$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/417866c6-b48e-49e4-a19e-cfccea84fbb7.roa File: 417866c6-b48e-49e4-a19e-cfccea84fbb7.roa (raw, json) Hash identifier: sUMIYtvCbl9cKxwotA5aBMwv1ZPMXWQXc4zCgtwlYp8= Subject key identifier: 12:6B:B2:6A:96:8B:1B:EE:A5:67:3D:DC:BA:C7:97:D6:0F:C2:90:33 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1B937034AC4082AC719B5C25D0E8B6C9633EF17A Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/417866c6-b48e-49e4-a19e-cfccea84fbb7.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 175.41.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:93:70:34:ac:40:82:ac:71:9b:5c:25:d0:e8:b6:c9:63:3e:f1:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=b85771b793146d579842833ba47fa8c445733c91a36c40344dca9e1d192cc78a, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:56:3b:ad:bb:66:a3:49:2f:d0:db:d6:a3:ae: e9:f4:5f:56:33:8c:90:35:d5:49:be:70:81:28:2d: 2f:ae:89:96:7d:e2:c6:c4:25:51:ef:0f:20:4d:fe: 1b:f8:0f:69:ae:71:b4:05:c2:fe:ec:08:ea:fc:c7: 1f:1e:4b:de:0e:f1:6e:36:8d:30:74:23:c2:0b:3e: 8e:fc:df:d9:6f:7d:ec:1b:2c:f1:90:c0:bd:89:32: e9:00:66:9b:27:b5:e2:59:be:a9:1f:86:ef:e7:7c: 6c:58:c5:fb:44:18:96:4b:1f:c3:a4:5f:79:44:76: b3:59:fa:06:98:f2:57:a3:15:5e:7b:89:bf:d8:83: 8a:76:f5:67:22:01:87:98:67:c7:bf:0d:8a:85:89: 84:6c:bd:c5:5f:10:fc:98:2e:22:cf:c1:74:cc:d7: 3c:69:13:b1:d9:fa:fb:45:e1:b5:1a:b1:4f:7f:28: 43:6b:9c:dc:f2:7b:e5:ee:d1:00:95:21:5e:6c:8d: c0:be:9a:a8:65:16:79:f1:c6:db:f3:68:8b:13:03: 8d:d4:ce:e5:80:da:17:fb:19:42:67:32:b4:0c:1e: 16:cb:05:9b:aa:bd:9f:62:0b:d0:d5:18:92:1a:cc: ac:3b:6a:4f:21:b8:ec:1f:8e:ea:70:c3:bb:6b:39: d5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:6B:B2:6A:96:8B:1B:EE:A5:67:3D:DC:BA:C7:97:D6:0F:C2:90:33 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/417866c6-b48e-49e4-a19e-cfccea84fbb7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 3a:d6:74:51:88:f9:ff:59:7a:89:8c:eb:34:35:74:98:f4:db: 4d:39:23:5a:ca:9e:a6:34:5c:86:7b:f5:e0:04:e2:06:1d:82: cf:ca:ef:93:31:eb:21:d9:6d:ce:c7:17:f5:c5:f4:ae:2f:c4: 33:cd:93:52:1a:77:07:79:bb:54:d3:ee:b8:dd:a9:3d:c2:f8: 73:e5:eb:db:f2:99:b7:78:5b:34:4e:bb:05:ba:a3:eb:be:e7: 9b:0a:4a:58:76:9f:5a:31:fd:e2:c4:a6:15:66:b7:7e:11:a1: ad:1e:27:ae:6a:a4:20:b2:d8:a5:d0:97:10:4e:9b:17:cd:b6: d8:bf:eb:a3:0a:8a:db:e7:41:69:3d:d0:08:a9:e5:90:c9:d3: 01:53:a1:23:b4:1c:03:a8:8c:00:5c:3d:94:74:0f:fe:b1:0e: 4d:4a:69:c5:ab:90:b8:c0:79:3a:ed:b4:48:f2:2e:b2:47:d8: 66:c9:5d:8e:0c:a5:0e:c1:8e:d6:7c:b4:2e:bd:e1:01:82:ce: 63:d9:8c:06:39:ac:01:34:f0:50:2e:29:d1:13:11:f7:64:cc: 03:34:5c:07:3c:3c:6a:31:a3:ce:8b:12:d2:8d:4a:db:d4:a9: ff:71:87:0c:5e:2b:d9:5f:73:c8:36:49:01:d7:66:cd:68:fb: ad:8b:8d:57 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUG5NwNKxAgqxxm1wl0Oi2yWM+8XowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDQxNjAwMDAwMFoX DTI0MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAYjg1NzcxYjc5MzE0NmQ1Nzk4NDI4 MzNiYTQ3ZmE4YzQ0NTczM2M5MWEzNmM0MDM0NGRjYTllMWQxOTJjYzc4YTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FY7rbtmo0kv0NvWo67p9F9WM4yQ NdVJvnCBKC0vromWfeLGxCVR7w8gTf4b+A9prnG0BcL+7Ajq/McfHkveDvFuNo0w dCPCCz6O/N/Zb33sGyzxkMC9iTLpAGabJ7XiWb6pH4bv53xsWMX7RBiWSx/DpF95 RHazWfoGmPJXoxVee4m/2IOKdvVnIgGHmGfHvw2KhYmEbL3FXxD8mC4iz8F0zNc8 aROx2fr7ReG1GrFPfyhDa5zc8nvl7tEAlSFebI3AvpqoZRZ58cbb82iLEwON1M7l gNoX+xlCZzK0DB4WywWbqr2fYgvQ1RiSGsysO2pPIbjsH47qcMO7aznVBwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBJrsmqWixvupWc93LrHl9YPwpAzMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQxNzg2NmM2LWI0OGUtNDllNC1hMTllLWNmY2NlYTg0ZmJiNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQA61nRRiPn/WXqJjOs0NXSY 9NtNOSNayp6mNFyGe/XgBOIGHYLPyu+TMesh2W3Oxxf1xfSuL8QzzZNSGncHebtU 0+643ak9wvhz5evb8pm3eFs0TrsFuqPrvuebCkpYdp9aMf3ixKYVZrd+EaGtHieu aqQgstil0JcQTpsXzbbYv+ujCorb50FpPdAIqeWQydMBU6EjtBwDqIwAXD2UdA/+ sQ5NSmnFq5C4wHk67bRI8i6yR9hmyV2ODKUOwY7WfLQuveEBgs5j2YwGOawBNPBQ LinRExH3ZMwDNFwHPDxqMaPOixLSjUrb1Kn/cYcMXivZX3PINkkB12bNaPuti41X -----END CERTIFICATE-----Generated at Mon May 6 00:47:29 2024 by rpki-client on console-ams.rpki-client.org