$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/50a9a959-5bd1-4293-aafe-5c5f47d125bd.roa File: 50a9a959-5bd1-4293-aafe-5c5f47d125bd.roa (raw, json) Hash identifier: +vsxU1quaicKJ7xcxxQ1uemGuC5Jlmbwk0PHy1+Mv+A= Subject key identifier: 93:4E:74:2A:B9:56:6B:86:C8:08:35:6E:2B:2C:0E:2B:67:BA:0A:F3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4115062D95DA05834E883B817B957EC527F91507 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/50a9a959-5bd1-4293-aafe-5c5f47d125bd.roa Signing time: Wed 17 Jul 2024 00:00:00 +0000 ROA not before: Wed 17 Jul 2024 00:00:00 +0000 ROA not after: Wed 21 Aug 2024 23:59:59 +0000 asID: 14618 IP address blocks: 43.208.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:15:06:2d:95:da:05:83:4e:88:3b:81:7b:95:7e:c5:27:f9:15:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 17 00:00:00 2024 GMT Not After : Aug 21 23:59:59 2024 GMT Subject: serialNumber=b7843839d2795fa005334736ed9610c75a7d7668b77a8849bb86a313db6ab250, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:03:4c:f2:86:25:d6:09:77:ac:4f:c9:40:c9: 6c:69:23:f7:9c:09:5d:49:ce:6c:01:27:95:b4:95: e5:08:b9:bd:c7:7b:c8:62:b1:6d:fa:81:e4:2d:a1: be:65:9b:04:67:13:0a:3e:80:af:36:51:9b:11:bd: 97:b5:e1:2a:d3:42:7a:30:93:82:87:4d:a3:81:44: 53:99:96:a1:20:91:28:4f:b9:00:92:71:26:7e:2e: b5:20:2d:9d:d0:dd:b0:05:df:5a:92:7e:35:d4:20: 5a:6c:f8:1d:e9:ca:d5:d7:4f:5f:69:49:32:b1:0a: 3e:b2:6d:48:03:8b:3d:29:d7:63:28:d9:a6:e8:dc: b6:83:25:f6:ca:0a:5e:c3:69:74:63:8f:d2:35:e5: e0:a0:9e:60:9e:94:17:9f:a4:63:43:ca:78:88:8b: a7:db:c6:93:43:3e:3d:9d:cf:f7:0b:d0:21:1c:b1: 92:a7:75:a3:83:01:e5:7d:48:51:b0:ab:2f:55:1d: 3c:ef:4a:e3:4f:4d:b1:75:5f:bf:cf:b2:c3:9c:a8: 89:85:f4:c4:94:20:35:42:0d:a0:4d:e9:53:ca:f6: fc:6c:c7:fa:4d:b8:e9:f6:86:4e:a3:d1:c8:1d:9a: 57:21:15:f7:ff:02:53:35:1f:81:a6:32:c7:53:e2: 11:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4E:74:2A:B9:56:6B:86:C8:08:35:6E:2B:2C:0E:2B:67:BA:0A:F3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/50a9a959-5bd1-4293-aafe-5c5f47d125bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.0.0/13 Signature Algorithm: sha256WithRSAEncryption 47:93:78:49:fd:65:dc:64:cc:91:0e:cb:82:16:63:95:7d:86: 36:3a:21:df:7b:c4:12:55:fc:e7:99:66:69:94:63:45:96:e9: 50:06:10:98:9e:19:a1:d1:5d:74:70:a8:8a:3c:d3:28:09:fd: 5a:58:bb:ec:59:a9:c9:08:98:75:1d:29:10:72:7d:49:1a:d5: 13:15:ee:2a:3e:40:cd:25:69:f4:fc:8a:45:64:67:fc:98:6f: 7e:02:03:e0:f9:1f:dd:9c:9e:6c:7f:79:f6:ca:df:f0:31:34: 4c:1d:ec:33:93:99:6f:f3:cd:e5:78:72:4d:ba:84:8d:59:12: 31:69:d4:45:7f:90:43:86:d8:bf:82:e0:bf:35:3c:45:fd:34: 26:d5:c6:98:b5:b2:fa:0b:1d:ff:ec:c2:bf:ad:01:cd:1f:25: d6:98:85:98:73:1f:da:74:d0:9a:56:0e:ba:16:67:2e:f0:17: 9d:ff:81:cb:69:27:c2:89:34:cd:95:94:bc:5c:67:f6:a2:7f: 3d:1f:57:99:93:99:a8:c1:04:2f:70:4a:73:6d:5a:61:0f:77: 3e:ac:68:9d:fd:05:a9:80:54:9b:f5:da:e1:6f:f3:2a:c1:0d: 3b:6e:e0:ee:f8:9a:58:4b:20:8f:fc:d1:27:01:0c:3f:79:a0: cc:75:ec:49 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUQRUGLZXaBYNOiDuBe5V+xSf5FQcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNzAwMDAwMFoX DTI0MDgyMTIzNTk1OVowejFJMEcGA1UEBRNAYjc4NDM4MzlkMjc5NWZhMDA1MzM0 NzM2ZWQ5NjEwYzc1YTdkNzY2OGI3N2E4ODQ5YmI4NmEzMTNkYjZhYjI1MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQNM8oYl1gl3rE/JQMlsaSP3nAld Sc5sASeVtJXlCLm9x3vIYrFt+oHkLaG+ZZsEZxMKPoCvNlGbEb2XteEq00J6MJOC h02jgURTmZahIJEoT7kAknEmfi61IC2d0N2wBd9akn411CBabPgd6crV109faUky sQo+sm1IA4s9KddjKNmm6Ny2gyX2ygpew2l0Y4/SNeXgoJ5gnpQXn6RjQ8p4iIun 28aTQz49nc/3C9AhHLGSp3WjgwHlfUhRsKsvVR0870rjT02xdV+/z7LDnKiJhfTE lCA1Qg2gTelTyvb8bMf6Tbjp9oZOo9HIHZpXIRX3/wJTNR+BpjLHU+IROwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFJNOdCq5VmuGyAg1bissDitnugrzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzUwYTlhOTU5LTViZDEtNDI5My1hYWZlLTVjNWY0N2QxMjViZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMDK9AwDQYJKoZIhvcNAQELBQADggEBAEeTeEn9ZdxkzJEOy4IWY5V9 hjY6Id97xBJV/OeZZmmUY0WW6VAGEJieGaHRXXRwqIo80ygJ/VpYu+xZqckImHUd KRByfUka1RMV7io+QM0lafT8ikVkZ/yYb34CA+D5H92cnmx/efbK3/AxNEwd7DOT mW/zzeV4ck26hI1ZEjFp1EV/kEOG2L+C4L81PEX9NCbVxpi1svoLHf/swr+tAc0f JdaYhZhzH9p00JpWDroWZy7wF53/gctpJ8KJNM2VlLxcZ/aifz0fV5mTmajBBC9w SnNtWmEPdz6saJ39BamAVJv12uFv8yrBDTtu4O74mlhLII/80ScBDD95oMx17Ek= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:40 2024 by rpki-client on console-ams.rpki-client.org