$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/22941216-14be-40e9-a7d3-c3720399ee20.roa File: 22941216-14be-40e9-a7d3-c3720399ee20.roa (raw, json) Hash identifier: AobDfx+Hrclh6tDqL2NfTrW0DNhQiDDcXJ8Culr8ino= Subject key identifier: 30:01:5C:67:B8:60:3C:79:8D:23:AD:5D:FB:8A:9D:2B:80:82:A5:05 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 7EE1308D9B47EC968C3727BC48B0F85E20FFD729 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/22941216-14be-40e9-a7d3-c3720399ee20.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:1088::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Apr 2024 00:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:e1:30:8d:9b:47:ec:96:8c:37:27:bc:48:b0:f8:5e:20:ff:d7:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=82553788139b33f0a0c057daa09f8cd8e563302feb6153d9af70906646dc08f5, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:95:72:7a:ba:76:e2:b2:a1:23:73:cd:6e:07: b2:e7:ec:3e:29:77:b6:a9:ce:42:f3:b2:aa:d0:b5: a9:2a:85:7b:9d:91:b6:ee:0c:e1:37:09:49:37:1e: eb:ed:b0:c4:12:9c:6a:ea:73:b3:ea:07:5f:1f:30: 37:15:fa:b0:61:d2:45:3e:76:62:90:1b:3a:05:0d: 32:27:e4:7f:81:82:e7:33:c9:b4:d8:92:c6:7c:75: 4e:17:01:10:e2:81:2c:f2:f8:39:06:a4:fb:07:bd: a6:ec:6d:b3:11:a4:41:95:46:de:52:ca:ac:cc:f3: 51:ae:f5:a3:de:56:da:b9:47:4c:b0:6e:36:29:93: 42:97:ff:a1:1a:87:2e:21:3e:05:1a:f6:38:6a:7f: 4e:6c:b3:5d:2e:e0:a9:5f:d4:cd:c9:8b:0d:4e:2e: d4:4b:5f:81:f9:8a:7b:2e:87:a0:75:08:45:53:0d: 64:02:2d:00:c8:05:bb:96:13:16:d4:64:82:db:21: 26:41:40:73:ea:10:bf:08:e0:10:e0:8c:e0:7e:32: 43:ed:ee:a1:ca:e6:d9:b7:b3:08:a8:18:fc:13:0d: e2:b9:50:20:7e:07:09:a5:a3:46:4f:10:fa:30:d2: 40:14:af:38:c9:34:46:11:b2:10:1e:72:dc:3d:40: 1b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:01:5C:67:B8:60:3C:79:8D:23:AD:5D:FB:8A:9D:2B:80:82:A5:05 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/22941216-14be-40e9-a7d3-c3720399ee20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:1088::/48 Signature Algorithm: sha256WithRSAEncryption 71:2e:a2:70:ae:4b:58:22:a8:83:c3:71:80:5a:9e:23:1d:fe: 82:62:04:90:3e:14:f7:26:fe:19:c8:3e:20:38:4f:7d:78:1a: be:28:2e:f0:89:fa:ad:db:83:97:f2:5d:93:e2:1c:61:4e:e3: ab:10:97:02:f7:fa:8a:2f:22:9e:de:d6:56:7d:22:b9:0e:1f: 78:70:c9:fa:cf:70:08:a5:b3:12:9b:36:0c:4a:66:4f:00:6f: 23:32:f1:dc:65:c0:3b:e8:5b:4e:f5:fe:f7:b8:8c:4d:3b:b5: 40:d5:4a:6e:0a:06:9e:0c:0a:3f:06:07:e8:a3:0b:d9:50:1d: e4:4e:23:8e:46:a1:38:1f:9b:28:8a:31:2c:d7:6c:4a:01:ff: 74:b2:5e:1f:78:ed:6d:25:6e:79:73:f0:52:eb:a1:cb:d2:62: 47:44:04:eb:b3:f3:80:84:db:f8:7b:ff:5e:45:b3:2e:c6:b8: 01:9c:4d:a0:7c:e0:f7:18:6e:03:c7:48:7f:26:8c:c8:5d:37: 28:94:62:06:97:f5:e6:62:89:18:bc:d2:89:36:d8:6d:a7:5a: 25:29:ca:0b:17:d4:bd:6e:b1:0d:d7:d1:46:1a:7b:c7:42:74: 5d:f5:89:7a:6d:71:02:37:dc:63:6d:78:15:84:4d:30:8a:19: df:d5:df:23 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfuEwjZtH7JaMNye8SLD4XiD/1ykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDQwNTAwMDAwMFoX DTI0MDUxMDIzNTk1OVowejFJMEcGA1UEBRNAODI1NTM3ODgxMzliMzNmMGEwYzA1 N2RhYTA5ZjhjZDhlNTYzMzAyZmViNjE1M2Q5YWY3MDkwNjY0NmRjMDhmNTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6pVyerp24rKhI3PNbgey5+w+KXe2 qc5C87Kq0LWpKoV7nZG27gzhNwlJNx7r7bDEEpxq6nOz6gdfHzA3FfqwYdJFPnZi kBs6BQ0yJ+R/gYLnM8m02JLGfHVOFwEQ4oEs8vg5BqT7B72m7G2zEaRBlUbeUsqs zPNRrvWj3lbauUdMsG42KZNCl/+hGocuIT4FGvY4an9ObLNdLuCpX9TNyYsNTi7U S1+B+Yp7LoegdQhFUw1kAi0AyAW7lhMW1GSC2yEmQUBz6hC/COAQ4IzgfjJD7e6h yubZt7MIqBj8Ew3iuVAgfgcJpaNGTxD6MNJAFK84yTRGEbIQHnLcPUAbZQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDABXGe4YDx5jSOtXfuKnSuAgqUFMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzIyOTQxMjE2LTE0YmUtNDBlOS1hN2QzLWMzNzIwMzk5ZWUyMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABCIMA0GCSqGSIb3DQEBCwUAA4IBAQBxLqJwrktYIqiDw3GA Wp4jHf6CYgSQPhT3Jv4ZyD4gOE99eBq+KC7wifqt24OX8l2T4hxhTuOrEJcC9/qK LyKe3tZWfSK5Dh94cMn6z3AIpbMSmzYMSmZPAG8jMvHcZcA76FtO9f73uIxNO7VA 1UpuCgaeDAo/BgfoowvZUB3kTiOORqE4H5soijEs12xKAf90sl4feO1tJW55c/BS 66HL0mJHRATrs/OAhNv4e/9eRbMuxrgBnE2gfOD3GG4Dx0h/JozIXTcolGIGl/Xm YokYvNKJNthtp1olKcoLF9S9brEN19FGGnvHQnRd9Yl6bXECN9xjbXgVhE0wihnf 1d8j -----END CERTIFICATE-----Generated at Sat Apr 20 01:02:31 2024 by rpki-client on console-fra.rpki-client.org