$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/86cfd33f-a067-4c5c-8ad5-49ec8cde1823.roa File: 86cfd33f-a067-4c5c-8ad5-49ec8cde1823.roa (raw, json) Hash identifier: 0HOzCZYYnUcvFB9XjpLYPF+TAcXEFbJgBwYmphqSgoY= Subject key identifier: 8B:51:FD:18:40:DB:56:2C:3D:4E:3E:FD:98:D5:F7:21:D8:62:38:D6 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 1779F9ABA544C77CDDF21E0AB5545E78D73D5849 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/86cfd33f-a067-4c5c-8ad5-49ec8cde1823.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fc:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Apr 2024 00:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:79:f9:ab:a5:44:c7:7c:dd:f2:1e:0a:b5:54:5e:78:d7:3d:58:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=11b523c9ca19febe73022e3e163e59d0b94ffbefb9c6bf7d5b948fdd5f565443, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:89:2d:23:4a:e9:79:4a:09:ad:ab:09:57:87: b7:78:1a:49:40:7c:6b:84:94:46:9a:93:74:24:ad: e5:4a:f8:9b:92:33:a3:a0:13:19:4c:31:cf:cb:a1: 0b:8f:99:7e:bd:13:39:55:1f:5d:23:bd:76:ca:b6: c1:fc:0c:79:b6:35:f2:0e:8f:22:43:0a:a5:d3:7c: 0d:c7:33:a3:ec:38:ea:fa:a5:a7:bb:48:a1:f9:e9: 0c:10:b8:0c:b9:01:9a:4d:29:f9:6c:8f:b2:a4:09: e2:36:75:12:05:87:bc:cb:32:7d:3d:0e:24:cb:37: 08:70:fa:1d:64:1d:fc:2e:33:ee:9b:cf:af:e8:20: e4:d5:ae:aa:b0:c5:b0:96:cb:3c:e4:8f:20:1e:3e: 8e:ff:c8:2b:97:47:5b:4f:f1:09:1d:7e:13:dd:1e: e2:58:c3:45:da:1f:60:eb:6b:32:29:34:15:bb:b4: 05:81:81:68:dd:dd:a8:1b:7b:5a:93:5d:95:af:f5: ca:eb:c8:b5:21:3f:69:c1:46:f3:06:a3:65:56:f2: e0:82:f4:69:31:22:2b:bf:69:01:26:8e:78:20:1b: 52:8c:a8:e0:05:15:b3:93:09:bb:66:3c:1c:ca:8f: e7:1a:9b:98:d0:be:73:50:7c:5f:26:ba:e0:80:3d: 50:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:51:FD:18:40:DB:56:2C:3D:4E:3E:FD:98:D5:F7:21:D8:62:38:D6 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/86cfd33f-a067-4c5c-8ad5-49ec8cde1823.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fc:8000::/40 Signature Algorithm: sha256WithRSAEncryption 14:f6:88:1e:07:72:3c:74:1f:b5:4e:50:81:26:51:6d:5c:dc: 1e:2a:16:5b:6d:15:3f:75:f4:75:05:ee:75:f4:da:d8:b2:93: 87:f3:97:bc:8b:0b:a9:30:cc:b5:f3:3f:4f:5d:0d:42:c4:0a: ae:3e:d2:b5:35:b2:d5:3b:43:02:cb:1c:72:ab:f1:e6:00:b1: d7:92:c4:ef:6a:f7:a7:93:fe:ce:b9:de:9f:01:2f:44:4c:4d: 8a:4d:5e:03:57:49:cb:0b:11:f6:a8:84:a6:a3:a8:ca:e2:c5: 7a:66:32:f1:d7:e8:25:17:52:8e:91:5e:0a:13:0f:2e:d3:b7: a3:75:e9:06:fb:92:a0:c3:aa:97:2e:c6:7a:69:3b:ef:ca:33: 8f:99:e4:32:02:58:88:9c:59:1b:2b:bc:f3:39:b9:34:ba:88: 14:5f:fb:96:c6:f2:9c:93:f1:13:58:d6:bf:90:66:3c:56:93: 94:67:7f:25:c8:a6:ad:28:4f:c4:92:8f:e2:ce:2c:7f:80:5a: 41:95:fc:2a:fa:47:d8:aa:6b:9f:ae:77:56:47:23:d2:01:4e: ea:73:ac:ab:ea:ef:b5:bb:b4:d7:f9:f5:c8:38:33:36:a4:ff: 96:62:af:d3:c9:2a:27:4e:a2:94:21:86:1e:a9:d0:7a:76:6b: ca:2c:4c:16 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUF3n5q6VEx3zd8h4KtVReeNc9WEkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDQwODAwMDAwMFoX DTI0MDUxMzIzNTk1OVowejFJMEcGA1UEBRNAMTFiNTIzYzljYTE5ZmViZTczMDIy ZTNlMTYzZTU5ZDBiOTRmZmJlZmI5YzZiZjdkNWI5NDhmZGQ1ZjU2NTQ0MzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4ktI0rpeUoJrasJV4e3eBpJQHxr hJRGmpN0JK3lSvibkjOjoBMZTDHPy6ELj5l+vRM5VR9dI712yrbB/Ax5tjXyDo8i Qwql03wNxzOj7Djq+qWnu0ih+ekMELgMuQGaTSn5bI+ypAniNnUSBYe8yzJ9PQ4k yzcIcPodZB38LjPum8+v6CDk1a6qsMWwlss85I8gHj6O/8grl0dbT/EJHX4T3R7i WMNF2h9g62syKTQVu7QFgYFo3d2oG3tak12Vr/XK68i1IT9pwUbzBqNlVvLggvRp MSIrv2kBJo54IBtSjKjgBRWzkwm7Zjwcyo/nGpuY0L5zUHxfJrrggD1QiwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFItR/RhA21YsPU4+/ZjV9yHYYjjWMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzg2Y2ZkMzNmLWEwNjctNGM1Yy04YWQ1LTQ5ZWM4Y2RlMTgyMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/IAwDQYJKoZIhvcNAQELBQADggEBABT2iB4Hcjx0H7VOUIEm UW1c3B4qFlttFT919HUF7nX02tiyk4fzl7yLC6kwzLXzP09dDULECq4+0rU1stU7 QwLLHHKr8eYAsdeSxO9q96eT/s653p8BL0RMTYpNXgNXScsLEfaohKajqMrixXpm MvHX6CUXUo6RXgoTDy7Tt6N16Qb7kqDDqpcuxnppO+/KM4+Z5DICWIicWRsrvPM5 uTS6iBRf+5bG8pyT8RNY1r+QZjxWk5RnfyXIpq0oT8SSj+LOLH+AWkGV/Cr6R9iq a5+ud1ZHI9IBTupzrKvq77W7tNf59cg4Mzak/5Zir9PJKidOopQhhh6p0Hp2a8os TBY= -----END CERTIFICATE-----Generated at Sat Apr 20 01:02:32 2024 by rpki-client on console-fra.rpki-client.org