$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/50a9a959-5bd1-4293-aafe-5c5f47d125bd.roa File: 50a9a959-5bd1-4293-aafe-5c5f47d125bd.roa (raw, json) Hash identifier: jWx5W6CxubKrTxAubzv1G7PuwNk0J/GKAnffHEOcITc= Subject key identifier: 26:AE:43:97:35:9F:F0:79:D7:C2:3D:67:AD:2E:11:AF:60:CD:B3:AB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 590E3A6894829E945DC1FCF8604A9EE29A8A3024 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/50a9a959-5bd1-4293-aafe-5c5f47d125bd.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 43.208.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Apr 2024 00:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:0e:3a:68:94:82:9e:94:5d:c1:fc:f8:60:4a:9e:e2:9a:8a:30:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=72d1220eaed35f580489988fb6f05a7a7934c779aa419924d15cd8227c5798fb, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:12:e1:e2:0c:e7:3d:9d:5a:50:72:b3:82:91: b8:27:60:78:fb:32:7e:f0:62:1c:3c:85:43:03:95: 54:71:a0:c8:df:29:04:30:0e:99:13:88:7f:fb:e9: 46:e7:ff:80:2a:15:5e:59:de:dc:83:0f:1a:95:95: 3f:83:1d:12:cd:c3:4f:08:6d:ec:2e:27:84:99:46: f9:f8:28:f5:41:46:ac:80:9d:e5:21:77:ea:5d:bc: dd:e0:da:c3:c2:fc:85:33:70:10:d7:bd:db:9a:22: df:f6:e4:57:73:04:75:ad:9d:88:7f:d6:5f:f2:86: 65:52:86:04:05:95:b6:a7:df:f9:69:ac:c6:33:72: 9c:fc:c7:0c:9c:59:be:24:37:92:98:87:d6:58:48: 6e:b2:f6:f9:f8:89:b2:a5:c2:13:ee:4d:0c:f5:ac: 8b:01:56:fa:b9:97:e8:06:aa:c3:77:56:a2:83:d6: 51:e8:1e:7b:9f:b4:cf:a7:4e:dc:90:b6:df:9f:ec: c6:b9:93:54:b1:52:3f:8b:7d:d3:29:20:d5:e2:87: 7a:e6:4e:b6:23:95:8b:2b:0d:96:d1:a7:0d:69:4c: 5f:b6:d2:00:d7:66:46:dc:b5:dc:4c:aa:75:62:33: 34:ae:6c:5b:c2:a5:74:ee:8c:b0:7a:16:50:43:4f: 58:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:AE:43:97:35:9F:F0:79:D7:C2:3D:67:AD:2E:11:AF:60:CD:B3:AB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/50a9a959-5bd1-4293-aafe-5c5f47d125bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.0.0/13 Signature Algorithm: sha256WithRSAEncryption 49:2d:21:8d:c5:fe:84:72:7b:bd:bf:0a:c8:04:27:a0:31:f3: a8:2d:01:ce:84:78:0c:d4:74:5f:22:fb:00:65:38:15:2d:a5: 1e:dd:0d:f6:ed:b3:7f:92:d1:b3:f9:dd:f1:2d:87:ac:7d:93: 37:fb:ad:fe:5b:a0:e8:53:70:6e:1e:1c:18:7c:68:31:7d:24: c7:05:78:bb:9c:ce:a1:a3:26:52:0d:a1:c3:38:4c:a4:47:78: c7:dc:78:4b:16:10:14:3c:29:f8:dd:96:54:0a:cc:b5:aa:7e: 56:7c:05:19:d1:b6:90:32:73:cc:20:83:c0:09:ab:8f:07:39: f4:c2:4d:3a:82:8d:c8:6f:0c:f4:f0:56:5a:ad:1b:b1:6f:18: 10:90:39:2c:dc:39:90:d1:8a:c0:a7:0a:50:6a:36:e0:5e:1f: 7e:f8:67:4b:6d:20:66:a3:59:96:f8:a4:cf:df:2f:80:a2:dc: 3d:40:b2:21:21:6e:ea:59:0b:04:8b:0b:0e:6f:60:5b:cd:39: 19:27:21:cb:51:83:d9:ac:5c:39:ea:79:2d:de:46:c3:9e:d0: e7:88:2c:6d:b9:2c:7b:85:a0:82:79:d5:67:67:73:c0:91:d0: da:25:89:5c:ca:bd:e6:e6:d4:04:19:15:9e:dd:41:dc:a8:5a: 87:b0:d0:88 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUWQ46aJSCnpRdwfz4YEqe4pqKMCQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQwODAwMDAwMFoX DTI0MDUxMzIzNTk1OVowejFJMEcGA1UEBRNANzJkMTIyMGVhZWQzNWY1ODA0ODk5 ODhmYjZmMDVhN2E3OTM0Yzc3OWFhNDE5OTI0ZDE1Y2Q4MjI3YzU3OThmYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthLh4gznPZ1aUHKzgpG4J2B4+zJ+ 8GIcPIVDA5VUcaDI3ykEMA6ZE4h/++lG5/+AKhVeWd7cgw8alZU/gx0SzcNPCG3s LieEmUb5+Cj1QUasgJ3lIXfqXbzd4NrDwvyFM3AQ173bmiLf9uRXcwR1rZ2If9Zf 8oZlUoYEBZW2p9/5aazGM3Kc/McMnFm+JDeSmIfWWEhusvb5+ImypcIT7k0M9ayL AVb6uZfoBqrDd1aig9ZR6B57n7TPp07ckLbfn+zGuZNUsVI/i33TKSDV4od65k62 I5WLKw2W0acNaUxfttIA12ZG3LXcTKp1YjM0rmxbwqV07oywehZQQ09YqQIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFCauQ5c1n/B518I9Z60uEa9gzbOrMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzUwYTlhOTU5LTViZDEtNDI5My1hYWZlLTVjNWY0N2QxMjViZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMDK9AwDQYJKoZIhvcNAQELBQADggEBAEktIY3F/oRye72/CsgEJ6Ax 86gtAc6EeAzUdF8i+wBlOBUtpR7dDfbts3+S0bP53fEth6x9kzf7rf5boOhTcG4e HBh8aDF9JMcFeLuczqGjJlINocM4TKRHeMfceEsWEBQ8KfjdllQKzLWqflZ8BRnR tpAyc8wgg8AJq48HOfTCTTqCjchvDPTwVlqtG7FvGBCQOSzcOZDRisCnClBqNuBe H374Z0ttIGajWZb4pM/fL4Ci3D1AsiEhbupZCwSLCw5vYFvNORknIctRg9msXDnq eS3eRsOe0OeILG25LHuFoIJ51Wdnc8CR0NoliVzKvebm1AQZFZ7dQdyoWoew0Ig= -----END CERTIFICATE-----Generated at Sat Apr 20 01:07:31 2024 by rpki-client on console-ams.rpki-client.org