$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c826f56-d1e7-4f1c-9da9-d1e523c4c28f.roa File: 6c826f56-d1e7-4f1c-9da9-d1e523c4c28f.roa (raw, json) Hash identifier: vjdA/g3AKqJeS4su2RWmX06TB8aCtM1KcLpgw6dUiQ8= Subject key identifier: 76:75:68:52:13:08:33:AE:06:60:E1:85:96:92:D4:3F:B7:27:68:E5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 377598066A506877D1D5A95CDBB082BD1BB7A58F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c826f56-d1e7-4f1c-9da9-d1e523c4c28f.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 27.0.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:75:98:06:6a:50:68:77:d1:d5:a9:5c:db:b0:82:bd:1b:b7:a5:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=ea16bdbc5f37cd5a1623303cb6889478ae0a147ddda6708e8511af1e8aa36495, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b9:75:c3:a6:97:a5:93:4a:05:a3:ab:ba:55: 37:bd:71:ee:9f:5f:4b:ef:ff:bd:a5:8a:48:64:cb: 73:bc:cd:55:8e:1a:23:9d:a6:36:e9:a9:91:85:c4: b8:b1:08:cb:4b:d1:4c:16:4a:4d:4f:60:af:1a:e4: 14:d2:78:3b:b9:49:da:3f:5e:ad:ee:99:93:d9:b2: 8b:06:23:ce:76:a7:67:5e:bb:bf:43:d1:63:5c:25: 25:78:30:a9:c9:7e:ea:f5:d8:c8:25:61:78:19:09: b7:d9:07:d0:59:d7:2e:0b:0e:b9:9c:ce:9c:8b:5c: 28:49:c0:e6:c9:ff:bf:1c:f5:1d:26:ae:8d:c5:32: 33:16:01:ce:1f:aa:a7:15:27:2b:0d:fd:7f:bb:78: 63:4a:9d:84:06:be:bb:ae:5e:c1:cf:b4:7f:6b:77: 77:a7:21:5e:33:d1:66:69:d7:fa:5e:83:29:99:55: 4c:58:c8:a1:24:92:23:06:db:29:ae:9c:a8:ef:32: 19:ab:93:ce:66:b1:27:53:d3:5f:5f:dd:71:44:80: ab:ea:92:fc:2f:70:13:24:d0:0e:ce:08:9f:d1:6d: 33:45:05:53:81:5f:f7:1c:e3:80:36:e3:85:3c:ac: d9:9e:bd:3c:bf:38:4a:10:ef:1d:63:d0:6e:ef:07: 6c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:75:68:52:13:08:33:AE:06:60:E1:85:96:92:D4:3F:B7:27:68:E5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c826f56-d1e7-4f1c-9da9-d1e523c4c28f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.0.0/22 Signature Algorithm: sha256WithRSAEncryption 11:b1:40:1f:61:d0:db:f5:b4:80:ff:84:64:91:66:4b:25:75: bb:1f:44:eb:6e:54:58:55:d5:4d:26:f7:d1:3c:7e:c1:26:63: 74:6c:5d:73:d3:0a:4d:38:0f:60:f1:96:84:53:1e:89:61:65: 56:60:50:55:e5:ea:89:cd:de:b0:05:8a:d3:07:67:36:15:8e: 17:66:2c:1c:30:de:e7:01:f0:c1:36:79:e2:35:6b:20:0d:b2: 29:8a:d8:29:39:0e:7e:99:a0:02:e7:16:b1:86:41:fa:4b:bd: a8:89:02:f6:01:73:ff:74:31:27:e7:a1:82:24:b1:03:38:03: 78:a4:06:0e:70:12:87:63:f8:39:1c:a4:d9:73:c1:94:6a:8a: 78:65:d4:24:ae:99:29:42:83:d9:58:b6:5e:98:7f:58:0d:69: 54:77:7e:b1:c0:7a:b2:32:f6:32:bf:e3:df:19:a2:e6:84:9a: ce:3d:de:d1:46:c7:82:f8:c6:a7:e0:08:da:57:66:30:12:28: 75:7a:7a:7d:f6:4a:86:28:08:d6:b5:a4:01:43:db:cb:c9:cd: 9a:e2:c0:21:42:d5:21:d0:61:b0:af:38:cd:8e:b8:60:e7:c5: 2f:91:13:42:a6:c6:7f:88:40:58:38:d3:c0:fa:77:fa:39:e9: 0e:1b:a3:a2 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUN3WYBmpQaHfR1alc27CCvRu3pY8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQwODAwMDAwMFoX DTI0MDUxMzIzNTk1OVowejFJMEcGA1UEBRNAZWExNmJkYmM1ZjM3Y2Q1YTE2MjMz MDNjYjY4ODk0NzhhZTBhMTQ3ZGRkYTY3MDhlODUxMWFmMWU4YWEzNjQ5NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7l1w6aXpZNKBaOrulU3vXHun19L 7/+9pYpIZMtzvM1VjhojnaY26amRhcS4sQjLS9FMFkpNT2CvGuQU0ng7uUnaP16t 7pmT2bKLBiPOdqdnXru/Q9FjXCUleDCpyX7q9djIJWF4GQm32QfQWdcuCw65nM6c i1woScDmyf+/HPUdJq6NxTIzFgHOH6qnFScrDf1/u3hjSp2EBr67rl7Bz7R/a3d3 pyFeM9Fmadf6XoMpmVVMWMihJJIjBtsprpyo7zIZq5POZrEnU9NfX91xRICr6pL8 L3ATJNAOzgif0W0zRQVTgV/3HOOANuOFPKzZnr08vzhKEO8dY9Bu7wds1wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHZ1aFITCDOuBmDhhZaS1D+3J2jlMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjODI2ZjU2LWQxZTctNGYxYy05ZGE5LWQxZTUyM2M0YzI4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCGwAAMA0GCSqGSIb3DQEBCwUAA4IBAQARsUAfYdDb9bSA/4RkkWZL JXW7H0TrblRYVdVNJvfRPH7BJmN0bF1z0wpNOA9g8ZaEUx6JYWVWYFBV5eqJzd6w BYrTB2c2FY4XZiwcMN7nAfDBNnniNWsgDbIpitgpOQ5+maAC5xaxhkH6S72oiQL2 AXP/dDEn56GCJLEDOAN4pAYOcBKHY/g5HKTZc8GUaop4ZdQkrpkpQoPZWLZemH9Y DWlUd36xwHqyMvYyv+PfGaLmhJrOPd7RRseC+Man4AjaV2YwEih1enp99kqGKAjW taQBQ9vLyc2a4sAhQtUh0GGwrzjNjrhg58UvkRNCpsZ/iEBYONPA+nf6OekOG6Oi -----END CERTIFICATE-----Generated at Fri Apr 19 00:50:21 2024 by rpki-client on console-ams.rpki-client.org