$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a18d866-9fb0-44dc-8cfd-5461500736e2.roa File: 7a18d866-9fb0-44dc-8cfd-5461500736e2.roa (raw, json) Hash identifier: 5ZCZ8d/7WiV3GHIYNtv/cRDTESoby39h4SUTk2FWHg4= Subject key identifier: 6B:6B:38:4B:EE:2E:8F:21:2E:C8:34:A2:A2:FB:E0:6A:AE:47:69:4B Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 4934B4E0A78946552E8F2A02A06379779DE93854 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a18d866-9fb0-44dc-8cfd-5461500736e2.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:34:b4:e0:a7:89:46:55:2e:8f:2a:02:a0:63:79:77:9d:e9:38:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=c4950867332d740b9f123837ea99f94b78c6d7ebce5ee664511055794d5b575d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:27:e9:8e:c3:ef:a4:af:ce:bd:09:b1:6c:3c: 90:6f:60:8e:9c:6c:bd:ec:bd:84:bf:36:b4:cb:b9: ee:aa:da:a4:c9:02:c2:d6:15:5c:f0:95:22:c1:1f: 26:35:21:8f:be:7e:d0:6a:5a:2e:9e:83:24:3d:5d: 04:8c:d6:f9:79:b3:f3:b7:d1:f5:f1:e8:95:ea:6e: 9c:d6:c8:52:a1:e0:4c:e9:d6:09:52:57:a5:f7:dd: 90:b5:e5:d5:7b:f3:92:32:d8:89:dd:60:27:37:dc: f4:5e:58:d3:54:35:0c:c9:20:c3:02:7e:4d:da:ef: 2f:58:31:30:2c:f6:08:8f:e0:1b:40:1d:22:7a:f9: c2:66:c4:3a:69:c2:e1:f3:95:35:c7:d8:f0:7c:54: 30:8b:78:18:32:cb:67:03:68:50:2b:86:34:63:76: f1:1b:d7:db:73:0b:76:63:96:dd:42:f1:1b:e5:f0: d9:25:11:45:29:64:39:b0:9f:a3:3e:91:7e:b0:e9: 85:f5:bd:b8:60:db:48:e8:35:8f:a8:05:ac:09:85: 26:56:ed:46:21:92:33:28:d9:53:5b:08:c5:2d:86: b7:28:f0:20:1c:14:9c:0a:1c:7c:aa:f0:20:35:a3: 99:7b:a0:18:ad:5d:7c:5d:3d:0c:e2:7b:78:27:c6: a0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6B:38:4B:EE:2E:8F:21:2E:C8:34:A2:A2:FB:E0:6A:AE:47:69:4B X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a18d866-9fb0-44dc-8cfd-5461500736e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 41:41:72:71:09:8d:5f:81:e9:8c:36:d9:b7:1d:76:c0:98:88: 28:37:1d:c6:4c:5c:6d:26:57:20:7a:b8:6f:3d:c0:94:21:6c: 21:d7:77:05:4a:58:38:dd:0a:23:fd:9c:73:a4:0e:70:ed:f6: 1a:16:ef:4a:e8:39:b7:be:b4:a6:44:10:b1:67:7d:5a:ae:c3: 1c:ad:c7:65:35:18:17:0e:ad:94:0c:46:8b:54:17:21:cd:b1: 9a:d9:e2:c5:28:e5:41:80:20:15:b9:74:5f:1d:ad:e9:2e:87: 9a:82:e3:fd:d1:d1:38:0e:c2:bf:d7:4f:0b:ac:8e:ec:0a:8d: 07:4a:6b:39:5a:ad:9f:76:9d:fc:4b:fc:dd:85:f2:81:db:41: f6:e7:16:df:dc:68:bb:ce:f8:d0:c9:f9:d2:4c:71:75:0c:f2: 49:19:bd:1c:99:24:ff:10:9c:ca:cb:30:c8:40:98:13:ec:fb: 8c:be:a9:9d:c7:85:79:00:a4:8d:fa:16:ce:41:70:8c:b7:13: 60:5d:2b:a8:24:09:d2:11:70:2b:ab:bd:ae:82:df:0e:db:24: 23:16:96:5a:18:b1:4b:43:94:3b:64:df:22:fc:d3:75:6c:3a: 9a:1d:75:ad:27:a6:d2:5a:f2:51:b2:36:fe:0f:dc:ab:6f:fc: 4a:79:81:e2 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUSTS04KeJRlUujyoCoGN5d53pOFQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MTEwNTAwMDAwMFoX DTI0MTIxMDIzNTk1OVowejFJMEcGA1UEBRNAYzQ5NTA4NjczMzJkNzQwYjlmMTIz ODM3ZWE5OWY5NGI3OGM2ZDdlYmNlNWVlNjY0NTExMDU1Nzk0ZDViNTc1ZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SfpjsPvpK/OvQmxbDyQb2COnGy9 7L2Evza0y7nuqtqkyQLC1hVc8JUiwR8mNSGPvn7QalounoMkPV0EjNb5ebPzt9H1 8eiV6m6c1shSoeBM6dYJUlel992QteXVe/OSMtiJ3WAnN9z0XljTVDUMySDDAn5N 2u8vWDEwLPYIj+AbQB0ievnCZsQ6acLh85U1x9jwfFQwi3gYMstnA2hQK4Y0Y3bx G9fbcwt2Y5bdQvEb5fDZJRFFKWQ5sJ+jPpF+sOmF9b24YNtI6DWPqAWsCYUmVu1G IZIzKNlTWwjFLYa3KPAgHBScChx8qvAgNaOZe6AYrV18XT0M4nt4J8agBQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGtrOEvuLo8hLsg0oqL74GquR2lLMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhMThkODY2LTlmYjAtNDRkYy04Y2ZkLTU0NjE1MDA3MzZlMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQBBQXJxCY1fgemMNtm3HXbA mIgoNx3GTFxtJlcgerhvPcCUIWwh13cFSlg43Qoj/ZxzpA5w7fYaFu9K6Dm3vrSm RBCxZ31arsMcrcdlNRgXDq2UDEaLVBchzbGa2eLFKOVBgCAVuXRfHa3pLoeaguP9 0dE4DsK/108LrI7sCo0HSms5Wq2fdp38S/zdhfKB20H25xbf3Gi7zvjQyfnSTHF1 DPJJGb0cmST/EJzKyzDIQJgT7PuMvqmdx4V5AKSN+hbOQXCMtxNgXSuoJAnSEXAr q72ugt8O2yQjFpZaGLFLQ5Q7ZN8i/NN1bDqaHXWtJ6bSWvJRsjb+D9yrb/xKeYHi -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:48 2024 by rpki-client on console-fra.rpki-client.org