$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b9e9530-5054-44f6-b1eb-8744e111e3c6.roa File: 7b9e9530-5054-44f6-b1eb-8744e111e3c6.roa (raw, json) Hash identifier: H9VdgLpnq7fjrK3CKNKiV6Kk689yap95uQk5JSWtdVQ= Subject key identifier: 87:32:C6:CB:3C:CB:0F:AF:2D:94:40:EC:80:98:F8:1C:DD:1E:BA:A3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6A68AB402F310092E6DC7A5334CA8C98A58E8106 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b9e9530-5054-44f6-b1eb-8744e111e3c6.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 43.216.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 00:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:68:ab:40:2f:31:00:92:e6:dc:7a:53:34:ca:8c:98:a5:8e:81:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=5a515338d7ba98dee51bec521b682ba8ddfb2d4233acd49b1a46631e0524b5e6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5a:cf:58:72:44:f4:b4:bf:2d:b1:b7:22:a3: b3:6f:f7:aa:19:83:8d:10:85:43:29:25:a3:c4:a5: 86:25:22:64:17:f5:e5:81:0b:4a:94:b0:06:3b:e1: bb:e2:04:4b:32:19:cb:20:8b:8d:ae:d4:53:cf:a9: b4:2f:73:c7:25:31:53:43:0e:84:a3:8f:ac:d7:37: 55:f1:25:99:4e:63:86:7e:da:96:38:3e:6e:ea:f2: 67:cd:b0:65:f2:d9:c8:74:95:4c:e1:55:0f:79:ed: 24:f9:2f:85:8c:6b:eb:ba:73:c8:7f:0f:f2:d0:af: b4:a4:d5:19:e8:27:28:fe:5d:66:b7:62:c2:8f:c9: c8:df:d5:4f:d0:19:72:ec:7f:6c:8f:29:58:73:1e: 7c:36:2f:9c:9c:29:63:b1:62:0b:42:90:6a:6e:40: 3f:07:99:f7:ae:00:4a:27:9c:e6:ac:cc:68:cd:81: fb:a9:59:64:94:45:85:75:21:b5:08:21:65:5b:5a: 03:00:2e:00:e3:f2:82:b4:fa:4c:8b:a3:71:91:16: 93:2d:43:0e:c4:56:ee:b1:27:ba:c4:ae:ce:d7:e6: 60:17:74:55:78:6e:57:c3:47:72:fe:fb:9a:61:ac: 79:aa:1b:9e:94:21:de:2d:4a:86:68:a8:44:c9:70: e4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:32:C6:CB:3C:CB:0F:AF:2D:94:40:EC:80:98:F8:1C:DD:1E:BA:A3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b9e9530-5054-44f6-b1eb-8744e111e3c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.216.0.0/15 Signature Algorithm: sha256WithRSAEncryption 9d:db:90:1f:53:6b:4d:e5:b1:ac:b4:2a:62:87:4b:54:81:30: fb:19:b5:7a:59:35:3c:49:1a:e7:6a:d7:2b:92:79:89:a8:23: b6:a8:ac:a4:41:73:7b:19:c6:03:ac:06:49:aa:23:50:15:40: 5c:f3:96:ee:ad:12:2f:8e:71:e7:16:28:22:2e:2c:28:46:c6: 86:eb:07:e0:db:72:16:93:2c:88:c4:60:7a:2f:b9:de:63:12: 6f:e3:c4:57:24:84:16:b9:a4:42:00:20:11:24:66:e6:48:4e: c9:c4:ff:49:cb:af:2e:82:78:65:45:99:f2:46:ad:5b:37:98: 06:a2:72:5f:78:16:b6:7e:a0:5b:a5:0e:a2:13:0c:93:65:de: 82:fa:71:7a:d7:4a:50:a5:b6:bd:f1:cd:88:63:4a:94:b7:c6: 3c:3b:17:d9:90:ec:82:d9:b0:78:9a:97:d9:ce:48:ac:81:32: 48:6e:28:ed:a1:54:eb:0c:14:50:8b:aa:1e:a7:ec:48:55:78: 4e:a9:b7:14:13:26:75:39:ce:d0:40:d6:40:81:4c:2c:7d:43: 53:66:1b:b8:d2:cb:3a:11:32:82:ed:73:5d:c4:64:4a:df:45: 32:1a:26:33:49:81:e8:40:3a:0b:7f:3b:45:08:7b:09:15:60: 34:51:87:20 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUamirQC8xAJLm3HpTNMqMmKWOgQYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQwODAwMDAwMFoX DTI0MDUxMzIzNTk1OVowejFJMEcGA1UEBRNANWE1MTUzMzhkN2JhOThkZWU1MWJl YzUyMWI2ODJiYThkZGZiMmQ0MjMzYWNkNDliMWE0NjYzMWUwNTI0YjVlNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFrPWHJE9LS/LbG3IqOzb/eqGYON EIVDKSWjxKWGJSJkF/XlgQtKlLAGO+G74gRLMhnLIIuNrtRTz6m0L3PHJTFTQw6E o4+s1zdV8SWZTmOGftqWOD5u6vJnzbBl8tnIdJVM4VUPee0k+S+FjGvrunPIfw/y 0K+0pNUZ6Cco/l1mt2LCj8nI39VP0Bly7H9sjylYcx58Ni+cnCljsWILQpBqbkA/ B5n3rgBKJ5zmrMxozYH7qVlklEWFdSG1CCFlW1oDAC4A4/KCtPpMi6NxkRaTLUMO xFbusSe6xK7O1+ZgF3RVeG5Xw0dy/vuaYax5qhuelCHeLUqGaKhEyXDknwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFIcyxss8yw+vLZRA7ICY+BzdHrqjMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdiOWU5NTMwLTUwNTQtNDRmNi1iMWViLTg3NDRlMTExZTNjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMBK9gwDQYJKoZIhvcNAQELBQADggEBAJ3bkB9Ta03lsay0KmKHS1SB MPsZtXpZNTxJGudq1yuSeYmoI7aorKRBc3sZxgOsBkmqI1AVQFzzlu6tEi+OcecW KCIuLChGxobrB+DbchaTLIjEYHovud5jEm/jxFckhBa5pEIAIBEkZuZITsnE/0nL ry6CeGVFmfJGrVs3mAaicl94FrZ+oFulDqITDJNl3oL6cXrXSlCltr3xzYhjSpS3 xjw7F9mQ7ILZsHial9nOSKyBMkhuKO2hVOsMFFCLqh6n7EhVeE6ptxQTJnU5ztBA 1kCBTCx9Q1NmG7jSyzoRMoLtc13EZErfRTIaJjNJgehAOgt/O0UIewkVYDRRhyA= -----END CERTIFICATE-----Generated at Wed Apr 24 05:31:46 2024 by rpki-client on console-fra.rpki-client.org