$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/5defafc1-b226-4bbc-87e7-556b8bee16db.roa File: 5defafc1-b226-4bbc-87e7-556b8bee16db.roa (raw, json) Hash identifier: Nh0GwH91SLNILAe08crs2AAWRPu+SZ1e/HLZJR7Acbo= Subject key identifier: E2:98:3E:57:33:36:B5:B0:03:61:CC:EE:51:9A:6A:AE:D8:07:14:51 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 69F2560978C7BFB37073389E5E94D9FAFDE27212 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/5defafc1-b226-4bbc-87e7-556b8bee16db.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 43.250.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:f2:56:09:78:c7:bf:b3:70:73:38:9e:5e:94:d9:fa:fd:e2:72:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=25fdfe39e8a0898c22226aaf0ad985f4a6894b27d52b7838518f89fa1ddefb1c, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:50:3d:61:bc:f5:7a:24:b3:8d:94:d8:a6:50: 83:1a:46:b1:96:1e:91:1d:13:f2:9d:6f:ba:1d:fb: 84:41:ea:76:0e:ca:d0:86:6b:67:bb:36:44:27:32: 8b:e6:bb:07:7b:aa:12:bc:c3:08:70:d5:19:0a:6f: 73:e3:79:52:fd:7f:4f:26:3c:21:c4:2f:c3:5c:d8: 52:ea:6a:a6:33:1e:67:88:c8:ff:52:d8:c9:bb:7a: b0:fa:a6:b5:47:70:99:d0:2f:3d:04:6d:3e:ae:93: 4b:8e:85:0c:65:a8:a9:5e:33:94:b6:d6:a0:10:c7: 9e:30:dd:ac:61:f6:22:5a:2f:19:76:2d:a4:fc:9e: b0:38:b2:2d:e1:92:2b:bd:80:df:fc:f2:31:e4:c8: 18:5e:2f:f9:7a:50:3b:f3:95:f4:7b:7f:8a:ac:fb: 75:00:97:a1:c8:46:20:62:be:3a:bb:62:be:df:9d: 1b:c6:4c:0a:e2:1c:52:45:93:4f:4e:c6:b8:69:e1: 6c:cf:84:e2:5e:8d:38:5a:ec:e4:58:db:bf:cf:c6: 3e:50:58:bc:bc:49:2f:78:5e:78:ca:7a:f0:cb:14: 50:7d:2e:70:7e:7f:a0:90:04:d6:7d:4e:84:a4:b7: 09:47:e9:86:a4:97:0e:e5:dd:3a:b8:86:ac:5a:1b: 77:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:98:3E:57:33:36:B5:B0:03:61:CC:EE:51:9A:6A:AE:D8:07:14:51 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/5defafc1-b226-4bbc-87e7-556b8bee16db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.250.196.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:ed:16:95:ac:f7:b4:49:0e:fc:cb:a8:b1:24:19:3d:ba:8f: 8e:77:85:a7:f4:c7:74:c7:3c:69:fb:85:80:bd:c5:b5:88:c5: a9:1d:e5:ef:e4:7d:22:5a:48:3e:b0:68:ad:06:ae:8e:13:17: 69:40:98:a0:ab:eb:8d:91:85:48:9b:5b:bf:2b:3b:17:54:8c: 77:08:eb:5a:8b:2e:ea:8c:8c:c3:00:61:97:90:0a:fd:ea:1b: 1b:bb:e9:81:31:c3:af:9b:18:15:26:2b:2a:52:74:a7:cc:8b: 0b:06:d8:71:b7:4e:8f:8b:07:dc:6f:eb:a7:34:87:a8:b7:81: 22:08:6c:cf:08:83:9c:9b:9b:44:9d:85:c9:fd:20:a9:32:3f: e3:80:c6:c6:5a:a2:af:e0:5a:c3:72:4b:50:1a:38:74:15:24: d0:65:f7:28:a1:73:43:18:d5:c9:f9:5e:b8:77:6d:27:e6:3d: 7e:dd:ee:df:06:47:cf:a1:b2:0d:62:b4:b4:a9:68:48:08:a8: d4:10:8d:2f:8c:b2:ff:9a:3b:44:c0:65:4c:7e:fd:84:57:dc: a9:f9:ae:5a:f2:3c:e9:70:01:dd:16:36:b9:53:28:89:9a:55: a0:94:c2:3d:f0:6b:5c:93:61:9c:b4:f7:3e:29:e8:87:26:22: e5:75:98:71 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUafJWCXjHv7NwczieXpTZ+v3ichIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MDQxNzAwMDAwMFoX DTI0MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMjVmZGZlMzllOGEwODk4YzIyMjI2 YWFmMGFkOTg1ZjRhNjg5NGIyN2Q1MmI3ODM4NTE4Zjg5ZmExZGRlZmIxYzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA21A9Ybz1eiSzjZTYplCDGkaxlh6R HRPynW+6HfuEQep2DsrQhmtnuzZEJzKL5rsHe6oSvMMIcNUZCm9z43lS/X9PJjwh xC/DXNhS6mqmMx5niMj/UtjJu3qw+qa1R3CZ0C89BG0+rpNLjoUMZaipXjOUttag EMeeMN2sYfYiWi8Zdi2k/J6wOLIt4ZIrvYDf/PIx5MgYXi/5elA785X0e3+KrPt1 AJehyEYgYr46u2K+350bxkwK4hxSRZNPTsa4aeFsz4TiXo04WuzkWNu/z8Y+UFi8 vEkveF54ynrwyxRQfS5wfn+gkATWfU6EpLcJR+mGpJcO5d06uIasWht3OwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOKYPlczNrWwA2HM7lGaaq7YBxRRMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzVkZWZhZmMxLWIyMjYtNGJiYy04N2U3LTU1NmI4YmVlMTZkYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/rEMA0GCSqGSIb3DQEBCwUAA4IBAQCK7RaVrPe0SQ78y6ixJBk9 uo+Od4Wn9Md0xzxp+4WAvcW1iMWpHeXv5H0iWkg+sGitBq6OExdpQJigq+uNkYVI m1u/KzsXVIx3COtaiy7qjIzDAGGXkAr96hsbu+mBMcOvmxgVJisqUnSnzIsLBthx t06Piwfcb+unNIeot4EiCGzPCIOcm5tEnYXJ/SCpMj/jgMbGWqKv4FrDcktQGjh0 FSTQZfcooXNDGNXJ+V64d20n5j1+3e7fBkfPobINYrS0qWhICKjUEI0vjLL/mjtE wGVMfv2EV9yp+a5a8jzpcAHdFja5UyiJmlWglMI98Gtck2GctPc+KeiHJiLldZhx -----END CERTIFICATE-----Generated at Mon May 6 00:47:29 2024 by rpki-client on console-ams.rpki-client.org