$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/7ec71d95-427c-491b-a7cc-55afd17c6f55.roa File: 7ec71d95-427c-491b-a7cc-55afd17c6f55.roa (raw, json) Hash identifier: HHQn7LInXzQVVXC4tRyP2Q34SxUuXrduHWDaZDMayJ8= Subject key identifier: 9C:AC:65:03:A4:CE:82:AC:8B:F0:7B:69:DA:99:AA:F5:2D:40:5F:84 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1A3142115434F61CF002A92A62777864946C8F36 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/7ec71d95-427c-491b-a7cc-55afd17c6f55.roa Signing time: Mon 15 Jul 2024 00:00:00 +0000 ROA not before: Mon 15 Jul 2024 00:00:00 +0000 ROA not after: Mon 19 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:108c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 15:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:31:42:11:54:34:f6:1c:f0:02:a9:2a:62:77:78:64:94:6c:8f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jul 15 00:00:00 2024 GMT Not After : Aug 19 23:59:59 2024 GMT Subject: serialNumber=152f590af27e26f25e1315c7d7caab22b38f9e8d474021681ac60f8bc8ee47be, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:68:f3:9a:77:3d:ed:6b:8c:f5:04:90:e9:c4: 66:fa:e9:a6:54:86:bd:1d:80:d5:0e:f8:c2:f2:57: 0b:11:dc:95:3e:38:84:22:8e:c5:ff:9d:64:ea:c2: fb:48:0b:fe:e3:7c:f9:f1:d1:5e:97:4f:ca:d1:5b: ca:d4:7d:28:9a:da:b5:d2:ed:a8:8a:ae:92:ea:8e: e1:60:da:8a:bc:5b:46:ec:e3:4d:a9:c0:fb:09:2b: 63:33:93:6e:8a:98:a1:20:0c:8d:9f:3b:ee:e9:42: a7:9b:14:93:bf:a8:ae:ad:a0:d0:8e:8f:1b:3d:05: e1:f0:83:8b:79:77:6b:88:72:d2:f6:37:21:61:7a: 39:b9:7a:d1:a6:83:94:3b:81:2d:c8:43:f1:d8:0d: bc:06:5e:2b:2f:b5:ee:23:e1:99:58:5a:28:f8:85: 77:e5:fa:b0:8f:6a:4d:06:a0:3e:ac:7e:4b:87:bf: 44:c2:55:92:9a:ca:15:40:f8:dc:b4:c0:bd:19:61: 7f:e8:61:8a:86:12:5d:e9:94:ad:49:e6:e8:da:9b: 75:ec:da:45:85:49:09:32:a8:a5:c3:3e:c5:30:e4: d9:ca:1d:ab:22:4d:9e:e8:78:9c:d5:4b:d0:62:00: 12:b7:18:23:75:70:ba:93:4b:ba:3a:dd:4b:15:e0: 80:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:AC:65:03:A4:CE:82:AC:8B:F0:7B:69:DA:99:AA:F5:2D:40:5F:84 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/7ec71d95-427c-491b-a7cc-55afd17c6f55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:108c::/48 Signature Algorithm: sha256WithRSAEncryption 21:72:11:5f:fc:db:c8:4a:cc:d7:cf:4a:e9:c8:e1:3d:7a:d0: a0:03:78:69:32:60:d5:4c:86:06:a9:66:6e:66:70:0f:95:43: 92:b8:b9:74:7d:1c:d1:1f:79:21:5f:55:26:fd:96:ea:c1:69: bf:a5:2c:79:81:60:99:74:b0:8e:76:29:41:d1:02:7c:4c:8a: 78:76:db:4e:49:57:1e:93:66:08:4f:df:5b:94:c2:e6:a0:0a: 79:1b:e6:c8:e1:5a:90:e0:d6:d7:ef:ad:c5:f9:b0:23:43:15: f4:9e:81:fa:0d:2c:71:64:62:50:64:dd:94:cf:f6:4c:c7:b6: 81:68:5c:28:55:bb:71:ba:99:6d:a2:73:fd:29:b8:fa:bd:19: 41:9d:6c:d3:f2:75:36:09:72:af:e0:a0:2b:88:06:0c:9c:14: e6:65:fa:b6:86:81:ce:cf:0b:18:db:91:bb:09:c3:e4:a3:bd: 06:c3:1a:03:3d:bf:85:d2:4d:21:2e:bc:6b:99:09:e4:9e:d4: a2:7f:57:12:b0:87:c1:2a:dd:c4:1d:53:20:04:ba:3b:db:d1: 10:29:eb:50:00:0d:bf:09:f5:c3:e3:3b:0b:56:04:3e:ad:72: b7:0e:ef:50:8b:3a:3d:9b:ca:35:da:e6:cd:fd:94:45:f9:05: 74:2f:34:c9 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGjFCEVQ09hzwAqkqYnd4ZJRsjzYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDcxNTAwMDAwMFoX DTI0MDgxOTIzNTk1OVowejFJMEcGA1UEBRNAMTUyZjU5MGFmMjdlMjZmMjVlMTMx NWM3ZDdjYWFiMjJiMzhmOWU4ZDQ3NDAyMTY4MWFjNjBmOGJjOGVlNDdiZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWjzmnc97WuM9QSQ6cRm+ummVIa9 HYDVDvjC8lcLEdyVPjiEIo7F/51k6sL7SAv+43z58dFel0/K0VvK1H0omtq10u2o iq6S6o7hYNqKvFtG7ONNqcD7CStjM5NuipihIAyNnzvu6UKnmxSTv6iuraDQjo8b PQXh8IOLeXdriHLS9jchYXo5uXrRpoOUO4EtyEPx2A28Bl4rL7XuI+GZWFoo+IV3 5fqwj2pNBqA+rH5Lh79EwlWSmsoVQPjctMC9GWF/6GGKhhJd6ZStSebo2pt17NpF hUkJMqilwz7FMOTZyh2rIk2e6Hic1UvQYgAStxgjdXC6k0u6Ot1LFeCAwwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJysZQOkzoKsi/B7adqZqvUtQF+EMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzdlYzcxZDk1LTQyN2MtNDkxYi1hN2NjLTU1YWZkMTdjNmY1NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABCMMA0GCSqGSIb3DQEBCwUAA4IBAQAhchFf/NvISszXz0rp yOE9etCgA3hpMmDVTIYGqWZuZnAPlUOSuLl0fRzRH3khX1Um/ZbqwWm/pSx5gWCZ dLCOdilB0QJ8TIp4dttOSVcek2YIT99blMLmoAp5G+bI4VqQ4NbX763F+bAjQxX0 noH6DSxxZGJQZN2Uz/ZMx7aBaFwoVbtxupltonP9Kbj6vRlBnWzT8nU2CXKv4KAr iAYMnBTmZfq2hoHOzwsY25G7CcPko70GwxoDPb+F0k0hLrxrmQnkntSif1cSsIfB Kt3EHVMgBLo729EQKetQAA2/CfXD4zsLVgQ+rXK3Du9Qizo9m8o12ubN/ZRF+QV0 LzTJ -----END CERTIFICATE-----Generated at Fri Jul 26 16:11:39 2024 by rpki-client on console-ams.rpki-client.org