$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8125bbac-dd2d-4bb9-9a09-861195ef8acc.roa File: 8125bbac-dd2d-4bb9-9a09-861195ef8acc.roa (raw, json) Hash identifier: T4/CV9pAYLqqZqcJ8QFOByO4q0Ej5zCkuSZOUJR7OMc= Subject key identifier: A5:BA:2F:E9:E6:AE:CB:34:73:CF:11:0B:F9:EC:F9:EA:C9:23:BD:DC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0F35C054EE72840AD0CB1B6A4D7B3BCAFFFE39AC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8125bbac-dd2d-4bb9-9a09-861195ef8acc.roa Signing time: Tue 28 Feb 2023 00:00:00 +0000 ROA not before: Tue 28 Feb 2023 00:00:00 +0000 ROA not after: Tue 04 Apr 2023 23:59:59 +0000 asID: 16509 IP address blocks: 18.252.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 16 Mar 2023 10:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:35:c0:54:ee:72:84:0a:d0:cb:1b:6a:4d:7b:3b:ca:ff:fe:39:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 00:00:00 2023 GMT Not After : Apr 4 23:59:59 2023 GMT Subject: serialNumber=08954e3f41470835db604a2ea4d20279a22711e7bef581037716729e729c9738, CN=5f276045-5b9f-45ef-923d-f3fce24a6225, OU=Amazon RPKI, O=Amazon.com Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7a:9d:e3:f7:76:ab:2e:f5:a5:64:01:48:11: b7:3a:ec:93:38:db:1f:b3:61:d3:05:2f:4d:c6:c3: dc:ab:73:ed:80:6d:0b:5d:68:f0:59:d0:6b:70:19: 8c:31:d9:64:b8:e0:e7:8d:a7:5e:4b:f6:f5:8a:b9: a0:fc:fb:0e:fb:ff:b8:ef:ac:7a:f2:a1:ec:66:7a: f8:49:67:5a:3c:c1:a1:98:64:88:56:b6:48:84:ee: ad:8f:ac:d9:40:d7:93:ad:bb:be:7e:bc:59:64:70: cf:0f:23:ae:85:f1:4a:48:87:57:64:6e:a1:08:1f: 47:dd:ea:a5:33:b9:8b:fe:cc:ae:3a:b3:de:71:ab: c3:2a:08:f4:a9:8d:d4:30:60:24:6a:fc:01:a6:b9: f2:e9:bb:e3:1d:ab:72:b6:a7:7b:b3:a8:ce:e0:6e: ad:93:21:0c:78:89:f4:a4:ec:41:1e:c1:a6:6c:38: 59:e2:c3:3d:0d:78:5c:f5:77:6c:05:74:74:cf:c3: 63:bd:f3:1e:46:7f:c4:53:f5:87:50:bc:67:fd:47: 9d:9a:bd:97:95:8b:6f:6e:ae:be:c3:f6:19:cb:ca: 79:28:f9:e5:ed:cc:6b:f5:d4:ce:c8:a8:90:cc:01: 49:bc:8d:eb:37:ea:96:3d:59:7f:26:72:66:74:00: 38:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BA:2F:E9:E6:AE:CB:34:73:CF:11:0B:F9:EC:F9:EA:C9:23:BD:DC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8125bbac-dd2d-4bb9-9a09-861195ef8acc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.252.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:fb:11:2e:c6:a1:00:d7:17:a5:cd:03:8a:4c:cd:d8:f4:2d: 96:75:11:dd:68:49:65:c9:82:df:26:63:fb:54:b7:ef:8e:3b: c8:84:6c:1b:01:65:e6:ce:4f:f0:7b:af:d1:46:ec:9a:71:1c: 8f:0c:3e:f5:ea:71:1c:a0:a4:f5:6d:e1:0a:45:5c:59:98:12: a7:95:6e:93:03:5e:16:e0:f6:36:e5:01:03:a2:f8:73:e2:96: 13:e6:c5:e0:79:09:f5:a1:e4:29:d4:db:a0:8e:42:fd:29:56: ea:ea:e1:d3:01:07:1d:e6:7f:18:48:a0:b5:1f:3f:d1:69:6d: 1c:3a:95:03:12:1f:18:90:24:89:d9:74:56:f7:83:72:3f:e8: df:61:7d:30:32:c0:e6:10:34:a8:05:05:7a:ba:ff:67:5e:4e: 75:6b:97:af:92:bd:3d:d0:6a:90:a8:e2:14:02:19:10:f5:ab: 20:8d:c2:40:5b:da:e0:33:ff:e4:bf:15:45:87:14:02:8b:94: c3:88:bb:dc:37:cf:74:fe:0a:5a:51:e5:03:27:f6:b7:af:39: 42:5d:3b:80:52:97:a0:fc:5a:75:c0:2f:76:2c:d3:d0:fe:e6: f8:90:e0:46:10:96:b4:50:eb:bc:94:a2:9b:fd:8e:6e:f8:f9: ae:9c:e1:78 -----BEGIN CERTIFICATE----- MIIGIzCCBQugAwIBAgIUDzXAVO5yhArQyxtqTXs7yv/+OawwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwMjI4MDAwMDAwWhcNMjMwNDA0MjM1OTU5 WjCBpTFJMEcGA1UEBRNAMDg5NTRlM2Y0MTQ3MDgzNWRiNjA0YTJlYTRkMjAyNzlh MjI3MTFlN2JlZjU4MTAzNzcxNjcyOWU3MjljOTczODEtMCsGA1UEAxMkNWYyNzYw NDUtNWI5Zi00NWVmLTkyM2QtZjNmY2UyNGE2MjI1MRQwEgYDVQQLEwtBbWF6b24g UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMF6neP3dqsu9aVkAUgRtzrskzjbH7Nh0wUvTcbD3Ktz7YBtC11o 8FnQa3AZjDHZZLjg542nXkv29Yq5oPz7Dvv/uO+sevKh7GZ6+ElnWjzBoZhkiFa2 SITurY+s2UDXk627vn68WWRwzw8jroXxSkiHV2RuoQgfR93qpTO5i/7Mrjqz3nGr wyoI9KmN1DBgJGr8Aaa58um74x2rcrane7OozuBurZMhDHiJ9KTsQR7Bpmw4WeLD PQ14XPV3bAV0dM/DY73zHkZ/xFP1h1C8Z/1HnZq9l5WLb26uvsP2GcvKeSj55e3M a/XUzsiokMwBSbyN6zfqlj1ZfyZyZnQAOGsCAwEAAaOCArAwggKsMB0GA1UdDgQW BBSlui/p5q7LNHPPEQv57PnqySO93DAfBgNVHSMEGDAWgBQlrdNCsB63pY6tGZAm iLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMmEy NDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEzMmEt NDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRm YTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6 b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02ZjgwOTA0 ZTQyZDIvODEyNWJiYWMtZGQyZC00YmI5LTlhMDktODYxMTk1ZWY4YWNjLnJvYTCB iAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ABL8MA0GCSqGSIb3DQEBCwUAA4IBAQA6+xEuxqEA1xelzQOKTM3Y9C2WdRHdaEll yYLfJmP7VLfvjjvIhGwbAWXmzk/we6/RRuyacRyPDD716nEcoKT1beEKRVxZmBKn lW6TA14W4PY25QEDovhz4pYT5sXgeQn1oeQp1NugjkL9KVbq6uHTAQcd5n8YSKC1 Hz/RaW0cOpUDEh8YkCSJ2XRW94NyP+jfYX0wMsDmEDSoBQV6uv9nXk51a5evkr09 0GqQqOIUAhkQ9asgjcJAW9rgM//kvxVFhxQCi5TDiLvcN890/gpaUeUDJ/a3rzlC XTuAUpeg/Fp1wC92LNPQ/ub4kOBGEJa0UOu8lKKb/Y5u+PmunOF4 -----END CERTIFICATE-----Generated at Wed Mar 15 11:43:27 2023 by rpki-client on console-ams.rpki-client.org