$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/97e51edc-22c5-4cb0-846c-06d6751df3b4.roa File: 97e51edc-22c5-4cb0-846c-06d6751df3b4.roa (raw, json) Hash identifier: vqo4BGkE+f6h/WgThIGPZRFK6cx9lYK+Y/t/OeiMsRk= Subject key identifier: 9D:73:37:D1:F2:A5:24:6C:14:E5:FE:BC:43:40:DD:89:F8:78:B2:6A Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7B9D61833EDBC48B71FBCD38052BDA8173BB3D9C Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/97e51edc-22c5-4cb0-846c-06d6751df3b4.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:9d:61:83:3e:db:c4:8b:71:fb:cd:38:05:2b:da:81:73:bb:3d:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=f68d835e6c5cc27f75528e11a7cbda9bf9cf8c7c3110dcc4fa17620cf2334701, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d8:e7:1d:13:51:e4:6c:d0:28:43:42:56:44: c5:b2:f2:b9:d6:68:f9:ca:2d:8e:b7:ee:a2:51:a5: 3c:45:1c:a7:9f:de:3a:b0:4e:82:36:f6:73:11:0d: 69:1c:8c:44:3d:40:0c:8e:7b:f9:4b:38:a1:8d:99: 61:7a:ac:7b:e0:88:15:57:d1:a7:de:8f:f3:85:b7: 5b:01:dd:8c:0d:38:de:ef:df:79:ca:6f:f8:67:4e: 93:4d:c3:ca:5e:e1:f6:71:f7:a5:ab:64:39:e3:1d: c5:cf:fc:06:9b:cf:83:3a:9f:c7:bc:88:53:44:c0: cd:6f:ad:c9:cc:60:7e:55:66:3c:a0:e2:c8:a0:2a: 9a:b8:6c:64:f0:95:f4:7c:55:d1:43:a0:cc:19:40: 08:e9:17:a7:17:38:c7:41:10:0a:b5:32:ec:31:06: ed:75:4a:55:17:c2:4b:1d:ac:bf:9a:2f:5b:04:b6: 96:73:fa:0e:b5:09:73:4d:8a:2b:52:1d:83:6a:67: 9d:60:34:ce:18:f5:1a:7b:b6:11:db:ee:ab:6f:c8: 5a:2f:e3:b2:1b:75:aa:b9:85:55:19:9f:43:29:f3: 0f:7e:1c:70:24:a7:ff:23:60:7f:75:8c:95:31:15: 64:74:29:28:33:f5:2a:cc:05:17:7d:38:29:74:0b: a0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:73:37:D1:F2:A5:24:6C:14:E5:FE:BC:43:40:DD:89:F8:78:B2:6A X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/97e51edc-22c5-4cb0-846c-06d6751df3b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8000::/40 Signature Algorithm: sha256WithRSAEncryption 30:80:70:cb:ea:b7:7b:32:64:2e:18:70:9f:28:a2:94:73:dd: 67:bc:b9:24:2c:7d:ef:3d:c7:7f:26:01:85:50:b4:49:b1:df: 8e:ba:f7:c8:1a:15:ef:79:8c:6e:8d:7a:27:84:65:0f:fa:e5: 3d:14:2d:47:d8:57:a9:26:9b:d1:fc:70:39:69:96:02:93:95: 6d:b4:0c:a7:9c:fa:7d:50:d4:95:ec:ef:f1:e2:e2:48:f7:5e: f5:e2:cc:f1:54:9a:f5:8a:69:e3:00:77:d1:b2:bd:7c:cd:e4: d1:1e:da:15:d5:51:0a:33:f7:39:68:d7:1f:3d:84:c4:71:26: 77:9d:4b:93:c3:cb:53:dd:f0:e2:cc:c3:9c:4f:e7:25:64:59: d3:bb:54:ef:d8:b4:84:be:75:7a:56:c2:f8:d9:3a:00:86:4b: 1c:ea:7f:41:f3:eb:7a:04:94:f1:58:fa:a9:42:11:ad:d4:ab: 9b:bb:e9:9a:bf:83:6f:af:15:d7:bb:e5:94:5d:e8:d2:6d:d9: 38:39:7c:98:08:1d:ce:48:21:8e:33:23:85:00:7e:b0:d0:2e: 34:3c:ae:97:d6:0b:32:2a:f0:04:c9:73:55:f0:82:b5:23:38: 1c:f6:41:ca:a9:df:bc:5b:ee:1f:bd:4d:6b:1d:9a:b7:3b:84: 37:6b:b6:5e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUe51hgz7bxItx+804BSvagXO7PZwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MTExODAwMDAwMFoX DTI0MTIyMzIzNTk1OVowejFJMEcGA1UEBRNAZjY4ZDgzNWU2YzVjYzI3Zjc1NTI4 ZTExYTdjYmRhOWJmOWNmOGM3YzMxMTBkY2M0ZmExNzYyMGNmMjMzNDcwMTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtjnHRNR5GzQKENCVkTFsvK51mj5 yi2Ot+6iUaU8RRynn946sE6CNvZzEQ1pHIxEPUAMjnv5SzihjZlheqx74IgVV9Gn 3o/zhbdbAd2MDTje7995ym/4Z06TTcPKXuH2cfelq2Q54x3Fz/wGm8+DOp/HvIhT RMDNb63JzGB+VWY8oOLIoCqauGxk8JX0fFXRQ6DMGUAI6RenFzjHQRAKtTLsMQbt dUpVF8JLHay/mi9bBLaWc/oOtQlzTYorUh2DamedYDTOGPUae7YR2+6rb8haL+Oy G3WquYVVGZ9DKfMPfhxwJKf/I2B/dYyVMRVkdCkoM/UqzAUXfTgpdAugYwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJ1zN9HypSRsFOX+vENA3Yn4eLJqMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzk3ZTUxZWRjLTIyYzUtNGNiMC04NDZjLTA2ZDY3NTFkZjNiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/4AwDQYJKoZIhvcNAQELBQADggEBADCAcMvqt3syZC4YcJ8o opRz3We8uSQsfe89x38mAYVQtEmx346698gaFe95jG6NeieEZQ/65T0ULUfYV6km m9H8cDlplgKTlW20DKec+n1Q1JXs7/Hi4kj3XvXizPFUmvWKaeMAd9GyvXzN5NEe 2hXVUQoz9zlo1x89hMRxJnedS5PDy1Pd8OLMw5xP5yVkWdO7VO/YtIS+dXpWwvjZ OgCGSxzqf0Hz63oElPFY+qlCEa3Uq5u76Zq/g2+vFde75ZRd6NJt2Tg5fJgIHc5I IY4zI4UAfrDQLjQ8rpfWCzIq8ATJc1XwgrUjOBz2Qcqp37xb7h+9TWsdmrc7hDdr tl4= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:48 2024 by rpki-client on console-fra.rpki-client.org