$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa File: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (raw, json) Hash identifier: 4hIM6CWjE0JX9ytjXZbnZtOPoQaQRU4WSd2iZz5u4iM= Subject key identifier: 5C:BD:1E:A5:24:6D:9A:17:3F:30:C5:1B:54:3E:55:ED:FE:70:20:BC Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7AB4419C38B353B34165C421EED23E69C9F9954F Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa Signing time: Tue 03 Sep 2024 00:00:00 +0000 ROA not before: Tue 03 Sep 2024 00:00:00 +0000 ROA not after: Tue 08 Oct 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Sep 2024 00:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:b4:41:9c:38:b3:53:b3:41:65:c4:21:ee:d2:3e:69:c9:f9:95:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Sep 3 00:00:00 2024 GMT Not After : Oct 8 23:59:59 2024 GMT Subject: serialNumber=9bfd3cc35cdfe32c37912dc95f98a539a4d9c5cf2cdf4686097adf85ae1e5846, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4c:b7:5b:c6:84:5c:56:00:4c:c6:a7:40:92: 26:7c:5f:92:94:37:4e:9e:d6:01:bf:b6:6a:d6:b1: b2:b0:69:e5:81:66:4c:34:23:5e:cd:0d:9b:56:19: b8:d4:dc:a9:7c:3e:27:ea:38:2d:0b:26:7f:05:38: 7e:e9:4f:96:7d:a5:2c:89:e0:37:e2:8e:b2:e7:36: d0:b7:b5:ad:54:e6:3e:08:bb:f0:6b:38:1b:05:04: 16:3a:6c:bc:24:47:c9:03:f9:a1:5e:21:11:9b:f6: 4a:02:f2:b8:0c:f3:8d:7d:5f:05:df:e9:9a:81:08: 2c:9e:e1:5e:97:de:10:e5:4d:e3:9a:fc:d9:cd:d0: 3e:b4:60:ef:8b:65:06:1e:33:16:9f:ff:ce:82:19: 6b:c6:ce:18:68:04:d7:00:e9:47:28:95:b5:8a:7d: 2a:1d:81:ae:81:a6:be:95:80:2e:59:47:77:06:e1: ca:c3:50:5f:12:e0:d1:ac:db:99:aa:60:51:f3:d5: 20:e9:6e:63:36:b3:e0:7d:e4:3f:c7:1b:2e:ba:4d: 78:0e:f9:71:57:ab:ef:e8:28:b3:45:b6:67:e5:e9: f1:92:d4:69:57:f2:68:7d:3c:f7:41:d7:d4:9d:75: 38:3a:84:50:44:91:20:0d:0b:e6:22:f3:7e:45:e6: 50:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BD:1E:A5:24:6D:9A:17:3F:30:C5:1B:54:3E:55:ED:FE:70:20:BC X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f8:8000::/40 Signature Algorithm: sha256WithRSAEncryption 80:90:95:27:a8:13:50:35:5d:29:8c:16:a5:1f:d9:e6:e9:05: 9a:f0:f3:e5:2d:76:0f:6d:26:4d:9b:04:b5:7f:21:ab:72:28: aa:0f:af:b2:3f:11:1a:dc:04:b6:63:2b:31:61:10:94:f1:7c: d8:8c:91:ef:1f:ac:1d:1a:95:88:b3:e2:44:e2:02:52:73:b3: 14:a0:c7:fa:0d:2a:9c:fd:a7:c3:fd:0f:e6:ef:79:ea:9b:76: ca:c9:0c:eb:65:5c:35:b3:a9:51:6d:22:3b:e3:86:3c:9a:71: 35:2a:bf:ff:b2:79:ed:0a:aa:78:b1:f7:b9:4f:3d:88:18:b0: 9e:fe:7e:14:d0:c5:5a:04:6f:28:46:02:7c:f0:31:9e:d4:3d: 96:3f:29:60:0b:1d:6b:49:57:26:a7:2d:aa:64:76:43:3f:fd: 3c:57:21:d3:f8:bc:0f:73:10:e6:2f:fb:92:4f:b9:dc:a5:fd: 44:d4:df:98:a9:90:47:53:5a:56:4d:ee:70:d1:b9:80:2b:ce: e7:31:37:39:c1:28:e2:ed:5a:8d:13:52:70:4f:79:8b:2a:7d: 39:6b:27:eb:0e:1f:81:41:08:35:21:7e:fd:9b:bd:4f:52:8b: 81:87:37:9a:a6:2f:25:e1:72:c4:c5:19:cb:df:96:81:54:ac: 54:c0:08:64 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUerRBnDizU7NBZcQh7tI+acn5lU8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDkwMzAwMDAwMFoX DTI0MTAwODIzNTk1OVowejFJMEcGA1UEBRNAOWJmZDNjYzM1Y2RmZTMyYzM3OTEy ZGM5NWY5OGE1MzlhNGQ5YzVjZjJjZGY0Njg2MDk3YWRmODVhZTFlNTg0NjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxky3W8aEXFYATManQJImfF+SlDdO ntYBv7Zq1rGysGnlgWZMNCNezQ2bVhm41NypfD4n6jgtCyZ/BTh+6U+WfaUsieA3 4o6y5zbQt7WtVOY+CLvwazgbBQQWOmy8JEfJA/mhXiERm/ZKAvK4DPONfV8F3+ma gQgsnuFel94Q5U3jmvzZzdA+tGDvi2UGHjMWn//Oghlrxs4YaATXAOlHKJW1in0q HYGugaa+lYAuWUd3BuHKw1BfEuDRrNuZqmBR89Ug6W5jNrPgfeQ/xxsuuk14Dvlx V6vv6CizRbZn5enxktRpV/JofTz3QdfUnXU4OoRQRJEgDQvmIvN+ReZQNwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFy9HqUkbZoXPzDFG1Q+Ve3+cCC8MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzU3Zjg0MzNjLWYxNjItNGIxMC04NTI3LWZiZjdjZGJiNmFhYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+IAwDQYJKoZIhvcNAQELBQADggEBAICQlSeoE1A1XSmMFqUf 2ebpBZrw8+Utdg9tJk2bBLV/IatyKKoPr7I/ERrcBLZjKzFhEJTxfNiMke8frB0a lYiz4kTiAlJzsxSgx/oNKpz9p8P9D+bveeqbdsrJDOtlXDWzqVFtIjvjhjyacTUq v/+yee0Kqnix97lPPYgYsJ7+fhTQxVoEbyhGAnzwMZ7UPZY/KWALHWtJVyanLapk dkM//TxXIdP4vA9zEOYv+5JPudyl/UTU35ipkEdTWlZN7nDRuYArzucxNznBKOLt Wo0TUnBPeYsqfTlrJ+sOH4FBCDUhfv2bvU9Si4GHN5qmLyXhcsTFGcvfloFUrFTA CGQ= -----END CERTIFICATE-----Generated at Sat Sep 7 01:39:48 2024 by rpki-client on console-ams.rpki-client.org