$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b19098ef-8b50-491d-b122-8a6bbecd29ac.roa File: b19098ef-8b50-491d-b122-8a6bbecd29ac.roa (raw, json) Hash identifier: fZK1CmZs7TM4Hw3nqzZH0M5SQZFCzCo1SVaME1OM+q0= Subject key identifier: 9E:77:88:56:52:13:82:DC:CC:EE:A2:5A:81:2B:BB:BD:15:24:CD:97 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 51D79A16583CB3FA702DD0A8099DF65C1CEF276C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b19098ef-8b50-491d-b122-8a6bbecd29ac.roa Signing time: Tue 28 May 2024 00:00:00 +0000 ROA not before: Tue 28 May 2024 00:00:00 +0000 ROA not after: Tue 02 Jul 2024 23:59:59 +0000 asID: 8987 IP address blocks: 43.220.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 00:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d7:9a:16:58:3c:b3:fa:70:2d:d0:a8:09:9d:f6:5c:1c:ef:27:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 28 00:00:00 2024 GMT Not After : Jul 2 23:59:59 2024 GMT Subject: serialNumber=ab79c4229574977f19ceb19cc289bb0ccf333f8425a6abd0c57fa5c08a5ae614, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e4:2b:aa:8f:4e:7b:58:90:68:14:f7:2c:18: 0a:03:ad:b0:cb:9c:cb:0e:ca:7b:26:53:f0:4b:67: d5:5f:e0:36:29:2f:ef:85:cd:da:49:f5:bb:36:3c: 6a:bf:68:65:87:75:1e:3b:e1:8b:34:fe:58:b1:cf: 5c:7d:37:71:51:f4:04:63:7e:06:19:8f:84:10:09: d0:c0:d5:d1:e8:26:e9:4d:a8:15:44:46:ef:76:e0: 83:12:41:81:2b:86:be:64:27:84:12:41:6f:92:cf: c8:bd:cd:54:e0:fc:db:01:eb:61:bb:f3:11:22:2f: 83:aa:00:b8:de:db:85:19:bb:f0:a8:c2:c3:ed:68: cd:bd:1e:42:9c:42:b7:86:83:01:4a:df:f8:9c:37: ea:02:63:51:44:7d:a3:a0:f7:af:69:c0:91:e6:7c: 72:01:77:22:5e:c7:d2:13:84:95:ac:c6:4e:f6:97: 42:41:c0:b6:ed:9c:5f:38:f1:44:71:48:64:e2:ce: 96:44:19:4c:f2:d7:03:a5:2b:da:30:92:06:40:84: f1:de:a8:dc:40:2d:83:30:68:69:fb:b1:9e:e0:02: a6:0c:8e:23:3e:b2:cb:6f:bd:9f:7f:0a:b4:e1:9f: ca:e2:36:1b:ef:2e:cc:dc:41:48:19:60:f3:0e:bd: df:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:77:88:56:52:13:82:DC:CC:EE:A2:5A:81:2B:BB:BD:15:24:CD:97 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b19098ef-8b50-491d-b122-8a6bbecd29ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.220.0.0/15 Signature Algorithm: sha256WithRSAEncryption 78:b7:c3:08:59:26:6d:92:0f:e0:94:8d:9d:9c:58:c9:1f:b8: 76:73:18:01:48:b4:cd:fe:ee:57:7e:e3:32:96:0f:47:49:a2: f7:40:b8:ea:07:ec:cd:df:df:83:11:1b:fd:d4:44:7b:34:19: a7:39:cc:d3:6b:03:c6:46:d0:1a:55:79:d5:dc:17:2f:9a:9d: 87:a8:71:0e:52:38:87:61:1a:1d:9c:91:45:87:2b:13:35:22: f9:51:f6:47:f3:f4:0c:b8:d1:01:2d:5a:2b:2a:b0:05:15:8e: 8c:49:1f:33:9b:d0:74:2f:cd:24:93:db:87:13:ea:4d:a1:83: 89:9c:8a:eb:37:d7:38:1d:e4:45:16:67:57:8b:e4:68:ab:0a: e8:f9:7d:f9:86:0a:ea:c7:c6:ea:f3:0d:ee:96:7c:27:06:1f: b3:27:44:91:47:04:22:e5:04:6f:b3:7f:67:6b:92:03:f4:5e: 6d:1b:97:1c:e9:de:9d:61:32:fc:31:43:63:48:e6:a8:72:9b: 33:ed:7f:77:6e:4a:52:95:70:ae:53:e8:21:24:b8:8b:c9:8c: 6e:e6:dc:10:67:5c:b5:a6:18:82:cb:8a:5e:94:b4:cb:3d:c4: 8a:f9:28:77:d8:d5:13:68:12:0b:f8:d5:76:28:d8:5a:d4:f9: ba:91:b7:6d -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUUdeaFlg8s/pwLdCoCZ32XBzvJ2wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDUyODAwMDAwMFoX DTI0MDcwMjIzNTk1OVowejFJMEcGA1UEBRNAYWI3OWM0MjI5NTc0OTc3ZjE5Y2Vi MTljYzI4OWJiMGNjZjMzM2Y4NDI1YTZhYmQwYzU3ZmE1YzA4YTVhZTYxNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1uQrqo9Oe1iQaBT3LBgKA62wy5zL Dsp7JlPwS2fVX+A2KS/vhc3aSfW7Njxqv2hlh3UeO+GLNP5Ysc9cfTdxUfQEY34G GY+EEAnQwNXR6CbpTagVREbvduCDEkGBK4a+ZCeEEkFvks/Ivc1U4PzbAethu/MR Ii+DqgC43tuFGbvwqMLD7WjNvR5CnEK3hoMBSt/4nDfqAmNRRH2joPevacCR5nxy AXciXsfSE4SVrMZO9pdCQcC27ZxfOPFEcUhk4s6WRBlM8tcDpSvaMJIGQITx3qjc QC2DMGhp+7Ge4AKmDI4jPrLLb72ffwq04Z/K4jYb7y7M3EFIGWDzDr3fhwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFJ53iFZSE4LczO6iWoEru70VJM2XMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IxOTA5OGVmLThiNTAtNDkxZC1iMTIyLThhNmJiZWNkMjlhYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMBK9wwDQYJKoZIhvcNAQELBQADggEBAHi3wwhZJm2SD+CUjZ2cWMkf uHZzGAFItM3+7ld+4zKWD0dJovdAuOoH7M3f34MRG/3URHs0Gac5zNNrA8ZG0BpV edXcFy+anYeocQ5SOIdhGh2ckUWHKxM1IvlR9kfz9Ay40QEtWisqsAUVjoxJHzOb 0HQvzSST24cT6k2hg4mcius31zgd5EUWZ1eL5GirCuj5ffmGCurHxurzDe6WfCcG H7MnRJFHBCLlBG+zf2drkgP0Xm0blxzp3p1hMvwxQ2NI5qhymzPtf3duSlKVcK5T 6CEkuIvJjG7m3BBnXLWmGILLil6UtMs9xIr5KHfY1RNoEgv41XYo2FrU+bqRt20= -----END CERTIFICATE-----Generated at Sun Jun 2 01:00:42 2024 by rpki-client on console-fra.rpki-client.org