$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa File: e4e32025-6c2b-424d-92b8-3acaacb55baa.roa (raw, json) Hash identifier: MAhMs9tuwBHZNrwxAn5ROuBUDBb7HbIYiAfly59EW5k= Subject key identifier: FA:D7:AF:FF:42:23:C7:32:88:AA:62:A7:55:9F:19:FD:5C:D4:A3:21 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1514E945AF8DD84A12558F5E95EA979A27A6D9EA Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 00:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:14:e9:45:af:8d:d8:4a:12:55:8f:5e:95:ea:97:9a:27:a6:d9:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=e1a7effb9cae620e33f82762732e9da99212f3c476ce912f438cd4aaf7c6a6c2, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7d:3e:0d:d6:1a:cb:a8:a3:03:ac:99:94:06: 30:07:54:bd:e6:b0:0e:37:9c:74:42:b8:bc:49:b2: 51:b8:9f:96:15:d5:11:86:18:e4:2f:c0:d1:17:63: 05:44:53:58:13:0b:ae:ba:06:9c:fa:b8:fc:89:46: ec:c2:10:ed:5b:c3:4b:68:10:53:67:97:00:cd:e1: 9f:69:15:68:d3:1e:06:31:e6:c3:ea:7b:cb:f8:61: 4e:f5:72:7c:00:69:a5:2b:b6:41:92:26:f0:37:42: 7e:e6:a9:4e:fb:2a:88:66:cf:a5:34:75:8a:a9:20: 86:ec:2a:35:19:53:fd:65:29:4e:fa:ef:dd:48:c2: 2e:4d:81:f9:5d:a4:7d:6b:a1:f1:1e:03:c5:65:7e: 3c:56:2d:2e:47:d1:7a:aa:b0:4b:f5:ee:8b:02:89: 04:95:be:93:80:0f:1b:47:8d:d7:1a:cb:1b:cd:0c: aa:72:af:1e:38:94:88:14:98:f8:57:1b:14:00:7f: 1f:12:1b:0a:df:2c:25:9a:f2:56:81:14:23:cb:6e: cd:ca:65:93:63:f7:bb:80:96:db:ed:e0:c9:17:45: 6d:9d:da:14:3f:1a:f1:49:98:43:d6:32:51:99:71: 3a:be:6f:10:34:fa:57:6f:fd:00:7d:f1:c2:e1:6c: 06:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D7:AF:FF:42:23:C7:32:88:AA:62:A7:55:9F:19:FD:5C:D4:A3:21 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 98:d1:ce:c6:5d:36:54:03:95:c8:9e:c2:59:7c:bd:08:a7:65: 1d:7b:6d:8c:c2:2e:8c:d9:cc:05:1f:a3:30:1d:40:c8:08:2e: f0:a4:29:58:05:3a:18:5d:ea:b8:49:24:5d:23:51:bf:26:3a: ec:9f:73:be:68:ec:b6:af:b2:42:b9:db:d6:2c:f4:0c:6b:ce: 4b:27:6b:55:35:de:33:87:c8:89:01:88:37:82:df:61:43:9f: 49:79:19:ef:7b:ed:f6:58:92:6d:ae:aa:71:46:fe:29:ed:15: 70:19:85:b6:79:e8:61:bc:0d:ed:18:a9:a6:dd:b8:76:be:91: 2a:b6:9d:8e:d8:de:48:0b:2c:7b:61:d4:86:6e:28:e9:70:08: f3:00:e6:3f:8b:e9:55:54:95:fe:90:58:ce:2a:9d:b7:e4:8f: ae:a2:c2:bf:4a:37:49:41:16:f3:ef:49:b8:62:57:43:62:3f: 38:9f:95:09:41:18:e7:03:15:c2:94:f4:c6:57:91:44:c3:80: 81:5b:ae:91:15:49:78:5c:35:33:be:d5:52:8b:40:e0:77:50: cc:85:9a:d6:ca:17:bc:17:5e:a9:d1:83:10:e3:ea:6a:4f:d4: 15:11:0e:de:17:b6:20:27:68:39:6c:06:e0:2b:02:87:7f:3d: 6f:12:4c:cd -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUFRTpRa+N2EoSVY9eleqXmiem2eowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDQxNjAwMDAwMFoX DTI0MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAZTFhN2VmZmI5Y2FlNjIwZTMzZjgy NzYyNzMyZTlkYTk5MjEyZjNjNDc2Y2U5MTJmNDM4Y2Q0YWFmN2M2YTZjMjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqn0+DdYay6ijA6yZlAYwB1S95rAO N5x0Qri8SbJRuJ+WFdURhhjkL8DRF2MFRFNYEwuuugac+rj8iUbswhDtW8NLaBBT Z5cAzeGfaRVo0x4GMebD6nvL+GFO9XJ8AGmlK7ZBkibwN0J+5qlO+yqIZs+lNHWK qSCG7Co1GVP9ZSlO+u/dSMIuTYH5XaR9a6HxHgPFZX48Vi0uR9F6qrBL9e6LAokE lb6TgA8bR43XGssbzQyqcq8eOJSIFJj4VxsUAH8fEhsK3ywlmvJWgRQjy27NymWT Y/e7gJbb7eDJF0VtndoUPxrxSZhD1jJRmXE6vm8QNPpXb/0AffHC4WwG9wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPrXr/9CI8cyiKpip1WfGf1c1KMhMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2U0ZTMyMDI1LTZjMmItNDI0ZC05MmI4LTNhY2FhY2I1NWJhYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQCY0c7GXTZUA5XInsJZfL0I p2Ude22Mwi6M2cwFH6MwHUDICC7wpClYBToYXeq4SSRdI1G/Jjrsn3O+aOy2r7JC udvWLPQMa85LJ2tVNd4zh8iJAYg3gt9hQ59JeRnve+32WJJtrqpxRv4p7RVwGYW2 eehhvA3tGKmm3bh2vpEqtp2O2N5ICyx7YdSGbijpcAjzAOY/i+lVVJX+kFjOKp23 5I+uosK/SjdJQRbz70m4YldDYj84n5UJQRjnAxXClPTGV5FEw4CBW66RFUl4XDUz vtVSi0Dgd1DMhZrWyhe8F16p0YMQ4+pqT9QVEQ7eF7YgJ2g5bAbgKwKHfz1vEkzN -----END CERTIFICATE-----Generated at Thu Apr 25 02:00:19 2024 by rpki-client on console-ams.rpki-client.org