$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b46597ac-06b0-4ab7-aa80-8ed6514ffe89.roa File: b46597ac-06b0-4ab7-aa80-8ed6514ffe89.roa (raw, json) Hash identifier: tfRl/YHBmBHAnKdTtAQWIPBYkqD2eRIANZGKegi3U0g= Subject key identifier: C0:42:C3:08:4D:65:A3:F6:3F:FF:57:E9:19:42:A2:F2:9E:08:6F:CA Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 073BE978A355ED0602A0A04DABF7C1C060760965 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b46597ac-06b0-4ab7-aa80-8ed6514ffe89.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 00:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3b:e9:78:a3:55:ed:06:02:a0:a0:4d:ab:f7:c1:c0:60:76:09:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=ab76ee4b0e41b0eb28eeeac24e21d4d515d37359c5661af61d3053257fb0b4ad, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:36:ce:02:80:7e:60:21:81:2b:d2:97:a3:85: 76:f7:21:49:87:30:89:c3:fc:58:05:e5:44:95:62: f1:c2:16:7b:0a:93:c6:83:71:f9:1d:9f:73:ab:59: 9d:cc:47:e5:ba:6c:63:0c:43:2d:ae:b3:1f:83:ce: 30:2f:c8:a3:b4:fe:cb:85:42:4b:1a:c4:56:3f:3f: c7:10:12:d2:6c:86:1c:de:60:9e:2b:21:02:5c:15: 70:69:38:f1:8a:f0:76:07:a8:c2:40:42:41:bc:d8: a0:dc:51:7e:a4:0c:08:20:23:62:e0:d9:c0:df:fd: 2b:c3:86:ce:50:c4:b8:b4:ea:1f:4f:d0:70:73:98: 13:68:07:38:b6:d8:52:47:e3:d2:82:08:6f:e3:92: 2d:94:75:1c:f2:df:b1:ef:1e:2b:56:4b:2c:d2:4e: c4:b6:52:66:a4:fe:83:3e:20:81:78:75:8b:7c:f1: 90:c0:a3:f3:d4:a0:d1:53:fb:f0:26:94:6e:a7:cc: d4:d4:c5:fb:2e:54:fd:56:bf:4c:07:1f:7d:e9:0b: 5b:ce:b3:92:88:d7:19:e5:ad:59:14:c7:d1:7d:9c: 6d:f4:db:31:67:58:10:44:9d:8c:ca:b4:3a:73:f8: 03:a8:1e:7f:e5:b8:7c:2f:5f:6f:e6:1a:03:b8:6b: 6c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:42:C3:08:4D:65:A3:F6:3F:FF:57:E9:19:42:A2:F2:9E:08:6F:CA X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b46597ac-06b0-4ab7-aa80-8ed6514ffe89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/36 Signature Algorithm: sha256WithRSAEncryption 19:e1:27:4c:81:de:bb:36:c9:f6:67:82:00:a2:5d:2d:40:d4: 69:28:3e:31:ed:d1:56:f9:ae:a6:f7:e6:a3:79:b3:57:67:8e: 8e:77:48:82:5e:15:56:84:bb:22:96:55:c7:fe:f0:e0:04:27: f9:3a:25:4e:33:52:8d:bd:8f:42:d9:ed:9d:69:d6:52:eb:26: 75:6e:72:c1:71:a5:87:01:88:2e:97:3b:c4:df:8d:b5:75:3d: 69:30:a1:c5:89:82:26:e2:bb:cf:87:b6:e0:a7:28:2e:96:af: d7:eb:12:89:95:87:cd:e6:6e:0a:c2:a8:1b:97:4b:81:0a:97: c7:8a:fe:f0:4d:c3:fd:c6:ca:39:fd:d5:d2:43:3f:b2:47:00: da:d6:5c:2a:e5:9a:88:01:be:6a:38:27:a0:cd:d4:0f:88:99: f3:82:fe:aa:5f:e0:f6:ff:28:7f:49:17:44:05:f5:0d:1d:58: 93:8a:18:63:c0:8d:25:10:4f:8c:2b:d6:57:c4:90:ff:37:32: f0:cc:65:0e:44:32:72:c4:1f:23:b9:f6:ee:f4:e3:99:97:97: e0:7c:bc:33:9e:84:83:8b:7c:33:28:46:ff:d2:9f:9c:12:66: 05:c6:fd:75:d6:43:6e:a1:b6:37:3d:40:d6:ae:e9:84:f3:ab: 27:15:5c:2b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUBzvpeKNV7QYCoKBNq/fBwGB2CWUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDQwNTAwMDAwMFoX DTI0MDUxMDIzNTk1OVowejFJMEcGA1UEBRNAYWI3NmVlNGIwZTQxYjBlYjI4ZWVl YWMyNGUyMWQ0ZDUxNWQzNzM1OWM1NjYxYWY2MWQzMDUzMjU3ZmIwYjRhZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDbOAoB+YCGBK9KXo4V29yFJhzCJ w/xYBeVElWLxwhZ7CpPGg3H5HZ9zq1mdzEflumxjDEMtrrMfg84wL8ijtP7LhUJL GsRWPz/HEBLSbIYc3mCeKyECXBVwaTjxivB2B6jCQEJBvNig3FF+pAwIICNi4NnA 3/0rw4bOUMS4tOofT9Bwc5gTaAc4tthSR+PSgghv45ItlHUc8t+x7x4rVkss0k7E tlJmpP6DPiCBeHWLfPGQwKPz1KDRU/vwJpRup8zU1MX7LlT9Vr9MBx996QtbzrOS iNcZ5a1ZFMfRfZxt9NsxZ1gQRJ2MyrQ6c/gDqB5/5bh8L19v5hoDuGts0wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMBCwwhNZaP2P/9X6RlCovKeCG/KMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2I0NjU5N2FjLTA2YjAtNGFiNy1hYTgwLThlZDY1MTRmZmU4OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AFAAwDQYJKoZIhvcNAQELBQADggEBABnhJ0yB3rs2yfZnggCi XS1A1GkoPjHt0Vb5rqb35qN5s1dnjo53SIJeFVaEuyKWVcf+8OAEJ/k6JU4zUo29 j0LZ7Z1p1lLrJnVucsFxpYcBiC6XO8TfjbV1PWkwocWJgibiu8+HtuCnKC6Wr9fr EomVh83mbgrCqBuXS4EKl8eK/vBNw/3Gyjn91dJDP7JHANrWXCrlmogBvmo4J6DN 1A+ImfOC/qpf4Pb/KH9JF0QF9Q0dWJOKGGPAjSUQT4wr1lfEkP83MvDMZQ5EMnLE HyO59u7045mXl+B8vDOehIOLfDMoRv/Sn5wSZgXG/XXWQ26htjc9QNau6YTzqycV XCs= -----END CERTIFICATE-----Generated at Wed Apr 24 01:55:32 2024 by rpki-client on console-ams.rpki-client.org