$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0c6be0d-b5c2-4296-9e79-8556c5f2dd7f.roa File: a0c6be0d-b5c2-4296-9e79-8556c5f2dd7f.roa (raw, json) Hash identifier: GnW/LCkrsho7+3yqjHjs1ac9XD7g5oAaN51/eOz617E= Subject key identifier: 9B:EB:A0:D2:26:B9:A9:E6:37:10:F1:A6:95:07:E6:87:72:8C:87:CD Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 40F4E22485F604CFAAC8DE78F42566B6EF30D6D5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0c6be0d-b5c2-4296-9e79-8556c5f2dd7f.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 43.218.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:f4:e2:24:85:f6:04:cf:aa:c8:de:78:f4:25:66:b6:ef:30:d6:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=06e7ce9eb5e5ad87794616d20b3b242bf9e566ed688bcc4bfc2115d7c5cdd770, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8d:ed:03:a7:54:fb:2c:d0:cf:5f:f7:67:53: 52:c1:34:aa:97:a5:55:5b:06:d1:f0:74:00:2b:fb: a8:46:72:bd:c1:59:d4:37:07:f6:b4:76:47:b2:98: 7f:ac:89:20:ca:70:15:52:30:3b:c6:c6:99:a5:b6: 0f:d3:4e:d1:30:ee:4f:ea:66:f5:1b:bf:94:4f:30: 6a:db:8c:0f:eb:26:e4:02:dd:04:59:9b:b6:e0:e4: d5:e0:c7:35:51:5d:9d:10:5d:7b:f0:01:5c:21:92: 7f:f5:1e:31:75:49:96:7b:73:a0:b6:f7:fd:fa:b5: 73:bd:21:fd:cd:dc:60:00:e1:f1:5d:95:73:72:41: 51:d8:bd:78:b6:5a:3d:23:82:b6:e7:fe:b3:6c:58: 26:56:67:ee:c5:c5:e3:3a:f4:6b:2b:38:1b:d5:69: 08:ab:2b:0f:03:ab:2c:e3:60:51:e2:c8:05:88:f7: 6d:76:06:63:f3:9c:d7:b2:74:fe:11:ca:2e:c2:98: 02:0a:aa:e2:82:9f:0d:66:3f:ff:cb:1f:62:7d:1c: a6:d6:a2:fb:02:a7:12:b7:f4:2d:b8:4a:52:c1:a0: f5:26:da:62:59:73:80:bd:34:f4:66:ac:df:71:bb: 37:26:4e:ac:8e:fa:e3:93:e6:45:10:28:58:96:85: bf:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:EB:A0:D2:26:B9:A9:E6:37:10:F1:A6:95:07:E6:87:72:8C:87:CD X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0c6be0d-b5c2-4296-9e79-8556c5f2dd7f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.218.0.0/16 Signature Algorithm: sha256WithRSAEncryption 14:8c:10:b4:f3:84:82:35:cd:62:82:3b:89:93:94:0a:c8:17: cf:39:ae:6b:4c:26:c3:fd:58:28:0c:4e:4a:ba:f2:77:35:ed: 31:d5:52:ae:d5:7b:67:58:9e:a1:45:4d:1c:3e:d6:a4:6d:53: ca:d1:eb:b9:b1:60:fd:bb:e7:2b:6d:1c:bb:f2:0f:0e:e2:2c: bc:f4:92:06:fc:11:a7:c4:d7:2e:76:ed:13:11:9c:14:07:7f: b5:18:43:2f:d8:6f:a0:d7:dc:c8:08:35:46:54:43:f4:0e:0e: f0:d9:8f:86:cf:5d:1d:10:e6:e3:79:41:ea:ad:0e:b9:6f:be: 28:03:18:72:6d:46:66:74:cf:15:af:1b:f0:e6:98:1e:4d:fb: 18:33:dc:00:c4:f0:c6:12:14:58:52:bf:70:41:c1:c4:91:e6: ae:d4:2e:e4:11:a0:80:a8:c7:31:f2:6e:5a:0a:74:cd:b0:e8: ed:3f:0c:0c:02:2a:b6:de:ac:b5:b3:31:5f:e9:36:c5:2f:e1: ba:cf:9a:c7:ad:b5:3e:ea:72:33:0d:3c:34:34:82:33:7d:f5: 9b:c8:ab:5d:ad:80:01:00:3e:fc:e9:9f:1d:9e:5c:d8:a4:b6: d7:5f:78:a4:3f:4e:86:60:0a:b1:50:8b:4f:aa:91:0f:f5:68: 4f:a7:d5:02 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUQPTiJIX2BM+qyN549CVmtu8w1tUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQwODAwMDAwMFoX DTI0MDUxMzIzNTk1OVowejFJMEcGA1UEBRNAMDZlN2NlOWViNWU1YWQ4Nzc5NDYx NmQyMGIzYjI0MmJmOWU1NjZlZDY4OGJjYzRiZmMyMTE1ZDdjNWNkZDc3MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmo3tA6dU+yzQz1/3Z1NSwTSql6VV WwbR8HQAK/uoRnK9wVnUNwf2tHZHsph/rIkgynAVUjA7xsaZpbYP007RMO5P6mb1 G7+UTzBq24wP6ybkAt0EWZu24OTV4Mc1UV2dEF178AFcIZJ/9R4xdUmWe3Ogtvf9 +rVzvSH9zdxgAOHxXZVzckFR2L14tlo9I4K25/6zbFgmVmfuxcXjOvRrKzgb1WkI qysPA6ss42BR4sgFiPdtdgZj85zXsnT+EcouwpgCCqrigp8NZj//yx9ifRym1qL7 AqcSt/QtuEpSwaD1JtpiWXOAvTT0Zqzfcbs3Jk6sjvrjk+ZFEChYloW/aQIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFJvroNImuanmNxDxppUH5odyjIfNMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EwYzZiZTBkLWI1YzItNDI5Ni05ZTc5LTg1NTZjNWYyZGQ3Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAK9owDQYJKoZIhvcNAQELBQADggEBABSMELTzhII1zWKCO4mTlArI F885rmtMJsP9WCgMTkq68nc17THVUq7Ve2dYnqFFTRw+1qRtU8rR67mxYP275ytt HLvyDw7iLLz0kgb8EafE1y527RMRnBQHf7UYQy/Yb6DX3MgINUZUQ/QODvDZj4bP XR0Q5uN5QeqtDrlvvigDGHJtRmZ0zxWvG/DmmB5N+xgz3ADE8MYSFFhSv3BBwcSR 5q7ULuQRoICoxzHybloKdM2w6O0/DAwCKrberLWzMV/pNsUv4brPmsettT7qcjMN PDQ0gjN99ZvIq12tgAEAPvzpnx2eXNikttdfeKQ/ToZgCrFQi0+qkQ/1aE+n1QI= -----END CERTIFICATE-----Generated at Tue Apr 23 23:53:17 2024 by rpki-client on console-fra.rpki-client.org