$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa File: 245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa (raw, json) Hash identifier: gJaP5viRCXBgYnC33LP8Gw/3wGex0arvrl+JepHccC0= Subject key identifier: E9:32:96:AC:F5:82:B1:9A:A8:5E:D7:C3:81:3E:AB:E0:09:26:C0:63 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 01E0087C08F9DC3E45B9BDF49872BE05D25C8FC2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 43.249.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 00:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:e0:08:7c:08:f9:dc:3e:45:b9:bd:f4:98:72:be:05:d2:5c:8f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=6bde99198a1be7b2270b9434a11922d27dcd1c481ef43dd75b238ad321b93065, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4b:f1:30:e0:6d:17:e7:2e:38:f1:ab:7f:4c: bf:0e:b8:be:67:cd:a6:a5:2f:d8:b9:37:fc:9d:26: 49:b6:95:fe:7a:0d:12:8e:8d:40:fc:ed:b3:0d:f0: d6:df:8e:e6:eb:fb:bb:8a:6b:13:cf:90:c3:59:19: b6:ff:50:74:b1:a8:6b:fa:9c:8e:ff:a6:c5:62:c0: 3d:d5:31:22:fd:eb:d4:14:f4:85:b1:c5:ad:96:2d: 88:d3:e8:69:b2:c6:4b:47:57:2a:2a:e8:fa:80:28: 6b:32:60:6f:3a:6c:95:f2:8a:13:ac:73:22:6c:b1: ab:cc:92:5d:24:43:a8:de:f8:30:ed:bd:2f:04:85: c7:0a:46:1c:db:7b:24:b3:54:25:19:d4:ba:7d:fd: ef:91:6d:3a:80:a6:63:2a:b1:46:ce:20:0a:08:99: 68:02:19:a2:dc:38:8c:5d:37:68:c2:c0:3d:7e:01: 12:b5:9f:b0:05:a3:e5:7c:5f:7e:88:ac:2b:56:99: d0:19:80:0e:0a:84:e2:52:19:33:77:f7:1d:ac:97: e9:65:75:26:a9:de:f2:7f:cd:40:b8:30:44:72:75: 8f:4c:a0:4f:57:6c:66:86:2e:53:35:9c:03:7d:0b: a0:91:8d:04:6a:e1:33:d9:72:55:38:80:8a:73:c6: 1b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:32:96:AC:F5:82:B1:9A:A8:5E:D7:C3:81:3E:AB:E0:09:26:C0:63 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.44.0/22 Signature Algorithm: sha256WithRSAEncryption be:8d:de:fa:bf:81:a1:1e:10:4a:18:69:a3:13:12:96:17:41: 3d:59:92:a3:e9:ea:8a:b5:98:9a:ec:9f:ea:41:b1:5c:60:bc: dd:f5:fe:43:4a:aa:93:17:0d:2e:03:69:b2:b5:6d:06:f0:80: 18:d7:1d:d2:0a:0b:24:9a:5a:95:46:eb:41:74:df:98:b9:77: 87:36:d7:b3:68:4a:59:f0:f4:28:02:e8:5a:01:ef:10:82:31: 2e:b8:3f:61:d6:10:fb:f9:16:63:3a:67:68:3c:bf:28:87:f4: cb:fa:5d:07:5a:07:7a:31:88:47:e5:20:6e:99:8a:90:04:be: de:4d:08:c3:fa:7e:1a:c7:d4:43:5e:0c:82:00:f7:e6:a1:18: 60:0c:b5:03:33:bc:a2:86:2b:06:0a:5a:d1:49:52:fa:fb:e8: a2:42:0b:fd:d7:ae:fe:ab:64:8c:ee:2f:ef:91:c0:bb:02:84: 4c:fc:a1:38:04:aa:11:98:12:49:e1:30:63:5c:bd:ef:02:50: 3a:24:0a:93:cc:c0:0c:26:bb:b1:bd:be:8a:9c:70:b2:41:8e: 17:e8:7a:f1:7a:a0:62:c7:b3:b1:9d:b2:fb:77:59:45:5d:83: 90:da:d3:3d:74:5f:91:9d:d9:e3:0e:52:6c:80:45:ee:29:83: 2a:ce:b2:13 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUAeAIfAj53D5Fub30mHK+BdJcj8IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQwODAwMDAwMFoX DTI0MDUxMzIzNTk1OVowejFJMEcGA1UEBRNANmJkZTk5MTk4YTFiZTdiMjI3MGI5 NDM0YTExOTIyZDI3ZGNkMWM0ODFlZjQzZGQ3NWIyMzhhZDMyMWI5MzA2NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEvxMOBtF+cuOPGrf0y/Dri+Z82m pS/YuTf8nSZJtpX+eg0Sjo1A/O2zDfDW347m6/u7imsTz5DDWRm2/1B0sahr+pyO /6bFYsA91TEi/evUFPSFscWtli2I0+hpssZLR1cqKuj6gChrMmBvOmyV8ooTrHMi bLGrzJJdJEOo3vgw7b0vBIXHCkYc23sks1QlGdS6ff3vkW06gKZjKrFGziAKCJlo Ahmi3DiMXTdowsA9fgEStZ+wBaPlfF9+iKwrVpnQGYAOCoTiUhkzd/cdrJfpZXUm qd7yf81AuDBEcnWPTKBPV2xmhi5TNZwDfQugkY0EauEz2XJVOICKc8YbTQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOkylqz1grGaqF7Xw4E+q+AJJsBjMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzI0NWE2NWJiLTU5MWMtNDdiYy04YThjLTZjODZiMDkzZmQ4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/ksMA0GCSqGSIb3DQEBCwUAA4IBAQC+jd76v4GhHhBKGGmjExKW F0E9WZKj6eqKtZia7J/qQbFcYLzd9f5DSqqTFw0uA2mytW0G8IAY1x3SCgskmlqV RutBdN+YuXeHNtezaEpZ8PQoAuhaAe8QgjEuuD9h1hD7+RZjOmdoPL8oh/TL+l0H Wgd6MYhH5SBumYqQBL7eTQjD+n4ax9RDXgyCAPfmoRhgDLUDM7yihisGClrRSVL6 ++iiQgv9167+q2SM7i/vkcC7AoRM/KE4BKoRmBJJ4TBjXL3vAlA6JAqTzMAMJrux vb6KnHCyQY4X6HrxeqBix7OxnbL7d1lFXYOQ2tM9dF+RndnjDlJsgEXuKYMqzrIT -----END CERTIFICATE-----Generated at Wed Apr 24 05:31:46 2024 by rpki-client on console-fra.rpki-client.org