$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/41d48512-3b44-4b3e-ba21-6171938cc43c.roa File: 41d48512-3b44-4b3e-ba21-6171938cc43c.roa (raw, json) Hash identifier: 5TvXD4lDdBP8HCQ9cczX1l4KBZGmRY4mhWkhauSaUAk= Subject key identifier: 86:2F:8D:8E:79:B9:0E:D1:D7:1D:55:4B:84:9D:2D:06:5A:4C:E2:29 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 50E8193A5BE42FDD42D0497F4800326EB8AF7F7C Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/41d48512-3b44-4b3e-ba21-6171938cc43c.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2400:6500::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e8:19:3a:5b:e4:2f:dd:42:d0:49:7f:48:00:32:6e:b8:af:7f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=6f68b40ddddc507ad45ba87d328aaf7dac9ded86a04352a2cc49c21a7e571f72, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ee:28:d4:b9:c8:b0:71:65:06:94:1e:d7:5a: 9e:6d:83:6c:d4:b6:52:48:f6:f1:b1:c8:09:ba:49: ad:ad:af:26:22:70:62:06:ab:8f:c2:5c:de:f4:dd: 51:59:64:15:32:fe:fd:ec:28:5f:fc:7f:64:12:84: a5:74:c3:13:83:7a:06:8a:8f:1d:e6:4c:d2:51:fe: 9d:1e:03:e2:1c:ce:b3:bc:99:b0:e7:4c:54:bb:d2: 89:fc:d1:48:1b:3b:e8:1c:e1:65:0f:bd:02:23:f8: 1b:90:a6:33:a6:14:fa:cf:86:d9:ad:4f:25:2f:7a: 42:d6:8b:5d:be:be:fd:87:0c:12:2d:86:35:2e:ce: d2:1f:2b:9c:3c:05:de:1d:d7:ca:3a:4b:dc:37:4d: db:86:13:69:c8:62:17:9e:96:77:1c:b5:1e:46:4a: 3e:91:4d:c2:e9:9f:cd:0e:d9:00:d9:18:41:55:ac: 93:49:03:7f:83:35:c3:9a:ac:af:cf:33:19:ca:6c: a5:d8:3c:40:0f:7f:6f:81:ee:04:e7:c2:8a:f1:e8: 38:a2:4d:d5:83:a1:13:e2:a6:49:63:04:50:71:fb: 6a:56:c2:d7:6e:c3:94:ec:c7:8c:99:51:40:6a:12: b2:4a:01:0f:4e:9b:09:fb:f6:a8:43:33:8c:c8:73: 12:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2F:8D:8E:79:B9:0E:D1:D7:1D:55:4B:84:9D:2D:06:5A:4C:E2:29 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/41d48512-3b44-4b3e-ba21-6171938cc43c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500::/32 Signature Algorithm: sha256WithRSAEncryption d4:2f:d8:36:c6:ae:17:9e:74:04:2e:ba:18:ab:84:45:ce:30: f8:f5:07:4f:a4:7e:31:05:0b:85:7b:fd:8a:c7:7c:5f:37:03: 12:71:36:be:27:ba:a6:2a:ef:91:d5:3d:ee:02:57:d6:1d:36: b8:7d:a2:9b:27:48:99:30:dc:cc:ce:0e:bc:bb:9c:19:12:58: 62:2a:ee:88:aa:85:00:1f:50:0a:e6:4c:2b:69:61:26:f4:12: 5a:33:d1:36:18:de:b5:97:01:95:d8:66:f7:8d:89:f2:72:86: 35:19:7f:b5:ac:2d:94:2a:b7:7b:de:37:00:46:55:ef:47:9d: 8c:07:b5:2e:1a:78:4e:0f:ec:65:a2:cf:1d:13:1e:74:bb:74: 3e:6e:b0:32:05:8d:4b:04:63:26:6f:87:75:a9:5d:da:e1:83: 2c:65:44:53:59:53:69:1d:bc:82:d0:e2:4d:74:24:05:76:85: 6f:66:51:f0:7e:53:62:fc:db:96:2a:cf:15:0f:47:49:fc:91: 7b:73:34:3e:7a:60:5e:80:4f:f0:86:8c:ef:4f:4d:c7:d4:95: c7:07:0b:79:e5:b1:cf:56:07:ca:79:2d:79:84:83:9b:0e:02: 5c:df:0f:82:9b:cd:80:bc:82:47:ae:d9:20:58:7f:39:46:2a: be:68:4c:3d -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUUOgZOlvkL91C0El/SAAybrivf3wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MTEwNTAwMDAwMFoX DTI0MTIxMDIzNTk1OVowejFJMEcGA1UEBRNANmY2OGI0MGRkZGRjNTA3YWQ0NWJh ODdkMzI4YWFmN2RhYzlkZWQ4NmEwNDM1MmEyY2M0OWMyMWE3ZTU3MWY3MjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuu4o1LnIsHFlBpQe11qebYNs1LZS SPbxscgJukmtra8mInBiBquPwlze9N1RWWQVMv797Chf/H9kEoSldMMTg3oGio8d 5kzSUf6dHgPiHM6zvJmw50xUu9KJ/NFIGzvoHOFlD70CI/gbkKYzphT6z4bZrU8l L3pC1otdvr79hwwSLYY1Ls7SHyucPAXeHdfKOkvcN03bhhNpyGIXnpZ3HLUeRko+ kU3C6Z/NDtkA2RhBVayTSQN/gzXDmqyvzzMZymyl2DxAD39vge4E58KK8eg4ok3V g6ET4qZJYwRQcftqVsLXbsOU7MeMmVFAahKySgEPTpsJ+/aoQzOMyHMSiQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFIYvjY55uQ7R1x1VS4SdLQZaTOIpMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQxZDQ4NTEyLTNiNDQtNGIzZS1iYTIxLTYxNzE5MzhjYzQzYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABlADANBgkqhkiG9w0BAQsFAAOCAQEA1C/YNsauF550BC66GKuE Rc4w+PUHT6R+MQULhXv9isd8XzcDEnE2vie6pirvkdU97gJX1h02uH2imydImTDc zM4OvLucGRJYYiruiKqFAB9QCuZMK2lhJvQSWjPRNhjetZcBldhm942J8nKGNRl/ tawtlCq3e943AEZV70edjAe1Lhp4Tg/sZaLPHRMedLt0Pm6wMgWNSwRjJm+Hdald 2uGDLGVEU1lTaR28gtDiTXQkBXaFb2ZR8H5TYvzblirPFQ9HSfyRe3M0PnpgXoBP 8IaM709Nx9SVxwcLeeWxz1YHynkteYSDmw4CXN8PgpvNgLyCR67ZIFh/OUYqvmhM PQ== -----END CERTIFICATE-----Generated at Thu Nov 21 17:28:40 2024 by rpki-client on console-fra.rpki-client.org