$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa File: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (raw, json) Hash identifier: /wDtfXnBO/B2DSyiBUfDt5IR0DqioUb0XWcJcchAcMA= Subject key identifier: 13:2D:93:FC:C8:96:B2:D2:07:3E:0D:8C:E8:F6:FC:A7:4E:C6:D1:C3 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 39F2D5BCE3D13C12FCBFDD9E60E2BF133422F05F Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Apr 2024 12:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:f2:d5:bc:e3:d1:3c:12:fc:bf:dd:9e:60:e2:bf:13:34:22:f0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=58b087f2725a159873de2f4546c59e5816cf68255d7551aec738bfe251d260c2, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:63:00:dc:fc:ae:d3:a5:a6:1a:3f:14:b2: 8a:89:65:79:25:44:c9:4c:63:0c:f4:91:8a:12:d8: fc:79:b3:c5:3b:a1:18:9f:fc:e5:b9:ad:60:c6:24: 15:f9:a5:e5:0f:68:93:53:1c:89:f9:2e:9d:01:a9: ae:c4:ef:f0:84:a5:13:4e:f8:43:6f:77:1b:8b:89: 41:63:ca:95:da:ba:4d:b1:50:a9:50:86:07:53:a6: 4d:d1:eb:80:c0:63:4d:6c:b5:06:99:0a:46:85:7a: 73:01:a9:2f:af:08:32:e6:02:1a:1a:91:f0:18:99: 20:32:c8:8a:e8:13:fb:4a:30:6a:33:dd:f2:b6:fc: df:2f:40:f4:e8:62:2e:bf:9f:99:3e:88:1b:ef:c2: a5:ec:b8:23:7a:1f:98:46:a2:a8:08:b9:b5:35:83: 73:7d:e2:19:5f:60:42:9d:65:2f:04:11:41:9c:38: 06:65:fe:a3:a1:93:6d:44:9b:e4:87:cc:a9:fd:33: e1:36:d7:7d:ab:d5:1d:9f:c8:27:6f:22:cc:23:7e: 22:99:d1:c9:85:9e:b7:5f:80:2b:7d:0f:ed:79:79: 58:29:84:47:10:5b:c7:a6:54:9b:cc:e4:ef:99:21: 89:74:be:d0:79:8a:2b:40:66:db:12:68:38:ce:a0: 5c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2D:93:FC:C8:96:B2:D2:07:3E:0D:8C:E8:F6:FC:A7:4E:C6:D1:C3 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:8000::/40 Signature Algorithm: sha256WithRSAEncryption 0e:51:bb:11:37:cb:7b:8f:62:3e:79:39:35:74:a9:78:12:57: 2e:18:4d:f3:5c:3e:03:06:03:76:24:76:30:b9:b8:5e:4f:c7: 5e:d9:c0:6f:bb:07:98:c8:91:dd:67:af:de:a3:a4:61:01:d2: 87:09:57:49:a6:41:fa:94:d2:78:34:cf:96:06:52:40:ac:7f: 65:5a:60:8a:5e:6d:d9:28:a8:84:7a:98:73:70:1e:8e:1a:9e: e7:60:d6:30:fb:c8:15:71:9c:2e:10:e0:00:84:7d:99:cb:c1: e3:d8:29:a2:ed:56:47:7d:e2:1d:50:af:c5:a6:f9:52:9a:69: 93:67:9e:b9:76:66:91:1e:93:37:b2:ec:23:44:d2:42:44:c2: a9:ec:be:db:a9:e4:19:db:12:0d:29:de:13:89:00:b0:55:7f: 25:7e:06:9f:ba:51:bd:ed:8a:00:7d:19:ad:96:4b:3a:ae:79: 03:59:80:0e:e4:3f:db:4a:52:f4:48:55:c4:01:8e:37:df:8a: 6c:15:5d:9b:49:48:c1:56:aa:29:21:53:36:1b:b1:6a:a6:38: e1:58:68:2d:89:41:97:a6:59:f7:f5:1e:94:12:56:cb:8a:93: 94:b3:e3:04:41:45:6f:ff:51:c3:ef:1f:22:ab:2f:c4:a3:4b: 17:ca:d2:58 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUOfLVvOPRPBL8v92eYOK/EzQi8F8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDQwODAwMDAwMFoX DTI0MDUxMzIzNTk1OVowejFJMEcGA1UEBRNANThiMDg3ZjI3MjVhMTU5ODczZGUy ZjQ1NDZjNTllNTgxNmNmNjgyNTVkNzU1MWFlYzczOGJmZTI1MWQyNjBjMjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3BjANz8rtOlpho/FLKKiWV5JUTJ TGMM9JGKEtj8ebPFO6EYn/zlua1gxiQV+aXlD2iTUxyJ+S6dAamuxO/whKUTTvhD b3cbi4lBY8qV2rpNsVCpUIYHU6ZN0euAwGNNbLUGmQpGhXpzAakvrwgy5gIaGpHw GJkgMsiK6BP7SjBqM93ytvzfL0D06GIuv5+ZPogb78Kl7Lgjeh+YRqKoCLm1NYNz feIZX2BCnWUvBBFBnDgGZf6joZNtRJvkh8yp/TPhNtd9q9Udn8gnbyLMI34imdHJ hZ63X4ArfQ/teXlYKYRHEFvHplSbzOTvmSGJdL7QeYorQGbbEmg4zqBcAwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBMtk/zIlrLSBz4NjOj2/KdOxtHDMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M2YzhjMmM4LTI2MTAtNGI0Ni05ZTU1LTY3YzEyY2VjY2JiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/oAwDQYJKoZIhvcNAQELBQADggEBAA5RuxE3y3uPYj55OTV0 qXgSVy4YTfNcPgMGA3YkdjC5uF5Px17ZwG+7B5jIkd1nr96jpGEB0ocJV0mmQfqU 0ng0z5YGUkCsf2VaYIpebdkoqIR6mHNwHo4anudg1jD7yBVxnC4Q4ACEfZnLwePY KaLtVkd94h1Qr8Wm+VKaaZNnnrl2ZpEekzey7CNE0kJEwqnsvtup5BnbEg0p3hOJ ALBVfyV+Bp+6Ub3tigB9Ga2WSzqueQNZgA7kP9tKUvRIVcQBjjffimwVXZtJSMFW qikhUzYbsWqmOOFYaC2JQZemWff1HpQSVsuKk5Sz4wRBRW//UcPvHyKrL8SjSxfK 0lg= -----END CERTIFICATE-----Generated at Tue Apr 16 00:29:52 2024 by rpki-client on console-ams.rpki-client.org