$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa File: 20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa (raw, json) Hash identifier: 1HRy2Qs8hMpYVb0rIc9JwDPhgm5k/ue9UC9lfT75WeE= Subject key identifier: 6D:3B:C2:B4:26:0E:E9:98:02:72:34:A2:3F:30:E6:2E:42:B7:44:27 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3B8E2CFDC34B92FA8B11C12DEB5494348BD25AF6 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa Signing time: Fri 19 Apr 2024 00:00:00 +0000 ROA not before: Fri 19 Apr 2024 00:00:00 +0000 ROA not after: Fri 24 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 240f:8000::/24 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 00:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:8e:2c:fd:c3:4b:92:fa:8b:11:c1:2d:eb:54:94:34:8b:d2:5a:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 19 00:00:00 2024 GMT Not After : May 24 23:59:59 2024 GMT Subject: serialNumber=358029f6604e792a07fca86072cef9fab7d68d24a349e2f54ad7e0db9de96de1, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:05:d6:38:c9:cb:34:df:19:6a:c7:8f:14:c7: 48:8d:e9:4b:5b:37:d0:4a:d7:8e:14:6e:2c:e0:8f: ba:0a:c4:49:27:0a:27:d5:ee:9b:3a:84:e0:d1:14: 55:2e:e6:2c:63:11:d3:c6:cb:47:e8:07:19:83:25: ad:4f:60:49:6a:eb:10:1f:58:f3:0f:5e:be:4a:b6: 7f:91:f0:17:d6:17:f9:e0:6c:05:82:79:b5:30:83: 1f:76:fc:a3:f1:3d:0d:75:6c:02:5e:ea:d6:8c:af: 03:3f:e8:42:b9:a8:15:ae:22:80:e6:bc:77:96:aa: 85:1d:c2:d7:9d:c2:a4:3e:a4:26:7a:f8:a1:ac:6e: 0f:72:e5:4f:bc:3a:d1:65:bf:b9:b5:64:db:1c:a8: 7e:55:c0:c2:c8:56:d6:6c:84:ce:ef:6a:19:7a:47: a8:4a:0c:43:38:a3:1f:b2:47:a9:2a:77:1d:4f:24: 94:fc:9c:a4:a8:75:ab:e5:67:23:97:8b:51:f7:b9: 0f:dc:dc:1d:b4:6a:e8:97:2a:30:3a:22:2b:94:1c: b2:1b:fc:03:f4:b7:c1:59:fd:8c:92:e2:2d:f4:d8: 9b:2b:29:c5:7e:b3:65:c3:63:11:46:b5:a4:8b:88: 99:0e:f0:ee:17:c8:30:9b:c8:c1:48:e3:62:2c:c2: 89:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:3B:C2:B4:26:0E:E9:98:02:72:34:A2:3F:30:E6:2E:42:B7:44:27 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 47:71:76:e3:9b:5c:00:68:a2:88:40:9e:61:ba:4a:f8:ae:d5: 35:c6:95:38:0f:c1:a1:99:4c:23:6d:bc:b7:4b:6f:d5:c7:63: a7:7b:5c:78:cf:90:9c:8d:a9:70:b9:5c:13:67:cd:b0:b2:44: f5:d6:d4:44:86:8e:7c:06:5b:5e:6f:da:f8:43:a2:7c:2c:a2: b2:42:b0:a3:0b:f2:d3:c9:84:c2:c7:40:ef:d4:e1:3e:d4:80: ce:90:95:70:5c:63:0c:ff:16:58:78:ce:68:29:51:e4:f8:9b: 45:55:a8:8d:86:11:4d:a5:c3:d4:7a:df:6a:ad:be:0c:2e:f8: 0d:76:82:0f:4c:b0:1a:49:a0:46:61:4d:5d:58:23:de:38:a3: e2:f1:22:90:f4:80:01:4a:88:53:4c:0f:ad:3a:ff:be:f7:5d: 9e:ca:80:5e:db:37:90:20:cd:b9:33:06:35:cb:5c:66:af:e3: ea:b9:4a:ec:fa:0f:74:2a:41:ae:8f:e6:0a:df:87:0d:7f:1f: b8:e2:f8:bd:8d:94:24:d4:13:7f:84:d6:f4:95:f1:2e:87:eb: 35:fc:53:79:99:67:c5:6d:0d:c1:81:3e:d5:bb:51:d1:be:c5: 0b:4c:27:7b:9a:8c:b1:d3:6f:82:d8:c5:f7:75:1e:fb:f6:f9: 32:8c:49:8f -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUO44s/cNLkvqLEcEt61SUNIvSWvYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDQxOTAwMDAwMFoX DTI0MDUyNDIzNTk1OVowejFJMEcGA1UEBRNAMzU4MDI5ZjY2MDRlNzkyYTA3ZmNh ODYwNzJjZWY5ZmFiN2Q2OGQyNGEzNDllMmY1NGFkN2UwZGI5ZGU5NmRlMTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgXWOMnLNN8ZasePFMdIjelLWzfQ SteOFG4s4I+6CsRJJwon1e6bOoTg0RRVLuYsYxHTxstH6AcZgyWtT2BJausQH1jz D16+SrZ/kfAX1hf54GwFgnm1MIMfdvyj8T0NdWwCXurWjK8DP+hCuagVriKA5rx3 lqqFHcLXncKkPqQmevihrG4PcuVPvDrRZb+5tWTbHKh+VcDCyFbWbITO72oZekeo SgxDOKMfskepKncdTySU/JykqHWr5Wcjl4tR97kP3NwdtGrolyowOiIrlByyG/wD 9LfBWf2MkuIt9NibKynFfrNlw2MRRrWki4iZDvDuF8gwm8jBSONiLMKJbQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFG07wrQmDumYAnI0oj8w5i5Ct0QnMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIwYjBiYzFiLTdlMzktNDdhOC05NjdhLTViM2Y1OGQ3NWUwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQBHcXbjm1wAaKKIQJ5hukr4 rtU1xpU4D8GhmUwjbby3S2/Vx2One1x4z5CcjalwuVwTZ82wskT11tREho58Blte b9r4Q6J8LKKyQrCjC/LTyYTCx0Dv1OE+1IDOkJVwXGMM/xZYeM5oKVHk+JtFVaiN hhFNpcPUet9qrb4MLvgNdoIPTLAaSaBGYU1dWCPeOKPi8SKQ9IABSohTTA+tOv++ 912eyoBe2zeQIM25MwY1y1xmr+PquUrs+g90KkGuj+YK34cNfx+44vi9jZQk1BN/ hNb0lfEuh+s1/FN5mWfFbQ3BgT7Vu1HRvsULTCd7moyx02+C2MX3dR779vkyjEmP -----END CERTIFICATE-----Generated at Fri Apr 26 00:36:11 2024 by rpki-client on console-ams.rpki-client.org