$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa File: 20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa (raw, json) Hash identifier: BnyH2E7rk7vc6HEyyTWQozGYeYEzy666zfW/z5A2Psw= Subject key identifier: C6:A3:71:81:B1:9C:97:93:2F:FC:FA:D7:62:CE:2E:5B:65:B8:28:D2 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0D66A589916639D34D564788123FFF55DBE2FCC0 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 240f:8000::/24 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:66:a5:89:91:66:39:d3:4d:56:47:88:12:3f:ff:55:db:e2:fc:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=60796380781ab054b559abbeaaf5623070498dcc25c6dfdf22149397ad027860, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:05:6b:94:07:32:7b:a2:10:62:82:1d:40:d1: cb:f2:e7:b4:44:57:ae:3a:78:7c:48:53:7f:7a:6b: b2:51:29:4c:7a:19:ed:a0:28:c9:77:1c:76:a0:3e: e9:99:09:65:b2:4d:79:2c:3e:c8:a8:f8:4d:13:f3: 4f:23:fd:eb:b1:7a:9a:f4:a8:7f:8a:bc:31:db:82: 45:36:d3:e6:d5:9c:a5:a7:20:9d:77:0b:76:99:8c: 0d:d1:48:3c:72:43:61:94:fa:f8:0a:d3:13:2c:b8: 3e:53:be:64:cc:6d:35:3c:0d:f4:56:64:01:17:98: 96:12:b5:01:ce:81:3c:f4:30:52:ce:53:26:9f:99: e0:58:d1:54:2e:69:19:eb:c6:a3:dc:50:f3:f2:9a: 19:fd:82:ee:a7:8a:e2:f1:ac:68:89:f1:d0:d4:3d: da:56:c2:6a:1a:c1:fa:98:a7:82:55:e2:a3:d3:0b: f0:8b:be:22:5f:87:58:4f:7e:c0:fa:3a:f1:0c:13: 5c:f7:61:e3:d0:b9:b5:2e:11:30:1f:c1:74:6b:3f: da:05:66:75:f5:63:b9:2e:e2:3b:74:2c:ae:83:ee: 91:82:8d:86:7a:54:82:a9:c0:74:28:96:c6:8a:dc: f4:d2:ff:21:9b:43:c0:ba:0d:a7:76:ce:5c:d2:dc: 46:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A3:71:81:B1:9C:97:93:2F:FC:FA:D7:62:CE:2E:5B:65:B8:28:D2 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 53:83:d5:6f:aa:0b:e8:44:75:4d:32:58:50:70:2a:2d:a7:1f: 9e:ff:57:98:49:96:d2:b2:4e:c4:1c:bc:ba:0d:de:4e:f0:dd: 2a:d2:89:07:09:43:c4:f6:3b:1d:20:e3:5a:48:d9:60:54:65: 96:fa:77:b3:21:73:ba:1d:f7:61:5e:d8:9b:0d:ca:a2:e3:a0: 32:69:aa:c9:65:d3:be:c4:5d:7f:fa:b7:b4:14:ff:c6:72:36: a9:77:d4:4a:7f:5e:14:b9:d0:62:f2:b2:48:9d:08:66:05:f5: 69:ca:ba:54:6f:ee:5f:be:ba:b1:44:9d:c8:89:dc:2e:71:2a: 0a:5e:1b:ae:87:a9:00:55:25:21:85:2c:22:65:f7:d7:7a:38: f8:df:2f:86:c3:6a:29:17:26:07:9b:d2:5f:2c:e1:21:98:4b: 2e:78:3b:36:8d:51:50:eb:4a:83:60:40:2a:68:27:1c:22:b0: 7b:7f:43:4c:c1:68:1b:fd:b5:8c:9a:a1:f3:bc:46:cf:f7:ee: e6:0c:94:02:e3:fc:73:71:50:37:5b:c7:87:7f:7f:d6:c4:22: c1:6e:ac:50:fc:98:df:ee:89:c4:ff:2a:70:a5:94:5c:0f:f3: 78:8b:62:cb:f6:ff:1e:2e:6e:82:19:c3:e0:54:71:c5:f3:ee: b9:6d:24:59 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUDWaliZFmOdNNVkeIEj//Vdvi/MAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MTEyMjAwMDAwMFoX DTI0MTIyNzIzNTk1OVowejFJMEcGA1UEBRNANjA3OTYzODA3ODFhYjA1NGI1NTlh YmJlYWFmNTYyMzA3MDQ5OGRjYzI1YzZkZmRmMjIxNDkzOTdhZDAyNzg2MDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQVrlAcye6IQYoIdQNHL8ue0RFeu Onh8SFN/emuyUSlMehntoCjJdxx2oD7pmQllsk15LD7IqPhNE/NPI/3rsXqa9Kh/ irwx24JFNtPm1ZylpyCddwt2mYwN0Ug8ckNhlPr4CtMTLLg+U75kzG01PA30VmQB F5iWErUBzoE89DBSzlMmn5ngWNFULmkZ68aj3FDz8poZ/YLup4ri8axoifHQ1D3a VsJqGsH6mKeCVeKj0wvwi74iX4dYT37A+jrxDBNc92Hj0Lm1LhEwH8F0az/aBWZ1 9WO5LuI7dCyug+6Rgo2GelSCqcB0KJbGitz00v8hm0PAug2nds5c0txGZwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFMajcYGxnJeTL/z612LOLltluCjSMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIwYjBiYzFiLTdlMzktNDdhOC05NjdhLTViM2Y1OGQ3NWUwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQBTg9VvqgvoRHVNMlhQcCot px+e/1eYSZbSsk7EHLy6Dd5O8N0q0okHCUPE9jsdIONaSNlgVGWW+nezIXO6Hfdh XtibDcqi46AyaarJZdO+xF1/+re0FP/Gcjapd9RKf14UudBi8rJInQhmBfVpyrpU b+5fvrqxRJ3IidwucSoKXhuuh6kAVSUhhSwiZffXejj43y+Gw2opFyYHm9JfLOEh mEsueDs2jVFQ60qDYEAqaCccIrB7f0NMwWgb/bWMmqHzvEbP9+7mDJQC4/xzcVA3 W8eHf3/WxCLBbqxQ/Jjf7onE/ypwpZRcD/N4i2LL9v8eLm6CGcPgVHHF8+65bSRZ -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:48 2024 by rpki-client on console-fra.rpki-client.org