$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/7ec71d95-427c-491b-a7cc-55afd17c6f55.roa File: 7ec71d95-427c-491b-a7cc-55afd17c6f55.roa (raw, json) Hash identifier: +YAN69j+oDjn7W0cdPKGdFP79MOXAMCLNCU7y9+Yqio= Subject key identifier: 0C:27:54:50:3E:61:64:67:15:51:3D:8C:A3:4B:20:75:BF:61:46:80 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 238BD9CE45BC544AB246BA23087D03B03172B3F4 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/7ec71d95-427c-491b-a7cc-55afd17c6f55.roa Signing time: Tue 03 Sep 2024 00:00:00 +0000 ROA not before: Tue 03 Sep 2024 00:00:00 +0000 ROA not after: Tue 08 Oct 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:108c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Sep 2024 00:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:8b:d9:ce:45:bc:54:4a:b2:46:ba:23:08:7d:03:b0:31:72:b3:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Sep 3 00:00:00 2024 GMT Not After : Oct 8 23:59:59 2024 GMT Subject: serialNumber=5450a4a0896fb00a0511a5887d3a1edb30fb892107e94ecca538b308fdd53920, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:50:8c:09:2c:ef:b8:f8:78:60:d3:6c:63:fd: 1b:63:26:c5:78:4a:cb:4b:46:a4:ff:79:e5:19:1e: d7:9b:93:7f:07:c5:1a:47:8e:3e:1d:65:79:ec:07: 13:3d:e5:0b:ec:bb:2e:1f:3b:1c:68:ea:b4:d1:4d: f8:9a:da:c6:b5:64:9e:25:f1:b2:77:53:44:5a:7a: 8f:86:56:ad:64:6b:81:63:ae:83:c8:11:c6:c5:ae: 42:83:d9:e7:44:96:d6:f4:8f:50:72:23:c7:65:7f: f0:bb:ce:71:dd:05:62:6b:1a:f9:f5:e8:ae:0b:00: 24:01:3b:f1:6c:44:45:04:c2:f0:26:a8:de:03:b9: af:02:fa:1b:c7:49:e8:c9:c9:1a:a7:32:ac:7f:b4: 1b:91:08:3f:b8:b8:61:c5:65:54:36:63:fc:0d:6a: da:bf:59:a1:ad:59:c9:fb:d2:a4:2c:ef:66:4f:5c: 1a:1c:08:9d:15:f0:d4:96:f6:cc:92:bf:eb:f2:18: 8c:b8:6e:a2:95:55:9c:8f:83:86:48:9d:ac:21:1a: f8:82:33:69:fa:2d:9f:4b:dc:02:9b:98:3b:90:0d: d0:81:54:d8:96:cf:1f:57:59:5e:f4:fe:50:c5:22: 85:f8:e3:07:f0:64:c1:e1:f6:7e:80:bf:f8:ee:e4: 8d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:27:54:50:3E:61:64:67:15:51:3D:8C:A3:4B:20:75:BF:61:46:80 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/7ec71d95-427c-491b-a7cc-55afd17c6f55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:108c::/48 Signature Algorithm: sha256WithRSAEncryption 63:5a:ab:5b:6f:f6:5f:ed:bd:2c:b1:ee:51:f7:45:41:58:ce: b7:7d:6a:ef:c7:fa:c8:9f:76:7b:08:9a:5a:10:df:10:1a:e4: bb:6d:5f:b8:09:27:cb:b2:3f:e4:c5:bf:b6:aa:29:e0:ad:7f: c6:48:aa:6f:67:fb:13:c7:02:de:bf:41:cf:02:2f:f8:4e:70: cd:87:23:d9:8a:7c:72:d6:7f:4d:f5:33:6e:b8:bf:eb:82:a3: 1c:cb:9a:b4:59:32:54:70:54:56:6b:c9:c3:3d:0d:4c:7c:87: c3:58:9e:d8:b2:f5:df:79:a9:c0:8b:20:95:a4:2e:79:91:eb: 2e:a1:ef:74:c7:ff:9f:de:ba:5d:9d:8d:ba:c4:9c:b7:7a:cb: 1c:0b:65:f2:df:07:92:84:ec:41:43:11:24:41:2d:ce:7f:28: 28:d8:81:f4:32:70:96:99:19:3c:97:9a:e1:35:07:d4:48:d8: d7:18:60:12:29:5d:ac:54:dc:3e:c0:90:58:1e:35:52:9d:88: 33:6a:f7:c8:77:55:09:e4:b9:6d:fd:ae:42:15:51:e2:aa:f3: 77:3a:6b:57:67:9e:5e:76:c1:40:31:f1:b1:0e:17:66:df:08: 5c:df:dd:ee:08:7d:72:88:2c:f0:d7:0d:b4:19:c4:29:09:e0: 36:f5:b5:54 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUI4vZzkW8VEqyRrojCH0DsDFys/QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDkwMzAwMDAwMFoX DTI0MTAwODIzNTk1OVowejFJMEcGA1UEBRNANTQ1MGE0YTA4OTZmYjAwYTA1MTFh NTg4N2QzYTFlZGIzMGZiODkyMTA3ZTk0ZWNjYTUzOGIzMDhmZGQ1MzkyMDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6FCMCSzvuPh4YNNsY/0bYybFeErL S0ak/3nlGR7Xm5N/B8UaR44+HWV57AcTPeUL7LsuHzscaOq00U34mtrGtWSeJfGy d1NEWnqPhlatZGuBY66DyBHGxa5Cg9nnRJbW9I9QciPHZX/wu85x3QViaxr59eiu CwAkATvxbERFBMLwJqjeA7mvAvobx0noyckapzKsf7QbkQg/uLhhxWVUNmP8DWra v1mhrVnJ+9KkLO9mT1waHAidFfDUlvbMkr/r8hiMuG6ilVWcj4OGSJ2sIRr4gjNp +i2fS9wCm5g7kA3QgVTYls8fV1le9P5QxSKF+OMH8GTB4fZ+gL/47uSNswIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAwnVFA+YWRnFVE9jKNLIHW/YUaAMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzdlYzcxZDk1LTQyN2MtNDkxYi1hN2NjLTU1YWZkMTdjNmY1NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABCMMA0GCSqGSIb3DQEBCwUAA4IBAQBjWqtbb/Zf7b0sse5R 90VBWM63fWrvx/rIn3Z7CJpaEN8QGuS7bV+4CSfLsj/kxb+2qingrX/GSKpvZ/sT xwLev0HPAi/4TnDNhyPZinxy1n9N9TNuuL/rgqMcy5q0WTJUcFRWa8nDPQ1MfIfD WJ7YsvXfeanAiyCVpC55kesuoe90x/+f3rpdnY26xJy3esscC2Xy3weShOxBQxEk QS3Ofygo2IH0MnCWmRk8l5rhNQfUSNjXGGASKV2sVNw+wJBYHjVSnYgzavfId1UJ 5Llt/a5CFVHiqvN3OmtXZ55edsFAMfGxDhdm3whc393uCH1yiCzw1w20GcQpCeA2 9bVU -----END CERTIFICATE-----Generated at Sat Sep 7 01:39:47 2024 by rpki-client on console-ams.rpki-client.org