$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa File: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (raw, json) Hash identifier: Z1sfAM8zveBdweylump5i851rnvPSJjVUp9Hfhg/fo0= Subject key identifier: 73:89:D0:05:26:49:89:14:0A:13:D7:3E:21:40:BC:6B:45:39:D6:75 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1E41F339C3D3418CCC210D2C5170BB9CA3A38058 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 103.8.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:41:f3:39:c3:d3:41:8c:cc:21:0d:2c:51:70:bb:9c:a3:a3:80:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=00ada586a64f7c44ce0d93f6f5eaeceb4810af4fdba8af80d24c960020d7a8fe, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:19:62:e9:b5:0d:63:c8:e2:43:52:a0:03:b5: 12:e5:5b:7d:5e:b5:42:c4:18:95:e6:a2:0d:3f:26: 54:13:33:20:ad:23:82:0d:47:98:95:bd:42:08:ec: 20:b4:45:c0:d1:76:10:06:11:dc:f5:de:22:65:c4: 7d:ad:11:6c:54:d8:fd:78:56:0f:fb:8d:15:92:9b: 7b:cb:79:74:d2:11:46:2f:fe:ef:f7:92:21:a6:41: 58:8c:ed:16:cd:7c:ea:76:56:33:46:fb:a5:db:0c: 76:1a:9b:c4:87:a7:12:62:05:ff:b4:4c:61:6c:e4: f4:e7:bf:80:ee:c6:39:4c:61:c4:61:8b:e2:53:c8: 8a:cb:f4:dd:6e:a5:c8:f5:5d:ba:14:9d:5e:61:e5: a2:9b:b7:64:12:62:80:af:0e:5f:04:25:90:64:ba: 04:0b:58:27:cd:d1:f8:9a:fa:e8:96:41:06:3e:4f: e2:25:64:65:14:4f:75:08:42:16:63:c1:39:83:26: 36:31:3e:79:cd:4d:e8:88:79:f5:ad:96:90:26:9a: b8:99:8a:90:60:10:cf:c6:df:cb:27:fd:eb:6b:86: a0:8f:e8:e0:4e:72:0e:3a:e6:0d:de:a3:d4:c2:1a: b8:ce:82:bc:98:da:63:bd:03:8f:89:70:9b:a3:45: 0e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:89:D0:05:26:49:89:14:0A:13:D7:3E:21:40:BC:6B:45:39:D6:75 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.172.0/22 Signature Algorithm: sha256WithRSAEncryption 86:61:46:6f:8f:5c:6d:2b:aa:f0:30:c3:95:19:c1:99:b7:3a: ff:ed:82:ef:52:83:f3:76:45:38:45:93:3e:8b:2d:8d:ee:1d: 5f:a2:74:43:c5:10:b6:2b:77:e5:92:0d:4a:c5:c7:2b:fd:56: 8a:3a:a4:42:59:cc:25:91:53:dc:0c:68:64:e8:cc:3b:93:90: 3a:48:26:30:92:2f:d3:02:cd:7a:5f:13:8b:2c:a2:8b:7d:83: 33:46:54:bc:b7:3e:d7:74:09:a4:5c:7e:ac:42:5c:aa:f0:25: 11:96:1a:92:5f:aa:f1:98:35:9e:0a:75:0d:f9:02:0e:80:d4: a2:b2:33:e9:96:5d:33:2d:f5:ae:ab:73:46:ed:3e:76:b1:c1: 63:41:92:fd:cb:55:21:87:10:cd:a5:a3:02:d7:fb:ae:4d:6e: 0e:68:3f:c8:3c:0a:e2:10:45:7e:b0:f0:f3:49:e4:8d:2f:e4: ce:97:1d:19:a7:c9:2c:16:e2:3b:82:a2:74:9f:ad:85:28:95: 50:ca:c2:c4:f2:6f:bd:80:53:60:c4:fd:ea:c4:96:4a:4d:68: db:89:b6:9d:f7:49:c9:ab:17:56:82:4c:73:9d:81:51:69:7d: e0:f8:50:3e:0c:42:cb:e5:84:1d:79:e9:d7:d7:cd:2f:f4:8a: 46:c8:8f:02 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUHkHzOcPTQYzMIQ0sUXC7nKOjgFgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDQxNzAwMDAwMFoX DTI0MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMDBhZGE1ODZhNjRmN2M0NGNlMGQ5 M2Y2ZjVlYWVjZWI0ODEwYWY0ZmRiYThhZjgwZDI0Yzk2MDAyMGQ3YThmZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxli6bUNY8jiQ1KgA7US5Vt9XrVC xBiV5qINPyZUEzMgrSOCDUeYlb1CCOwgtEXA0XYQBhHc9d4iZcR9rRFsVNj9eFYP +40Vkpt7y3l00hFGL/7v95IhpkFYjO0WzXzqdlYzRvul2wx2GpvEh6cSYgX/tExh bOT057+A7sY5TGHEYYviU8iKy/TdbqXI9V26FJ1eYeWim7dkEmKArw5fBCWQZLoE C1gnzdH4mvrolkEGPk/iJWRlFE91CEIWY8E5gyY2MT55zU3oiHn1rZaQJpq4mYqQ YBDPxt/LJ/3ra4agj+jgTnIOOuYN3qPUwhq4zoK8mNpjvQOPiXCbo0UOWwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHOJ0AUmSYkUChPXPiFAvGtFOdZ1MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2VhMWQwMmFhLTZkMjUtNGIzNi1iNDJlLWJhODM3ZDQ5ZTI2MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZwisMA0GCSqGSIb3DQEBCwUAA4IBAQCGYUZvj1xtK6rwMMOVGcGZ tzr/7YLvUoPzdkU4RZM+iy2N7h1fonRDxRC2K3flkg1Kxccr/VaKOqRCWcwlkVPc DGhk6Mw7k5A6SCYwki/TAs16XxOLLKKLfYMzRlS8tz7XdAmkXH6sQlyq8CURlhqS X6rxmDWeCnUN+QIOgNSisjPpll0zLfWuq3NG7T52scFjQZL9y1UhhxDNpaMC1/uu TW4OaD/IPAriEEV+sPDzSeSNL+TOlx0Zp8ksFuI7gqJ0n62FKJVQysLE8m+9gFNg xP3qxJZKTWjbibad90nJqxdWgkxznYFRaX3g+FA+DELL5YQdeenX180v9IpGyI8C -----END CERTIFICATE-----Generated at Thu Apr 25 00:31:13 2024 by rpki-client on console-fra.rpki-client.org