$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0b839f01-283b-4c23-b8a7-3697b9583ee1.roa File: 0b839f01-283b-4c23-b8a7-3697b9583ee1.roa (raw, json) Hash identifier: fmQYb4kBl7oz+/YLkKdHFNrM9V/soIB+joXNUG9gP6Q= Subject key identifier: 72:B0:8E:4E:95:FD:EC:E3:F2:F4:30:70:C6:12:10:BB:E3:AC:B6:21 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2A367620713765AB96F844F646F1CBA01E92D5E0 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0b839f01-283b-4c23-b8a7-3697b9583ee1.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:100c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Apr 2024 00:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:36:76:20:71:37:65:ab:96:f8:44:f6:46:f1:cb:a0:1e:92:d5:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=e59ebcf7f18fdcc9f1605842a23250fd974c5388df812aec634d34430720bebc, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:37:db:18:b7:4d:0d:3e:16:e5:7c:4d:8b:7a: bf:61:8b:27:2f:50:20:3c:57:f8:0a:3a:db:c8:81: 30:e1:2a:1b:b3:4e:ec:59:2f:4f:71:76:0d:ef:ec: cc:33:a1:b2:ec:bd:7d:c1:9d:f3:0a:66:d9:d9:ea: 3a:d3:a6:a5:f2:b4:f0:e9:2f:52:e8:69:5c:00:5d: cf:f2:4c:42:d8:18:81:58:37:53:ee:82:40:da:1c: 67:14:40:df:ff:9e:47:fc:d7:eb:a7:97:f5:7c:e1: 3d:4a:0e:18:63:ce:d0:04:0c:94:26:ce:b2:e6:af: 0b:cc:a7:6e:20:2e:9f:15:af:9a:d2:72:b0:ce:31: 0c:cb:e4:2d:82:67:09:06:e4:ab:de:5c:db:56:de: c3:8a:05:f1:7f:81:68:9a:7d:d4:17:2f:ff:06:f7: 59:cd:73:01:62:66:f1:a0:0a:c1:88:fd:48:b3:ca: 5e:9c:26:1f:b2:87:51:c3:a5:bf:fa:f4:46:14:17: 0e:db:1a:41:31:ae:83:5e:9a:bf:53:f9:d7:bd:aa: 26:e4:5b:33:fb:70:3e:33:dc:b6:7f:04:de:44:dd: cb:52:b7:23:ef:25:69:8a:d2:56:4e:cf:0c:a2:b0: c1:75:49:07:cb:7b:d5:2a:43:5b:dc:77:bb:00:bd: 6c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:B0:8E:4E:95:FD:EC:E3:F2:F4:30:70:C6:12:10:BB:E3:AC:B6:21 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0b839f01-283b-4c23-b8a7-3697b9583ee1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:100c::/48 Signature Algorithm: sha256WithRSAEncryption 25:7e:c8:af:2a:26:e5:a7:fe:79:e6:89:e6:16:f8:fd:f1:7e: 7b:38:e2:33:13:08:2d:20:21:55:d3:a0:fd:76:25:4c:5e:8e: 44:e7:20:af:ca:fe:ce:14:3e:0e:c2:1a:6d:e0:28:92:ec:30: 9f:3c:b0:aa:fd:79:5b:ab:6b:ea:69:46:5b:fc:7a:2e:12:ae: 86:f2:57:38:61:a8:96:60:c0:75:50:14:cb:a0:39:20:e9:5b: 93:33:0d:86:51:f2:12:d0:5e:39:9a:a3:45:15:a3:6d:63:df: 25:81:08:6f:16:86:87:54:81:e1:b6:92:f4:ca:23:e7:80:ab: 05:ce:b6:64:62:7e:4d:b9:d8:56:11:b2:9b:e9:41:f6:ff:23: 9e:c6:dd:bc:76:4e:37:79:a4:ab:94:7d:3d:03:20:de:8a:e6: 83:84:3d:15:b4:31:3a:0b:a3:41:4b:c2:98:b7:b9:ec:aa:4b: 0a:65:42:c7:d8:6c:2e:b6:ed:98:79:2a:47:0e:c3:eb:ed:c7: 3f:11:c2:51:f1:d0:a0:5d:9a:ed:a5:97:ad:4f:82:0d:bf:29: 60:a4:fe:7c:19:17:e5:57:5c:60:51:be:8e:12:12:b0:e0:f8: b8:45:5d:dd:5d:ce:66:94:b0:b4:f0:1c:63:45:ce:b7:15:3e: ef:a9:da:9a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUKjZ2IHE3ZauW+ET2RvHLoB6S1eAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDQwNTAwMDAwMFoX DTI0MDUxMDIzNTk1OVowejFJMEcGA1UEBRNAZTU5ZWJjZjdmMThmZGNjOWYxNjA1 ODQyYTIzMjUwZmQ5NzRjNTM4OGRmODEyYWVjNjM0ZDM0NDMwNzIwYmViYzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkDfbGLdNDT4W5XxNi3q/YYsnL1Ag PFf4CjrbyIEw4Sobs07sWS9PcXYN7+zMM6Gy7L19wZ3zCmbZ2eo606al8rTw6S9S 6GlcAF3P8kxC2BiBWDdT7oJA2hxnFEDf/55H/Nfrp5f1fOE9Sg4YY87QBAyUJs6y 5q8LzKduIC6fFa+a0nKwzjEMy+QtgmcJBuSr3lzbVt7DigXxf4Fomn3UFy//BvdZ zXMBYmbxoArBiP1Is8penCYfsodRw6W/+vRGFBcO2xpBMa6DXpq/U/nXvaom5Fsz +3A+M9y2fwTeRN3LUrcj7yVpitJWTs8MorDBdUkHy3vVKkNb3He7AL1sRQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHKwjk6V/ezj8vQwcMYSELvjrLYhMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzBiODM5ZjAxLTI4M2ItNGMyMy1iOGE3LTM2OTdiOTU4M2VlMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABAMMA0GCSqGSIb3DQEBCwUAA4IBAQAlfsivKiblp/555onm Fvj98X57OOIzEwgtICFV06D9diVMXo5E5yCvyv7OFD4Owhpt4CiS7DCfPLCq/Xlb q2vqaUZb/HouEq6G8lc4YaiWYMB1UBTLoDkg6VuTMw2GUfIS0F45mqNFFaNtY98l gQhvFoaHVIHhtpL0yiPngKsFzrZkYn5NudhWEbKb6UH2/yOext28dk43eaSrlH09 AyDeiuaDhD0VtDE6C6NBS8KYt7nsqksKZULH2Gwutu2YeSpHDsPr7cc/EcJR8dCg XZrtpZetT4INvylgpP58GRflV1xgUb6OEhKw4Pi4RV3dXc5mlLC08BxjRc63FT7v qdqa -----END CERTIFICATE-----Generated at Sat Apr 20 01:09:30 2024 by rpki-client on console-ams.rpki-client.org