$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa File: 8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa (raw, json) Hash identifier: EnXc+O/WRsLJCeK8Yw2TnXvbp7RuVuctd/lxOvtxcgk= Subject key identifier: B4:81:7D:B8:7A:DE:F6:C1:D3:97:EF:11:2A:58:C7:2D:5D:D8:38:B7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 0AF4070742C89F16715401740399B3172EF306AD Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa Signing time: Mon 15 Jul 2024 00:00:00 +0000 ROA not before: Mon 15 Jul 2024 00:00:00 +0000 ROA not after: Mon 19 Aug 2024 23:59:59 +0000 asID: 8987 IP address blocks: 159.248.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f4:07:07:42:c8:9f:16:71:54:01:74:03:99:b3:17:2e:f3:06:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Jul 15 00:00:00 2024 GMT Not After : Aug 19 23:59:59 2024 GMT Subject: serialNumber=621d854a6d9998eff052abac1b37f5e2b318cbab0494de3db65c8f9d07fc0664, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:85:c4:07:c3:8a:bd:78:1b:88:99:45:93:ab: 94:98:22:bc:f6:7a:f9:3c:2e:64:05:38:79:b2:3d: b5:0b:95:c6:6b:ab:a7:e8:ab:67:80:1e:12:d2:3f: 5a:4b:39:5e:bd:09:e9:4e:4e:bf:23:ce:c2:24:7d: aa:c4:31:16:6b:e3:ad:e7:3d:cd:a9:fd:50:24:73: 25:af:91:ce:a7:6d:86:2c:c3:18:e0:b8:ae:25:28: 6c:7d:26:d8:0a:8e:23:d8:8c:d6:2c:95:ce:fd:96: 20:d8:aa:d0:02:a4:cf:ef:6f:2b:a6:7a:17:ed:ed: 89:f2:fc:44:bc:5e:06:88:e5:82:21:3b:a6:7a:16: 9a:4a:a3:b1:27:70:89:0b:5d:ce:82:8d:23:18:d6: 4a:d6:33:c0:9b:8c:55:50:0c:06:8f:cb:93:b0:17: 6e:25:9c:5e:76:44:b6:cf:81:f6:0a:7f:9b:68:2d: 7e:24:c3:fd:43:d8:a5:2e:31:90:6f:d0:5d:a6:07: 3a:ae:45:64:70:d4:55:5b:0d:68:3a:9b:a9:0b:4e: 33:20:de:86:54:46:3d:a2:18:58:54:93:6b:cf:0a: 3d:fb:d2:dc:14:44:47:d2:49:2a:2f:9d:d0:75:08: a9:56:f9:a6:19:01:a7:46:0f:fa:ba:e9:9f:30:01: 68:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:81:7D:B8:7A:DE:F6:C1:D3:97:EF:11:2A:58:C7:2D:5D:D8:38:B7 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.248.128.0/22 Signature Algorithm: sha256WithRSAEncryption 83:f8:6f:a8:3c:b9:d6:2e:9e:d7:58:de:c6:b1:8d:21:6b:f8: 12:8f:2b:01:d4:57:3b:0b:2f:4d:3c:32:79:a9:5a:ef:77:2d: d0:6b:0a:98:51:c0:cf:af:67:88:2d:3e:fe:1a:f4:f6:03:9d: a3:cf:54:a7:99:1f:6c:cf:c0:4c:45:0b:0c:30:02:a2:4b:12: a5:2b:cc:4d:be:a8:ec:6d:6c:79:ac:47:42:db:7c:83:64:db: 5c:33:34:8d:32:83:d7:fb:45:89:79:f6:3b:dd:99:a3:13:89: fb:31:e4:38:bd:41:58:21:e1:67:67:b2:b8:62:23:6a:f3:be: 69:c6:0e:4f:6e:7a:e8:bc:93:c2:69:e3:88:cf:c0:52:a7:89: db:99:52:e3:8b:e7:08:63:21:05:21:12:a1:a5:86:8b:ee:32: 0c:d7:9b:44:cc:97:13:18:c1:37:95:32:dd:2c:f6:8e:e5:ed: fa:08:db:a6:45:0a:05:24:3e:3e:c7:f8:57:5a:44:2c:10:26: 92:5e:85:58:0d:a3:74:59:7f:02:87:29:fb:78:74:8b:13:24: 4d:c8:40:e1:1d:48:22:a8:15:2d:94:2a:84:82:9f:58:d9:30: c9:05:bf:1e:ad:8c:88:95:63:b3:ac:f2:93:ae:10:7d:8b:a4: 04:f2:b4:eb -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUCvQHB0LInxZxVAF0A5mzFy7zBq0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI0MDcxNTAwMDAwMFoX DTI0MDgxOTIzNTk1OVowejFJMEcGA1UEBRNANjIxZDg1NGE2ZDk5OThlZmYwNTJh YmFjMWIzN2Y1ZTJiMzE4Y2JhYjA0OTRkZTNkYjY1YzhmOWQwN2ZjMDY2NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34XEB8OKvXgbiJlFk6uUmCK89nr5 PC5kBTh5sj21C5XGa6un6KtngB4S0j9aSzlevQnpTk6/I87CJH2qxDEWa+Ot5z3N qf1QJHMlr5HOp22GLMMY4LiuJShsfSbYCo4j2IzWLJXO/ZYg2KrQAqTP728rpnoX 7e2J8vxEvF4GiOWCITumehaaSqOxJ3CJC13Ogo0jGNZK1jPAm4xVUAwGj8uTsBdu JZxedkS2z4H2Cn+baC1+JMP9Q9ilLjGQb9Bdpgc6rkVkcNRVWw1oOpupC04zIN6G VEY9ohhYVJNrzwo9+9LcFERH0kkqL53QdQipVvmmGQGnRg/6uumfMAFoOwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLSBfbh63vbB05fvESpYxy1d2Di3MB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhkYWZhODBlLTIzYzAtNDMxMC1hZTc2LTAxOTlhOWFhZmM2Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCn/iAMA0GCSqGSIb3DQEBCwUAA4IBAQCD+G+oPLnWLp7XWN7GsY0h a/gSjysB1Fc7Cy9NPDJ5qVrvdy3QawqYUcDPr2eILT7+GvT2A52jz1SnmR9sz8BM RQsMMAKiSxKlK8xNvqjsbWx5rEdC23yDZNtcMzSNMoPX+0WJefY73ZmjE4n7MeQ4 vUFYIeFnZ7K4YiNq875pxg5PbnrovJPCaeOIz8BSp4nbmVLji+cIYyEFIRKhpYaL 7jIM15tEzJcTGME3lTLdLPaO5e36CNumRQoFJD4+x/hXWkQsECaSXoVYDaN0WX8C hyn7eHSLEyRNyEDhHUgiqBUtlCqEgp9Y2TDJBb8erYyIlWOzrPKTrhB9i6QE8rTr -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:40 2024 by rpki-client on console-ams.rpki-client.org