$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/04f7b09a-162c-4157-82a1-273946cdf1db.roa File: 04f7b09a-162c-4157-82a1-273946cdf1db.roa (raw, json) Hash identifier: AeNg1cmKKetwOJNnpNY7985pqM2AJI1GQ/Mv9tc7L4E= Subject key identifier: 5A:CE:D5:E9:8E:71:5C:C1:BA:0E:83:0C:5D:5A:9E:33:60:BE:0C:CA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5005032C8522EF6247F45D44E4B5523B86C07E27 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/04f7b09a-162c-4157-82a1-273946cdf1db.roa Signing time: Wed 17 Jul 2024 00:00:00 +0000 ROA not before: Wed 17 Jul 2024 00:00:00 +0000 ROA not after: Wed 21 Aug 2024 23:59:59 +0000 asID: 8987 IP address blocks: 203.83.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:05:03:2c:85:22:ef:62:47:f4:5d:44:e4:b5:52:3b:86:c0:7e:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 17 00:00:00 2024 GMT Not After : Aug 21 23:59:59 2024 GMT Subject: serialNumber=f090838d767426efdf99e7f2b28f4f249a0263fb866b257f54652baa703fa240, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:93:2a:22:ef:c7:a3:41:ee:13:b2:bb:a9:a9: 50:a1:7f:21:dd:b0:f1:b7:62:25:34:8a:e0:06:0e: 1c:b5:d0:bd:07:ae:ee:ab:76:7c:65:1c:c7:2b:0d: d6:7a:6e:05:c0:90:65:56:43:88:f1:ea:0e:93:34: 70:51:9b:79:56:48:53:55:d5:19:be:bc:13:94:21: eb:55:b2:3f:85:97:cf:69:1c:a9:b1:82:2b:ce:7b: ec:d2:a5:8a:81:1c:1f:67:a5:3f:10:11:54:35:59: 44:1f:9e:ad:fc:1e:4c:b0:11:3e:87:4f:e8:c1:01: 3d:21:1f:12:41:17:32:6e:ff:b6:35:88:cf:a7:19: 2b:fd:42:05:c6:f0:50:fb:b0:aa:63:2d:da:17:92: fa:08:59:07:0e:5a:d4:d2:52:c8:11:c7:0f:5f:6f: 09:c0:66:7d:ee:52:1b:c1:16:08:f4:02:55:84:ff: 72:37:56:43:db:f8:30:2c:4c:a7:1c:b8:23:86:8c: 5b:c7:c8:1b:d4:e8:a6:e7:97:d6:fc:fb:fb:7d:3c: 8c:6b:04:82:5a:40:b1:ac:44:c1:b3:c7:ba:e7:a0: 3f:51:29:13:86:79:21:68:8c:7d:5d:25:43:00:94: e2:dc:e0:10:d2:3e:d1:1e:5c:04:9d:fb:06:54:a1: 30:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CE:D5:E9:8E:71:5C:C1:BA:0E:83:0C:5D:5A:9E:33:60:BE:0C:CA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/04f7b09a-162c-4157-82a1-273946cdf1db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.83.220.0/22 Signature Algorithm: sha256WithRSAEncryption 61:6f:b5:5b:eb:e0:85:e6:f9:92:a9:77:78:56:56:a9:da:ef: 8c:d3:8c:57:b7:60:59:0c:64:13:7f:4a:9f:be:8f:e0:dc:69: e1:07:e8:5c:16:73:2b:54:20:a5:d8:83:c8:c2:a0:e0:45:0d: 89:dc:0f:fe:2a:7a:36:bc:e4:f8:ef:3c:1f:a0:68:16:5a:95: 0b:00:a9:e9:34:34:f1:6a:3a:35:58:a8:87:a4:ee:64:8d:d3: 5a:ca:80:63:df:d6:0a:36:47:3a:3e:51:6c:9a:f5:7e:db:48: a4:ae:e5:d6:1d:99:80:b0:20:82:37:33:56:cb:59:08:4c:87: ca:19:d0:7a:94:e2:44:39:c8:4a:5d:8e:69:34:0c:7e:3c:b2: ac:79:a7:14:fe:8a:88:f5:f4:24:4d:f3:e5:d4:33:03:b9:e8: 23:f0:51:80:44:6c:4a:f9:05:2e:2f:25:4c:db:4e:4b:3f:ec: 9d:f0:d5:bb:ff:a4:ba:26:f7:ed:4f:43:da:20:ff:9c:c2:1b: 46:a3:71:88:d2:1e:f2:68:b2:63:40:9b:f4:75:e0:db:af:01: e9:26:80:4e:fa:5c:8e:f3:fa:b1:a6:64:4f:f6:14:68:47:00: 8e:ca:20:4c:e3:cb:da:06:00:bc:af:88:86:94:52:7f:e0:23: e9:b0:cb:82 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUUAUDLIUi72JH9F1E5LVSO4bAficwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNzAwMDAwMFoX DTI0MDgyMTIzNTk1OVowejFJMEcGA1UEBRNAZjA5MDgzOGQ3Njc0MjZlZmRmOTll N2YyYjI4ZjRmMjQ5YTAyNjNmYjg2NmIyNTdmNTQ2NTJiYWE3MDNmYTI0MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJMqIu/Ho0HuE7K7qalQoX8h3bDx t2IlNIrgBg4ctdC9B67uq3Z8ZRzHKw3Wem4FwJBlVkOI8eoOkzRwUZt5VkhTVdUZ vrwTlCHrVbI/hZfPaRypsYIrznvs0qWKgRwfZ6U/EBFUNVlEH56t/B5MsBE+h0/o wQE9IR8SQRcybv+2NYjPpxkr/UIFxvBQ+7CqYy3aF5L6CFkHDlrU0lLIEccPX28J wGZ97lIbwRYI9AJVhP9yN1ZD2/gwLEynHLgjhoxbx8gb1Oim55fW/Pv7fTyMawSC WkCxrETBs8e656A/USkThnkhaIx9XSVDAJTi3OAQ0j7RHlwEnfsGVKEwmwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFrO1emOcVzBug6DDF1anjNgvgzKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA0ZjdiMDlhLTE2MmMtNDE1Ny04MmExLTI3Mzk0NmNkZjFkYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy1PcMA0GCSqGSIb3DQEBCwUAA4IBAQBhb7Vb6+CF5vmSqXd4Vlap 2u+M04xXt2BZDGQTf0qfvo/g3GnhB+hcFnMrVCCl2IPIwqDgRQ2J3A/+Kno2vOT4 7zwfoGgWWpULAKnpNDTxajo1WKiHpO5kjdNayoBj39YKNkc6PlFsmvV+20ikruXW HZmAsCCCNzNWy1kITIfKGdB6lOJEOchKXY5pNAx+PLKseacU/oqI9fQkTfPl1DMD uegj8FGARGxK+QUuLyVM205LP+yd8NW7/6S6JvftT0PaIP+cwhtGo3GI0h7yaLJj QJv0deDbrwHpJoBO+lyO8/qxpmRP9hRoRwCOyiBM48vaBgC8r4iGlFJ/4CPpsMuC -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:39 2024 by rpki-client on console-ams.rpki-client.org