$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa File: 1c3d5732-1954-4639-aac1-b9229445deac.roa (raw, json) Hash identifier: lFuHmDs7KYsdykUp/pQKk30wf9HuxlweuxsB+Va09sw= Subject key identifier: 3D:D6:0B:07:0E:1A:21:C8:78:44:03:84:AE:61:33:E4:F2:54:4B:A2 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 17815691D51C4DA3DCA8F83EB20C68C21A7B31AB Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 175.41.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 00:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:81:56:91:d5:1c:4d:a3:dc:a8:f8:3e:b2:0c:68:c2:1a:7b:31:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=11654a3a774373d1adbe56977004364e70a0807117da178e07d703e3079650cf, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f7:63:eb:88:73:31:03:cf:7e:c5:f8:13:08: eb:c5:66:27:43:6d:f7:c7:ab:b0:13:ad:9d:35:a3: ab:b5:f9:23:93:95:16:69:8b:d9:d2:cb:32:59:13: 65:04:5c:55:90:5a:21:f8:7a:95:b5:34:43:91:1d: fa:b1:87:9a:d8:9b:06:d8:4e:95:65:25:1a:f4:0b: be:fb:cc:65:a3:de:d5:6f:95:64:79:82:5c:99:5f: 12:74:f6:b0:65:9f:09:ec:1a:5b:05:98:5d:20:fa: cc:c5:7f:1a:ec:5c:53:43:dc:81:59:a4:a4:d1:8a: 73:ab:f3:ca:ed:9d:64:32:36:ef:83:ab:ab:1d:7f: bd:ed:f3:02:59:9d:32:b3:2c:28:8d:76:68:17:0e: 9e:14:5d:27:be:22:0e:2d:f5:c9:d7:90:13:66:50: 2b:59:49:c6:2e:4e:56:3c:fb:0b:67:c3:d2:f5:bf: 96:53:e5:f6:bb:bb:24:7b:33:47:2f:c7:0c:c3:9a: 14:b0:ff:3e:74:ba:5c:26:d7:70:08:98:c1:db:69: 3d:2c:2b:5e:fb:f4:17:1b:78:97:89:f9:e8:2d:9f: b1:c8:5f:6b:d2:fb:7e:38:30:09:a3:fc:e6:07:ec: e3:e8:1f:d8:68:c4:79:7b:8f:73:82:7c:9d:e2:39: 2c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D6:0B:07:0E:1A:21:C8:78:44:03:84:AE:61:33:E4:F2:54:4B:A2 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 4e:0a:32:28:d8:f2:3d:07:d6:5c:ee:05:08:83:46:fa:0d:0c: 31:68:17:87:6a:37:55:c6:03:74:33:bf:2f:6b:48:7b:1e:35: ce:a4:8e:ec:ab:fd:ba:e1:cd:a4:31:8f:c9:47:f0:2b:65:3d: ad:dc:5c:9d:a6:67:d1:14:64:2e:ad:c5:a3:c1:7c:ed:a3:0c: d7:bc:56:6a:c0:9c:74:4d:f5:70:1a:af:16:9f:c0:86:61:5b: c4:43:df:89:63:d6:4a:e5:c9:e7:3c:e4:5e:8d:f6:9e:ee:d1: b9:4d:f5:25:57:dc:27:15:fa:3d:d8:3b:2c:56:59:a3:b8:d6: 01:44:a2:de:d2:85:09:4e:96:84:fd:fc:64:bf:63:ef:27:99: 42:d5:78:81:db:b7:4c:0b:dc:d9:3e:c4:7a:e0:8b:4a:d2:7e: 90:eb:2b:31:1d:6f:9f:57:f2:6f:53:e0:77:76:79:ed:c6:b5: ae:4e:b5:d2:4a:b5:9f:c5:a2:ee:21:55:95:44:e0:1e:18:e4: cb:bd:3c:44:77:96:31:6d:c5:10:e6:ea:5b:30:91:d9:99:fd: 91:50:33:bd:b2:53:d9:1a:1e:8f:02:c4:57:f3:c0:27:99:fa: 09:78:fb:b8:4f:64:04:b6:62:f8:6d:dc:00:60:ef:09:bf:cf: ce:54:55:6c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUF4FWkdUcTaPcqPg+sgxowhp7MaswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MDQxNzAwMDAwMFoX DTI0MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMTE2NTRhM2E3NzQzNzNkMWFkYmU1 Njk3NzAwNDM2NGU3MGEwODA3MTE3ZGExNzhlMDdkNzAzZTMwNzk2NTBjZjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/dj64hzMQPPfsX4EwjrxWYnQ233 x6uwE62dNaOrtfkjk5UWaYvZ0ssyWRNlBFxVkFoh+HqVtTRDkR36sYea2JsG2E6V ZSUa9Au++8xlo97Vb5VkeYJcmV8SdPawZZ8J7BpbBZhdIPrMxX8a7FxTQ9yBWaSk 0Ypzq/PK7Z1kMjbvg6urHX+97fMCWZ0ysywojXZoFw6eFF0nviIOLfXJ15ATZlAr WUnGLk5WPPsLZ8PS9b+WU+X2u7skezNHL8cMw5oUsP8+dLpcJtdwCJjB22k9LCte +/QXG3iXifnoLZ+xyF9r0vt+ODAJo/zmB+zj6B/YaMR5e49zgnyd4jksnwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFD3WCwcOGiHIeEQDhK5hM+TyVEuiMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzFjM2Q1NzMyLTE5NTQtNDYzOS1hYWMxLWI5MjI5NDQ1ZGVhYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQBOCjIo2PI9B9Zc7gUIg0b6 DQwxaBeHajdVxgN0M78va0h7HjXOpI7sq/264c2kMY/JR/ArZT2t3FydpmfRFGQu rcWjwXztowzXvFZqwJx0TfVwGq8Wn8CGYVvEQ9+JY9ZK5cnnPORejfae7tG5TfUl V9wnFfo92DssVlmjuNYBRKLe0oUJTpaE/fxkv2PvJ5lC1XiB27dMC9zZPsR64ItK 0n6Q6ysxHW+fV/JvU+B3dnntxrWuTrXSSrWfxaLuIVWVROAeGOTLvTxEd5YxbcUQ 5upbMJHZmf2RUDO9slPZGh6PAsRX88AnmfoJePu4T2QEtmL4bdwAYO8Jv8/OVFVs -----END CERTIFICATE-----Generated at Thu May 9 00:38:22 2024 by rpki-client on console-fra.rpki-client.org