa:8a:21:e9:de:b0:cb:50:90: 18:3c:31:9f:4c:e6:13:ec:15:06:c9:d8:8c:f6:68: 2e:97:2f:2b:60:0f:5b:d0:52:66:53:9b:d9:cb:cc: e1:67:3d:04:25:47:16:a7:2c:b0:b6:36:d8:64:f6: 31:0a:6c:bc:ef:b5:cf:17:ec:9f:4c:46:11:38:b8: b5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F3:CD:FD:A4:A8:C6:F3:7B:92:83:A9:53:87:95:9A:45:13:88:51 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a317fb-ba14-406a-befd-f4127c6b8e5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.40.0.0/13 Signature Algorithm: sha256WithRSAEncryption 8a:da:69:21:7b:36:a9:59:23:40:fb:6a:3d:3a:60:0f:21:5d: d2:8f:1d:a6:bf:6b:ba:56:21:6e:b6:98:64:dc:2c:f4:7f:50: 31:3c:62:fd:3e:6d:6b:37:f1:2b:31:06:b5:fa:02:ef:68:04: 92:11:83:47:6f:d1:fe:20:2e:93:70:6d:d0:a4:e4:7c:80:e9: 1e:b2:57:fb:07:7f:e8:6b:32:c0:85:62:19:1c:21:53:3c:9a: e3:e9:be:8e:72:bd:12:25:32:e6:6e:d4:18:7b:2f:bc:31:a9: 55:0c:3b:fe:b5:19:0c:86:8a:69:51:1b:f9:55:40:7c:cd:5e: 50:83:b1:09:64:8c:a8:97:cc:8a:7d:07:2f:3f:a2:63:d4:bc: fb:d6:84:36:af:a9:ec:30:2f:5b:a9:d8:df:9c:24:7a:ba:e8: 3b:5e:16:46:08:8f:4f:1e:84:6f:59:c3:44:6d:e8:bc:ec:92: 61:a3:6a:94:a1:d8:39:3a:23:bb:2d:86:23:11:2e:c7:12:85: 91:f0:0d:0a:38:b7:6e:d8:4c:31:42:d5:07:9a:fe:a9:40:d0: 35:6b:f3:c4:a7:56:11:20:5c:1e:44:47:c5:f8:c7:a9:3e:65: 99:eb:81:f7:57:5a:4a:54:75:3e:2f:8c:90:55:ae:90:6c:a6: 08:2f:59:c9 -----BEGIN CERTIFICATE----- MIIGIzCCBQugAwIBAgIUY29zS191UwYQB3mgURLwxUlAsDkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwMzI1MDAwMDAwWhcNMjMwNDI5MjM1OTU5 WjCBpTFJMEcGA1UEBRNANzhmZTliMGM5Y2I5MDA2NGY3YTZjODkzYjkzNjgwNmYx YjUyOTIwNzAzNTkyMDYyYjdmZmQ5MjEyMzE2MzIyNDEtMCsGA1UEAxMkNWYyNzYw NDUtNWI5Zi00NWVmLTkyM2QtZjNmY2UyNGE2MjI1MRQwEgYDVQQLEwtBbWF6b24g UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPCIg0i69qxoNnkr/znfDlLARihiy5mUeVYrbTF3rBRVPxtFI5Mc gEdtCzQNKtCgG0UUieNsY5dgGuLwDaOJwRa2why1fu/ZKumpf5FMk821PZEmLBc8 qpCvazlpPLPkC2V+t9x7Y3+r/gi+NEscZKa6NM/RHKy2XHvvMYS+nHG/NEfRwY9d IGIBpMR0Rx3op2xbG+V4ngWr/9+w+H/dv0/IoMk94CNt3//T2tQAsOKzUexxTJto uRWr+ooh6d6wy1CQGDwxn0zmE+wVBsnYjPZoLpcvK2APW9BSZlOb2cvM4Wc9BCVH FqcssLY22GT2MQpsvO+1zxfsn0xGETi4tYUCAwEAAaOCArAwggKsMB0GA1UdDgQW BBQs8839pKjG83uSg6lTh5WaRROIUTAfBgNVHSMEGDAWgBQlrdNCsB63pY6tGZAm iLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMmEy NDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEzMmEt NDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRm YTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6 b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02ZjgwOTA0 ZTQyZDIvNzZhMzE3ZmItYmExNC00MDZhLWJlZmQtZjQxMjdjNmI4ZTVlLnJvYTCB iAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD Aw0oMA0GCSqGSIb3DQEBCwUAA4IBAQCK2mkhezapWSNA+2o9OmAPIV3Sjx2mv2u6 ViFutphk3Cz0f1AxPGL9Pm1rN/ErMQa1+gLvaASSEYNHb9H+IC6TcG3QpOR8gOke slf7B3/oazLAhWIZHCFTPJrj6b6Ocr0SJTLmbtQYey+8MalVDDv+tRkMhoppURv5 VUB8zV5Qg7EJZIyol8yKfQcvP6Jj1Lz71oQ2r6nsMC9bqdjfnCR6uug7XhZGCI9P HoRvWcNEbei87JJho2qUodg5OiO7LYYjES7HEoWR8A0KOLdu2EwxQtUHmv6pQNA1 a/PEp1YRIFweREfF+MepPmWZ64H3V1pKVHU+L4yQVa6QbKYIL1nJ -----END CERTIFICATE-----Generated at Sat Mar 25 00:23:13 2023 by rpki-client on console-ams.rpki-client.org