$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa File: 0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa (raw, json) Hash identifier: yMpbK9wbKdVdtIBEB0cNKE7RWHhofLf5wkmszhPAg9s= Subject key identifier: 27:0B:76:51:08:FA:98:CB:81:E8:87:D8:42:81:FB:22:4F:90:EC:29 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5437C115E63650909F3E93B44AC9F645B39C32B5 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:37:c1:15:e6:36:50:90:9f:3e:93:b4:4a:c9:f6:45:b3:9c:32:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=a8150568dc4bd0cb6f6e4241f81aa23a5851dff89fd42adbd32a5741eef3ec5e, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3c:cf:77:a9:7f:ea:a5:08:b3:f6:4f:d8:5c: 1c:9d:a3:7d:ba:f8:35:ce:55:62:c0:32:00:17:8c: 8d:12:15:55:4f:a1:d2:70:2e:b2:08:42:ba:1f:fe: 96:67:d0:65:ae:22:ff:fc:eb:63:04:34:ae:1d:51: 6d:e2:1d:07:54:69:6c:6d:21:bd:e1:40:c5:da:84: cf:0c:98:30:9c:f6:af:38:d4:80:30:eb:d9:35:a4: c0:05:55:df:07:b6:d7:69:86:20:87:dd:83:dd:6c: 1b:36:d1:3c:a7:75:12:09:d3:ed:aa:c1:74:bb:fa: 25:f4:87:dc:c6:da:c3:a5:a9:f8:1d:34:04:d9:9e: ff:c6:c7:71:03:4e:5d:00:50:f0:54:ef:34:e7:a9: a8:bb:b2:b8:3b:f8:da:fe:7c:ab:f0:24:dd:13:ee: c3:82:95:5b:fc:89:05:8e:7e:33:6e:9b:a9:bf:a4: cc:4a:06:09:a4:8f:bf:fa:a4:19:b4:48:e3:82:74: ab:22:89:5a:9c:64:a7:f4:2b:b7:75:95:d7:54:f9: 0c:c6:e5:76:c5:0e:53:27:b0:d3:87:33:05:30:71: b1:72:72:ee:6c:c4:21:06:fe:e2:1d:59:a3:0e:e8: d0:cf:21:01:a8:7b:1e:55:b1:30:ae:2a:d3:65:1a: 47:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:0B:76:51:08:FA:98:CB:81:E8:87:D8:42:81:FB:22:4F:90:EC:29 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:1080::/48 Signature Algorithm: sha256WithRSAEncryption 41:23:5b:a9:a4:70:9f:81:a9:92:89:c2:81:2f:68:69:ef:13: 07:de:30:74:28:31:f3:ee:68:33:2d:31:a4:f0:48:c0:22:81: 7d:c4:7d:f2:0f:6a:9a:26:9d:eb:ba:1d:ac:96:4b:1c:1f:0b: 39:8b:b3:92:51:1c:06:3c:52:e6:dc:a6:95:c9:5b:24:35:7d: e0:d6:c3:72:ca:80:57:a1:73:6c:68:fa:9a:8f:90:83:23:80: 45:5d:99:ab:17:4e:44:2e:cc:0e:1c:0d:4f:b9:f4:64:92:33: 99:ec:1f:f7:37:62:41:04:a7:a8:6c:eb:77:e4:7a:7e:d6:5c: 16:64:af:29:c1:a1:4b:89:66:38:ab:c1:6f:4c:43:a3:01:be: 8b:78:d2:81:4f:35:39:b6:be:34:ed:65:d0:7e:23:f0:0e:c5: 8d:23:49:32:5d:15:ab:01:80:18:a8:3f:50:db:74:1d:40:00: a4:a9:07:4c:2b:3c:fc:fd:c0:c9:c0:8c:8b:12:b4:11:d1:ba: 3f:b0:b2:d3:01:9b:0b:13:aa:84:33:5d:26:91:fe:4d:fd:bf: 85:17:0a:b7:d6:9d:a3:c6:73:cd:ac:62:c3:b4:70:59:16:f1: a5:6c:9b:72:34:40:4d:47:2d:1e:4d:aa:f3:ac:ba:33:b3:da: a6:c9:9e:78 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUVDfBFeY2UJCfPpO0Ssn2RbOcMrUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDQwNTAwMDAwMFoX DTI0MDUxMDIzNTk1OVowejFJMEcGA1UEBRNAYTgxNTA1NjhkYzRiZDBjYjZmNmU0 MjQxZjgxYWEyM2E1ODUxZGZmODlmZDQyYWRiZDMyYTU3NDFlZWYzZWM1ZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjzPd6l/6qUIs/ZP2FwcnaN9uvg1 zlViwDIAF4yNEhVVT6HScC6yCEK6H/6WZ9BlriL//OtjBDSuHVFt4h0HVGlsbSG9 4UDF2oTPDJgwnPavONSAMOvZNaTABVXfB7bXaYYgh92D3WwbNtE8p3USCdPtqsF0 u/ol9IfcxtrDpan4HTQE2Z7/xsdxA05dAFDwVO8056mou7K4O/ja/nyr8CTdE+7D gpVb/IkFjn4zbpupv6TMSgYJpI+/+qQZtEjjgnSrIolanGSn9Cu3dZXXVPkMxuV2 xQ5TJ7DThzMFMHGxcnLubMQhBv7iHVmjDujQzyEBqHseVbEwrirTZRpHwwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCcLdlEI+pjLgeiH2EKB+yJPkOwpMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzBkZmQ2ZTIwLTI4MjMtNGY2OC1hZTQ4LTcyNWZlNGVlMmY4MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABCAMA0GCSqGSIb3DQEBCwUAA4IBAQBBI1uppHCfgamSicKB L2hp7xMH3jB0KDHz7mgzLTGk8EjAIoF9xH3yD2qaJp3ruh2slkscHws5i7OSURwG PFLm3KaVyVskNX3g1sNyyoBXoXNsaPqaj5CDI4BFXZmrF05ELswOHA1PufRkkjOZ 7B/3N2JBBKeobOt35Hp+1lwWZK8pwaFLiWY4q8FvTEOjAb6LeNKBTzU5tr407WXQ fiPwDsWNI0kyXRWrAYAYqD9Q23QdQACkqQdMKzz8/cDJwIyLErQR0bo/sLLTAZsL E6qEM10mkf5N/b+FFwq31p2jxnPNrGLDtHBZFvGlbJtyNEBNRy0eTarzrLozs9qm yZ54 -----END CERTIFICATE-----Generated at Fri Apr 19 00:32:18 2024 by rpki-client on console-fra.rpki-client.org