$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7fdaa8c9-45c2-47a9-80e9-8408d985905e.roa File: 7fdaa8c9-45c2-47a9-80e9-8408d985905e.roa (raw, json) Hash identifier: 2iHPpckmvkbsqrSvbb5SOkhdIt5ItWvuIbInSPZs93Q= Subject key identifier: ED:FE:A1:62:8A:48:89:BA:F5:96:53:FC:61:DB:6C:FF:6C:CB:45:8E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 13D290F83B6434998DF38F1FAD8AD301FCC602DC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7fdaa8c9-45c2-47a9-80e9-8408d985905e.roa Signing time: Sat 25 Mar 2023 00:00:00 +0000 ROA not before: Sat 25 Mar 2023 00:00:00 +0000 ROA not after: Sat 29 Apr 2023 23:59:59 +0000 asID: 16509 IP address blocks: 54.80.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 26 Mar 2023 12:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:d2:90:f8:3b:64:34:99:8d:f3:8f:1f:ad:8a:d3:01:fc:c6:02:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 25 00:00:00 2023 GMT Not After : Apr 29 23:59:59 2023 GMT Subject: serialNumber=95e05721f4e2adb8f6622b361aceea90cad4560b984e075633fb95c99b94a8d0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225, OU=Amazon RPKI, O=Amazon.com Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d9:a6:bf:e7:9c:b7:b0:59:52:7b:80:03:be: c6:ec:39:9e:25:f4:27:db:a6:a3:ea:ea:00:e6:b5: 35:b6:69:37:28:e5:52:f2:a2:1c:9d:12:3d:b6:54: 30:02:ee:78:07:f1:b3:61:44:07:e4:9c:68:d1:d3: 02:e8:b8:fa:84:78:4b:df:1f:df:8a:c6:52:12:b7: 4e:f9:0e:2f:fd:8a:98:f5:7d:43:de:a6:1b:4c:b9: 17:93:41:d2:ed:3e:60:f7:14:ff:62:d8:12:cf:8a: cc:12:15:a8:cb:0b:e6:7c:57:b8:e9:7d:7c:22:2c: af:e4:4e:58:f4:40:9f:25:c5:19:1e:37:72:3c:62: b5:c0:07:c3:b1:4d:17:0a:dc:76:84:08:0c:05:a2: d0:f4:5b:20:cd:7d:f0:2f:fd:a6:b6:76:18:bd:29: 1b:ac:b6:1b:20:36:db:dd:15:88:56:1c:87:fe:dd: 6f:66:1a:9b:95:ec:37:16:1d:21:2a:92:0e:83:8c: cf:20:c8:36:36:50:4b:5c:85:38:ea:25:ad:af:a6: dc:63:eb:49:bd:fd:3a:b5:b5:f5:9a:42:ac:a8:c4: f6:8d:ff:f0:f6:35:f0:50:8a:68:ff:8a:18:36:74: d4:d9:e8:80:83:3c:71:b8:78:64:2f:1c:de:84:cb: 13:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:FE:A1:62:8A:48:89:BA:F5:96:53:FC:61:DB:6C:FF:6C:CB:45:8E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7fdaa8c9-45c2-47a9-80e9-8408d985905e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.80.0.0/12 Signature Algorithm: sha256WithRSAEncryption 3b:4a:95:96:63:6e:60:bd:94:91:e9:d2:5f:30:b3:9b:a0:a2: 7b:bc:cb:04:cd:64:e2:f9:e8:4c:f3:75:8c:7f:fe:9a:b4:7e: 3a:a2:94:68:13:7b:7f:d4:ac:2a:12:d9:dd:29:7e:90:16:e8: 5f:4b:12:d6:89:c2:0d:59:9e:f0:1e:63:62:c0:ba:d5:ff:7e: 36:60:64:d7:aa:5d:6d:07:74:39:a8:cb:66:da:b5:01:4d:3e: fa:ed:3b:22:3b:bf:0e:cb:10:76:75:21:cb:d3:8c:a8:cd:b3: b5:a7:93:9d:18:2d:19:1d:86:e3:3f:d2:b4:8e:fa:41:ae:4c: 15:a5:eb:e8:e2:a2:5f:ec:75:0f:a5:df:0d:a1:7f:08:e4:60: 39:b4:16:f9:06:2b:78:e7:23:8b:0e:c7:cd:f8:a9:52:16:db: 88:77:d8:87:6a:c9:b4:7f:01:3b:9b:ef:bc:1c:69:72:ac:b0: d1:4e:f7:d3:e2:9f:88:11:2a:2a:00:c1:2e:08:8b:d6:d6:5f: c8:17:5d:46:23:b8:5b:0b:fa:d9:89:d1:ce:13:40:24:78:f7: a9:95:cf:62:d7:58:a2:14:07:03:86:61:c2:f5:59:76:89:c9: f0:f7:bf:03:52:65:71:eb:0b:30:dc:f5:1f:58:e7:16:3c:4e: 8f:3c:00:63 -----BEGIN CERTIFICATE----- MIIGIzCCBQugAwIBAgIUE9KQ+DtkNJmN848frYrTAfzGAtwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwMzI1MDAwMDAwWhcNMjMwNDI5MjM1OTU5 WjCBpTFJMEcGA1UEBRNAOTVlMDU3MjFmNGUyYWRiOGY2NjIyYjM2MWFjZWVhOTBj YWQ0NTYwYjk4NGUwNzU2MzNmYjk1Yzk5Yjk0YThkMDEtMCsGA1UEAxMkNWYyNzYw NDUtNWI5Zi00NWVmLTkyM2QtZjNmY2UyNGE2MjI1MRQwEgYDVQQLEwtBbWF6b24g UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMjZpr/nnLewWVJ7gAO+xuw5niX0J9umo+rqAOa1NbZpNyjlUvKi HJ0SPbZUMALueAfxs2FEB+ScaNHTAui4+oR4S98f34rGUhK3TvkOL/2KmPV9Q96m G0y5F5NB0u0+YPcU/2LYEs+KzBIVqMsL5nxXuOl9fCIsr+ROWPRAnyXFGR43cjxi tcAHw7FNFwrcdoQIDAWi0PRbIM198C/9prZ2GL0pG6y2GyA2290ViFYch/7db2Ya m5XsNxYdISqSDoOMzyDINjZQS1yFOOolra+m3GPrSb39OrW19ZpCrKjE9o3/8PY1 8FCKaP+KGDZ01NnogIM8cbh4ZC8c3oTLExkCAwEAAaOCArAwggKsMB0GA1UdDgQW BBTt/qFiikiJuvWWU/xh22z/bMtFjjAfBgNVHSMEGDAWgBQlrdNCsB63pY6tGZAm iLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMmEy NDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEzMmEt NDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRm YTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6 b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02ZjgwOTA0 ZTQyZDIvN2ZkYWE4YzktNDVjMi00N2E5LTgwZTktODQwOGQ5ODU5MDVlLnJvYTCB iAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD BDZQMA0GCSqGSIb3DQEBCwUAA4IBAQA7SpWWY25gvZSR6dJfMLOboKJ7vMsEzWTi +ehM83WMf/6atH46opRoE3t/1KwqEtndKX6QFuhfSxLWicINWZ7wHmNiwLrV/342 YGTXql1tB3Q5qMtm2rUBTT767TsiO78OyxB2dSHL04yozbO1p5OdGC0ZHYbjP9K0 jvpBrkwVpevo4qJf7HUPpd8NoX8I5GA5tBb5Bit45yOLDsfN+KlSFtuId9iHasm0 fwE7m++8HGlyrLDRTvfT4p+IESoqAMEuCIvW1l/IF11GI7hbC/rZidHOE0AkePep lc9i11iiFAcDhmHC9Vl2icnw978DUmVx6wsw3PUfWOcWPE6PPABj -----END CERTIFICATE-----Generated at Sat Mar 25 00:23:13 2023 by rpki-client on console-ams.rpki-client.org