$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/c413bd55-4d9e-47f0-87cb-ba8981b5bce4.roa File: c413bd55-4d9e-47f0-87cb-ba8981b5bce4.roa (raw, json) Hash identifier: PSgyYVdXtsSpVjTSstsYN3keGywVMvisetqjn3maME0= Subject key identifier: B2:1B:E0:2C:80:F9:CF:02:D2:98:EE:79:6B:B7:E5:4E:31:9A:0F:55 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3906324CC2688819E7B94D387F9E51232CD4DDDC Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/c413bd55-4d9e-47f0-87cb-ba8981b5bce4.roa Signing time: Sat 25 May 2024 00:00:00 +0000 ROA not before: Sat 25 May 2024 00:00:00 +0000 ROA not after: Sat 29 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 43.250.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 00:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:06:32:4c:c2:68:88:19:e7:b9:4d:38:7f:9e:51:23:2c:d4:dd:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 25 00:00:00 2024 GMT Not After : Jun 29 23:59:59 2024 GMT Subject: serialNumber=8e26eaca280b423b7542c5c5daba392b211c38af4df7e7d1626fbcb6d1f3f66a, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:86:4d:84:5a:7d:88:08:c6:0c:94:40:0d:63: e8:2a:bd:e4:ac:ac:cd:f0:5e:87:88:fd:1c:7f:60: ec:bf:a4:f8:75:01:6b:ab:3a:c7:0b:19:9e:37:91: e0:95:bb:ee:06:78:c2:6a:fd:90:00:ed:9f:56:bc: a2:c1:52:a2:ee:2c:cd:6c:fd:93:7f:1c:71:f2:29: 1c:bf:c8:7e:a7:30:54:33:3b:b9:3a:09:75:44:0f: 64:68:6e:90:4d:b6:17:c5:14:e1:2b:fe:fe:ce:a1: df:0d:a5:34:3c:b3:76:08:77:01:92:14:04:ef:ee: 98:9e:09:e3:bf:6f:cc:ce:1c:5a:7a:77:92:24:8a: 61:c0:9d:99:4a:0f:bd:49:fa:f1:1f:99:e3:eb:c2: 0a:58:fc:98:8f:2b:a1:bc:d3:40:94:a4:56:9d:3d: 34:d7:f4:93:20:f0:fb:10:e2:d1:6b:aa:1a:85:0f: 91:ac:25:ff:48:21:5d:3e:81:0d:c2:e5:14:78:42: 66:c1:3d:ea:f5:17:df:2c:9a:7a:38:20:03:a0:cf: bc:c7:9d:ab:14:01:3c:cf:31:21:8c:45:85:dc:f1: dd:c1:cb:ba:fd:ba:16:09:2d:46:06:07:88:1f:b1: 32:31:30:aa:14:87:65:6f:3b:ad:68:54:9c:dd:b3: 6a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1B:E0:2C:80:F9:CF:02:D2:98:EE:79:6B:B7:E5:4E:31:9A:0F:55 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/c413bd55-4d9e-47f0-87cb-ba8981b5bce4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.250.193.0/24 Signature Algorithm: sha256WithRSAEncryption 01:08:72:9c:87:93:ba:cc:2e:d1:47:4e:62:8e:49:45:26:23: 50:d3:91:1e:64:47:dd:30:e1:7e:f8:b2:af:2a:f1:06:d5:cd: 91:9b:70:5d:7a:0d:83:4d:af:0e:fa:bb:ef:06:ba:3d:fa:c7: 71:62:8d:37:2a:a7:40:18:1f:9a:e9:96:6c:12:d9:9f:61:5c: 52:01:6c:c2:73:1e:5d:8b:35:31:60:27:1f:6d:ce:c4:83:38: 7f:8f:88:a4:41:c4:cd:65:1a:46:17:c1:df:72:cb:9a:01:3b: dc:94:71:73:e8:0d:d8:e1:f3:2e:a5:da:92:a2:76:93:85:52: 43:7c:fb:c0:39:d8:ee:85:88:3e:bd:16:08:96:84:a9:ac:10: a2:82:0f:70:71:d2:dd:af:13:ee:f9:73:b2:7f:44:75:2c:a7: 5e:59:ac:1f:39:64:52:00:2a:d4:24:13:f2:79:30:21:b1:77: 80:cb:7c:64:fb:1e:0a:f0:41:3e:a4:07:67:ff:e1:7c:56:68: aa:d3:57:34:e4:4a:70:d2:da:ee:ad:0e:fe:be:35:d2:ae:b6: 74:60:cf:5f:95:78:98:7a:51:f9:b2:45:1b:7d:75:1e:84:9c: cc:8b:04:01:d4:08:20:6c:4e:f1:a9:a5:f6:7e:dc:79:5e:59: c9:fe:42:76 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUOQYyTMJoiBnnuU04f55RIyzU3dwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDUyNTAwMDAwMFoX DTI0MDYyOTIzNTk1OVowejFJMEcGA1UEBRNAOGUyNmVhY2EyODBiNDIzYjc1NDJj NWM1ZGFiYTM5MmIyMTFjMzhhZjRkZjdlN2QxNjI2ZmJjYjZkMWYzZjY2YTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYZNhFp9iAjGDJRADWPoKr3krKzN 8F6HiP0cf2Dsv6T4dQFrqzrHCxmeN5HglbvuBnjCav2QAO2fVryiwVKi7izNbP2T fxxx8ikcv8h+pzBUMzu5Ogl1RA9kaG6QTbYXxRThK/7+zqHfDaU0PLN2CHcBkhQE 7+6Yngnjv2/MzhxaeneSJIphwJ2ZSg+9SfrxH5nj68IKWPyYjyuhvNNAlKRWnT00 1/STIPD7EOLRa6oahQ+RrCX/SCFdPoENwuUUeEJmwT3q9RffLJp6OCADoM+8x52r FAE8zzEhjEWF3PHdwcu6/boWCS1GBgeIH7EyMTCqFIdlbzutaFSc3bNq5QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLIb4CyA+c8C0pjueWu35U4xmg9VMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2M0MTNiZDU1LTRkOWUtNDdmMC04N2NiLWJhODk4MWI1YmNlNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK/rBMA0GCSqGSIb3DQEBCwUAA4IBAQABCHKch5O6zC7RR05ijklF JiNQ05EeZEfdMOF++LKvKvEG1c2Rm3Bdeg2DTa8O+rvvBro9+sdxYo03KqdAGB+a 6ZZsEtmfYVxSAWzCcx5dizUxYCcfbc7Egzh/j4ikQcTNZRpGF8HfcsuaATvclHFz 6A3Y4fMupdqSonaThVJDfPvAOdjuhYg+vRYIloSprBCigg9wcdLdrxPu+XOyf0R1 LKdeWawfOWRSACrUJBPyeTAhsXeAy3xk+x4K8EE+pAdn/+F8Vmiq01c05Epw0tru rQ7+vjXSrrZ0YM9flXiYelH5skUbfXUehJzMiwQB1AggbE7xqaX2ftx5XlnJ/kJ2 -----END CERTIFICATE-----Generated at Sun Jun 2 00:29:41 2024 by rpki-client on console-ams.rpki-client.org