$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa File: b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa (raw, json) Hash identifier: 3PM2/LefpjCmmH7GKLqwY92yLGPz/X9OTI04vi24D9s= Subject key identifier: D8:32:37:D2:D1:76:4B:FC:D5:74:DD:5F:CA:40:50:87:BB:A2:68:A5 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0E3F982F3593EA18DFA8477DE2A522FA4E28F5FF Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa Signing time: Tue 03 Sep 2024 00:00:00 +0000 ROA not before: Tue 03 Sep 2024 00:00:00 +0000 ROA not after: Tue 08 Oct 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:10fc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Sep 2024 00:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:3f:98:2f:35:93:ea:18:df:a8:47:7d:e2:a5:22:fa:4e:28:f5:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Sep 3 00:00:00 2024 GMT Not After : Oct 8 23:59:59 2024 GMT Subject: serialNumber=fabbca0ae9800abfbaa3f0a788f4b0c883689ec6a7a884c183181f2dea39703f, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:21:2c:38:50:80:93:e0:03:99:15:e8:1a: 59:40:16:83:ad:54:86:e1:26:b6:d2:9a:e9:27:1a: 26:ea:e8:73:b3:ee:1b:44:d2:00:49:5b:eb:24:a8: 47:28:c1:e3:ab:88:86:3c:32:16:7c:75:ec:1e:7e: d1:19:66:63:eb:61:ae:c8:90:25:65:d4:98:09:bb: 81:cf:e5:73:db:23:14:18:74:0f:71:d5:dc:8a:20: 97:9d:93:44:7b:69:26:49:24:f9:f1:dc:b4:ae:69: 00:90:70:cd:f4:95:9e:33:7b:71:c6:9e:45:cc:5c: 6a:94:f0:96:26:32:04:3e:11:4d:f3:58:d0:2c:5b: 13:4c:a0:06:f7:56:1a:bb:92:98:12:17:ab:dc:19: b8:be:5e:9a:b8:61:3c:a5:5b:fe:9d:1f:d3:a0:a9: be:5c:23:f8:ea:23:53:7e:9e:4b:97:ee:ac:89:a1: 93:8b:5d:68:ee:e4:f2:a5:dd:de:54:3d:5e:75:84: c3:e9:40:22:22:1a:58:aa:1b:0b:c0:7c:2c:d8:29: a5:c1:0e:04:21:f0:88:c3:e4:07:ef:50:a0:9d:0f: 6f:5f:69:d8:78:e5:f5:b3:10:69:26:a5:07:f8:d0: ce:0f:f9:b5:81:7d:2e:c7:23:58:4b:e0:2f:fc:cd: 72:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:32:37:D2:D1:76:4B:FC:D5:74:DD:5F:CA:40:50:87:BB:A2:68:A5 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:10fc::/48 Signature Algorithm: sha256WithRSAEncryption 27:35:23:3f:0a:8e:5a:fd:6d:52:75:6e:e6:a8:3b:24:35:ea: 6f:08:c4:a5:e0:ee:04:f8:9e:ff:36:31:d7:5a:d3:4f:e9:3b: 68:49:1b:98:49:1e:74:71:40:7e:e1:30:4f:2e:8d:6c:5f:d2: 34:2a:2d:aa:8f:26:1e:fa:dc:d9:5e:82:34:cd:3a:01:d5:3d: 11:ad:56:bc:e7:31:09:4a:8d:f7:e9:77:0e:8c:44:c9:5f:16: 15:38:f7:87:3e:13:83:73:b1:99:ad:73:da:19:7d:30:c9:b7: f9:a0:f2:a0:6d:d8:eb:c1:8e:5c:01:e7:26:92:5b:fe:57:3e: b3:92:d3:bc:94:40:95:cc:44:0d:bb:ee:85:93:e7:cd:fb:99: d1:c4:b8:f6:5b:b1:06:8c:9f:a5:22:3c:a6:0a:c4:7d:81:9b: bb:c8:b9:53:a1:eb:ed:5b:a8:9d:f9:78:58:3a:05:af:d6:b4: 3e:1e:7f:ed:13:ec:19:42:48:05:26:6b:13:31:40:ae:20:64: 89:80:72:55:9d:c6:1e:76:b5:2c:25:07:30:3f:96:d3:92:97: 45:6b:52:b3:24:99:c1:47:14:c7:1a:96:28:b3:91:9b:b2:12: f1:56:62:5b:5d:ad:21:fb:b5:bd:14:b6:bd:65:b9:e6:ba:6b: 65:6d:0a:1c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUDj+YLzWT6hjfqEd94qUi+k4o9f8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDkwMzAwMDAwMFoX DTI0MTAwODIzNTk1OVowejFJMEcGA1UEBRNAZmFiYmNhMGFlOTgwMGFiZmJhYTNm MGE3ODhmNGIwYzg4MzY4OWVjNmE3YTg4NGMxODMxODFmMmRlYTM5NzAzZjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpghLDhQgJPgA5kV6BpZQBaDrVSG 4Sa20prpJxom6uhzs+4bRNIASVvrJKhHKMHjq4iGPDIWfHXsHn7RGWZj62GuyJAl ZdSYCbuBz+Vz2yMUGHQPcdXciiCXnZNEe2kmSST58dy0rmkAkHDN9JWeM3txxp5F zFxqlPCWJjIEPhFN81jQLFsTTKAG91Yau5KYEher3Bm4vl6auGE8pVv+nR/ToKm+ XCP46iNTfp5Ll+6siaGTi11o7uTypd3eVD1edYTD6UAiIhpYqhsLwHws2CmlwQ4E IfCIw+QH71CgnQ9vX2nYeOX1sxBpJqUH+NDOD/m1gX0uxyNYS+Av/M1yLwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNgyN9LRdkv81XTdX8pAUIe7omilMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2IzZDU3ZmZkLWNmZmYtNGYwZi05YTM0LWJkMDAxYTkwMGU5ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABD8MA0GCSqGSIb3DQEBCwUAA4IBAQAnNSM/Co5a/W1SdW7m qDskNepvCMSl4O4E+J7/NjHXWtNP6TtoSRuYSR50cUB+4TBPLo1sX9I0Ki2qjyYe +tzZXoI0zToB1T0RrVa85zEJSo336XcOjETJXxYVOPeHPhODc7GZrXPaGX0wybf5 oPKgbdjrwY5cAecmklv+Vz6zktO8lECVzEQNu+6Fk+fN+5nRxLj2W7EGjJ+lIjym CsR9gZu7yLlToevtW6id+XhYOgWv1rQ+Hn/tE+wZQkgFJmsTMUCuIGSJgHJVncYe drUsJQcwP5bTkpdFa1KzJJnBRxTHGpYos5GbshLxVmJbXa0h+7W9FLa9Zbnmumtl bQoc -----END CERTIFICATE-----Generated at Sat Sep 7 01:39:47 2024 by rpki-client on console-ams.rpki-client.org