$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/22941216-14be-40e9-a7d3-c3720399ee20.roa File: 22941216-14be-40e9-a7d3-c3720399ee20.roa (raw, json) Hash identifier: soLBXUKmAdkfEf9t7Gi5k81KaZWG+3e7sxAhMmUyORM= Subject key identifier: A6:48:72:ED:AA:48:2D:16:4F:1F:DB:AA:0D:88:A4:F9:3E:CE:CA:F9 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 4D8AAA6181288EDBA49A0F1FB14708F1FE7D003D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/22941216-14be-40e9-a7d3-c3720399ee20.roa Signing time: Sat 16 Sep 2023 00:00:00 +0000 ROA not before: Sat 16 Sep 2023 00:00:00 +0000 ROA not after: Sat 21 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:1088::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Sep 2023 12:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:8a:aa:61:81:28:8e:db:a4:9a:0f:1f:b1:47:08:f1:fe:7d:00:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Sep 16 00:00:00 2023 GMT Not After : Oct 21 23:59:59 2023 GMT Subject: serialNumber=d2c7b17c321569b3c57c3e91df205b87c85e467a765054b0dc5958235d8f4eb9, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:45:dd:dc:77:91:c3:44:52:ba:ef:c1:66:7f: 5e:3c:50:8e:5c:0e:98:19:c5:cb:16:2d:b1:80:49: 80:5c:69:56:b4:35:28:fc:fc:28:a9:11:b1:bd:ee: 37:26:13:9f:86:b1:db:b4:9c:3d:16:d8:b7:6b:c8: 6a:67:1c:c1:f2:41:18:e6:70:ed:a7:29:42:16:c3: d6:c3:36:b4:b9:e5:0c:31:d1:eb:ca:7d:34:af:81: 41:e3:b7:47:3b:dd:ff:bf:4a:03:97:87:94:aa:85: 59:9f:48:44:94:3d:bc:e1:26:f7:6c:35:bb:61:af: 99:ee:59:43:eb:39:91:f8:a0:b7:4a:08:ee:83:e6: 35:92:ea:60:5e:ad:b4:23:0c:7b:93:a1:48:81:9a: 12:c0:73:b3:a5:a6:75:40:1e:6b:b6:6b:b4:53:71: 90:1b:3f:5e:be:57:8a:74:73:4a:e0:7b:8f:47:df: 62:6a:5c:1e:b5:c0:f9:5a:f0:d3:a3:d8:a0:99:27: ae:d1:d9:5c:fe:f2:ea:aa:90:19:74:76:c8:a2:97: 39:f5:e9:9a:81:37:b8:8d:95:d3:28:b8:34:94:73: 6e:0f:57:64:99:a2:a9:b2:9e:85:8f:cc:7d:0b:2f: d3:14:47:94:5e:81:4a:b7:cb:c2:0b:47:3d:e9:fc: 02:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:48:72:ED:AA:48:2D:16:4F:1F:DB:AA:0D:88:A4:F9:3E:CE:CA:F9 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/22941216-14be-40e9-a7d3-c3720399ee20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:1088::/48 Signature Algorithm: sha256WithRSAEncryption 28:3d:c1:20:1d:84:19:dc:63:42:35:c6:66:f5:fb:60:ad:32: 8b:b3:be:d3:c9:a7:45:78:ff:8e:69:a6:c1:41:97:83:8c:97: a5:c7:f2:ef:0f:c7:24:49:ac:14:e4:cb:e7:bf:5d:71:bb:0e: 23:91:41:79:dd:22:51:c0:4b:6f:43:d9:7b:0e:63:57:3a:7b: 0a:5b:c5:a2:f7:f5:97:e6:59:28:72:3b:11:13:43:af:7d:04: 17:85:06:cc:25:91:ad:0e:14:6e:c2:31:36:ff:09:99:62:1d: da:2b:e7:9b:6c:be:b1:f0:34:d9:12:c1:e9:c5:ed:e7:09:04: 54:a9:d0:19:a1:02:fb:02:71:7f:18:4e:41:1d:e6:54:13:5d: ec:fd:cd:a1:06:e2:63:35:2b:1c:1e:f6:34:a7:02:87:e8:84: 7e:37:2e:8a:de:32:4e:d7:96:5a:5e:ec:66:1f:cb:72:f3:4d: 3a:37:7a:2c:84:7f:f6:79:aa:df:3d:6e:c7:64:4b:96:89:92: e7:89:4b:9e:f5:cd:8c:1b:60:74:28:a1:5b:e1:6b:78:6f:57: 98:7f:25:d5:9b:93:ae:f7:1b:3a:8c:13:3d:08:88:ef:96:7c: c8:21:21:fb:f9:71:07:90:ff:b1:cc:0e:53:d5:27:fc:c2:10: 6e:00:c3:eb -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUTYqqYYEojtukmg8fsUcI8f59AD0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTIzMDkxNjAwMDAwMFoX DTIzMTAyMTIzNTk1OVowejFJMEcGA1UEBRNAZDJjN2IxN2MzMjE1NjliM2M1N2Mz ZTkxZGYyMDViODdjODVlNDY3YTc2NTA1NGIwZGM1OTU4MjM1ZDhmNGViOTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEXd3HeRw0RSuu/BZn9ePFCOXA6Y GcXLFi2xgEmAXGlWtDUo/PwoqRGxve43JhOfhrHbtJw9Fti3a8hqZxzB8kEY5nDt pylCFsPWwza0ueUMMdHryn00r4FB47dHO93/v0oDl4eUqoVZn0hElD284Sb3bDW7 Ya+Z7llD6zmR+KC3Sgjug+Y1kupgXq20Iwx7k6FIgZoSwHOzpaZ1QB5rtmu0U3GQ Gz9evleKdHNK4HuPR99ialwetcD5WvDTo9igmSeu0dlc/vLqqpAZdHbIopc59ema gTe4jZXTKLg0lHNuD1dkmaKpsp6Fj8x9Cy/TFEeUXoFKt8vCC0c96fwCNQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKZIcu2qSC0WTx/bqg2IpPk+zsr5MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzIyOTQxMjE2LTE0YmUtNDBlOS1hN2QzLWMzNzIwMzk5ZWUyMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABCIMA0GCSqGSIb3DQEBCwUAA4IBAQAoPcEgHYQZ3GNCNcZm 9ftgrTKLs77TyadFeP+OaabBQZeDjJelx/LvD8ckSawU5Mvnv11xuw4jkUF53SJR wEtvQ9l7DmNXOnsKW8Wi9/WX5lkocjsRE0OvfQQXhQbMJZGtDhRuwjE2/wmZYh3a K+ebbL6x8DTZEsHpxe3nCQRUqdAZoQL7AnF/GE5BHeZUE13s/c2hBuJjNSscHvY0 pwKH6IR+Ny6K3jJO15ZaXuxmH8ty8006N3oshH/2earfPW7HZEuWiZLniUue9c2M G2B0KKFb4Wt4b1eYfyXVm5Ou9xs6jBM9CIjvlnzIISH7+XEHkP+xzA5T1Sf8whBu AMPr -----END CERTIFICATE-----Generated at Sat Sep 16 00:16:47 2023 by rpki-client on console-fra.rpki-client.org