$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa File: 9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa (raw, json) Hash identifier: rh/qhTInpiIcTlusS+vdlMUv/yQzuE9t/NtsCyTC3Tk= Subject key identifier: 0B:61:51:15:DE:DF:E4:51:FD:F9:D8:0D:EF:B9:6F:D7:CC:77:85:AE Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 528AC4EE7C1977205232FFAF253A2A4CA5ACCD06 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 175.41.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 00:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:8a:c4:ee:7c:19:77:20:52:32:ff:af:25:3a:2a:4c:a5:ac:cd:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=34bbb1e418b32647e0ac4b2b4b8a477709de24ee6543d44a6f05215e1ee2cf12, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:28:6d:e0:c6:eb:35:89:05:da:b5:58:af:4d: 65:1e:86:ef:9e:a4:e2:8e:fc:58:da:40:9f:4c:ec: e0:8a:4a:64:7f:57:2e:3c:b1:dc:5c:21:32:e7:92: f1:b4:9a:a7:fe:25:e8:e7:aa:fb:ee:71:fd:ed:e2: 5d:a3:e1:f3:4d:87:7c:b6:aa:93:a2:eb:eb:1b:ab: 55:26:ac:5c:29:11:ea:ee:40:85:23:4c:52:b1:a7: 9c:d3:fe:d8:bb:07:7e:74:44:87:90:af:38:2d:70: 15:ea:39:34:d7:c7:0b:6c:43:30:f2:c2:68:e9:bb: 1e:01:c9:b5:1d:c5:02:7c:16:74:a5:c4:ee:7b:67: 5c:b8:35:91:95:69:71:40:c0:e4:de:6b:a9:7a:0a: 68:a7:37:76:1e:35:a2:5c:74:73:33:59:c5:b8:d1: c3:5b:bd:c6:42:b2:b7:4f:27:f7:f2:cc:0c:d3:83: 00:cc:14:fc:b9:89:82:2b:48:01:85:93:25:01:ca: b2:0d:66:16:9f:b1:16:96:36:a8:3a:5a:58:a0:00: 4d:1f:d9:8b:a7:d6:27:9a:9e:88:37:5a:c4:4a:98: 12:73:d0:a9:8a:cc:96:4f:82:af:57:f0:04:65:7f: 5d:98:14:29:87:73:13:58:cb:34:bf:16:70:59:0f: fd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:61:51:15:DE:DF:E4:51:FD:F9:D8:0D:EF:B9:6F:D7:CC:77:85:AE X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 44:58:c2:f2:8f:2e:b9:22:51:fc:48:b1:43:79:7a:3c:76:0f: ac:9c:09:79:98:74:0a:19:e2:b5:0f:2b:3c:92:a8:d0:1e:0f: 48:97:42:06:03:bd:7e:44:98:96:aa:82:cf:93:e7:af:6e:45: b0:91:df:4a:62:8d:1b:f4:b9:23:b8:e7:1d:01:c9:90:68:d9: 8b:ae:bd:98:6f:a9:09:e6:f6:c7:ef:61:f3:dd:5d:3d:ba:77: b7:f9:87:81:24:63:e9:7a:cc:29:d5:b9:c8:d4:29:52:50:fc: ec:11:ed:61:e5:30:ce:95:0b:9c:90:f2:4a:b4:33:29:78:18: ab:9b:33:1c:6b:94:56:ce:3d:2e:61:2a:3c:b9:df:32:68:1e: 2e:b1:03:4b:c1:5c:fe:b6:f6:01:71:22:7f:9f:77:49:36:a8: 0b:69:18:83:85:b7:ce:61:75:c4:af:dc:d6:af:a7:40:42:1c: e6:6d:d1:92:6b:1c:5c:55:4c:18:df:2c:c0:7f:93:ae:a5:fc: f6:55:a6:5b:26:a2:f5:ac:0c:45:14:2f:96:f1:01:10:1e:d1: 81:67:e8:65:6f:47:11:0f:bc:ca:cd:9a:eb:1b:29:24:16:cc: 6a:4a:1d:fe:95:7b:f4:f7:a1:c4:08:38:fb:ed:45:8e:20:6d: 26:62:52:cc -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUUorE7nwZdyBSMv+vJToqTKWszQYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDQxNjAwMDAwMFoX DTI0MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAMzRiYmIxZTQxOGIzMjY0N2UwYWM0 YjJiNGI4YTQ3NzcwOWRlMjRlZTY1NDNkNDRhNmYwNTIxNWUxZWUyY2YxMjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSht4MbrNYkF2rVYr01lHobvnqTi jvxY2kCfTOzgikpkf1cuPLHcXCEy55LxtJqn/iXo56r77nH97eJdo+HzTYd8tqqT ouvrG6tVJqxcKRHq7kCFI0xSsaec0/7Yuwd+dESHkK84LXAV6jk018cLbEMw8sJo 6bseAcm1HcUCfBZ0pcTue2dcuDWRlWlxQMDk3mupegpopzd2HjWiXHRzM1nFuNHD W73GQrK3Tyf38swM04MAzBT8uYmCK0gBhZMlAcqyDWYWn7EWljaoOlpYoABNH9mL p9Ynmp6IN1rESpgSc9CpisyWT4KvV/AEZX9dmBQph3MTWMs0vxZwWQ/97wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAthURXe3+RR/fnYDe+5b9fMd4WuMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzliMjBkNWU5LTI3MzktNDFkOS1hN2IwLWVkMzI0ZTYzOWM1Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQBEWMLyjy65IlH8SLFDeXo8 dg+snAl5mHQKGeK1Dys8kqjQHg9Il0IGA71+RJiWqoLPk+evbkWwkd9KYo0b9Lkj uOcdAcmQaNmLrr2Yb6kJ5vbH72Hz3V09une3+YeBJGPpeswp1bnI1ClSUPzsEe1h 5TDOlQuckPJKtDMpeBirmzMca5RWzj0uYSo8ud8yaB4usQNLwVz+tvYBcSJ/n3dJ NqgLaRiDhbfOYXXEr9zWr6dAQhzmbdGSaxxcVUwY3yzAf5Oupfz2VaZbJqL1rAxF FC+W8QEQHtGBZ+hlb0cRD7zKzZrrGykkFsxqSh3+lXv096HECDj77UWOIG0mYlLM -----END CERTIFICATE-----Generated at Thu May 9 00:30:03 2024 by rpki-client on console-ams.rpki-client.org