$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/751e30fc-3483-4f10-a851-e6330352553c.roa File: 751e30fc-3483-4f10-a851-e6330352553c.roa (raw, json) Hash identifier: xUnwNZVgDmLvBXAaR7Ox/Xc/bIXORs4CJ4wsr+FFIAE= Subject key identifier: B9:68:AA:73:31:6A:C3:38:22:0E:E2:EB:8B:C7:48:47:81:67:E9:A0 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 17214DA2F5313BE23D19B863B1B5BC0787BBF7E0 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/751e30fc-3483-4f10-a851-e6330352553c.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2400:6700::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 00:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:21:4d:a2:f5:31:3b:e2:3d:19:b8:63:b1:b5:bc:07:87:bb:f7:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=35a2d791349178c21f2b96279dd37be5c63eef98f76e4d63ebc25a04bf839294, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bf:18:c5:92:ef:bf:cf:6b:b6:f3:4b:ad:80: 4a:ae:d6:f6:f9:4a:24:d1:69:b6:7e:64:ee:ac:7e: 16:60:db:0d:32:9b:64:a6:13:a9:a6:49:ef:57:53: 27:be:4e:92:bf:20:88:cf:6c:10:08:80:3b:5f:2a: 07:69:27:44:fb:f4:06:8e:63:5b:e9:dc:09:a7:6e: 45:f0:a3:06:d7:21:25:3b:6a:b2:2a:9a:12:a2:0d: 50:ab:dc:2d:48:d2:22:8c:43:32:b7:a3:b3:7b:f8: ab:37:9b:ce:72:ac:de:2b:cf:a5:70:a7:06:29:62: 48:be:b2:7f:7b:67:e3:13:86:a4:d7:dc:4e:18:c8: f0:e0:8a:25:b0:89:18:09:e8:85:c8:86:3f:b5:e8: 18:37:73:19:e7:41:24:b2:a4:bf:ae:34:23:ed:58: ed:3c:49:65:0e:b4:09:26:a4:09:c5:5f:eb:3e:9a: ed:8d:99:9c:70:ba:e6:c3:3c:99:8f:4b:b6:7a:80: 35:2c:8e:2b:b5:78:32:b7:3f:17:98:5c:76:5c:6f: 1f:c0:2a:27:c6:7e:df:bb:d3:d9:eb:f5:1a:c3:95: bb:8a:fb:5b:4d:85:aa:14:17:4b:cc:7b:82:3b:15: cd:98:98:a7:97:9c:bf:f8:17:a7:c4:fd:20:1c:42: 67:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:68:AA:73:31:6A:C3:38:22:0E:E2:EB:8B:C7:48:47:81:67:E9:A0 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/751e30fc-3483-4f10-a851-e6330352553c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700::/32 Signature Algorithm: sha256WithRSAEncryption a3:c0:58:ad:2d:f0:cf:f3:01:82:ae:b6:91:4d:77:94:88:6c: 2c:fd:52:9c:e3:b1:b1:93:4d:2d:89:92:30:3e:fe:af:ef:8a: 26:79:87:b7:35:65:2b:e3:e4:82:eb:57:ed:1c:66:7d:ed:a3: 73:64:5c:6e:cd:22:60:98:a6:f5:cc:1a:98:7e:d4:6e:b1:aa: 0f:79:63:85:1b:b0:5f:df:1e:ec:92:66:b8:44:ab:1a:5d:aa: 9d:e8:fd:63:ee:e9:9c:0b:e3:ed:ee:9c:ac:90:6d:32:34:83: b2:a9:2d:93:3a:23:c8:fa:2f:bb:49:f5:f3:a0:6b:44:a1:76: 6a:e0:b1:30:b0:b0:bb:92:e0:4f:58:04:08:b1:fb:df:57:ef: 3d:44:c0:44:8e:00:db:a0:3a:33:b0:d4:ed:99:a8:41:30:2c: 7e:7d:15:e2:30:72:da:a8:9d:c9:eb:34:0f:2a:32:85:38:98: 4a:8f:c1:8c:ce:23:30:09:25:7e:6f:18:86:3d:2d:c5:74:ed: 36:7e:62:74:d2:69:34:b8:1c:70:44:ba:7e:8e:ea:cb:31:af: f6:91:82:23:84:a7:f6:56:11:bc:cf:b1:96:b1:31:2b:37:eb: fe:24:87:c8:64:8a:bc:e2:46:3f:9d:47:6a:df:ac:4e:cb:9b: a6:e8:b9:04 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUFyFNovUxO+I9GbhjsbW8B4e79+AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MDQxNzAwMDAwMFoX DTI0MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMzVhMmQ3OTEzNDkxNzhjMjFmMmI5 NjI3OWRkMzdiZTVjNjNlZWY5OGY3NmU0ZDYzZWJjMjVhMDRiZjgzOTI5NDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtr8YxZLvv89rtvNLrYBKrtb2+Uok 0Wm2fmTurH4WYNsNMptkphOppknvV1Mnvk6SvyCIz2wQCIA7XyoHaSdE+/QGjmNb 6dwJp25F8KMG1yElO2qyKpoSog1Qq9wtSNIijEMyt6Oze/irN5vOcqzeK8+lcKcG KWJIvrJ/e2fjE4ak19xOGMjw4IolsIkYCeiFyIY/tegYN3MZ50EksqS/rjQj7Vjt PEllDrQJJqQJxV/rPprtjZmccLrmwzyZj0u2eoA1LI4rtXgytz8XmFx2XG8fwCon xn7fu9PZ6/Uaw5W7ivtbTYWqFBdLzHuCOxXNmJinl5y/+BenxP0gHEJn2wIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFLloqnMxasM4Ig7i64vHSEeBZ+mgMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 Lzc1MWUzMGZjLTM0ODMtNGYxMC1hODUxLWU2MzMwMzUyNTUzYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABnADANBgkqhkiG9w0BAQsFAAOCAQEAo8BYrS3wz/MBgq62kU13 lIhsLP1SnOOxsZNNLYmSMD7+r++KJnmHtzVlK+PkgutX7Rxmfe2jc2Rcbs0iYJim 9cwamH7UbrGqD3ljhRuwX98e7JJmuESrGl2qnej9Y+7pnAvj7e6crJBtMjSDsqkt kzojyPovu0n186BrRKF2auCxMLCwu5LgT1gECLH731fvPUTARI4A26A6M7DU7Zmo QTAsfn0V4jBy2qidyes0DyoyhTiYSo/BjM4jMAklfm8Yhj0txXTtNn5idNJpNLgc cES6fo7qyzGv9pGCI4Sn9lYRvM+xlrExKzfr/iSHyGSKvOJGP51Hat+sTsubpui5 BA== -----END CERTIFICATE-----Generated at Wed Apr 24 01:49:38 2024 by rpki-client on console-fra.rpki-client.org