$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/54b92ba8-ed43-4a2c-99b4-5c5cf8c9408a.roa File: 54b92ba8-ed43-4a2c-99b4-5c5cf8c9408a.roa (raw, json) Hash identifier: AZCDPmPKJg4gAh+UnbENJy30LQ3P/3kLp6vTvIaZYAc= Subject key identifier: 39:A7:2B:75:50:C6:DA:48:10:B2:0D:74:97:36:9B:47:F7:B8:FB:1E Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 5F653EB9B3BF025258B9B7F9CC9D03181530B192 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/54b92ba8-ed43-4a2c-99b4-5c5cf8c9408a.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6700::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 00:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:65:3e:b9:b3:bf:02:52:58:b9:b7:f9:cc:9d:03:18:15:30:b1:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=2b79c9c994bbdefc6b4e9be2e3de25eb2cc79ff8359d70d23cb4e1a2166faed4, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:93:99:38:70:f8:10:82:97:ba:90:d8:83:fa: 2f:f2:0d:0b:f0:33:45:01:e0:c9:9c:7c:3e:65:ab: 4f:df:2b:40:01:10:31:d2:1e:51:fa:6b:58:df:f7: 2f:a1:33:f7:7e:e7:23:0e:cb:6c:18:6b:f4:7c:62: 45:1a:15:3d:f1:93:1b:b0:cd:fb:58:60:05:c5:d6: 2b:93:3f:52:67:4c:72:93:a7:f2:4a:e2:89:b6:50: 86:b6:47:54:13:dd:95:12:4c:70:d4:51:88:16:ed: a7:e2:c7:54:81:cd:73:12:0c:25:11:d1:9d:df:e6: d3:bc:60:1c:8f:09:1d:44:2f:7e:41:33:d5:47:13: a7:af:a9:c4:83:2e:30:09:3b:db:56:b3:51:05:44: 72:5d:ac:cd:12:aa:ab:92:c6:b2:f6:27:b3:39:b2: f3:33:ca:82:81:eb:a2:18:df:68:f3:67:00:0f:e8: d2:80:58:dc:96:91:8a:0a:19:b1:91:fe:80:86:bf: ec:af:d9:84:ad:24:6d:e6:6c:f3:bc:8a:4f:a6:1a: d1:5d:74:38:0b:4c:66:e8:50:ec:77:9a:9d:92:7a: 2e:68:c8:55:d9:3f:12:01:90:e8:c6:41:33:a9:65: 55:87:d2:8c:ad:de:af:b6:57:bc:6a:01:87:60:1b: 88:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A7:2B:75:50:C6:DA:48:10:B2:0D:74:97:36:9B:47:F7:B8:FB:1E X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/54b92ba8-ed43-4a2c-99b4-5c5cf8c9408a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700::/32 Signature Algorithm: sha256WithRSAEncryption 28:18:fa:ab:12:60:58:1c:1b:25:f6:30:da:ba:73:42:a6:c0: 2a:06:2b:ff:08:da:5e:05:00:54:f4:63:cd:26:5e:69:b6:5f: 04:3f:49:92:e7:14:b0:22:a1:38:f4:93:d6:7b:59:a2:ae:9e: 43:95:03:8f:e0:d1:00:72:37:fb:20:21:20:7c:88:7a:b2:22: 55:5f:e2:c6:c7:4c:54:97:53:cf:db:57:e9:33:54:8e:84:ce: b9:f0:e0:7b:59:a1:b3:20:92:d9:f8:b0:b9:41:33:a4:47:2b: 5a:94:74:72:e4:ae:74:45:3e:6a:22:f3:ef:56:f1:53:88:8e: af:7a:44:50:07:40:87:4d:37:2b:8d:99:6f:2f:47:59:33:10: ec:0c:b7:15:15:9e:8e:5d:ad:56:1b:69:7d:66:1f:5e:40:01: 0b:a6:28:de:0e:4c:81:cc:db:18:e2:63:e8:50:f0:1b:7d:cc: 55:da:f1:da:91:c5:fa:16:30:59:72:55:73:e0:0d:9d:ab:10: d2:f9:b5:1c:b6:ee:6c:ee:c8:58:84:be:c3:00:5f:5b:05:9e: 82:9b:d9:f8:5d:0f:4f:ab:33:ef:77:3c:6b:eb:78:6b:7b:14: f0:43:a0:75:ee:f2:39:69:fa:e3:04:ad:cf:27:ad:c0:22:fa: 70:26:90:d3 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUX2U+ubO/AlJYubf5zJ0DGBUwsZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MDQxNzAwMDAwMFoX DTI0MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMmI3OWM5Yzk5NGJiZGVmYzZiNGU5 YmUyZTNkZTI1ZWIyY2M3OWZmODM1OWQ3MGQyM2NiNGUxYTIxNjZmYWVkNDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJOZOHD4EIKXupDYg/ov8g0L8DNF AeDJnHw+ZatP3ytAARAx0h5R+mtY3/cvoTP3fucjDstsGGv0fGJFGhU98ZMbsM37 WGAFxdYrkz9SZ0xyk6fySuKJtlCGtkdUE92VEkxw1FGIFu2n4sdUgc1zEgwlEdGd 3+bTvGAcjwkdRC9+QTPVRxOnr6nEgy4wCTvbVrNRBURyXazNEqqrksay9iezObLz M8qCgeuiGN9o82cAD+jSgFjclpGKChmxkf6Ahr/sr9mErSRt5mzzvIpPphrRXXQ4 C0xm6FDsd5qdknouaMhV2T8SAZDoxkEzqWVVh9KMrd6vtle8agGHYBuIMwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFDmnK3VQxtpIELINdJc2m0f3uPseMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzU0YjkyYmE4LWVkNDMtNGEyYy05OWI0LTVjNWNmOGM5NDA4YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABnADANBgkqhkiG9w0BAQsFAAOCAQEAKBj6qxJgWBwbJfYw2rpz QqbAKgYr/wjaXgUAVPRjzSZeabZfBD9JkucUsCKhOPST1ntZoq6eQ5UDj+DRAHI3 +yAhIHyIerIiVV/ixsdMVJdTz9tX6TNUjoTOufDge1mhsyCS2fiwuUEzpEcrWpR0 cuSudEU+aiLz71bxU4iOr3pEUAdAh003K42Zby9HWTMQ7Ay3FRWejl2tVhtpfWYf XkABC6Yo3g5MgczbGOJj6FDwG33MVdrx2pHF+hYwWXJVc+ANnasQ0vm1HLbubO7I WIS+wwBfWwWegpvZ+F0PT6sz73c8a+t4a3sU8EOgde7yOWn64wStzyetwCL6cCaQ 0w== -----END CERTIFICATE-----Generated at Fri Apr 26 00:36:12 2024 by rpki-client on console-ams.rpki-client.org