$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2436557-e77c-47a5-bc46-c7c52f740770.roa File: d2436557-e77c-47a5-bc46-c7c52f740770.roa (raw, json) Hash identifier: 4KGK94OWgvB+6m+QSweYAtvBIEUfZz3TF8T0odz8xvA= Subject key identifier: E4:45:12:18:F6:CC:8C:05:68:B9:37:6F:00:C5:61:5A:1B:26:CB:C2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0DF112498E65ABDA719E5F485F7AAD05C79B3318 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2436557-e77c-47a5-bc46-c7c52f740770.roa Signing time: Thu 23 Mar 2023 00:00:00 +0000 ROA not before: Thu 23 Mar 2023 00:00:00 +0000 ROA not after: Thu 27 Apr 2023 23:59:59 +0000 asID: 16509 IP address blocks: 18.58.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 24 Mar 2023 12:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f1:12:49:8e:65:ab:da:71:9e:5f:48:5f:7a:ad:05:c7:9b:33:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 23 00:00:00 2023 GMT Not After : Apr 27 23:59:59 2023 GMT Subject: serialNumber=c41b35ea52f3ef8a5d2868a34f841f061f5c01c2b7dc1bdca44f4ac575484bf3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225, OU=Amazon RPKI, O=Amazon.com Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:41:85:3f:3f:59:33:cb:e8:f9:3d:73:a7:d7: 21:4b:b8:e5:40:88:65:6c:d6:51:f7:ea:1d:a7:59: 18:02:20:fc:db:d3:60:43:3d:0e:29:30:8d:7a:29: 03:c6:0c:23:a1:16:65:98:b1:79:30:65:56:a0:d7: 12:13:c0:cf:c4:a7:d3:c2:8d:af:8d:4e:ac:cc:35: 71:c9:03:43:ff:d6:06:cc:9f:07:63:d6:8f:15:7c: 25:9a:d8:31:37:dd:60:78:16:cd:dd:f4:3e:99:86: ba:98:21:6a:c5:8c:08:ff:a5:f8:9c:d8:1f:97:f1: fd:cf:5f:14:17:f3:79:12:b5:cd:2b:2e:2a:c2:2a: a7:08:8c:84:1b:86:cb:2e:6e:4e:d1:ee:fc:d2:87: 1a:13:ad:9d:1b:f2:66:8a:06:dd:f1:4d:3c:17:2a: a7:00:e7:9b:88:40:b0:48:0a:17:51:0c:7d:cb:e5: e5:58:9b:c5:cc:c1:d2:d4:c4:3b:c5:3b:9a:b9:44: 0a:fc:4d:f3:27:a5:70:74:54:b9:d2:38:3e:3b:53: 19:a9:3f:2a:e6:27:e6:99:0f:51:db:8c:a2:99:68: 93:0f:da:e0:9d:d6:b8:c5:ee:f2:be:27:90:57:b8: fe:cc:1c:b9:35:e5:e3:3e:11:54:51:22:6e:a9:ad: bf:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:45:12:18:F6:CC:8C:05:68:B9:37:6F:00:C5:61:5A:1B:26:CB:C2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2436557-e77c-47a5-bc46-c7c52f740770.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.58.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:0d:2e:8c:e2:43:4f:26:7c:1c:23:4d:83:4a:30:4b:39:d7: 02:20:3a:e6:3e:57:f0:6b:22:3a:c8:4c:d8:52:15:d3:fc:18: 93:22:e9:ef:3c:45:72:95:8a:8e:f4:c5:9e:d9:bb:62:16:b1: 01:e4:61:56:73:a5:aa:03:f3:c7:92:06:12:a0:13:40:24:0b: a7:d3:1e:59:c2:30:11:da:82:e1:9f:81:35:2a:c7:6b:5d:ce: 90:03:87:7a:d2:51:a7:e5:22:6d:fc:a5:32:e8:75:3a:8e:e1: 93:f3:f4:f4:bb:52:95:72:6f:a5:83:6d:e2:2b:3c:7c:7f:66: ec:09:f3:d3:42:41:9d:7e:e5:8c:f9:33:b1:60:f7:b5:c8:53: 3e:8c:d7:1c:d1:ad:75:36:ad:1b:73:34:4b:6f:26:d5:b9:01: 18:3b:77:2b:48:80:fd:ca:f2:23:da:9d:4f:4a:18:ec:0b:d8: 25:8b:e4:69:98:84:9b:5a:38:e5:75:18:da:8c:6b:1b:73:08: c5:02:76:c6:e6:e0:31:fc:3b:94:bb:e9:ac:8e:86:ca:cc:f5: 90:84:d6:d5:63:12:c9:d0:16:eb:e5:63:4b:02:67:b6:43:e0: 72:0c:f2:fd:94:07:16:be:51:a5:9d:1b:e8:3b:56:89:c6:31: fc:82:52:6c -----BEGIN CERTIFICATE----- MIIGIzCCBQugAwIBAgIUDfESSY5lq9pxnl9IX3qtBcebMxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwMzIzMDAwMDAwWhcNMjMwNDI3MjM1OTU5 WjCBpTFJMEcGA1UEBRNAYzQxYjM1ZWE1MmYzZWY4YTVkMjg2OGEzNGY4NDFmMDYx ZjVjMDFjMmI3ZGMxYmRjYTQ0ZjRhYzU3NTQ4NGJmMzEtMCsGA1UEAxMkNWYyNzYw NDUtNWI5Zi00NWVmLTkyM2QtZjNmY2UyNGE2MjI1MRQwEgYDVQQLEwtBbWF6b24g UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALtBhT8/WTPL6Pk9c6fXIUu45UCIZWzWUffqHadZGAIg/NvTYEM9 DikwjXopA8YMI6EWZZixeTBlVqDXEhPAz8Sn08KNr41OrMw1cckDQ//WBsyfB2PW jxV8JZrYMTfdYHgWzd30PpmGupghasWMCP+l+JzYH5fx/c9fFBfzeRK1zSsuKsIq pwiMhBuGyy5uTtHu/NKHGhOtnRvyZooG3fFNPBcqpwDnm4hAsEgKF1EMfcvl5Vib xczB0tTEO8U7mrlECvxN8yelcHRUudI4PjtTGak/KuYn5pkPUduMoplokw/a4J3W uMXu8r4nkFe4/swcuTXl4z4RVFEibqmtv58CAwEAAaOCArAwggKsMB0GA1UdDgQW BBTkRRIY9syMBWi5N28AxWFaGybLwjAfBgNVHSMEGDAWgBQlrdNCsB63pY6tGZAm iLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMmEy NDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEzMmEt NDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRm YTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6 b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02ZjgwOTA0 ZTQyZDIvZDI0MzY1NTctZTc3Yy00N2E1LWJjNDYtYzdjNTJmNzQwNzcwLnJvYTCB iAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ABI6MA0GCSqGSIb3DQEBCwUAA4IBAQBhDS6M4kNPJnwcI02DSjBLOdcCIDrmPlfw ayI6yEzYUhXT/BiTIunvPEVylYqO9MWe2btiFrEB5GFWc6WqA/PHkgYSoBNAJAun 0x5ZwjAR2oLhn4E1KsdrXc6QA4d60lGn5SJt/KUy6HU6juGT8/T0u1KVcm+lg23i Kzx8f2bsCfPTQkGdfuWM+TOxYPe1yFM+jNcc0a11Nq0bczRLbybVuQEYO3crSID9 yvIj2p1PShjsC9gli+RpmISbWjjldRjajGsbcwjFAnbG5uAx/DuUu+msjobKzPWQ hNbVYxLJ0Bbr5WNLAme2Q+ByDPL9lAcWvlGlnRvoO1aJxjH8glJs -----END CERTIFICATE-----Generated at Thu Mar 23 00:32:37 2023 by rpki-client on console-fra.rpki-client.org