$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa File: e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa (raw, json) Hash identifier: B/qXKQW3LfvcwpOg4pxyCDQus4pOnLAnS0bV74gnqrg= Subject key identifier: 4C:CC:08:30:28:24:A5:CC:3F:65:1F:DF:9E:DB:D0:70:12:85:6D:E3 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 65637D9BB8A22420D8B4E32DC2F9D3202F13B135 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:10bc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:63:7d:9b:b8:a2:24:20:d8:b4:e3:2d:c2:f9:d3:20:2f:13:b1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=a7ca86c0fa0d0ddc058ea200370fafc8259645dfbca231a12313d4be6b819127, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:66:1e:17:d3:2c:7e:d1:76:d7:2e:53:31:a8: 1d:e3:03:87:f8:b7:76:3c:28:45:ed:6e:1d:ce:26: cf:36:26:fa:4c:e9:d3:d8:2b:43:1d:f4:ea:6f:88: 2b:ee:49:90:31:d2:ec:9e:2c:97:e5:8d:47:c1:b9: 97:4c:3b:81:e1:c3:82:6b:4c:08:c1:ba:f7:b9:71: dc:d1:e0:cf:64:df:2e:bc:30:d1:79:23:cf:a8:6d: 70:03:c1:de:59:21:5e:6c:ec:78:d9:33:51:61:82: ed:8f:98:dc:d3:9c:1a:88:03:38:55:22:fe:53:07: df:7b:18:42:57:57:f2:62:a7:c6:a0:a8:4e:cc:4f: e6:b2:e1:fa:f1:0e:d4:ce:53:f7:36:4e:e5:9f:d4: 69:b1:74:9c:31:32:4a:50:ee:7d:29:6e:91:83:14: e3:64:0f:69:46:af:03:f2:4e:cc:a3:65:79:8a:cc: af:ed:df:5f:15:c5:ae:17:46:9a:7e:b8:75:16:a0: a8:e3:13:12:2a:e1:6a:ac:07:cb:32:0a:74:8a:06: c1:85:c3:85:97:d8:cd:77:d1:f7:46:9a:44:0a:db: 39:33:ba:d3:12:4d:ea:44:6d:77:6d:15:e6:50:52: 5f:1a:87:f2:18:3e:b5:59:f6:b4:fb:b9:69:af:be: 06:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CC:08:30:28:24:A5:CC:3F:65:1F:DF:9E:DB:D0:70:12:85:6D:E3 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:10bc::/48 Signature Algorithm: sha256WithRSAEncryption 60:f1:b9:ba:66:62:fc:0f:53:fd:c1:b0:b2:62:2c:1b:9b:7f: 0f:50:c5:61:41:d0:b0:ff:65:dc:80:8d:20:cf:14:4c:67:69: 74:3d:2a:70:4c:6e:18:dd:e4:5f:b9:51:8d:08:64:6a:51:6f: 26:79:ea:aa:45:67:00:d2:4f:fb:69:92:6b:a2:70:a9:1a:3b: c2:aa:09:7c:d0:77:14:33:81:73:56:2f:61:8b:cd:96:e6:b0: 83:d3:de:60:f9:03:4b:03:b9:0b:27:b6:60:39:cb:43:b0:d8: 22:c5:c3:cf:9b:be:ef:bb:17:b3:a9:c6:4b:88:36:bb:c3:64: 89:88:b3:9d:40:81:0d:08:9e:16:1a:3b:28:ad:74:90:f0:28: 98:2e:3d:be:15:7d:f3:4a:29:8d:41:cc:5e:52:06:e0:03:bf: 29:ae:7b:1a:ce:d3:20:50:42:53:41:dc:9b:22:86:ac:23:06: 2a:55:fa:59:bb:7b:91:fd:8e:a0:97:da:6d:85:c5:da:da:80: 8a:ce:5b:97:30:64:98:d9:b7:fc:eb:c0:c4:6e:04:f8:bf:05: 99:a3:4b:6a:5f:ed:b4:a8:19:31:28:60:d1:9c:05:9d:c3:ea: bf:f7:dc:e5:5d:05:58:fe:4b:c2:d0:4c:1f:e3:79:10:8c:6c: 51:26:9b:8a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUZWN9m7iiJCDYtOMtwvnTIC8TsTUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDQwNTAwMDAwMFoX DTI0MDUxMDIzNTk1OVowejFJMEcGA1UEBRNAYTdjYTg2YzBmYTBkMGRkYzA1OGVh MjAwMzcwZmFmYzgyNTk2NDVkZmJjYTIzMWExMjMxM2Q0YmU2YjgxOTEyNzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5GYeF9MsftF21y5TMagd4wOH+Ld2 PChF7W4dzibPNib6TOnT2CtDHfTqb4gr7kmQMdLsniyX5Y1HwbmXTDuB4cOCa0wI wbr3uXHc0eDPZN8uvDDReSPPqG1wA8HeWSFebOx42TNRYYLtj5jc05waiAM4VSL+ UwffexhCV1fyYqfGoKhOzE/msuH68Q7UzlP3Nk7ln9RpsXScMTJKUO59KW6RgxTj ZA9pRq8D8k7Mo2V5isyv7d9fFcWuF0aafrh1FqCo4xMSKuFqrAfLMgp0igbBhcOF l9jNd9H3RppECts5M7rTEk3qRG13bRXmUFJfGofyGD61Wfa0+7lpr74GDwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEzMCDAoJKXMP2Uf357b0HAShW3jMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2UxYzhjYTM5LWZlMWYtNDRjNy04MDJhLWIwZGM3ZmRiNTYxNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABC8MA0GCSqGSIb3DQEBCwUAA4IBAQBg8bm6ZmL8D1P9wbCy Yiwbm38PUMVhQdCw/2XcgI0gzxRMZ2l0PSpwTG4Y3eRfuVGNCGRqUW8meeqqRWcA 0k/7aZJronCpGjvCqgl80HcUM4FzVi9hi82W5rCD095g+QNLA7kLJ7ZgOctDsNgi xcPPm77vuxezqcZLiDa7w2SJiLOdQIENCJ4WGjsorXSQ8CiYLj2+FX3zSimNQcxe UgbgA78prnsaztMgUEJTQdybIoasIwYqVfpZu3uR/Y6gl9pthcXa2oCKzluXMGSY 2bf868DEbgT4vwWZo0tqX+20qBkxKGDRnAWdw+q/99zlXQVY/kvC0Ewf43kQjGxR JpuK -----END CERTIFICATE-----Generated at Fri Apr 19 00:52:14 2024 by rpki-client on console-ams.rpki-client.org