$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa File: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (raw, json) Hash identifier: inIKcGduFifBa+Hgdl8Isxqskrk9n+uQtP9bAgFSxhk= Subject key identifier: F7:39:66:8A:D1:3E:BB:70:2E:A5:C2:35:3F:AE:1F:5C:CB:D9:14:B6 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5F4110C0BA2EF165F26D4A88AE6AB47985336E9A Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 7224 IP address blocks: 43.224.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:41:10:c0:ba:2e:f1:65:f2:6d:4a:88:ae:6a:b4:79:85:33:6e:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=063aed1891b2b2bb566da426f47a39e0aae9ddb526ce98febb3c92db98bfe5b5, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:5d:f8:a9:3a:a7:d5:46:15:7f:68:ee:10: e6:d3:c6:0f:4f:b5:4c:38:53:f8:6c:82:b6:d1:de: 3e:7a:0d:d5:fd:05:ce:4f:a0:63:c1:4f:af:6d:4e: 09:88:81:38:e3:ae:23:7f:12:67:04:e8:6e:15:2d: 21:18:2b:94:04:24:6b:7b:5d:af:5f:61:b1:7f:60: 4d:22:be:b4:7c:eb:87:40:40:06:7d:aa:08:23:4f: 40:ca:ae:44:77:1b:31:34:11:9b:c0:99:25:08:33: 20:74:df:33:a7:2d:e9:ff:5f:dd:f9:db:0b:26:fd: 02:d4:c9:74:01:9f:56:dd:f5:70:17:bc:a1:a8:94: 3f:7c:26:98:b3:0a:93:23:74:a2:9e:52:d3:cf:93: 03:83:1d:08:81:92:3f:5b:fc:fb:74:69:9e:54:81: 16:42:0c:ba:08:f2:44:4f:0e:77:a0:f3:b8:94:ef: 9a:50:f8:a8:51:da:38:65:ff:3e:5f:4a:f0:f1:7b: 3e:b8:12:ed:39:1e:48:72:9a:22:d2:1f:3c:d2:87: 82:67:f5:3c:48:af:e7:b9:d9:a1:0c:5c:60:53:57: 20:1d:e6:e1:89:19:65:84:bb:1f:de:e1:7f:b1:cb: c4:13:55:e0:d0:24:bb:48:e7:1f:85:0a:d9:0b:65: 16:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:39:66:8A:D1:3E:BB:70:2E:A5:C2:35:3F:AE:1F:5C:CB:D9:14:B6 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.76.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:c8:a8:83:2b:0b:1f:b5:5f:5b:1b:99:84:e0:40:c9:4c:b6: e2:7f:da:32:8c:a4:82:0c:39:e5:28:d6:3d:64:26:ef:c6:05: 08:44:32:c7:93:e1:f3:62:a5:50:bf:dc:6e:04:c1:02:51:65: ce:8c:2c:45:16:85:54:c7:5d:aa:28:7a:d8:39:6d:d8:ed:b3: 43:e8:48:13:98:90:27:55:1d:a5:4f:d6:00:19:29:26:1c:ec: 5c:73:5f:07:23:c8:e0:c6:dc:ea:1e:f8:c2:c2:d0:64:14:d6: 68:a1:83:22:57:18:bb:35:62:72:fd:fe:81:d8:cf:e4:1e:04: 9f:19:e9:a7:7f:64:40:a9:18:15:18:8c:25:02:4a:47:27:a0: 7c:62:c4:fa:76:00:fb:e3:e2:a6:ec:38:4a:00:c9:3f:fb:df: 86:99:d9:a8:29:b6:08:8b:64:02:0f:60:92:c7:66:17:fb:19: ba:67:f9:a6:e9:31:85:4f:89:33:5b:61:1d:06:8a:5b:26:5d: 8c:bc:04:81:68:74:78:67:5a:ea:02:a9:75:e0:97:78:ef:c4: 6d:37:a1:cf:8b:12:63:de:fd:ea:75:63:db:33:ea:81:16:92: cc:f7:8b:af:82:bf:10:a3:cd:5c:41:18:e3:a7:39:da:12:40: e2:8f:67:33 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUX0EQwLou8WXybUqIrmq0eYUzbpowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDQxNzAwMDAwMFoX DTI0MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMDYzYWVkMTg5MWIyYjJiYjU2NmRh NDI2ZjQ3YTM5ZTBhYWU5ZGRiNTI2Y2U5OGZlYmIzYzkyZGI5OGJmZTViNTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCtd+Kk6p9VGFX9o7hDm08YPT7VM OFP4bIK20d4+eg3V/QXOT6BjwU+vbU4JiIE4464jfxJnBOhuFS0hGCuUBCRre12v X2Gxf2BNIr60fOuHQEAGfaoII09Ayq5EdxsxNBGbwJklCDMgdN8zpy3p/1/d+dsL Jv0C1Ml0AZ9W3fVwF7yhqJQ/fCaYswqTI3SinlLTz5MDgx0IgZI/W/z7dGmeVIEW Qgy6CPJETw53oPO4lO+aUPioUdo4Zf8+X0rw8Xs+uBLtOR5Icpoi0h880oeCZ/U8 SK/nudmhDFxgU1cgHebhiRllhLsf3uF/scvEE1Xg0CS7SOcfhQrZC2UWNQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPc5ZorRPrtwLqXCNT+uH1zL2RS2MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzQ5MTE5NzM0LTlkYmMtNGJkNC05OGJlLTU3ZTRjZTA3ODkyOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+BMMA0GCSqGSIb3DQEBCwUAA4IBAQAcyKiDKwsftV9bG5mE4EDJ TLbif9oyjKSCDDnlKNY9ZCbvxgUIRDLHk+HzYqVQv9xuBMECUWXOjCxFFoVUx12q KHrYOW3Y7bND6EgTmJAnVR2lT9YAGSkmHOxcc18HI8jgxtzqHvjCwtBkFNZooYMi Vxi7NWJy/f6B2M/kHgSfGemnf2RAqRgVGIwlAkpHJ6B8YsT6dgD74+Km7DhKAMk/ +9+GmdmoKbYIi2QCD2CSx2YX+xm6Z/mm6TGFT4kzW2EdBopbJl2MvASBaHR4Z1rq Aql14Jd478RtN6HPixJj3v3qdWPbM+qBFpLM94uvgr8Qo81cQRjjpznaEkDij2cz -----END CERTIFICATE-----Generated at Sat May 4 01:52:12 2024 by rpki-client on console-ams.rpki-client.org