$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa File: 245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa (raw, json) Hash identifier: JoSfZFocy/+lggEkmvBM7dqDO+jz+OKC1y8vqtepsKo= Subject key identifier: 4F:72:24:CD:CA:0A:32:21:22:DA:CC:46:BB:C1:1F:D2:8E:08:4B:06 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4C7755580D51D9B09423986C07DABFD40863362B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa Signing time: Wed 20 Nov 2024 00:00:00 +0000 ROA not before: Wed 20 Nov 2024 00:00:00 +0000 ROA not after: Wed 25 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 43.249.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 00:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:77:55:58:0d:51:d9:b0:94:23:98:6c:07:da:bf:d4:08:63:36:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 20 00:00:00 2024 GMT Not After : Dec 25 23:59:59 2024 GMT Subject: serialNumber=eb49d1c0e636fbdbff53c811a1e29ffc99e3cc952715a060c5275032e975a609, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b5:3a:f5:ff:8f:9a:ee:6e:47:cd:af:3d:e4: e3:a9:13:81:c3:26:fc:ce:eb:b1:6e:bb:4a:b5:18: ee:7c:bf:0c:67:b4:dd:4f:ce:70:97:85:81:98:f4: 2d:9b:cb:e1:e5:7a:33:46:79:82:ee:be:f6:c0:14: d6:a8:65:34:a1:93:f3:40:38:e2:2e:7f:45:af:2d: 2b:f3:e9:1f:8b:3f:d9:c3:bd:a6:f4:f9:ef:f3:a2: 01:a4:4b:f9:71:3b:8e:6e:d9:84:e8:61:2c:e5:09: 56:96:9d:5f:aa:9a:4c:2c:8c:28:cb:2d:b8:7c:8c: 39:32:8e:77:7a:1b:15:eb:e1:67:f6:40:84:64:8a: fe:f9:8a:19:6b:84:65:c3:50:da:78:29:9f:20:5e: f5:cd:af:ac:3e:f1:af:8e:5a:59:f9:99:28:93:1e: 0f:42:9b:10:1c:54:a6:ff:04:ef:d4:b4:41:fe:3d: 66:89:d1:fb:e7:87:34:c8:59:ed:82:a8:cc:83:99: 4f:00:60:fe:e1:02:71:23:bf:ac:77:03:28:6d:30: 8d:40:3a:57:15:7c:e9:1a:90:69:2c:f7:14:fa:7b: 78:bf:b2:c5:1d:5d:b1:3e:8f:fe:b4:81:0a:9d:59: 31:4b:0d:dc:85:a5:96:bc:23:ed:41:49:e7:82:4a: 4e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:72:24:CD:CA:0A:32:21:22:DA:CC:46:BB:C1:1F:D2:8E:08:4B:06 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.44.0/22 Signature Algorithm: sha256WithRSAEncryption be:8b:3a:46:0f:ec:79:89:ee:e3:b3:56:e8:20:36:c2:80:56: fa:37:d8:41:78:a9:2d:be:60:74:da:3c:b8:8b:72:9f:3d:85: 98:6f:d3:77:9e:cc:23:9c:ba:14:69:b5:73:dd:1a:c3:23:d1: 37:d3:62:32:9e:96:28:1b:eb:56:f5:62:29:5b:0d:53:0b:fb: 5e:54:f0:ab:7e:7c:7d:7f:fb:c4:2b:93:79:b6:b1:60:7b:bd: ef:94:41:63:61:6d:37:bb:27:1b:44:2e:5f:3a:90:ae:af:f4: 0e:aa:75:5c:9a:91:db:70:13:ec:4a:37:10:fe:e2:61:3d:cc: b9:da:4b:07:19:9e:7b:35:9f:42:40:e8:8e:16:c3:f0:71:26: cf:1a:a0:43:41:78:59:a2:d9:ba:c6:a0:64:5e:69:4d:4c:85: 96:42:ec:72:81:32:79:0f:98:cd:18:6b:bc:ee:3b:ed:4c:6c: 6a:42:c2:d0:21:6c:4b:9d:78:78:12:d5:28:38:07:ca:cb:7b: b3:cd:85:39:6b:74:50:07:01:2a:38:d3:68:9b:9e:ee:b9:93: 3c:f7:44:d5:3b:f9:48:4b:fa:1b:4e:15:0b:30:ac:52:85:f0: 5d:7b:d4:22:c5:74:51:b5:5f:59:a3:a0:83:74:de:88:e3:bf: a7:85:ec:a2 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUTHdVWA1R2bCUI5hsB9q/1AhjNiswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMDAwMDAwMFoX DTI0MTIyNTIzNTk1OVowejFJMEcGA1UEBRNAZWI0OWQxYzBlNjM2ZmJkYmZmNTNj ODExYTFlMjlmZmM5OWUzY2M5NTI3MTVhMDYwYzUyNzUwMzJlOTc1YTYwOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7U69f+Pmu5uR82vPeTjqROBwyb8 zuuxbrtKtRjufL8MZ7TdT85wl4WBmPQtm8vh5XozRnmC7r72wBTWqGU0oZPzQDji Ln9Fry0r8+kfiz/Zw72m9Pnv86IBpEv5cTuObtmE6GEs5QlWlp1fqppMLIwoyy24 fIw5Mo53ehsV6+Fn9kCEZIr++YoZa4Rlw1DaeCmfIF71za+sPvGvjlpZ+Zkokx4P QpsQHFSm/wTv1LRB/j1midH754c0yFntgqjMg5lPAGD+4QJxI7+sdwMobTCNQDpX FXzpGpBpLPcU+nt4v7LFHV2xPo/+tIEKnVkxSw3chaWWvCPtQUnngkpOmwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFE9yJM3KCjIhItrMRrvBH9KOCEsGMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzI0NWE2NWJiLTU5MWMtNDdiYy04YThjLTZjODZiMDkzZmQ4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/ksMA0GCSqGSIb3DQEBCwUAA4IBAQC+izpGD+x5ie7js1boIDbC gFb6N9hBeKktvmB02jy4i3KfPYWYb9N3nswjnLoUabVz3RrDI9E302IynpYoG+tW 9WIpWw1TC/teVPCrfnx9f/vEK5N5trFge73vlEFjYW03uycbRC5fOpCur/QOqnVc mpHbcBPsSjcQ/uJhPcy52ksHGZ57NZ9CQOiOFsPwcSbPGqBDQXhZotm6xqBkXmlN TIWWQuxygTJ5D5jNGGu87jvtTGxqQsLQIWxLnXh4EtUoOAfKy3uzzYU5a3RQBwEq ONNom57uuZM890TVO/lIS/obThULMKxShfBde9QixXRRtV9Zo6CDdN6I47+nheyi -----END CERTIFICATE-----Generated at Sun Nov 24 02:34:55 2024 by rpki-client on console-fra.rpki-client.org