$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c94ba698-f48b-499a-9e9f-3681b985bb5d.roa File: c94ba698-f48b-499a-9e9f-3681b985bb5d.roa (raw, json) Hash identifier: QXhPstleZ2MYq76grUYhbrumgILFATrfl7z5en/sjyo= Subject key identifier: 5A:4A:AE:55:29:C3:F9:59:41:E8:0E:E3:C2:4D:12:48:42:AD:7D:4F Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 58DEF727974A6AC977EE0A4825AC3222EE65F8A7 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c94ba698-f48b-499a-9e9f-3681b985bb5d.roa Signing time: Sat 25 May 2024 00:00:00 +0000 ROA not before: Sat 25 May 2024 00:00:00 +0000 ROA not after: Sat 29 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 00:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:de:f7:27:97:4a:6a:c9:77:ee:0a:48:25:ac:32:22:ee:65:f8:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 25 00:00:00 2024 GMT Not After : Jun 29 23:59:59 2024 GMT Subject: serialNumber=ab5c8bcf9f2af45ca9a9378c283ffc9034f1e3f85df88ddffbb4331a648a4031, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:11:33:eb:7d:2a:10:a1:66:d4:42:09:ed:ef: 00:4a:eb:09:89:2e:cc:d7:fa:40:29:4b:5b:52:76: 28:46:b5:03:10:77:fb:ff:da:ea:6d:a0:08:a3:cb: ba:8c:36:57:30:0c:7d:a8:f1:8a:61:fa:22:e1:25: 4b:4c:19:19:a3:1b:20:78:13:26:88:97:6e:bf:df: da:e1:e3:dc:0c:1f:95:b2:0c:7f:b6:28:dc:f4:25: 88:8d:bf:a7:e5:53:64:94:e9:0b:84:81:fa:46:5c: 4e:4a:01:2b:2f:7c:8b:16:40:c9:aa:b9:a5:51:d2: e0:31:e4:3a:23:28:98:af:d7:02:b6:88:bd:bc:9f: 78:83:32:ea:45:97:2c:c2:60:8d:9d:1d:75:8e:1a: fa:c2:67:18:5a:c6:b2:55:ae:1b:0b:fc:0a:ff:51: 5c:f0:45:61:4e:ec:a7:ab:ed:33:6d:63:1e:c1:72: 7d:75:54:a1:b1:09:a8:da:a7:5f:8a:81:fa:5d:77: d8:90:1c:3b:38:03:5d:2b:b9:b2:88:d2:18:7c:8d: 74:7d:a3:74:b0:6a:35:88:7f:b5:4d:b1:53:51:bf: 7c:f3:10:6b:77:d0:99:64:0a:15:f8:ee:62:34:eb: f3:16:d4:ea:85:e1:da:b4:11:a4:b9:7b:79:6b:e9: bf:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4A:AE:55:29:C3:F9:59:41:E8:0E:E3:C2:4D:12:48:42:AD:7D:4F X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c94ba698-f48b-499a-9e9f-3681b985bb5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000:8000::/40 Signature Algorithm: sha256WithRSAEncryption 1f:77:3f:85:63:99:b8:d6:d8:b8:c6:71:23:d0:ff:0a:b4:10: 75:30:66:4e:7b:c0:6a:41:ea:b6:5f:38:c1:28:2d:4a:18:23: 9e:a7:28:1d:bf:99:5b:6c:4c:68:05:f4:dd:af:d4:b0:5a:19: 97:aa:08:9f:ff:75:ee:53:24:46:65:ee:2e:21:70:10:97:a6: bb:c4:f8:26:a3:40:d8:c2:32:c8:2b:c9:31:dd:5f:ce:b2:49: bd:21:99:bd:ef:a8:06:28:c2:24:fc:80:c6:47:4f:95:e1:87: 35:bc:06:35:c3:09:15:c5:47:a0:3d:a3:2f:f3:01:78:d0:fb: 21:a3:65:47:f4:c3:2a:83:f0:09:3b:9f:95:c6:6b:71:77:59: 08:36:82:6b:11:24:70:7d:3c:80:4d:81:f1:09:c0:a9:34:08: bd:e0:31:56:c7:e7:1e:f5:1a:7d:d5:34:a4:ce:22:b5:87:b6: 78:60:f6:10:e3:00:62:e7:7a:ec:3f:e6:53:3c:7a:f6:a4:c6: ac:6d:24:49:78:a2:e2:ee:61:07:21:aa:1c:1b:e9:2c:f7:fa: 02:d9:82:ee:67:95:f9:d1:e4:e6:8c:9c:6f:c3:39:aa:b5:9c: 29:2a:66:eb:9c:14:36:33:ae:6f:71:85:64:e6:fc:de:e8:61: fb:18:4c:fe -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWN73J5dKasl37gpIJawyIu5l+KcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDUyNTAwMDAwMFoX DTI0MDYyOTIzNTk1OVowejFJMEcGA1UEBRNAYWI1YzhiY2Y5ZjJhZjQ1Y2E5YTkz NzhjMjgzZmZjOTAzNGYxZTNmODVkZjg4ZGRmZmJiNDMzMWE2NDhhNDAzMTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBEz630qEKFm1EIJ7e8ASusJiS7M 1/pAKUtbUnYoRrUDEHf7/9rqbaAIo8u6jDZXMAx9qPGKYfoi4SVLTBkZoxsgeBMm iJduv9/a4ePcDB+Vsgx/tijc9CWIjb+n5VNklOkLhIH6RlxOSgErL3yLFkDJqrml UdLgMeQ6IyiYr9cCtoi9vJ94gzLqRZcswmCNnR11jhr6wmcYWsayVa4bC/wK/1Fc 8EVhTuynq+0zbWMewXJ9dVShsQmo2qdfioH6XXfYkBw7OANdK7myiNIYfI10faN0 sGo1iH+1TbFTUb988xBrd9CZZAoV+O5iNOvzFtTqheHatBGkuXt5a+m/9QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFpKrlUpw/lZQegO48JNEkhCrX1PMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M5NGJhNjk4LWY0OGItNDk5YS05ZTlmLTM2ODFiOTg1YmI1ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+AAIAwDQYJKoZIhvcNAQELBQADggEBAB93P4VjmbjW2LjGcSPQ /wq0EHUwZk57wGpB6rZfOMEoLUoYI56nKB2/mVtsTGgF9N2v1LBaGZeqCJ//de5T JEZl7i4hcBCXprvE+CajQNjCMsgryTHdX86ySb0hmb3vqAYowiT8gMZHT5XhhzW8 BjXDCRXFR6A9oy/zAXjQ+yGjZUf0wyqD8Ak7n5XGa3F3WQg2gmsRJHB9PIBNgfEJ wKk0CL3gMVbH5x71Gn3VNKTOIrWHtnhg9hDjAGLneuw/5lM8evakxqxtJEl4ouLu YQchqhwb6Sz3+gLZgu5nlfnR5OaMnG/DOaq1nCkqZuucFDYzrm9xhWTm/N7oYfsY TP4= -----END CERTIFICATE-----Generated at Sun Jun 2 01:00:49 2024 by rpki-client on console-fra.rpki-client.org