$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9787bdbe-f3f0-457d-8edc-d01a0d2e9001.roa File: 9787bdbe-f3f0-457d-8edc-d01a0d2e9001.roa (raw, json) Hash identifier: yyqweqiUtil+Ma96lNeq8hhtGjLZIMbv2ni0YPgkBPQ= Subject key identifier: 26:36:97:D5:B9:25:8A:7D:63:B6:BC:5A:12:E9:70:2D:70:9C:8D:9F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 71894A913573A5CBE798F4EEB77A875352F02C18 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9787bdbe-f3f0-457d-8edc-d01a0d2e9001.roa Signing time: Mon 15 Jul 2024 00:00:00 +0000 ROA not before: Mon 15 Jul 2024 00:00:00 +0000 ROA not after: Mon 19 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 43.208.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:89:4a:91:35:73:a5:cb:e7:98:f4:ee:b7:7a:87:53:52:f0:2c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 15 00:00:00 2024 GMT Not After : Aug 19 23:59:59 2024 GMT Subject: serialNumber=e20c4da5142608da077c355841826e766e3b315f9d68d15fb7fa812785ee49fc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b1:8c:7a:98:be:8b:cf:e5:6c:89:ef:c1:fe: af:51:1f:5f:33:a7:43:7d:1a:36:ef:f4:87:64:28: be:ec:5f:e1:e6:9e:8e:cb:79:f2:65:b2:42:ce:77: ae:43:d0:e4:63:4b:d3:d7:84:5a:e5:14:de:69:58: 3f:d7:ab:f6:0e:b4:f5:07:57:40:75:76:90:0e:7b: 6d:25:05:40:58:79:20:2d:4b:97:0e:04:31:35:5c: 5f:a0:72:5b:28:fa:22:5e:d5:75:ee:9f:65:3b:32: 94:b9:41:42:49:9f:97:0b:34:1a:8d:13:44:b3:d8: f1:e7:85:cf:26:e0:08:e9:bd:4b:6e:b2:79:f3:39: 53:36:8f:a6:59:1b:a0:bb:48:80:d0:0e:4a:a6:a4: 12:be:4a:0f:8d:01:a2:5d:1d:ea:48:c3:2d:d9:e7: ce:b1:cf:52:26:f2:f0:48:0f:0c:70:54:99:3b:3d: 44:7c:0a:26:98:fc:7e:48:56:6c:e1:fa:6a:f4:a7: 67:86:4e:c1:3f:29:53:d8:81:15:68:c8:e8:c1:05: 78:fd:bf:e4:ef:b7:9d:f4:32:2a:f4:d9:a3:02:45: 69:2f:d9:df:36:ed:b4:d1:0a:2c:5b:e0:ec:05:c0: aa:4f:bf:d8:ee:fe:d8:a9:bb:d0:59:53:73:9b:29: 99:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:36:97:D5:B9:25:8A:7D:63:B6:BC:5A:12:E9:70:2D:70:9C:8D:9F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9787bdbe-f3f0-457d-8edc-d01a0d2e9001.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.0.0/15 Signature Algorithm: sha256WithRSAEncryption a2:02:95:c6:ec:6f:54:9d:f8:c1:7c:cf:4f:49:f8:33:be:94: ac:e5:4e:8f:f7:8b:2b:ec:60:5a:c3:d6:8b:ca:61:d2:83:1a: 47:5c:56:9d:39:cd:35:fe:c3:d2:b6:62:e1:34:bf:28:c6:ab: b6:1e:38:fc:ec:0b:c3:bc:ff:d4:cd:8a:f0:76:0e:d9:dc:0f: 29:c6:2a:a8:27:dc:bd:a3:39:03:af:04:91:9a:76:94:60:48: 3e:e6:7c:1c:a4:f9:f0:92:33:e2:c3:dc:21:ad:a8:0c:95:10: 13:7c:fb:ed:a6:e8:a1:bc:88:cc:b0:41:61:07:94:8b:43:82: 79:aa:6b:63:be:b1:23:7d:63:90:a0:7f:c9:30:62:50:bd:ae: 0d:28:dd:4c:16:24:1d:0c:2e:43:38:6a:e3:75:2a:1e:7b:29: 4e:2b:ef:04:3c:c2:23:81:0d:23:a5:32:9f:9d:a6:51:19:c3: 40:e3:98:71:7e:2a:89:aa:a5:ab:04:5a:7f:eb:8a:bb:ab:03: 7c:97:4d:46:e5:65:dd:e7:a5:c8:0f:e8:8e:6a:af:ef:14:22: b6:2e:52:31:42:e5:48:92:7a:ee:ad:d2:5f:45:5e:e1:c9:bc: 2c:61:4f:39:a9:2d:6e:00:a1:5e:e7:64:29:51:9b:46:2a:99: f8:00:95:f2 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUcYlKkTVzpcvnmPTut3qHU1LwLBgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNTAwMDAwMFoX DTI0MDgxOTIzNTk1OVowejFJMEcGA1UEBRNAZTIwYzRkYTUxNDI2MDhkYTA3N2Mz NTU4NDE4MjZlNzY2ZTNiMzE1ZjlkNjhkMTVmYjdmYTgxMjc4NWVlNDlmYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17GMepi+i8/lbInvwf6vUR9fM6dD fRo27/SHZCi+7F/h5p6Oy3nyZbJCzneuQ9DkY0vT14Ra5RTeaVg/16v2DrT1B1dA dXaQDnttJQVAWHkgLUuXDgQxNVxfoHJbKPoiXtV17p9lOzKUuUFCSZ+XCzQajRNE s9jx54XPJuAI6b1LbrJ58zlTNo+mWRugu0iA0A5KpqQSvkoPjQGiXR3qSMMt2efO sc9SJvLwSA8McFSZOz1EfAommPx+SFZs4fpq9Kdnhk7BPylT2IEVaMjowQV4/b/k 77ed9DIq9NmjAkVpL9nfNu200QosW+DsBcCqT7/Y7v7YqbvQWVNzmymZHwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFCY2l9W5JYp9Y7a8WhLpcC1wnI2fMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3ODdiZGJlLWYzZjAtNDU3ZC04ZWRjLWQwMWEwZDJlOTAwMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMBK9AwDQYJKoZIhvcNAQELBQADggEBAKIClcbsb1Sd+MF8z09J+DO+ lKzlTo/3iyvsYFrD1ovKYdKDGkdcVp05zTX+w9K2YuE0vyjGq7YeOPzsC8O8/9TN ivB2DtncDynGKqgn3L2jOQOvBJGadpRgSD7mfByk+fCSM+LD3CGtqAyVEBN8++2m 6KG8iMywQWEHlItDgnmqa2O+sSN9Y5Cgf8kwYlC9rg0o3UwWJB0MLkM4auN1Kh57 KU4r7wQ8wiOBDSOlMp+dplEZw0DjmHF+KomqpasEWn/rirurA3yXTUblZd3npcgP 6I5qr+8UIrYuUjFC5UiSeu6t0l9FXuHJvCxhTzmpLW4AoV7nZClRm0YqmfgAlfI= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org