$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0b839f01-283b-4c23-b8a7-3697b9583ee1.roa File: 0b839f01-283b-4c23-b8a7-3697b9583ee1.roa (raw, json) Hash identifier: pdo0lSfmKBdrBLrYQXsj57wrjIzBFAvaHPFc1vrERNY= Subject key identifier: 9A:4E:A4:42:CA:A1:4D:EF:09:99:A0:94:FA:C8:D3:D9:26:DE:37:93 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 743CF8846DF67A26F33C41BB5205F786F194B7AC Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0b839f01-283b-4c23-b8a7-3697b9583ee1.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:100c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:3c:f8:84:6d:f6:7a:26:f3:3c:41:bb:52:05:f7:86:f1:94:b7:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=ff443512935a14fc9640d64b949623d8b707847586c2148ad38fe86f4b6353e3, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:54:f1:cd:96:25:3e:c9:d7:e9:5c:2a:77:65: 4d:6c:42:0d:04:ec:eb:54:11:71:97:62:bb:0f:19: 4c:b9:bb:c3:31:b6:c6:29:01:65:4a:47:da:fe:cb: 53:aa:70:b2:da:5b:e7:4b:04:37:a8:9d:ae:db:07: f0:4f:10:e3:ff:be:bf:b7:93:36:ce:89:d5:79:87: a4:0c:46:69:07:80:54:60:3a:f6:0a:15:89:53:a9: b3:d5:aa:10:ea:bc:80:ed:e5:66:d6:48:21:0f:a8: 0a:4a:9d:e1:fd:98:c0:27:0b:f1:c7:e6:c1:cf:b5: 05:79:40:cd:aa:dc:95:0b:8c:b8:da:dd:66:e1:6a: 1d:9b:58:4e:7f:07:d1:6d:8b:a7:af:6f:0a:51:15: 93:d8:3a:d6:16:09:40:f5:be:ba:04:ca:98:4c:ff: 50:58:72:37:3b:f4:96:55:97:b2:be:65:77:6a:87: 1c:86:25:af:54:d8:4d:be:44:df:39:d3:3b:48:45: f9:9c:42:ae:03:40:05:31:78:72:a0:c1:a4:c8:56: 1a:9d:67:14:2f:f0:2d:0d:b7:59:e5:cc:5e:67:f3: 92:27:ca:b3:96:8a:31:65:79:19:2a:56:d0:40:51: 17:d6:58:10:e2:64:05:99:89:ec:a9:e6:70:bf:b0: e2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:4E:A4:42:CA:A1:4D:EF:09:99:A0:94:FA:C8:D3:D9:26:DE:37:93 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0b839f01-283b-4c23-b8a7-3697b9583ee1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:100c::/48 Signature Algorithm: sha256WithRSAEncryption 4d:e5:5d:a1:14:86:2d:d9:6c:5f:96:62:23:a7:1b:0f:b1:2e: 2a:64:b1:b8:11:7a:c5:d9:44:4b:7b:6f:21:9d:b1:05:a7:06: 0d:74:23:3e:bf:93:d8:c4:02:63:38:02:e9:26:ab:3f:8a:df: 38:87:1e:61:77:97:00:86:99:00:1b:01:05:ba:d2:73:9a:b2: b3:94:0e:3b:17:ac:18:84:d9:b4:f1:a9:1e:9d:70:23:57:20: 73:e7:be:be:4c:6a:01:47:03:ab:98:f4:d3:88:72:2f:b4:e8: 1b:3f:c4:f1:bd:05:d6:74:35:5f:0f:d1:3a:87:d7:e1:d8:0d: 0e:20:38:c9:63:77:7e:ab:f0:30:2f:cd:3c:3f:24:44:c6:1c: 46:91:85:2c:ef:ad:81:77:bc:b0:cb:74:2c:4a:36:0d:0d:55: 25:5e:d3:e6:db:39:26:bd:95:58:08:4f:46:f8:b5:43:a1:91: 18:cb:db:16:0b:74:10:91:f9:fa:af:88:e0:2b:df:e0:fc:2f: 70:13:83:65:28:29:a3:ef:8c:c7:f7:9f:4c:98:45:2c:43:db: 18:52:a5:40:ed:64:57:fa:0d:aa:60:51:07:7d:ec:1a:37:5a: b9:7b:ff:47:f3:ae:e8:28:7b:d0:5a:4f:1a:85:3f:78:a8:1a: 40:b9:f2:cc -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdDz4hG32eibzPEG7UgX3hvGUt6wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MTExODAwMDAwMFoX DTI0MTIyMzIzNTk1OVowejFJMEcGA1UEBRNAZmY0NDM1MTI5MzVhMTRmYzk2NDBk NjRiOTQ5NjIzZDhiNzA3ODQ3NTg2YzIxNDhhZDM4ZmU4NmY0YjYzNTNlMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFTxzZYlPsnX6Vwqd2VNbEINBOzr VBFxl2K7DxlMubvDMbbGKQFlSkfa/stTqnCy2lvnSwQ3qJ2u2wfwTxDj/76/t5M2 zonVeYekDEZpB4BUYDr2ChWJU6mz1aoQ6ryA7eVm1kghD6gKSp3h/ZjAJwvxx+bB z7UFeUDNqtyVC4y42t1m4Wodm1hOfwfRbYunr28KURWT2DrWFglA9b66BMqYTP9Q WHI3O/SWVZeyvmV3aocchiWvVNhNvkTfOdM7SEX5nEKuA0AFMXhyoMGkyFYanWcU L/AtDbdZ5cxeZ/OSJ8qzlooxZXkZKlbQQFEX1lgQ4mQFmYnsqeZwv7DiKQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJpOpELKoU3vCZmglPrI09km3jeTMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzBiODM5ZjAxLTI4M2ItNGMyMy1iOGE3LTM2OTdiOTU4M2VlMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABAMMA0GCSqGSIb3DQEBCwUAA4IBAQBN5V2hFIYt2WxflmIj pxsPsS4qZLG4EXrF2URLe28hnbEFpwYNdCM+v5PYxAJjOALpJqs/it84hx5hd5cA hpkAGwEFutJzmrKzlA47F6wYhNm08akenXAjVyBz576+TGoBRwOrmPTTiHIvtOgb P8TxvQXWdDVfD9E6h9fh2A0OIDjJY3d+q/AwL808PyRExhxGkYUs762Bd7ywy3Qs SjYNDVUlXtPm2zkmvZVYCE9G+LVDoZEYy9sWC3QQkfn6r4jgK9/g/C9wE4NlKCmj 74zH959MmEUsQ9sYUqVA7WRX+g2qYFEHfewaN1q5e/9H867oKHvQWk8ahT94qBpA ufLM -----END CERTIFICATE-----Generated at Sun Nov 24 18:22:21 2024 by rpki-client on console-ams.rpki-client.org