$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa File: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (raw, json) Hash identifier: pyPGahI8OFQtGElGSKbfPxACbBI0ZvCyu9QVvo5DjUg= Subject key identifier: 2D:1E:AB:13:8E:52:97:D0:AC:11:3E:34:09:C2:8E:45:4C:B9:C1:58 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6A406FC5321CDC8366B2B682433DBE6092970280 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa Signing time: Mon 13 May 2024 00:00:00 +0000 ROA not before: Mon 13 May 2024 00:00:00 +0000 ROA not after: Mon 17 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 00:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:40:6f:c5:32:1c:dc:83:66:b2:b6:82:43:3d:be:60:92:97:02:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 13 00:00:00 2024 GMT Not After : Jun 17 23:59:59 2024 GMT Subject: serialNumber=011f68152b76e5b9c38bf0b3d0edc0a84957cc96307b1f54621de4894d9d0c74, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:51:04:5c:75:ad:67:10:f7:8e:7b:33:04:30: a8:a2:0a:6e:52:2d:ca:94:93:77:8a:7e:af:62:cd: aa:2e:20:31:86:be:55:1a:f7:a0:f8:a6:a7:06:a1: bf:97:77:d8:31:92:5b:26:92:c9:d2:da:7d:60:c8: f5:52:52:5a:41:67:58:ec:1c:38:bb:78:7d:fa:16: 43:8f:c7:b4:79:0e:96:29:ac:f2:21:38:6a:45:8e: 7a:b4:0f:e0:6b:39:88:af:0e:35:7d:17:c1:5f:d8: f6:0f:c6:98:e4:39:a8:c9:cb:f3:b6:24:3c:68:1a: f5:1f:93:08:cc:5e:ba:7f:a2:39:94:c2:ad:e7:de: 11:e8:88:2c:4a:91:39:24:27:6a:c2:97:90:34:b5: 00:e9:8d:bb:65:84:50:99:00:e6:45:1b:81:25:8c: f3:0a:d7:03:96:de:97:fb:0a:bc:9c:6d:b4:56:d4: 76:09:ad:8e:18:e2:52:50:d4:e9:fc:8a:91:c2:2c: b6:55:cc:d3:d3:7d:7c:e3:db:76:e7:7c:1b:fa:f6: 5a:a3:10:25:93:36:8d:17:ee:59:f8:3b:03:c6:d9: ad:99:29:8d:bd:af:0c:cd:08:b1:8b:d0:77:0d:67: b2:cc:b0:e4:ae:c9:fa:d9:01:75:42:82:e3:a5:10: 0c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1E:AB:13:8E:52:97:D0:AC:11:3E:34:09:C2:8E:45:4C:B9:C1:58 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 47:c4:0e:8d:e1:d3:58:09:66:32:d0:fe:e1:05:7a:80:fa:b9: 69:44:57:a9:37:06:ca:ce:1f:20:25:f0:9a:0c:c6:41:60:1b: a1:56:e6:fd:00:33:4d:27:3f:96:61:9b:c4:f6:0e:0e:a6:1f: 45:a5:65:51:a6:a4:ed:f6:44:79:7c:92:86:02:50:4b:be:74: f0:8f:35:0c:fb:b3:13:b1:40:4b:41:94:8b:64:30:ad:cf:66: 21:87:7e:3f:27:08:6f:78:c7:d7:2c:55:05:62:51:55:03:82: 11:ff:e3:8c:c5:38:01:c3:cf:8c:a0:3c:06:44:ed:72:a9:62: 10:e5:52:67:d0:c2:06:2a:22:c2:ca:09:1a:2c:96:95:6e:0e: e7:04:83:a0:58:f5:2f:8c:d5:04:e3:83:bf:cf:fe:49:32:0e: 9c:ae:82:2d:04:fc:03:b7:a0:d4:c7:5b:7a:eb:68:84:4e:b9: 32:a6:2b:5a:9d:bb:dc:a2:36:6c:5a:0d:bd:cb:35:6d:d9:fe: ea:ec:01:e6:61:be:05:b0:3a:26:e0:ae:71:cf:38:c8:3a:b9: 77:9b:c7:a0:e1:05:51:d0:78:ab:73:e1:8e:04:16:20:1a:84: 68:c4:4c:b1:1c:23:44:44:8a:f7:7e:c4:b7:4e:87:99:47:b0: 1f:e2:fe:c4 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUakBvxTIc3INmsraCQz2+YJKXAoAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDUxMzAwMDAwMFoX DTI0MDYxNzIzNTk1OVowejFJMEcGA1UEBRNAMDExZjY4MTUyYjc2ZTViOWMzOGJm MGIzZDBlZGMwYTg0OTU3Y2M5NjMwN2IxZjU0NjIxZGU0ODk0ZDlkMGM3NDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVEEXHWtZxD3jnszBDCoogpuUi3K lJN3in6vYs2qLiAxhr5VGveg+KanBqG/l3fYMZJbJpLJ0tp9YMj1UlJaQWdY7Bw4 u3h9+hZDj8e0eQ6WKazyIThqRY56tA/gazmIrw41fRfBX9j2D8aY5DmoycvztiQ8 aBr1H5MIzF66f6I5lMKt594R6IgsSpE5JCdqwpeQNLUA6Y27ZYRQmQDmRRuBJYzz CtcDlt6X+wq8nG20VtR2Ca2OGOJSUNTp/IqRwiy2VczT031849t253wb+vZaoxAl kzaNF+5Z+DsDxtmtmSmNva8MzQixi9B3DWeyzLDkrsn62QF1QoLjpRAMRwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFC0eqxOOUpfQrBE+NAnCjkVMucFYMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2ZjZDZhZGFiLTA2ZjAtNDY3Ni05NTY4LTZkNGQ0OGY3NjU4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQBHxA6N4dNYCWYy0P7h BXqA+rlpRFepNwbKzh8gJfCaDMZBYBuhVub9ADNNJz+WYZvE9g4Oph9FpWVRpqTt 9kR5fJKGAlBLvnTwjzUM+7MTsUBLQZSLZDCtz2Yhh34/JwhveMfXLFUFYlFVA4IR /+OMxTgBw8+MoDwGRO1yqWIQ5VJn0MIGKiLCygkaLJaVbg7nBIOgWPUvjNUE44O/ z/5JMg6croItBPwDt6DUx1t662iETrkypitanbvcojZsWg29yzVt2f7q7AHmYb4F sDom4K5xzzjIOrl3m8eg4QVR0Hirc+GOBBYgGoRoxEyxHCNERIr3fsS3ToeZR7Af 4v7E -----END CERTIFICATE-----Generated at Sun Jun 2 00:22:08 2024 by rpki-client on console-fra.rpki-client.org