$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/f9ff7c3b-311a-406b-8de4-c655cfdeea7e.roa File: f9ff7c3b-311a-406b-8de4-c655cfdeea7e.roa (raw, json) Hash identifier: srm+5M0AfN9VO3Yjg2PUkg0/W8H/brXmQU2SPScXezc= Subject key identifier: 6C:1A:BB:92:A8:96:00:92:0D:6C:BF:9C:A9:DF:5C:21:AD:06:D4:D7 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 23A41A3918A444DC7CCA012BD92AD1E16B505F5B Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/f9ff7c3b-311a-406b-8de4-c655cfdeea7e.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 175.41.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 00:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a4:1a:39:18:a4:44:dc:7c:ca:01:2b:d9:2a:d1:e1:6b:50:5f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=81d5a74186aa8b4142b847902b1cf1e372082d4d6c6b0fc609aac7c1ca27838d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:c8:47:0f:fc:04:0e:f7:ab:92:16:ca:9e: 93:a9:29:d2:ad:bc:94:0a:4b:83:55:70:ee:5b:e8: 8e:55:cf:d1:07:1b:41:01:9f:47:6b:1c:30:e3:26: 35:39:9d:54:af:e9:83:6a:1b:78:ce:ba:c5:df:b3: 28:1a:7b:b3:b1:13:1e:c7:04:7e:71:d6:5c:84:12: a2:49:25:b9:32:19:88:46:bd:b8:de:60:eb:bf:fe: 83:14:6a:cf:44:d0:79:64:f3:31:01:35:88:4f:13: 59:6f:c3:d5:57:c8:98:11:76:af:41:a7:d6:71:56: 87:4c:47:d0:33:77:35:24:c6:56:ef:d1:72:e7:77: 8f:0f:ff:e2:fe:25:3d:54:e1:81:a2:87:7d:6a:30: a7:db:86:a5:93:3f:66:69:eb:41:e3:9f:3f:0b:ab: f5:e2:b2:19:fc:7a:ec:51:2c:73:d3:79:a0:8d:fd: b0:de:c0:6c:49:9b:07:84:f0:ba:85:02:ef:09:57: bc:96:63:c1:81:2e:66:a1:f7:49:76:8e:01:2b:11: 4b:67:fa:be:fb:7c:e0:56:98:c3:97:85:dd:34:56: 28:18:d8:a1:e0:d4:d3:b3:2b:7a:f0:73:78:27:b6: 2c:90:d3:bf:f7:46:dd:d3:a7:04:ae:1d:d1:90:f6: a1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:1A:BB:92:A8:96:00:92:0D:6C:BF:9C:A9:DF:5C:21:AD:06:D4:D7 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/f9ff7c3b-311a-406b-8de4-c655cfdeea7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 91:db:8f:fb:94:36:49:80:dc:5d:e7:95:12:13:0e:e3:22:51: 02:57:b3:47:d1:82:c4:73:52:54:32:47:f3:27:a0:20:5d:21: db:26:04:01:29:4c:68:44:d4:7f:64:16:59:6d:63:0e:d0:ac: 50:30:f2:96:fb:e0:fa:8f:8c:0a:bc:05:af:90:22:7f:fd:d7: 02:55:93:cf:9c:05:db:7d:ab:3a:ed:a6:ac:93:61:bd:9b:3c: 8d:57:97:1d:87:81:d0:e0:0c:3f:79:40:69:f8:24:1d:4d:cf: 55:d2:84:46:aa:a6:89:8a:03:fd:3a:1e:f7:b6:f0:dc:fe:69: a5:82:74:77:50:a1:c0:ce:08:8f:c7:08:cf:f1:da:ce:ad:ac: 61:50:e5:75:b6:db:86:43:fb:11:76:84:a9:c6:80:20:c6:f4: 92:09:03:65:49:cf:35:93:bd:a3:63:1d:bb:99:03:4b:59:bc: 06:a8:11:12:23:7f:52:3d:d6:98:b3:e7:71:f3:0e:1c:c3:f0: af:2d:53:fa:7b:a4:c2:57:fc:20:79:df:e7:24:11:69:02:9e: ed:70:6b:09:0c:ab:c3:2f:57:73:11:8b:7a:0b:f9:b4:1c:ee: 4a:2f:f1:3e:b0:9e:69:49:bb:95:65:1e:a8:7a:28:b2:38:b0: bd:a0:9c:91 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUI6QaORikRNx8ygEr2SrR4WtQX1swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MDQxNzAwMDAwMFoX DTI0MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAODFkNWE3NDE4NmFhOGI0MTQyYjg0 NzkwMmIxY2YxZTM3MjA4MmQ0ZDZjNmIwZmM2MDlhYWM3YzFjYTI3ODM4ZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu93IRw/8BA73q5IWyp6TqSnSrbyU CkuDVXDuW+iOVc/RBxtBAZ9Haxww4yY1OZ1Ur+mDaht4zrrF37MoGnuzsRMexwR+ cdZchBKiSSW5MhmIRr243mDrv/6DFGrPRNB5ZPMxATWITxNZb8PVV8iYEXavQafW cVaHTEfQM3c1JMZW79Fy53ePD//i/iU9VOGBood9ajCn24alkz9maetB458/C6v1 4rIZ/HrsUSxz03mgjf2w3sBsSZsHhPC6hQLvCVe8lmPBgS5mofdJdo4BKxFLZ/q+ +3zgVpjDl4XdNFYoGNih4NTTsyt68HN4J7YskNO/90bd06cErh3RkPahVQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGwau5KolgCSDWy/nKnfXCGtBtTXMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2Y5ZmY3YzNiLTMxMWEtNDA2Yi04ZGU0LWM2NTVjZmRlZWE3ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQCR24/7lDZJgNxd55USEw7j IlECV7NH0YLEc1JUMkfzJ6AgXSHbJgQBKUxoRNR/ZBZZbWMO0KxQMPKW++D6j4wK vAWvkCJ//dcCVZPPnAXbfas67aask2G9mzyNV5cdh4HQ4Aw/eUBp+CQdTc9V0oRG qqaJigP9Oh73tvDc/mmlgnR3UKHAzgiPxwjP8drOraxhUOV1ttuGQ/sRdoSpxoAg xvSSCQNlSc81k72jYx27mQNLWbwGqBESI39SPdaYs+dx8w4cw/CvLVP6e6TCV/wg ed/nJBFpAp7tcGsJDKvDL1dzEYt6C/m0HO5KL/E+sJ5pSbuVZR6oeiiyOLC9oJyR -----END CERTIFICATE-----Generated at Wed Apr 24 01:55:32 2024 by rpki-client on console-ams.rpki-client.org