$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa File: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (raw, json) Hash identifier: MobyAi4+/mVJ+ooF/L/KfDdE1yAHGxG888EoRhiXD1s= Subject key identifier: F3:B1:57:42:CD:A0:09:88:23:30:F4:37:B3:47:76:9F:54:48:2A:7E Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 4B361AEC80DC9883A5DEC4AAF19B9F981E3CB713 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa Signing time: Mon 04 Sep 2023 00:00:00 +0000 ROA not before: Mon 04 Sep 2023 00:00:00 +0000 ROA not after: Mon 09 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6700:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Sep 2023 03:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:36:1a:ec:80:dc:98:83:a5:de:c4:aa:f1:9b:9f:98:1e:3c:b7:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Sep 4 00:00:00 2023 GMT Not After : Oct 9 23:59:59 2023 GMT Subject: serialNumber=bde0c985158b7091fc047eecb442b54782144dbdec76a24d7ce3e16db8e253e8, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:9a:8e:c5:c9:de:5f:92:8a:d1:e7:33:45:cb: 43:7b:57:77:17:2c:64:10:fb:6d:f8:99:3e:7a:2f: af:a4:55:1c:a4:f1:7b:38:83:26:28:8a:2a:ef:4a: 99:c1:39:5f:ec:ee:1f:72:64:17:7f:49:9f:13:e7: 33:78:09:56:c1:b3:e9:ae:d1:fe:ae:cc:86:88:21: 10:8f:5d:b6:25:9d:b6:68:2a:bb:e7:b7:78:48:28: 32:57:66:7f:6c:a8:c5:69:41:e1:5f:bd:69:2f:5e: cf:19:2b:f2:33:57:7c:bb:c2:15:6f:49:74:a8:cb: 6b:e9:af:a3:17:1e:39:b1:00:c3:fe:79:bf:67:5c: 0b:42:7c:3a:00:33:f0:18:93:ec:fa:da:89:8c:7a: fc:47:76:b8:32:2f:f2:9d:b5:bf:fa:03:1b:05:cf: a9:37:00:87:1c:08:e7:2e:19:be:c3:95:28:6c:b7: ba:b5:80:2a:1f:60:99:80:1e:9b:d0:b0:9e:01:cf: 93:3f:3b:93:19:34:8f:fc:36:a5:71:46:ce:56:ca: ca:83:da:c6:2e:64:65:76:05:a5:45:cd:15:29:f1: 37:74:80:93:08:31:af:cc:ef:82:b3:32:08:15:61: 8f:f2:dc:09:74:30:74:20:a3:a6:73:c9:9f:55:73: 3d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B1:57:42:CD:A0:09:88:23:30:F4:37:B3:47:76:9F:54:48:2A:7E X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700:ff00::/48 Signature Algorithm: sha256WithRSAEncryption a5:b3:82:da:a2:b1:94:e3:96:d2:0f:bc:a9:87:8d:c5:af:48: ca:af:92:50:03:96:a9:e3:d5:2f:03:ce:93:f5:13:e9:4d:91: c5:c9:e9:78:b0:4b:c9:1c:b6:c0:cc:9e:c8:90:4b:f2:f9:11: 9e:02:32:f6:59:7d:8f:94:56:a4:19:85:f6:04:81:e4:a6:36: 7c:02:1f:17:70:e5:cc:f4:c7:c6:f1:e4:e2:1b:7c:c6:bb:46: 56:02:6d:e4:8a:f1:df:94:50:f9:4e:dd:70:dc:e3:43:00:7d: 89:a2:04:2b:58:bf:eb:8f:cb:29:a6:88:92:af:87:da:e9:0c: c2:89:25:24:f4:cc:16:de:ad:87:13:d5:e8:c0:01:31:4b:46: 06:b0:b9:6f:72:66:a3:70:6a:a2:94:83:98:3a:22:45:43:e8: 92:40:4a:e3:6e:1b:4f:a1:65:0c:98:d0:8a:4a:8d:d8:51:4b: 03:bb:4e:a3:87:3d:d9:86:7d:d0:2f:18:ac:6a:2b:bb:65:68: a8:f8:04:29:81:c4:38:d2:90:fd:9c:df:b9:5b:04:b9:84:28: ac:7f:d8:e4:4f:ac:b6:de:a2:12:ea:38:2e:be:3f:28:94:d8: dd:d3:ae:61:fe:f0:9c:76:31:12:25:77:79:6f:e6:7c:92:c1: d8:4e:48:4a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUSzYa7IDcmIOl3sSq8ZufmB48txMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTIzMDkwNDAwMDAwMFoX DTIzMTAwOTIzNTk1OVowejFJMEcGA1UEBRNAYmRlMGM5ODUxNThiNzA5MWZjMDQ3 ZWVjYjQ0MmI1NDc4MjE0NGRiZGVjNzZhMjRkN2NlM2UxNmRiOGUyNTNlODEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg5qOxcneX5KK0eczRctDe1d3Fyxk EPtt+Jk+ei+vpFUcpPF7OIMmKIoq70qZwTlf7O4fcmQXf0mfE+czeAlWwbPprtH+ rsyGiCEQj122JZ22aCq757d4SCgyV2Z/bKjFaUHhX71pL17PGSvyM1d8u8IVb0l0 qMtr6a+jFx45sQDD/nm/Z1wLQnw6ADPwGJPs+tqJjHr8R3a4Mi/ynbW/+gMbBc+p NwCHHAjnLhm+w5UobLe6tYAqH2CZgB6b0LCeAc+TPzuTGTSP/DalcUbOVsrKg9rG LmRldgWlRc0VKfE3dICTCDGvzO+CszIIFWGP8twJdDB0IKOmc8mfVXM9mQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPOxV0LNoAmIIzD0N7NHdp9USCp+MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2NjNjcxYzc5LTIxZjAtNGZmZi1iODk4LTU5NTk2NmVjZDFhOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABnAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQCls4LaorGU45bSD7yp h43Fr0jKr5JQA5ap49UvA86T9RPpTZHFyel4sEvJHLbAzJ7IkEvy+RGeAjL2WX2P lFakGYX2BIHkpjZ8Ah8XcOXM9MfG8eTiG3zGu0ZWAm3kivHflFD5Tt1w3ONDAH2J ogQrWL/rj8sppoiSr4fa6QzCiSUk9MwW3q2HE9XowAExS0YGsLlvcmajcGqilIOY OiJFQ+iSQErjbhtPoWUMmNCKSo3YUUsDu06jhz3Zhn3QLxisaiu7ZWio+AQpgcQ4 0pD9nN+5WwS5hCisf9jkT6y23qIS6jguvj8olNjd065h/vCcdjESJXd5b+Z8ksHY TkhK -----END CERTIFICATE-----Generated at Mon Sep 4 15:12:34 2023 by rpki-client on console-fra.rpki-client.org