$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa File: 7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa (raw, json) Hash identifier: pBS0J9u4x3gPrJvgV7jG412ERN76XgE0jVMmyYTGkl0= Subject key identifier: 50:E9:6A:79:F1:F1:D3:FC:45:D6:F5:63:6B:12:6B:A6:B6:73:53:FE Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6C6842057972228F655F8FA33178ACCFAC9F9807 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa Signing time: Sat 11 May 2024 00:00:00 +0000 ROA not before: Sat 11 May 2024 00:00:00 +0000 ROA not after: Sat 15 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2400:6500::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 00:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:68:42:05:79:72:22:8f:65:5f:8f:a3:31:78:ac:cf:ac:9f:98:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 11 00:00:00 2024 GMT Not After : Jun 15 23:59:59 2024 GMT Subject: serialNumber=1cfeea8fba20f8b179536ddd85c1bc7f4d1daac7cd0b81a87e47bdd148caa1d3, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7b:cb:f7:7b:a9:c0:fe:81:56:4f:cf:ee:3e: d9:be:ea:20:1a:f8:02:ec:68:9e:64:8e:13:0a:e8: 11:e5:3e:dc:44:8f:f2:9f:24:99:bb:af:a2:79:c1: 8f:43:68:92:17:f5:96:56:95:72:5d:78:89:4d:47: 3c:c7:6d:52:af:4d:af:28:89:25:ff:21:77:fa:c0: 2f:92:f9:3c:ad:e9:08:4a:69:dd:20:8a:1b:2d:4a: 76:88:0d:cd:ff:3a:2f:ae:7c:35:92:fd:d3:ad:ee: c3:56:56:3e:c8:5a:91:8e:68:fb:7a:6e:ac:c8:af: da:c3:3f:3a:c1:29:a6:73:85:79:04:0e:62:b9:83: 5b:9e:53:6c:c3:70:77:43:c0:de:f2:25:0f:0f:0a: b0:28:ad:7f:0f:45:be:d3:de:87:6f:b3:d6:5c:d9: b8:d7:e8:28:33:d6:c7:df:ef:da:b8:49:8b:8e:3c: d6:ca:67:38:b1:54:e5:71:5c:b1:aa:d9:c6:f2:da: 7c:29:88:81:21:fe:39:8b:77:0c:c9:cb:18:7d:37: 8c:11:e2:b5:20:61:8b:19:07:f2:1e:c6:1e:67:ea: e5:48:ac:5e:b6:41:3c:d2:91:3a:4f:c3:56:f3:b1: a3:9a:a7:09:ee:81:fd:5b:b5:3e:48:a6:8f:30:67: 39:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E9:6A:79:F1:F1:D3:FC:45:D6:F5:63:6B:12:6B:A6:B6:73:53:FE X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500::/32 Signature Algorithm: sha256WithRSAEncryption 16:29:02:74:4e:f5:1e:61:ce:9f:0b:1a:1e:a1:38:7e:d5:75: 3e:3e:0f:86:8e:ab:7e:8b:79:bb:70:be:70:57:05:d6:d9:66: 88:a8:9d:b5:5f:ab:a4:83:2b:56:7e:20:2e:b9:6f:96:c5:ba: 1f:d6:b7:be:e1:c1:86:29:e7:b8:67:14:93:b1:51:21:61:4d: a0:bc:be:ee:6e:6a:41:52:1a:ab:f0:5a:d5:33:cc:b8:3e:3d: 10:0f:78:84:9f:0a:72:c4:4f:3b:16:70:57:9a:df:2f:64:35: 06:09:4a:38:3c:4e:38:6b:3a:53:34:91:a9:bf:e3:2e:47:ff: c4:fe:0b:eb:78:84:ae:97:8a:53:99:b3:73:be:38:d3:67:e5: be:22:0e:50:ec:d5:f5:91:e2:95:74:ae:0a:21:67:5b:ab:28: 65:ab:69:28:25:5a:86:bc:b6:2f:6a:9a:7a:44:42:29:16:0b: 36:d5:82:8c:df:8a:57:a6:e6:48:5a:f8:d1:3d:18:88:65:a9: 74:45:6e:2c:69:69:cb:b3:57:a6:37:b6:2e:8c:69:34:b8:8f: ea:b5:ec:c6:2e:dc:5f:8f:0d:0b:c8:dc:0d:51:46:55:60:01: de:e6:0a:d5:5b:1f:c9:ba:1b:4c:a4:9f:da:74:17:75:b5:fd: 5f:58:65:7a -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUbGhCBXlyIo9lX4+jMXisz6yfmAcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDUxMTAwMDAwMFoX DTI0MDYxNTIzNTk1OVowejFJMEcGA1UEBRNAMWNmZWVhOGZiYTIwZjhiMTc5NTM2 ZGRkODVjMWJjN2Y0ZDFkYWFjN2NkMGI4MWE4N2U0N2JkZDE0OGNhYTFkMzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHvL93upwP6BVk/P7j7ZvuogGvgC 7GieZI4TCugR5T7cRI/ynySZu6+iecGPQ2iSF/WWVpVyXXiJTUc8x21Sr02vKIkl /yF3+sAvkvk8rekISmndIIobLUp2iA3N/zovrnw1kv3Tre7DVlY+yFqRjmj7em6s yK/awz86wSmmc4V5BA5iuYNbnlNsw3B3Q8De8iUPDwqwKK1/D0W+096Hb7PWXNm4 1+goM9bH3+/auEmLjjzWymc4sVTlcVyxqtnG8tp8KYiBIf45i3cMycsYfTeMEeK1 IGGLGQfyHsYeZ+rlSKxetkE80pE6T8NW87GjmqcJ7oH9W7U+SKaPMGc58QIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFFDpannx8dP8Rdb1Y2sSa6a2c1P+MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdhNDZkODE4LWNiMWUtNDVhYi04NmM3LTFhOWEzN2MxYTk1MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABlADANBgkqhkiG9w0BAQsFAAOCAQEAFikCdE71HmHOnwsaHqE4 ftV1Pj4Pho6rfot5u3C+cFcF1tlmiKidtV+rpIMrVn4gLrlvlsW6H9a3vuHBhinn uGcUk7FRIWFNoLy+7m5qQVIaq/Ba1TPMuD49EA94hJ8KcsRPOxZwV5rfL2Q1BglK ODxOOGs6UzSRqb/jLkf/xP4L63iErpeKU5mzc74402flviIOUOzV9ZHilXSuCiFn W6soZatpKCVahry2L2qaekRCKRYLNtWCjN+KV6bmSFr40T0YiGWpdEVuLGlpy7NX pje2LoxpNLiP6rXsxi7cX48NC8jcDVFGVWAB3uYK1VsfybobTKSf2nQXdbX9X1hl eg== -----END CERTIFICATE-----Generated at Sun Jun 2 00:29:41 2024 by rpki-client on console-ams.rpki-client.org