$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa File: 1c3d5732-1954-4639-aac1-b9229445deac.roa (raw, json) Hash identifier: QIDH7NlCrd6mEWVtNOxQ1yL1W9jZtvhtEPLuhVDkGPs= Subject key identifier: 09:E6:1A:37:21:2C:D7:5C:BE:66:0A:E1:31:7E:84:2C:06:AD:62:E9 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1E5677FF158E7FEBD0CB8CFCFFB044B3236512E9 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 175.41.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:56:77:ff:15:8e:7f:eb:d0:cb:8c:fc:ff:b0:44:b3:23:65:12:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=29bd52aa2f41814efde93695fb379e348081a97e92b165dd0d92a00cf32a3b43, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:46:0f:88:cc:6c:86:e3:c4:29:40:ef:c7:e6: ac:33:3d:85:1a:63:a0:24:b4:32:24:fe:a8:53:64: 18:f7:28:82:98:d0:8a:19:eb:c1:54:3a:1d:5d:56: 41:49:51:22:15:a1:a0:ac:a7:d4:d6:37:7d:cd:e6: 6b:3f:12:bd:a7:9f:9e:e9:6f:6c:09:89:c8:d7:de: ff:0b:e6:3d:08:20:14:d6:8a:bb:ff:e5:00:06:53: 2d:b9:73:11:0a:6c:de:1a:bd:89:26:55:f1:c5:b1: 94:dc:d5:9b:e8:4e:0a:6d:95:47:56:29:5d:bc:49: 61:a1:af:f2:b5:8c:b1:8d:40:64:b0:0d:e4:2b:81: 4e:31:63:13:41:13:35:78:d8:63:84:23:41:23:6c: ce:e0:48:fb:ac:7f:96:80:24:b7:52:9c:6c:f7:96: ab:f4:db:3d:bf:97:5f:eb:de:bf:6e:39:29:18:b6: 63:de:f3:f0:11:0d:cf:e9:d4:7a:ee:5e:5e:37:4a: c4:21:e6:2d:f0:11:62:a5:d7:d1:cc:cb:de:1b:5d: 0b:f2:a1:6d:83:42:51:e6:50:65:de:84:fd:8a:43: 39:45:92:e1:4c:f2:98:13:b9:33:18:e0:31:c4:24: 41:5e:5e:74:61:e1:20:fd:57:f9:d1:fe:10:23:9e: 33:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E6:1A:37:21:2C:D7:5C:BE:66:0A:E1:31:7E:84:2C:06:AD:62:E9 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/1c3d5732-1954-4639-aac1-b9229445deac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 67:69:d3:6d:07:3e:6e:21:3f:f5:a6:bd:f9:f5:89:f2:49:5a: 8e:8c:9f:d6:ea:ac:8d:30:02:50:24:91:09:09:3f:df:8e:5a: a8:32:ed:01:6d:72:67:02:c8:2c:18:8b:11:c6:01:69:2a:9f: 6e:97:fe:13:80:ff:29:b9:57:27:24:11:1e:06:2c:fb:ab:1a: c5:c0:df:ae:ff:bd:7a:f2:94:79:18:de:64:2b:7b:4e:a6:6d: 28:59:4e:f9:56:9f:5d:96:fe:2d:6a:ea:be:e5:b4:ee:79:dd: c6:26:cf:70:5d:24:c0:8f:fd:fc:46:5e:e6:55:21:53:59:4c: a5:8a:11:6b:f8:98:26:a6:6c:b5:12:11:e0:2d:3a:da:65:f2: 8a:ea:9e:88:38:c7:5a:7a:f8:54:05:1a:0a:d1:87:c4:36:e6: b5:28:73:8b:18:1e:57:63:b9:46:b9:28:c8:e2:1f:cc:e9:db: ee:83:da:f7:36:40:a8:0a:72:b5:a7:c1:fa:3d:0c:de:38:32: 0a:d8:ce:8b:7d:49:0f:9d:c4:5f:78:1f:8c:d2:e2:42:41:75: 08:5b:d6:07:7f:85:4e:2b:31:f3:1c:8b:33:aa:ef:af:90:e2: c5:f2:e7:0c:4a:83:a0:9b:9c:ba:3a:e9:f0:f4:c7:88:97:a6: eb:9f:09:f9 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUHlZ3/xWOf+vQy4z8/7BEsyNlEukwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MTEwNTAwMDAwMFoX DTI0MTIxMDIzNTk1OVowejFJMEcGA1UEBRNAMjliZDUyYWEyZjQxODE0ZWZkZTkz Njk1ZmIzNzllMzQ4MDgxYTk3ZTkyYjE2NWRkMGQ5MmEwMGNmMzJhM2I0MzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUYPiMxshuPEKUDvx+asMz2FGmOg JLQyJP6oU2QY9yiCmNCKGevBVDodXVZBSVEiFaGgrKfU1jd9zeZrPxK9p5+e6W9s CYnI197/C+Y9CCAU1oq7/+UABlMtuXMRCmzeGr2JJlXxxbGU3NWb6E4KbZVHVild vElhoa/ytYyxjUBksA3kK4FOMWMTQRM1eNhjhCNBI2zO4Ej7rH+WgCS3Upxs95ar 9Ns9v5df696/bjkpGLZj3vPwEQ3P6dR67l5eN0rEIeYt8BFipdfRzMveG10L8qFt g0JR5lBl3oT9ikM5RZLhTPKYE7kzGOAxxCRBXl50YeEg/Vf50f4QI54zJQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAnmGjchLNdcvmYK4TF+hCwGrWLpMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzFjM2Q1NzMyLTE5NTQtNDYzOS1hYWMxLWI5MjI5NDQ1ZGVhYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQBnadNtBz5uIT/1pr359Yny SVqOjJ/W6qyNMAJQJJEJCT/fjlqoMu0BbXJnAsgsGIsRxgFpKp9ul/4TgP8puVcn JBEeBiz7qxrFwN+u/7168pR5GN5kK3tOpm0oWU75Vp9dlv4tauq+5bTued3GJs9w XSTAj/38Rl7mVSFTWUylihFr+Jgmpmy1EhHgLTraZfKK6p6IOMdaevhUBRoK0YfE Nua1KHOLGB5XY7lGuSjI4h/M6dvug9r3NkCoCnK1p8H6PQzeODIK2M6LfUkPncRf eB+M0uJCQXUIW9YHf4VOKzHzHIszqu+vkOLF8ucMSoOgm5y6Ounw9MeIl6brnwn5 -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:48 2024 by rpki-client on console-fra.rpki-client.org