$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa File: fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa (raw, json) Hash identifier: wBOi6TlRYDonpgiiWog8bBb9VNcO2C0PalGqjYy5nNo= Subject key identifier: 35:0C:71:69:68:4D:A6:F8:F6:F4:1E:0D:F4:C0:8D:B4:D9:1B:F1:DA Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 497A298139EF8C9A8A7877503FD92A176ABDC452 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa Signing time: Fri 23 Aug 2024 00:00:00 +0000 ROA not before: Fri 23 Aug 2024 00:00:00 +0000 ROA not after: Fri 27 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000::/24 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Sep 2024 00:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:7a:29:81:39:ef:8c:9a:8a:78:77:50:3f:d9:2a:17:6a:bd:c4:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 23 00:00:00 2024 GMT Not After : Sep 27 23:59:59 2024 GMT Subject: serialNumber=165e01e4d642cfbf94dd42bcffb5e26368c5ae94d3d19aba1c8f2c4a3c548043, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fb:bc:0e:05:ee:54:51:e8:a8:32:71:14:28: 06:4c:f8:d3:ad:bc:a9:20:c0:cf:2c:c9:85:d3:cf: db:f6:2a:4a:07:b9:f7:64:3e:a3:82:4a:4f:ac:f5: c9:cf:ff:f2:18:b2:d6:3d:e7:19:62:d2:f1:71:47: 8a:d6:d0:f8:f8:82:c9:a7:bc:22:ec:79:f7:b2:f9: 41:12:61:f1:e5:e7:93:a4:94:49:13:0f:32:17:1a: ab:54:d8:da:48:9d:a1:c1:f4:21:19:ff:3b:85:4c: 01:72:0e:6d:2b:d8:17:59:98:e5:c6:61:d7:27:c0: 41:2c:84:11:c3:ea:87:cc:a5:fb:d1:d4:57:6e:fb: f3:1e:81:4d:01:f2:09:af:33:32:e8:b6:ad:5d:1e: 07:fd:f6:9c:66:ad:9c:80:c5:20:53:42:31:56:0e: 77:a7:81:d9:22:ba:42:2c:a2:25:fe:88:37:1a:18: 3e:9a:9d:df:db:ac:95:17:ac:73:05:36:96:13:09: b5:65:4e:d9:ef:73:96:82:ee:6f:1f:d3:b0:a9:8c: 1f:28:c5:64:ed:b3:ad:67:f1:2a:dd:9c:fa:d1:3c: c8:28:39:96:33:a1:a6:31:16:06:fa:84:00:78:88: 09:fb:d4:a9:7b:f5:29:65:ec:28:17:f5:9d:90:f4: 24:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:0C:71:69:68:4D:A6:F8:F6:F4:1E:0D:F4:C0:8D:B4:D9:1B:F1:DA X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 90:78:24:ce:b5:6d:94:be:11:0f:d3:32:48:30:57:09:cd:de: 47:8d:55:15:db:78:aa:2b:c8:98:d7:97:67:e9:ae:fa:91:69: 42:7f:7b:c2:e5:33:8a:97:1e:bf:1e:e4:13:d3:63:43:d1:f9: cb:8d:f7:93:ba:ce:93:06:26:81:8a:1d:48:96:2c:cd:ac:39: b2:55:e5:b6:f4:4c:88:05:33:a3:d9:1f:0f:9b:61:3e:9f:ac: 9d:65:dc:58:ff:e2:f0:97:83:58:df:22:9f:c4:d5:e4:37:0f: 1d:55:61:89:d2:78:b0:16:5f:0c:63:76:42:2b:87:1a:fa:57: 25:16:4f:9f:fc:15:9c:54:2d:16:f8:63:0a:01:60:5e:54:8d: 29:82:3a:64:f2:83:a4:2e:9f:0d:fd:e5:ec:37:68:9c:8f:9d: 7c:26:11:5d:53:0b:37:be:10:8e:cd:55:c9:4d:3f:e1:38:9d: 87:a1:86:b8:62:19:f9:46:7b:46:cb:9f:d0:74:e6:fa:2e:62: 6d:e4:38:e7:fd:b1:60:72:97:96:f2:82:28:39:a2:ed:bb:04: 44:a7:b8:62:a8:40:43:5d:20:14:ec:25:e2:14:e8:ed:4e:17: ac:32:01:98:08:98:c7:5e:60:5c:d5:76:d6:13:03:6d:86:3d: 5c:75:9d:4a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUSXopgTnvjJqKeHdQP9kqF2q9xFIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDgyMzAwMDAwMFoX DTI0MDkyNzIzNTk1OVowejFJMEcGA1UEBRNAMTY1ZTAxZTRkNjQyY2ZiZjk0ZGQ0 MmJjZmZiNWUyNjM2OGM1YWU5NGQzZDE5YWJhMWM4ZjJjNGEzYzU0ODA0MzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfu8DgXuVFHoqDJxFCgGTPjTrbyp IMDPLMmF08/b9ipKB7n3ZD6jgkpPrPXJz//yGLLWPecZYtLxcUeK1tD4+ILJp7wi 7Hn3svlBEmHx5eeTpJRJEw8yFxqrVNjaSJ2hwfQhGf87hUwBcg5tK9gXWZjlxmHX J8BBLIQRw+qHzKX70dRXbvvzHoFNAfIJrzMy6LatXR4H/facZq2cgMUgU0IxVg53 p4HZIrpCLKIl/og3Ghg+mp3f26yVF6xzBTaWEwm1ZU7Z73OWgu5vH9OwqYwfKMVk 7bOtZ/Eq3Zz60TzIKDmWM6GmMRYG+oQAeIgJ+9Spe/UpZewoF/WdkPQkFwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDUMcWloTab49vQeDfTAjbTZG/HaMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2ZjNDFhMDQ3LTMzNWItNGYwNy1iZDRkLTUxY2Y2MWJmYzMzZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQCQeCTOtW2UvhEP0zJIMFcJ zd5HjVUV23iqK8iY15dn6a76kWlCf3vC5TOKlx6/HuQT02ND0fnLjfeTus6TBiaB ih1IlizNrDmyVeW29EyIBTOj2R8Pm2E+n6ydZdxY/+Lwl4NY3yKfxNXkNw8dVWGJ 0niwFl8MY3ZCK4ca+lclFk+f/BWcVC0W+GMKAWBeVI0pgjpk8oOkLp8N/eXsN2ic j518JhFdUws3vhCOzVXJTT/hOJ2HoYa4Yhn5RntGy5/QdOb6LmJt5Djn/bFgcpeW 8oIoOaLtuwREp7hiqEBDXSAU7CXiFOjtThesMgGYCJjHXmBc1XbWEwNthj1cdZ1K -----END CERTIFICATE-----Generated at Sat Sep 7 01:39:48 2024 by rpki-client on console-ams.rpki-client.org