$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa File: 7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa (raw, json) Hash identifier: t6dKLGqPFHJdKJWBdXOs8uLb5I8ufr96teBbQroxFSM= Subject key identifier: 77:E8:3C:89:30:AD:1C:CC:75:D8:C8:AE:8C:AF:E5:69:53:E5:61:B5 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2A704C549A91394B2F32C9C74957A8982085FF58 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2400:6500::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 00:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:70:4c:54:9a:91:39:4b:2f:32:c9:c7:49:57:a8:98:20:85:ff:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=bcb5a81f93c3f65aab0fb9b8fe7332a63faed901572e9184bc34ea19ca3d68c3, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:74:29:77:19:d2:e8:33:17:46:5d:62:30:1a: e1:c5:b1:d6:6f:ba:cc:61:0a:16:f5:a7:7a:6c:df: 07:b3:72:4e:31:fe:77:b0:43:f6:86:41:0f:f8:c0: 2c:b3:2c:0a:f6:30:31:2a:60:fe:c8:64:c1:9d:1c: ef:90:89:d2:3f:2e:68:c7:0c:77:ca:6a:a2:73:48: 86:4e:98:0b:f3:03:15:b7:09:1d:22:11:71:1a:6d: 64:08:52:d4:8b:96:cf:be:b5:56:eb:83:42:3b:4c: 49:b4:f1:5b:f8:ed:45:f7:8f:99:fc:d3:9a:46:4b: bf:82:a5:6b:12:ca:71:20:c0:36:e0:4b:05:7a:0f: 3b:d3:8b:3d:a9:d9:68:db:2d:7c:49:03:fe:2b:83: 02:52:b3:91:71:af:94:4f:f1:96:8b:58:80:49:13: 8b:63:03:d0:15:67:e2:30:52:91:9b:55:45:7d:da: 70:09:0c:cc:e1:37:97:46:aa:c3:9a:18:1b:88:6a: 0e:bb:a2:76:99:ca:09:63:d5:bb:34:49:97:ca:e9: b8:44:70:68:69:8e:ab:9c:e6:13:4d:bf:ed:c0:7c: ff:5f:d9:6b:c8:39:e5:0d:e1:6c:d2:d5:b9:4c:18: 6f:b8:96:a1:ba:82:44:06:b5:00:44:85:bb:73:12: d9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E8:3C:89:30:AD:1C:CC:75:D8:C8:AE:8C:AF:E5:69:53:E5:61:B5 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500::/32 Signature Algorithm: sha256WithRSAEncryption 80:3c:90:8e:a4:b5:83:bb:6b:f6:f8:5a:73:7e:6d:e0:ce:77: a9:6e:e9:a2:41:b6:88:57:84:d4:16:52:5e:0d:28:04:ce:0b: 13:b4:c4:c2:22:b0:c6:49:15:cd:27:0c:60:b8:90:47:a4:b2: df:57:b4:03:d1:0f:d0:c3:bd:15:ee:69:80:3a:d5:d6:6d:64: f9:a7:c6:e7:ab:fd:0c:ba:18:5f:42:b7:92:84:67:ac:85:96: 4d:d5:9b:a3:ca:c3:c1:94:31:16:3c:38:5e:e1:8f:90:ff:9d: 6e:45:2b:2e:04:cc:97:5c:cf:59:7a:f0:bb:4f:50:9f:e5:de: 05:b7:9d:b4:79:68:a4:bb:5c:ec:3f:5b:6d:4e:b5:ad:3d:2d: 2a:c9:f6:18:e5:da:69:5f:03:e4:34:52:4b:50:d1:be:18:0a: 62:f8:b3:f2:9f:21:53:8b:a3:0a:a1:77:21:ad:23:df:c7:2d: 7b:22:d6:88:d6:b1:fa:59:77:e4:5f:4e:1a:3c:97:8a:36:4d: b0:99:90:db:74:5f:ad:3f:ab:34:04:a4:41:d2:e6:5c:9e:dd: 1b:03:5d:4f:47:60:7f:55:ff:55:67:24:37:8a:65:7f:ce:8e: ea:b0:e6:fa:ee:f0:11:67:83:4d:3e:9c:ca:dc:c1:da:28:3c: da:aa:57:84 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUKnBMVJqROUsvMsnHSVeomCCF/1gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDQxNjAwMDAwMFoX DTI0MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAYmNiNWE4MWY5M2MzZjY1YWFiMGZi OWI4ZmU3MzMyYTYzZmFlZDkwMTU3MmU5MTg0YmMzNGVhMTljYTNkNjhjMzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3QpdxnS6DMXRl1iMBrhxbHWb7rM YQoW9ad6bN8Hs3JOMf53sEP2hkEP+MAssywK9jAxKmD+yGTBnRzvkInSPy5oxwx3 ymqic0iGTpgL8wMVtwkdIhFxGm1kCFLUi5bPvrVW64NCO0xJtPFb+O1F94+Z/NOa Rku/gqVrEspxIMA24EsFeg8704s9qdlo2y18SQP+K4MCUrORca+UT/GWi1iASROL YwPQFWfiMFKRm1VFfdpwCQzM4TeXRqrDmhgbiGoOu6J2mcoJY9W7NEmXyum4RHBo aY6rnOYTTb/twHz/X9lryDnlDeFs0tW5TBhvuJahuoJEBrUARIW7cxLZ5QIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFHfoPIkwrRzMddjIroyv5WlT5WG1MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdhNDZkODE4LWNiMWUtNDVhYi04NmM3LTFhOWEzN2MxYTk1MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABlADANBgkqhkiG9w0BAQsFAAOCAQEAgDyQjqS1g7tr9vhac35t 4M53qW7pokG2iFeE1BZSXg0oBM4LE7TEwiKwxkkVzScMYLiQR6Sy31e0A9EP0MO9 Fe5pgDrV1m1k+afG56v9DLoYX0K3koRnrIWWTdWbo8rDwZQxFjw4XuGPkP+dbkUr LgTMl1zPWXrwu09Qn+XeBbedtHlopLtc7D9bbU61rT0tKsn2GOXaaV8D5DRSS1DR vhgKYviz8p8hU4ujCqF3Ia0j38cteyLWiNax+ll35F9OGjyXijZNsJmQ23RfrT+r NASkQdLmXJ7dGwNdT0dgf1X/VWckN4plf86O6rDm+u7wEWeDTT6cytzB2ig82qpX hA== -----END CERTIFICATE-----Generated at Thu May 9 00:30:03 2024 by rpki-client on console-ams.rpki-client.org