$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0c6be0d-b5c2-4296-9e79-8556c5f2dd7f.roa File: a0c6be0d-b5c2-4296-9e79-8556c5f2dd7f.roa (raw, json) Hash identifier: rTDbzAV+7O1rIAcaR4Z7fI8V/R3yYIyvpiFkK4M9HJM= Subject key identifier: 12:66:CA:9F:E5:AE:9D:A8:35:CA:A6:5D:CE:10:29:E7:58:0D:10:1C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 500904D77E04D29D8F9DCD71B38471D1F6C7D9FE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0c6be0d-b5c2-4296-9e79-8556c5f2dd7f.roa Signing time: Wed 17 Jul 2024 00:00:00 +0000 ROA not before: Wed 17 Jul 2024 00:00:00 +0000 ROA not after: Wed 21 Aug 2024 23:59:59 +0000 asID: 14618 IP address blocks: 43.218.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:09:04:d7:7e:04:d2:9d:8f:9d:cd:71:b3:84:71:d1:f6:c7:d9:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 17 00:00:00 2024 GMT Not After : Aug 21 23:59:59 2024 GMT Subject: serialNumber=74e241020daa0ffd80f320f97b46ed9643da93205a294c956901da801ffd8f1b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:55:d9:f8:d1:36:1f:e0:a2:7f:de:c2:e5:b9: e3:55:ba:72:c5:c9:62:96:57:37:29:ef:41:ff:dd: 6a:2f:05:d5:f4:95:f6:c0:67:2b:2e:c6:03:7b:fa: 31:40:4b:73:dc:4e:a4:35:d5:99:f8:37:8d:99:3b: 16:c0:14:74:8f:3e:2d:6c:a7:5f:f1:05:7d:c3:18: 15:41:5f:15:a7:c7:38:97:27:8c:a3:6c:a2:50:39: 53:5c:3d:1e:68:13:f0:ca:d2:5c:16:dc:31:ef:e9: 23:8c:59:38:9b:0b:43:55:34:6f:b0:3d:fe:0d:dd: df:30:11:d1:f8:bb:96:f5:e8:ad:fa:3f:3d:f6:93: bc:1b:52:f1:7f:94:5f:6b:0b:03:28:c5:04:47:ed: f6:a4:22:e6:2a:12:98:36:78:36:2c:4e:dc:1c:4f: d1:e3:d4:8b:c6:23:f1:d7:b8:5b:16:83:0a:83:5c: 6a:7c:5b:ec:4e:fd:89:bc:83:bf:a0:84:ef:14:63: 35:c3:17:49:ba:a6:f8:e5:8d:be:79:53:a2:95:99: b2:76:f6:a8:a7:a2:bf:09:9a:67:d0:d9:b2:4a:57: fd:43:d5:cd:82:a3:61:37:9f:53:a4:12:c0:ea:51: 36:8f:3d:ba:d0:5a:ba:42:57:99:c5:54:9c:9f:71: 5a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:66:CA:9F:E5:AE:9D:A8:35:CA:A6:5D:CE:10:29:E7:58:0D:10:1C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0c6be0d-b5c2-4296-9e79-8556c5f2dd7f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.218.0.0/16 Signature Algorithm: sha256WithRSAEncryption c5:69:3b:23:08:e7:ec:dd:b1:5f:d4:dd:ec:b9:70:44:e6:0a: bb:ac:b8:6d:d9:0d:2d:77:d8:c7:c3:0f:ed:dd:7a:d7:e1:bd: c9:b7:ed:96:a1:0c:7b:aa:5a:91:e2:cb:f4:f5:39:79:cf:d4: 26:40:f6:8f:57:92:b6:ca:13:c1:d2:ae:03:7e:b8:71:99:19: 58:40:82:b5:05:4e:40:04:0b:3f:e1:8a:c1:b9:5d:ad:bb:cc: af:e0:99:8e:62:82:eb:c3:74:d8:79:9d:b3:3d:a3:98:b8:13: 97:8b:05:71:02:fc:81:67:60:b3:5b:8c:62:10:93:6e:6c:4f: 3c:f5:98:da:ab:09:29:4d:d0:91:3a:f6:36:72:6c:b6:42:ac: 38:79:55:35:5b:13:6a:6f:0a:0d:90:77:83:7d:9f:0e:45:d6: 16:6f:10:81:ac:e8:c0:c8:36:23:67:7a:c9:53:05:11:7a:c1: 0c:88:1d:12:6d:dd:40:c5:72:33:48:56:4e:35:d0:9a:02:37: 10:95:b2:49:5a:21:df:f9:90:1c:63:c4:65:94:dc:7a:c2:22: 86:35:df:b5:cb:3a:c5:2c:16:50:6b:ad:4c:52:f1:30:8b:86: e0:9a:3e:6b:dc:de:36:29:8c:7d:5e:8b:4f:3e:f5:25:a1:f2: 1e:85:5b:07 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUUAkE134E0p2Pnc1xs4Rx0fbH2f4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNzAwMDAwMFoX DTI0MDgyMTIzNTk1OVowejFJMEcGA1UEBRNANzRlMjQxMDIwZGFhMGZmZDgwZjMy MGY5N2I0NmVkOTY0M2RhOTMyMDVhMjk0Yzk1NjkwMWRhODAxZmZkOGYxYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VXZ+NE2H+Cif97C5bnjVbpyxcli llc3Ke9B/91qLwXV9JX2wGcrLsYDe/oxQEtz3E6kNdWZ+DeNmTsWwBR0jz4tbKdf 8QV9wxgVQV8Vp8c4lyeMo2yiUDlTXD0eaBPwytJcFtwx7+kjjFk4mwtDVTRvsD3+ Dd3fMBHR+LuW9eit+j899pO8G1Lxf5RfawsDKMUER+32pCLmKhKYNng2LE7cHE/R 49SLxiPx17hbFoMKg1xqfFvsTv2JvIO/oITvFGM1wxdJuqb45Y2+eVOilZmydvao p6K/CZpn0NmySlf9Q9XNgqNhN59TpBLA6lE2jz260Fq6QleZxVScn3FaQwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFBJmyp/lrp2oNcqmXc4QKedYDRAcMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EwYzZiZTBkLWI1YzItNDI5Ni05ZTc5LTg1NTZjNWYyZGQ3Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAK9owDQYJKoZIhvcNAQELBQADggEBAMVpOyMI5+zdsV/U3ey5cETm CrusuG3ZDS132MfDD+3detfhvcm37ZahDHuqWpHiy/T1OXnP1CZA9o9XkrbKE8HS rgN+uHGZGVhAgrUFTkAECz/hisG5Xa27zK/gmY5iguvDdNh5nbM9o5i4E5eLBXEC /IFnYLNbjGIQk25sTzz1mNqrCSlN0JE69jZybLZCrDh5VTVbE2pvCg2Qd4N9nw5F 1hZvEIGs6MDINiNneslTBRF6wQyIHRJt3UDFcjNIVk410JoCNxCVsklaId/5kBxj xGWU3HrCIoY137XLOsUsFlBrrUxS8TCLhuCaPmvc3jYpjH1ei08+9SWh8h6FWwc= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:16 2024 by rpki-client on console-fra.rpki-client.org