$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa File: e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa (raw, json) Hash identifier: wbfJ2HJ4Qjz4aJFPeMAgtTVRyMRT4y0hYwasU9kBeUU= Subject key identifier: 4B:65:76:46:F0:ED:E8:8A:07:AB:F9:42:F5:B2:6C:DF:7E:F0:DA:5A Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 101B799D40C7841635D1D021D2B3CA5ACA85155D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa Signing time: Sat 16 Sep 2023 00:00:00 +0000 ROA not before: Sat 16 Sep 2023 00:00:00 +0000 ROA not after: Sat 21 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:10bc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Sep 2023 12:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:1b:79:9d:40:c7:84:16:35:d1:d0:21:d2:b3:ca:5a:ca:85:15:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Sep 16 00:00:00 2023 GMT Not After : Oct 21 23:59:59 2023 GMT Subject: serialNumber=206d2b2188f044cac6e1faf227c2457c1d837be36e6baff32813c48792a3b2f3, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:de:19:cf:40:fa:9f:90:97:d0:a1:d6:0b:c6: 26:56:53:c9:00:fd:be:9b:ef:4f:1d:0c:39:28:5c: 3c:59:a2:19:6a:c0:13:98:80:74:ca:18:02:5d:1b: 81:b9:7d:ba:61:29:82:f9:6f:91:37:7c:4c:7e:18: 6c:f8:22:e1:d8:dc:4f:db:01:0c:56:42:23:10:05: 38:9a:83:34:5d:de:0c:9e:ec:8f:b8:10:89:a2:6b: fe:fd:a2:df:1c:85:19:83:c5:d2:85:f9:2c:f3:75: c9:23:ea:04:b5:69:2e:45:d8:2e:38:b9:fc:07:ff: 70:a0:e2:93:91:d7:80:c5:76:f5:d0:8d:5c:bc:c7: e8:8c:92:6f:4c:e0:4a:e1:90:e4:5a:2d:95:d0:78: 94:5f:6b:1e:60:fd:ad:70:3b:9f:fa:38:8d:1c:c1: b5:c1:79:30:d4:e7:93:b5:77:d2:6d:4f:cc:46:c2: 67:50:10:f0:25:7d:25:72:5d:66:9f:f2:fa:3b:32: 40:9e:9c:39:58:56:61:93:20:81:4f:fe:69:fa:b7: 1f:c5:d6:16:80:74:c5:bf:71:ff:9c:5d:05:fb:29: eb:7a:de:92:0f:f1:9b:f3:06:22:b9:59:f4:90:0c: 15:c0:68:02:f3:65:62:13:50:2e:e7:d1:4a:5e:dc: 9e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:65:76:46:F0:ED:E8:8A:07:AB:F9:42:F5:B2:6C:DF:7E:F0:DA:5A X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:10bc::/48 Signature Algorithm: sha256WithRSAEncryption 24:60:b7:49:0b:34:67:0b:5c:ed:05:ef:48:db:67:64:1f:78: 03:9e:0a:c8:7c:ed:6d:4d:19:ad:9f:83:da:90:62:42:19:a6: a9:a0:2e:6c:ca:0f:96:80:b4:54:7e:5b:2b:86:f7:4a:27:00: 2d:6f:b2:55:53:40:bb:92:f1:a6:e1:f5:86:2c:41:63:6a:31: 41:75:b3:b9:c4:67:92:09:bd:29:d1:d2:78:51:1b:b8:62:de: 57:dc:a4:b0:46:e5:1f:3a:a6:3c:77:d0:94:f9:39:18:19:03: 5f:b9:82:52:e6:32:f8:bf:fd:f7:6a:16:09:6c:a5:64:64:19: 64:7e:8d:5e:29:f6:c5:71:03:f2:80:eb:48:26:65:91:9b:07: 11:4e:5b:78:37:6b:1a:19:0a:10:f7:1e:da:d5:12:07:41:ef: 87:15:1b:4f:f1:a0:a4:97:3b:dc:d2:bc:ec:8c:08:ea:0e:9d: d0:d2:ea:30:6e:40:e4:b4:c1:06:18:f0:48:f2:0b:c6:57:3d: e5:34:7b:b2:f2:54:96:cd:3b:57:dc:ff:cd:5c:15:14:e2:b0: 6e:a2:be:5a:28:58:37:42:6d:09:17:37:19:c4:df:30:d9:53: ee:40:0c:4d:65:f2:68:59:cb:21:77:1c:59:5e:df:44:7e:82: 97:7c:2e:d7 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUEBt5nUDHhBY10dAh0rPKWsqFFV0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTIzMDkxNjAwMDAwMFoX DTIzMTAyMTIzNTk1OVowejFJMEcGA1UEBRNAMjA2ZDJiMjE4OGYwNDRjYWM2ZTFm YWYyMjdjMjQ1N2MxZDgzN2JlMzZlNmJhZmYzMjgxM2M0ODc5MmEzYjJmMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyN4Zz0D6n5CX0KHWC8YmVlPJAP2+ m+9PHQw5KFw8WaIZasATmIB0yhgCXRuBuX26YSmC+W+RN3xMfhhs+CLh2NxP2wEM VkIjEAU4moM0Xd4MnuyPuBCJomv+/aLfHIUZg8XShfks83XJI+oEtWkuRdguOLn8 B/9woOKTkdeAxXb10I1cvMfojJJvTOBK4ZDkWi2V0HiUX2seYP2tcDuf+jiNHMG1 wXkw1OeTtXfSbU/MRsJnUBDwJX0lcl1mn/L6OzJAnpw5WFZhkyCBT/5p+rcfxdYW gHTFv3H/nF0F+ynret6SD/Gb8wYiuVn0kAwVwGgC82ViE1Au59FKXtyesQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEtldkbw7eiKB6v5QvWybN9+8NpaMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2UxYzhjYTM5LWZlMWYtNDRjNy04MDJhLWIwZGM3ZmRiNTYxNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABC8MA0GCSqGSIb3DQEBCwUAA4IBAQAkYLdJCzRnC1ztBe9I 22dkH3gDngrIfO1tTRmtn4PakGJCGaapoC5syg+WgLRUflsrhvdKJwAtb7JVU0C7 kvGm4fWGLEFjajFBdbO5xGeSCb0p0dJ4URu4Yt5X3KSwRuUfOqY8d9CU+TkYGQNf uYJS5jL4v/33ahYJbKVkZBlkfo1eKfbFcQPygOtIJmWRmwcRTlt4N2saGQoQ9x7a 1RIHQe+HFRtP8aCklzvc0rzsjAjqDp3Q0uowbkDktMEGGPBI8gvGVz3lNHuy8lSW zTtX3P/NXBUU4rBuor5aKFg3Qm0JFzcZxN8w2VPuQAxNZfJoWcshdxxZXt9EfoKX fC7X -----END CERTIFICATE-----Generated at Sat Sep 16 00:30:27 2023 by rpki-client on console-ams.rpki-client.org