$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa File: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (raw, json) Hash identifier: XId8m2q/bU/fM5sKqjKm2j550JTkgLqmRUeMzDhMEns= Subject key identifier: E9:40:EE:A3:03:77:8F:8B:97:86:C5:2E:0D:9D:AA:B6:4E:C8:80:51 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0E6600A5F042B268904B291EB56C420F32049AB7 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 00:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:66:00:a5:f0:42:b2:68:90:4b:29:1e:b5:6c:42:0f:32:04:9a:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=5aa9e80396a8a9aa8723e092d90e35306b1007012dab9a0d67e587d8e888d8c8, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:10:de:bc:c8:6e:2f:e8:29:44:ba:93:e8:a1: f6:a3:3f:81:24:aa:4a:a7:8f:9a:c1:21:e2:b3:2c: 37:a4:1d:57:87:09:f4:d1:b2:23:69:6f:9a:6d:68: 98:22:60:f3:a1:6c:41:05:47:2d:27:58:f5:e9:9e: da:52:30:9e:72:f4:79:77:10:fd:82:a5:fb:b4:bc: e5:ad:94:32:0b:76:e2:c0:bf:65:57:d9:06:55:5a: 02:96:b1:8d:b0:68:0b:a8:ed:65:5a:95:b9:59:a2: 53:6f:03:f0:33:ff:cd:76:93:d3:10:5e:b1:c5:c0: 53:9d:04:dd:38:52:23:8a:e9:0b:21:69:5a:6f:64: e1:22:71:6f:d5:25:41:23:24:51:f6:69:f8:c2:e4: f0:09:d1:ae:62:36:13:73:fb:fd:42:79:3b:bd:4c: 73:7b:72:37:e1:43:a0:3a:70:9b:b9:fe:f3:61:98: 8e:08:81:cb:79:90:04:3c:16:19:e3:3d:cb:18:b2: 34:6a:9b:79:69:5d:77:dd:f7:bc:9f:f8:1d:b7:c6: 08:d2:9e:e3:bc:86:2c:19:8b:fe:10:6a:ab:77:d9: 69:cc:21:ab:c8:45:06:e3:8b:b6:aa:86:f8:e3:f8: d0:14:37:99:2a:5c:41:d6:f1:d7:f5:86:28:c5:36: 73:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:40:EE:A3:03:77:8F:8B:97:86:C5:2E:0D:9D:AA:B6:4E:C8:80:51 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:8000::/40 Signature Algorithm: sha256WithRSAEncryption 1f:9a:80:c4:da:d5:9d:22:5e:15:cd:05:7f:e7:bb:60:bc:69: 10:96:b2:f2:ce:6c:f7:a0:7a:a5:42:a8:b0:0c:85:49:fe:39: ea:c8:2e:34:bf:d9:37:97:0f:04:44:30:01:d2:cb:71:21:ac: 5c:f9:81:ef:80:1e:f2:95:cd:a4:27:7f:23:86:f7:55:41:29: cb:33:d1:fc:79:dc:ee:8d:7b:bd:cc:02:c3:4c:ba:2d:f4:1c: b1:62:97:92:38:8e:bb:4c:f1:84:14:25:66:38:3b:5c:e0:28: a5:02:72:f4:19:e4:59:3e:4d:aa:da:e6:57:f5:b7:24:9f:1e: f9:29:b4:6f:ca:4e:61:89:67:f9:85:75:e0:28:ea:a6:40:13: 0f:a5:95:be:d5:39:8e:23:4a:f2:96:40:ef:05:a1:43:86:a5: e3:d7:55:7e:93:33:56:67:2a:7e:e2:e6:71:b4:87:0a:31:07: d6:1a:6c:21:f2:6e:71:eb:fc:f8:58:5a:8e:d4:81:8c:30:cb: 56:d9:58:89:a6:0c:54:4b:0f:ca:ad:84:62:b5:5c:6d:66:22: fd:37:16:88:67:3a:5f:32:3a:9f:ec:80:39:f1:2b:cf:ca:77: 11:a6:8e:f2:e9:2b:49:da:26:7e:d9:38:5f:7a:40:8a:39:da: 20:f4:4b:74 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDmYApfBCsmiQSyketWxCDzIEmrcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDQwNTAwMDAwMFoX DTI0MDUxMDIzNTk1OVowejFJMEcGA1UEBRNANWFhOWU4MDM5NmE4YTlhYTg3MjNl MDkyZDkwZTM1MzA2YjEwMDcwMTJkYWI5YTBkNjdlNTg3ZDhlODg4ZDhjODEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxDevMhuL+gpRLqT6KH2oz+BJKpK p4+awSHisyw3pB1Xhwn00bIjaW+abWiYImDzoWxBBUctJ1j16Z7aUjCecvR5dxD9 gqX7tLzlrZQyC3biwL9lV9kGVVoClrGNsGgLqO1lWpW5WaJTbwPwM//NdpPTEF6x xcBTnQTdOFIjiukLIWlab2ThInFv1SVBIyRR9mn4wuTwCdGuYjYTc/v9Qnk7vUxz e3I34UOgOnCbuf7zYZiOCIHLeZAEPBYZ4z3LGLI0apt5aV133fe8n/gdt8YI0p7j vIYsGYv+EGqrd9lpzCGryEUG44u2qob44/jQFDeZKlxB1vHX9YYoxTZzJQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOlA7qMDd4+Ll4bFLg2dqrZOyIBRMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIyNDdmMzRmLWU1YjEtNDIzYy1hYzBmLTcxNDJhZDg2YmQ5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+YAwDQYJKoZIhvcNAQELBQADggEBAB+agMTa1Z0iXhXNBX/n u2C8aRCWsvLObPegeqVCqLAMhUn+OerILjS/2TeXDwREMAHSy3EhrFz5ge+AHvKV zaQnfyOG91VBKcsz0fx53O6Ne73MAsNMui30HLFil5I4jrtM8YQUJWY4O1zgKKUC cvQZ5Fk+Tara5lf1tySfHvkptG/KTmGJZ/mFdeAo6qZAEw+llb7VOY4jSvKWQO8F oUOGpePXVX6TM1ZnKn7i5nG0hwoxB9YabCHybnHr/PhYWo7UgYwwy1bZWImmDFRL D8qthGK1XG1mIv03FohnOl8yOp/sgDnxK8/KdxGmjvLpK0naJn7ZOF96QIo52iD0 S3Q= -----END CERTIFICATE-----Generated at Wed Apr 24 01:49:38 2024 by rpki-client on console-fra.rpki-client.org