$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa File: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (raw, json) Hash identifier: B6xjueU/fxribrOOQ6v9zIYFbLKZP/re4gy6cCzPgUM= Subject key identifier: 60:63:FA:40:38:25:A4:D0:43:01:CB:75:F2:3A:A1:1E:F0:E5:74:2A Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 36B35BA27A35AE7752ED47255565276987406783 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa Signing time: Sat 25 May 2024 00:00:00 +0000 ROA not before: Sat 25 May 2024 00:00:00 +0000 ROA not after: Sat 29 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80a0:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 00:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:b3:5b:a2:7a:35:ae:77:52:ed:47:25:55:65:27:69:87:40:67:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 25 00:00:00 2024 GMT Not After : Jun 29 23:59:59 2024 GMT Subject: serialNumber=fad08f258ec80aa5b6f567cceb9b5075a8a1714a9bb4121d7525e33409707cd0, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:52:c0:72:fd:4b:4f:79:47:3a:3d:12:a7:5b: a1:7b:bd:2a:7f:a7:0c:18:d6:7f:2c:f5:a4:40:65: 38:cf:29:9a:08:c5:d3:b1:0a:d0:50:d0:f5:11:76: f9:54:b4:5a:df:6c:ba:54:08:2e:48:b6:03:8f:e2: 1d:85:cc:4c:47:39:21:77:63:a5:38:42:e9:18:b6: e0:cc:ed:49:1b:c1:74:5f:54:7c:31:e7:3e:ac:ef: 92:e7:9e:30:14:e9:a9:78:a7:a1:ad:b7:fe:81:e1: b5:c8:0c:f2:48:7c:3c:9a:b7:b5:df:d3:ec:b1:f1: b5:e1:3a:8e:7e:d2:bd:df:95:53:ce:16:0a:72:a9: ef:41:74:1f:cb:4d:ea:5f:6e:a3:bc:6e:0e:3e:3d: fe:75:ad:1b:8c:77:48:bf:cc:4a:17:93:d4:b8:90: 07:5d:22:86:c7:d6:aa:cf:6c:5b:62:c0:b6:c8:9f: 38:1e:19:99:c5:4d:86:7d:f9:00:1f:fe:b1:cb:33: fd:11:09:81:d1:0f:14:f6:ac:05:79:cd:91:9e:ea: b4:cc:64:d9:b5:23:8a:b1:1c:08:65:a7:15:3a:0d: c7:1d:0a:1d:1e:fa:43:0a:c6:f4:42:1d:ec:7e:87: 75:7d:f0:3f:1e:26:e4:48:09:6d:fc:ba:23:98:bd: 67:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:63:FA:40:38:25:A4:D0:43:01:CB:75:F2:3A:A1:1E:F0:E5:74:2A X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80a0:4000::/40 Signature Algorithm: sha256WithRSAEncryption 1f:8e:ba:7b:58:86:5a:e4:9b:a8:9b:80:de:24:da:a0:3d:7f: 72:82:5e:ec:0c:68:9a:40:dc:da:b1:4c:5a:cf:d4:40:de:62: 4f:d6:38:1a:25:fb:81:df:83:ec:9f:8e:c6:11:59:b0:b2:2f: 78:3b:a8:c4:55:a4:be:4e:e1:33:aa:77:55:49:9d:f1:e6:88: 51:ba:d8:9b:7b:4c:ae:7b:3b:ad:34:40:29:12:b2:52:88:6a: 00:42:e1:07:34:28:82:2a:c5:72:7b:0f:43:5b:d9:f6:46:38: db:e2:b2:f7:1b:02:09:bb:f8:05:ad:06:b9:06:9a:a0:d0:85: 45:43:6d:cb:e4:ad:37:8e:6b:a2:37:c0:58:bd:93:23:78:e9: 05:9f:ba:23:e3:f9:68:84:5e:e6:04:23:91:72:00:1d:2b:44: ec:d3:21:d3:86:67:f0:92:b7:2b:d9:7e:04:d1:0c:69:fc:c1: d8:b4:6b:49:21:c2:6d:e9:0b:59:71:f0:3e:33:14:3b:b0:0b: 46:83:2a:a3:d7:4f:51:5f:7b:da:e1:85:3e:fe:a5:f3:86:da: ab:26:de:c1:9e:ab:34:1b:6c:09:14:a2:94:4c:1c:41:1d:26: 50:d5:ad:cc:4b:44:6a:a0:03:25:70:3d:2e:0a:64:2d:e5:db: 3b:c1:cd:f0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNrNbono1rndS7UclVWUnaYdAZ4MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDUyNTAwMDAwMFoX DTI0MDYyOTIzNTk1OVowejFJMEcGA1UEBRNAZmFkMDhmMjU4ZWM4MGFhNWI2ZjU2 N2NjZWI5YjUwNzVhOGExNzE0YTliYjQxMjFkNzUyNWUzMzQwOTcwN2NkMDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi1LAcv1LT3lHOj0Sp1uhe70qf6cM GNZ/LPWkQGU4zymaCMXTsQrQUND1EXb5VLRa32y6VAguSLYDj+IdhcxMRzkhd2Ol OELpGLbgzO1JG8F0X1R8Mec+rO+S554wFOmpeKehrbf+geG1yAzySHw8mre139Ps sfG14TqOftK935VTzhYKcqnvQXQfy03qX26jvG4OPj3+da0bjHdIv8xKF5PUuJAH XSKGx9aqz2xbYsC2yJ84HhmZxU2GffkAH/6xyzP9EQmB0Q8U9qwFec2Rnuq0zGTZ tSOKsRwIZacVOg3HHQodHvpDCsb0Qh3sfod1ffA/HibkSAlt/LojmL1ngwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGBj+kA4JaTQQwHLdfI6oR7w5XQqMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2VmZGNiNDNiLTJmMTktNDEwNy1hMGEzLWM1NWRhY2NiMjcxNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+AoEAwDQYJKoZIhvcNAQELBQADggEBAB+OuntYhlrkm6ibgN4k 2qA9f3KCXuwMaJpA3NqxTFrP1EDeYk/WOBol+4Hfg+yfjsYRWbCyL3g7qMRVpL5O 4TOqd1VJnfHmiFG62Jt7TK57O600QCkSslKIagBC4Qc0KIIqxXJ7D0Nb2fZGONvi svcbAgm7+AWtBrkGmqDQhUVDbcvkrTeOa6I3wFi9kyN46QWfuiPj+WiEXuYEI5Fy AB0rROzTIdOGZ/CStyvZfgTRDGn8wdi0a0khwm3pC1lx8D4zFDuwC0aDKqPXT1Ff e9rhhT7+pfOG2qsm3sGeqzQbbAkUopRMHEEdJlDVrcxLRGqgAyVwPS4KZC3l2zvB zfA= -----END CERTIFICATE-----Generated at Sun Jun 2 01:38:06 2024 by rpki-client on console-ams.rpki-client.org