$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa File: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (raw, json) Hash identifier: XL7JLs9Frl7AsYJUcVPqV0+ad6XLpanV6+athcEvKFs= Subject key identifier: C3:6F:93:F3:FF:2E:30:76:0F:C6:BC:1C:E5:A1:AD:E1:B4:72:79:22 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0DD955891F01C5194F1EB4E30DA4B8BF0E00773E Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f8:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 00:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:d9:55:89:1f:01:c5:19:4f:1e:b4:e3:0d:a4:b8:bf:0e:00:77:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=697640f790fb2d4bd680fe99596e02333270d91e154e56292b90e53ccdbde392, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c4:78:c0:c8:a2:b5:fc:dc:f6:f4:bc:b1:3f: d0:e5:d0:f0:90:a0:97:81:2a:20:52:94:e4:42:16: 13:d5:ba:0c:16:34:aa:8c:41:c6:ae:3e:91:f4:4e: f5:2f:99:30:d7:59:6e:9c:b1:f9:65:d1:78:86:86: d6:b5:a8:55:00:8f:4f:59:dc:66:9f:38:87:f8:40: 2b:12:2c:2c:d6:63:3f:4e:81:11:26:af:bb:66:cc: 8d:4a:3e:fc:b5:0e:fc:36:78:b1:20:e9:66:1e:a8: b0:29:4e:87:b9:19:35:9c:d8:99:53:f9:a8:9a:1d: 3f:1b:44:ad:27:f9:9d:f7:f1:51:6e:01:08:2d:00: d5:3a:59:f4:5f:fd:e9:10:93:1b:d7:ec:b8:29:bb: 51:b8:6b:d6:69:b0:50:27:ac:b4:be:28:2b:1b:c3: 1c:f6:4f:c0:cf:0e:c9:e5:6f:bb:2e:2f:84:ed:25: 17:ed:b4:b0:49:77:5b:64:20:3e:b0:51:00:c9:15: ba:6b:19:cb:cd:02:ea:bc:61:73:d9:82:c0:dc:9f: f5:6c:5e:ce:63:8d:31:b0:76:ff:91:9c:8c:df:57: 96:b7:22:23:a2:06:bb:a4:6d:b5:b9:13:f3:6a:da: 8c:ae:ab:98:75:b4:4f:c2:01:c2:bb:54:b7:da:3d: e7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:6F:93:F3:FF:2E:30:76:0F:C6:BC:1C:E5:A1:AD:E1:B4:72:79:22 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f8:4000::/40 Signature Algorithm: sha256WithRSAEncryption 0f:34:c3:54:e3:36:71:6c:d6:06:c7:a4:57:da:98:eb:e1:ea: f8:c4:b1:e9:39:6a:57:95:81:cd:41:c3:b1:cf:29:fa:7c:fe: 2f:9b:15:45:9a:d7:9a:ee:45:12:21:5b:2b:13:b3:58:ff:48: 3b:42:b0:d7:f2:d6:0a:e3:a3:43:fe:28:93:c0:96:a8:d5:85: 74:be:01:56:44:3d:58:16:58:88:3a:87:ee:fe:21:56:6c:d8: be:3d:0d:4c:56:77:e8:8c:83:1b:72:5e:9d:14:a6:98:0c:e3: 4a:a8:19:6e:c4:0b:a5:34:bb:36:db:52:a2:9a:90:a5:f7:e1: 53:89:3a:d5:52:a6:bc:37:a1:31:92:1e:19:57:3d:f4:9e:59: 73:c4:28:c1:39:aa:88:83:43:43:05:67:c7:9a:20:1b:2f:5a: 50:b3:5c:14:9e:f5:2a:91:73:6a:c7:e4:6c:b7:26:00:32:66: 38:2f:85:a3:61:5b:57:8c:c4:93:f8:43:ef:3b:f0:1e:04:b7: 59:11:de:36:c4:2d:49:ab:9d:db:4b:c9:ce:65:ea:0a:87:81: 31:91:c9:e9:05:1d:8a:b9:3d:47:62:7a:a2:9c:22:7d:47:85: 16:a1:cd:05:18:f1:8c:da:c6:cb:59:90:e7:40:14:d2:22:0e: 37:93:20:6a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDdlViR8BxRlPHrTjDaS4vw4Adz4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDQwNTAwMDAwMFoX DTI0MDUxMDIzNTk1OVowejFJMEcGA1UEBRNANjk3NjQwZjc5MGZiMmQ0YmQ2ODBm ZTk5NTk2ZTAyMzMzMjcwZDkxZTE1NGU1NjI5MmI5MGU1M2NjZGJkZTM5MjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8R4wMiitfzc9vS8sT/Q5dDwkKCX gSogUpTkQhYT1boMFjSqjEHGrj6R9E71L5kw11lunLH5ZdF4hobWtahVAI9PWdxm nziH+EArEiws1mM/ToERJq+7ZsyNSj78tQ78NnixIOlmHqiwKU6HuRk1nNiZU/mo mh0/G0StJ/md9/FRbgEILQDVOln0X/3pEJMb1+y4KbtRuGvWabBQJ6y0vigrG8Mc 9k/Azw7J5W+7Li+E7SUX7bSwSXdbZCA+sFEAyRW6axnLzQLqvGFz2YLA3J/1bF7O Y40xsHb/kZyM31eWtyIjoga7pG21uRPzatqMrquYdbRPwgHCu1S32j3n9QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMNvk/P/LjB2D8a8HOWhreG0cnkiMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzJjN2RjOTllLTE2YzUtNDMxMi1iNjEzLWFjNDJlOGI1MmYxZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+EAwDQYJKoZIhvcNAQELBQADggEBAA80w1TjNnFs1gbHpFfa mOvh6vjEsek5aleVgc1Bw7HPKfp8/i+bFUWa15ruRRIhWysTs1j/SDtCsNfy1grj o0P+KJPAlqjVhXS+AVZEPVgWWIg6h+7+IVZs2L49DUxWd+iMgxtyXp0UppgM40qo GW7EC6U0uzbbUqKakKX34VOJOtVSprw3oTGSHhlXPfSeWXPEKME5qoiDQ0MFZ8ea IBsvWlCzXBSe9SqRc2rH5Gy3JgAyZjgvhaNhW1eMxJP4Q+878B4Et1kR3jbELUmr ndtLyc5l6gqHgTGRyekFHYq5PUdieqKcIn1HhRahzQUY8YzaxstZkOdAFNIiDjeT IGo= -----END CERTIFICATE-----Generated at Fri Apr 26 00:36:11 2024 by rpki-client on console-ams.rpki-client.org