$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa File: 0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa (raw, json) Hash identifier: /jvau+ci4scxbvSeaFtOsBWtlyESsCQqs7Na1EVmJn0= Subject key identifier: 01:0D:ED:E1:BF:BB:BA:2E:A6:83:CC:33:E5:96:09:0B:C4:2E:CF:B9 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 4CDFACAE88EC1286B491069295BEA2EABAA9BDD0 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:df:ac:ae:88:ec:12:86:b4:91:06:92:95:be:a2:ea:ba:a9:bd:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=dff284b62edea880a4f09844464feb2d5be7cb33b732a7c10bb99fd69fbff3e6, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:36:c7:d1:4b:97:1a:02:a4:ab:20:bd:49:39: a6:d7:3a:c1:a1:ad:74:20:f0:a2:8d:c5:34:75:18: 56:36:d8:3c:62:df:d4:6f:56:82:cb:83:0b:de:e9: 31:6f:4d:26:0f:b3:c2:ec:3d:e6:41:c4:88:fb:60: a8:02:0c:32:b5:6a:62:22:48:3c:fc:f7:87:c1:3e: e9:a7:7f:75:7e:a0:f5:c0:b0:69:d2:c2:52:1d:ab: d5:ac:7e:d8:83:02:bf:2e:6d:6e:c9:3c:c1:fb:1f: 65:b1:73:b7:e8:99:a5:11:9a:9f:d3:a9:35:2c:8b: f9:b8:b1:88:44:ee:b2:57:90:8c:f2:b3:54:85:4d: d8:7f:72:67:4a:d1:42:8e:96:92:a6:3d:48:79:ac: e5:37:da:be:9d:d6:60:ed:62:93:12:86:39:97:11: 59:11:74:85:7d:33:ee:ef:67:97:64:bc:40:e9:20: 20:8c:60:b6:72:96:97:3d:0a:a8:ed:5c:e9:5c:a3: 6d:2a:bc:7f:8f:9b:cb:d8:2b:e0:be:ea:e0:24:5c: 10:26:83:9c:52:0a:8d:cb:21:ac:ae:2a:21:5a:df: 9d:e2:8b:61:cf:22:f9:2f:b2:83:e2:eb:9a:4d:e4: a6:01:2b:9e:a5:6f:7d:a1:ba:d5:01:d3:ba:f5:39: 29:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:0D:ED:E1:BF:BB:BA:2E:A6:83:CC:33:E5:96:09:0B:C4:2E:CF:B9 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:1080::/48 Signature Algorithm: sha256WithRSAEncryption 40:21:10:b5:00:a7:e5:b1:38:e8:78:c8:cc:0e:b0:70:31:99: 7c:81:cf:02:30:67:34:8c:cd:c9:63:67:52:67:2a:4d:c6:3a: ef:a6:58:52:af:fe:c6:f3:1f:ec:3f:17:d7:c5:49:cd:c5:13: b4:e8:bd:ca:d5:e3:66:68:0b:83:12:48:57:82:03:80:2d:18: 13:90:8c:40:a8:ed:90:de:50:c1:77:8a:99:c7:ca:cf:ce:0d: 94:2c:e1:b7:67:44:f1:58:e6:d4:a8:75:89:18:bc:0f:78:53: 0b:67:ab:5e:9f:fb:36:c2:c7:9d:f3:ef:6e:53:bc:73:0f:76: a0:ce:17:61:a3:23:b3:15:b5:22:db:60:94:f3:84:24:e1:94: 13:57:9d:79:f1:e1:b4:86:b7:63:8f:25:47:0a:b0:38:cf:11: 70:13:a5:af:53:a6:51:2a:25:1f:b4:32:40:d5:52:3c:f9:8f: 56:1b:eb:34:a5:01:0c:5e:02:bc:ec:4f:47:7e:93:6b:26:e8: 65:b6:c8:3a:08:92:19:dd:da:c0:b1:b7:23:a6:0a:32:a1:65: b8:d1:10:65:ec:68:f9:49:1c:bc:35:f8:dd:bb:88:0a:0c:70: cd:9c:29:98:22:29:09:10:4f:c7:96:09:0a:04:41:72:a4:b3: 94:2b:38:f1 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUTN+srojsEoa0kQaSlb6i6rqpvdAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MTExODAwMDAwMFoX DTI0MTIyMzIzNTk1OVowejFJMEcGA1UEBRNAZGZmMjg0YjYyZWRlYTg4MGE0ZjA5 ODQ0NDY0ZmViMmQ1YmU3Y2IzM2I3MzJhN2MxMGJiOTlmZDY5ZmJmZjNlNjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DbH0UuXGgKkqyC9STmm1zrBoa10 IPCijcU0dRhWNtg8Yt/Ub1aCy4ML3ukxb00mD7PC7D3mQcSI+2CoAgwytWpiIkg8 /PeHwT7pp391fqD1wLBp0sJSHavVrH7YgwK/Lm1uyTzB+x9lsXO36JmlEZqf06k1 LIv5uLGIRO6yV5CM8rNUhU3Yf3JnStFCjpaSpj1IeazlN9q+ndZg7WKTEoY5lxFZ EXSFfTPu72eXZLxA6SAgjGC2cpaXPQqo7VzpXKNtKrx/j5vL2CvgvurgJFwQJoOc UgqNyyGsriohWt+d4othzyL5L7KD4uuaTeSmASuepW99obrVAdO69TkpRwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAEN7eG/u7oupoPMM+WWCQvELs+5MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzBkZmQ2ZTIwLTI4MjMtNGY2OC1hZTQ4LTcyNWZlNGVlMmY4MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABCAMA0GCSqGSIb3DQEBCwUAA4IBAQBAIRC1AKflsTjoeMjM DrBwMZl8gc8CMGc0jM3JY2dSZypNxjrvplhSr/7G8x/sPxfXxUnNxRO06L3K1eNm aAuDEkhXggOALRgTkIxAqO2Q3lDBd4qZx8rPzg2ULOG3Z0TxWObUqHWJGLwPeFML Z6ten/s2wsed8+9uU7xzD3agzhdhoyOzFbUi22CU84Qk4ZQTV5158eG0hrdjjyVH CrA4zxFwE6WvU6ZRKiUftDJA1VI8+Y9WG+s0pQEMXgK87E9HfpNrJuhltsg6CJIZ 3drAsbcjpgoyoWW40RBl7Gj5SRy8Nfjdu4gKDHDNnCmYIikJEE/HlgkKBEFypLOU Kzjx -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:37 2024 by rpki-client on console-ams.rpki-client.org