$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa File: e4e32025-6c2b-424d-92b8-3acaacb55baa.roa (raw, json) Hash identifier: J7F6n5XnicNiVFTzTajk9GCTNyzo13P3Hi1hegk+l0k= Subject key identifier: 24:5B:53:B6:3A:91:1E:53:CC:2B:C3:BF:19:51:47:7E:22:6D:32:90 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 5A13B4D7552260FC85187556EE595F5BB19F35DE Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa Signing time: Wed 27 Sep 2023 00:00:00 +0000 ROA not before: Wed 27 Sep 2023 00:00:00 +0000 ROA not after: Wed 01 Nov 2023 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Sep 2023 12:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:13:b4:d7:55:22:60:fc:85:18:75:56:ee:59:5f:5b:b1:9f:35:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Sep 27 00:00:00 2023 GMT Not After : Nov 1 23:59:59 2023 GMT Subject: serialNumber=e0ffed06f53da3e15da571f6ea7a06632ed17df2c77b9353792c44e6a86729d0, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:66:ec:b2:4c:a7:cb:d5:e9:ae:2d:7f:a9:6c: 98:1a:41:96:2a:14:d4:ea:c9:9b:f8:7b:71:3d:f6: 1e:42:ae:4a:06:c0:54:35:17:1f:04:d1:21:ec:33: c6:ad:90:60:77:5c:be:0b:cc:53:02:71:b6:68:11: 28:73:ab:09:5a:0e:f6:b6:d6:9c:57:2e:fb:5f:a7: 9c:1b:e9:70:7e:57:37:00:c5:47:15:60:06:c6:ee: bd:d8:31:26:c3:81:fc:ac:3c:ed:4c:b5:e2:1a:fe: a2:de:9e:ec:d5:0a:b9:f0:45:dc:c1:fd:cc:47:76: 7b:bd:10:ad:2a:82:39:7f:03:b2:3c:5c:e7:d4:61: 16:5f:c6:cc:4a:56:82:cb:d8:f8:e6:b7:c3:d6:08: 18:86:f2:0a:c5:24:14:20:b5:06:2e:83:86:ce:0d: b8:42:6c:b1:d9:82:5b:bd:b1:c2:71:07:f1:1f:d9: 81:88:97:35:70:2a:ab:43:7f:ea:1b:84:99:60:c5: 44:e8:8a:83:fa:d1:bb:4b:cb:c6:a8:e7:b4:21:e3: 2e:d0:85:57:10:b3:84:d5:10:79:af:4b:ae:55:ab: 50:5d:4d:19:36:f9:d0:e7:fd:1d:f7:a3:46:46:9d: 63:26:cb:1c:f6:0b:aa:97:18:87:7f:59:e9:e7:c9: 83:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:5B:53:B6:3A:91:1E:53:CC:2B:C3:BF:19:51:47:7E:22:6D:32:90 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 24:7d:b6:53:68:04:d9:b1:75:7e:48:76:a5:63:7e:45:6c:d9: a0:27:56:bf:f5:e9:82:12:d0:60:2b:0e:f8:7e:c3:1d:9b:ea: 73:93:15:3d:68:d4:9c:4a:09:dc:be:e3:2b:63:f2:5f:9e:d7: 1f:9a:d7:e3:d5:99:50:28:e3:53:4a:0f:a9:b5:67:8d:6b:3d: fa:50:ca:a9:a4:11:5c:a8:fc:15:15:e5:bf:56:40:7b:09:16: b5:74:3e:b6:ed:92:18:96:94:85:fe:10:b8:91:9c:4f:6d:21: 64:f4:08:a3:3a:b1:33:e1:cd:1b:7e:de:d6:d6:be:5a:90:e6: ed:bb:6c:7d:8f:90:51:87:49:7d:81:df:f1:7d:ed:26:a2:49: 69:8f:90:8d:c7:7f:1e:52:a2:f3:bc:5c:00:1a:02:66:94:c3: db:89:b5:c3:85:d7:6d:24:04:27:b4:fd:21:1d:06:eb:be:a0: 7e:ca:92:0c:87:4d:f9:ec:f7:6a:99:3c:b3:83:a7:43:34:19: 26:e7:96:76:c0:9d:2f:e2:33:9a:b7:7d:52:08:4a:55:a9:6e: 9e:65:5b:92:e8:bf:6e:30:a2:83:65:93:3f:a4:5c:9a:d5:06: 64:e5:1a:1e:9f:38:9d:55:35:77:d2:fc:a0:c0:46:ed:cb:e8: 3d:f1:70:82 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUWhO011UiYPyFGHVW7llfW7GfNd4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTIzMDkyNzAwMDAwMFoX DTIzMTEwMTIzNTk1OVowejFJMEcGA1UEBRNAZTBmZmVkMDZmNTNkYTNlMTVkYTU3 MWY2ZWE3YTA2NjMyZWQxN2RmMmM3N2I5MzUzNzkyYzQ0ZTZhODY3MjlkMDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymbsskyny9Xpri1/qWyYGkGWKhTU 6smb+HtxPfYeQq5KBsBUNRcfBNEh7DPGrZBgd1y+C8xTAnG2aBEoc6sJWg72ttac Vy77X6ecG+lwflc3AMVHFWAGxu692DEmw4H8rDztTLXiGv6i3p7s1Qq58EXcwf3M R3Z7vRCtKoI5fwOyPFzn1GEWX8bMSlaCy9j45rfD1ggYhvIKxSQUILUGLoOGzg24 Qmyx2YJbvbHCcQfxH9mBiJc1cCqrQ3/qG4SZYMVE6IqD+tG7S8vGqOe0IeMu0IVX ELOE1RB5r0uuVatQXU0ZNvnQ5/0d96NGRp1jJssc9guqlxiHf1np58mDbwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCRbU7Y6kR5TzCvDvxlRR34ibTKQMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2U0ZTMyMDI1LTZjMmItNDI0ZC05MmI4LTNhY2FhY2I1NWJhYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQAkfbZTaATZsXV+SHalY35F bNmgJ1a/9emCEtBgKw74fsMdm+pzkxU9aNScSgncvuMrY/Jfntcfmtfj1ZlQKONT Sg+ptWeNaz36UMqppBFcqPwVFeW/VkB7CRa1dD627ZIYlpSF/hC4kZxPbSFk9Aij OrEz4c0bft7W1r5akObtu2x9j5BRh0l9gd/xfe0moklpj5CNx38eUqLzvFwAGgJm lMPbibXDhddtJAQntP0hHQbrvqB+ypIMh0357PdqmTyzg6dDNBkm55Z2wJ0v4jOa t31SCEpVqW6eZVuS6L9uMKKDZZM/pFya1QZk5RoenzidVTV30vygwEbty+g98XCC -----END CERTIFICATE-----Generated at Wed Sep 27 00:31:14 2023 by rpki-client on console-ams.rpki-client.org