$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa File: 1c3d5732-1954-4639-aac1-b9229445deac.roa (raw, json) Hash identifier: 0/FAEtvHZG411SY4/v1OxpWJEFpLid80K6Qab+paSQE= Subject key identifier: AF:E5:EA:0B:D7:10:B7:B6:22:DA:CB:59:87:DA:E4:CA:49:0B:A2:9E Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 5B000949E77F7EC820E70D7E3383628133C99FDE Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa Signing time: Mon 13 May 2024 00:00:00 +0000 ROA not before: Mon 13 May 2024 00:00:00 +0000 ROA not after: Mon 17 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 175.41.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 15:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:00:09:49:e7:7f:7e:c8:20:e7:0d:7e:33:83:62:81:33:c9:9f:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 13 00:00:00 2024 GMT Not After : Jun 17 23:59:59 2024 GMT Subject: serialNumber=273cc24ed2092dc45d2a1a539a8ec0b81d638b43f084315e2d5b9a3c71bb25ce, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:47:0c:44:f0:27:87:a4:49:51:5d:ea:52:d8: b7:c0:73:8b:9f:5c:9c:2e:86:4d:5b:54:2d:ee:6b: 6e:a2:6c:5b:80:5c:aa:a8:7c:8a:a9:1a:d3:6b:5e: 18:3b:eb:7d:ee:e5:60:28:18:fb:01:db:1f:2e:db: a3:d5:5d:dc:75:5a:e9:c3:37:1e:d4:72:a4:f8:31: 40:0b:51:68:aa:f6:7c:79:5c:41:0f:5a:23:09:d2: a1:48:27:6d:66:84:94:57:01:22:ab:8a:e5:2f:0e: 98:a7:62:1b:3c:db:02:48:91:ca:b8:e2:4d:33:8c: 3c:f0:44:45:c0:28:65:c5:b9:84:cd:50:c0:17:35: e8:57:78:2a:b7:ab:1c:0f:7d:cf:f2:d0:ff:f5:00: 15:29:e3:e9:30:9a:e2:70:39:03:49:e5:81:5a:d5: 63:e1:dc:a3:4a:9a:1d:ed:e3:4e:8f:9b:f1:27:fd: 3e:5d:e4:79:e1:b1:f9:89:87:2f:9a:f9:3c:5b:79: 28:f6:4a:56:5d:91:0d:78:7a:22:33:34:fe:b4:31: 7c:9d:38:aa:19:8a:c0:f2:06:9a:96:94:66:d3:2e: b6:0b:95:c6:fe:76:d4:d5:b6:34:04:2e:75:07:79: eb:26:90:3a:5f:70:d9:0d:db:cc:f9:5f:ad:07:6c: 91:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E5:EA:0B:D7:10:B7:B6:22:DA:CB:59:87:DA:E4:CA:49:0B:A2:9E X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 3f:8a:86:17:6e:5d:bf:4c:4e:ad:c2:30:15:f0:1b:31:5a:41: 1b:22:3a:b5:55:d6:b3:92:92:06:2d:9a:31:50:91:ec:15:17: bb:15:70:6e:17:30:b0:b8:fa:5e:c8:53:2d:98:a4:d0:1c:90: d9:b8:78:84:90:b8:c3:8b:51:45:d2:8c:95:27:07:96:fc:3b: 3c:64:2c:80:47:a2:76:60:26:58:8f:8c:03:f1:47:98:74:11: 36:30:f2:20:7d:d2:bc:a1:e8:4b:90:80:e6:af:48:57:36:8f: e8:2e:ec:89:c1:a1:93:51:6d:8c:d4:dd:2d:3a:63:bd:76:12: 30:6a:6d:1c:69:7c:48:78:cd:53:fb:cc:7a:ec:07:9a:72:ca: fb:ac:98:dc:c8:30:c2:3b:52:17:dd:2c:d5:d4:c7:06:a5:7a: 99:27:4d:24:83:74:61:18:39:90:a8:22:4a:b6:b5:37:d5:eb: b0:39:ee:bf:a4:26:02:0c:fc:bd:69:ef:15:ce:c1:b4:43:f2: 3c:e7:15:49:95:db:00:e3:a1:a7:1b:ff:3c:4b:04:8d:cb:3d: bb:3b:16:5e:41:ce:e4:b8:7b:ec:59:b8:0b:cb:47:d5:ee:f2: 6d:ad:cd:17:36:82:6f:c2:3c:55:d4:4c:34:f2:55:d3:43:c2: a1:cd:9a:e2 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUWwAJSed/fsgg5w1+M4NigTPJn94wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MDUxMzAwMDAwMFoX DTI0MDYxNzIzNTk1OVowejFJMEcGA1UEBRNAMjczY2MyNGVkMjA5MmRjNDVkMmEx YTUzOWE4ZWMwYjgxZDYzOGI0M2YwODQzMTVlMmQ1YjlhM2M3MWJiMjVjZTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0cMRPAnh6RJUV3qUti3wHOLn1yc LoZNW1Qt7mtuomxbgFyqqHyKqRrTa14YO+t97uVgKBj7AdsfLtuj1V3cdVrpwzce 1HKk+DFAC1FoqvZ8eVxBD1ojCdKhSCdtZoSUVwEiq4rlLw6Yp2IbPNsCSJHKuOJN M4w88ERFwChlxbmEzVDAFzXoV3gqt6scD33P8tD/9QAVKePpMJricDkDSeWBWtVj 4dyjSpod7eNOj5vxJ/0+XeR54bH5iYcvmvk8W3ko9kpWXZENeHoiMzT+tDF8nTiq GYrA8gaalpRm0y62C5XG/nbU1bY0BC51B3nrJpA6X3DZDdvM+V+tB2yRcQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFK/l6gvXELe2ItrLWYfa5MpJC6KeMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzFjM2Q1NzMyLTE5NTQtNDYzOS1hYWMxLWI5MjI5NDQ1ZGVhYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQA/ioYXbl2/TE6twjAV8Bsx WkEbIjq1VdazkpIGLZoxUJHsFRe7FXBuFzCwuPpeyFMtmKTQHJDZuHiEkLjDi1FF 0oyVJweW/Ds8ZCyAR6J2YCZYj4wD8UeYdBE2MPIgfdK8oehLkIDmr0hXNo/oLuyJ waGTUW2M1N0tOmO9dhIwam0caXxIeM1T+8x67Aeacsr7rJjcyDDCO1IX3SzV1McG pXqZJ00kg3RhGDmQqCJKtrU31euwOe6/pCYCDPy9ae8VzsG0Q/I85xVJldsA46Gn G/88SwSNyz27OxZeQc7kuHvsWbgLy0fV7vJtrc0XNoJvwjxV1Ew08lXTQ8KhzZri -----END CERTIFICATE-----Generated at Sun Jun 2 18:45:17 2024 by rpki-client on console-ams.rpki-client.org