$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e3bbb66-0246-4c16-ac30-46380740bfd9.roa File: 6e3bbb66-0246-4c16-ac30-46380740bfd9.roa (raw, json) Hash identifier: LNj93m8NjIEY5mIgEHkDRuB4QbuCtAadGld6Zo6QbUM= Subject key identifier: FD:C8:CF:6F:9F:FD:1F:CE:90:88:66:5B:A5:18:3F:7D:C4:6A:1D:5E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 30929C3CE3A688536DB081B75BD958DE57A5E8F1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e3bbb66-0246-4c16-ac30-46380740bfd9.roa Signing time: Mon 27 May 2024 00:00:00 +0000 ROA not before: Mon 27 May 2024 00:00:00 +0000 ROA not after: Mon 01 Jul 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf0:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 00:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:92:9c:3c:e3:a6:88:53:6d:b0:81:b7:5b:d9:58:de:57:a5:e8:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 27 00:00:00 2024 GMT Not After : Jul 1 23:59:59 2024 GMT Subject: serialNumber=bac46b8b23cca4c901c8e2cb962c6b6ae6392b0b8c85247634a3e7470cc69fac, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5c:f5:d5:69:4e:0d:84:a1:4c:de:2f:e7:be: 7a:ed:f0:52:c3:38:11:f9:1f:31:f8:1b:c7:b4:15: b3:68:53:90:8c:dd:59:48:c4:9a:83:58:2e:02:06: d4:2f:8f:bb:2d:c2:2a:60:07:0f:6a:b2:4d:bb:bc: ab:f3:53:86:69:9f:09:73:3f:24:7e:81:00:44:07: 44:2f:b5:30:28:60:a0:04:82:ea:e3:50:36:fe:eb: 8e:1b:d7:e7:b7:88:f5:f4:e5:f8:d0:67:48:91:bb: 18:57:62:ac:f6:0a:25:b5:82:5d:49:2c:3d:be:a0: c4:dd:df:f9:0a:d7:6f:68:1b:2c:2e:ba:90:a6:d1: d2:66:48:c0:e5:7e:3c:6f:60:2c:5b:34:eb:43:bb: 55:e8:4f:90:e9:77:70:be:36:7c:51:50:3e:3d:96: 2f:9d:88:3e:ab:8b:2d:92:44:cd:f0:3c:30:c5:7d: 7a:80:f4:a3:7c:12:3e:a7:d0:f3:8c:36:ca:c6:06: 1d:32:0d:f7:b0:a4:cf:08:80:45:5b:02:bb:18:13: 65:74:21:3c:2d:24:7d:d7:3a:63:b1:23:d5:71:c7: 2e:36:8a:5a:74:0c:79:8c:85:a6:6e:eb:9c:bc:fb: a2:f8:96:1d:e4:3a:2b:63:fa:34:36:d0:58:98:56: b3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C8:CF:6F:9F:FD:1F:CE:90:88:66:5B:A5:18:3F:7D:C4:6A:1D:5E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e3bbb66-0246-4c16-ac30-46380740bfd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf0:7000::/40 Signature Algorithm: sha256WithRSAEncryption 85:e4:e4:cc:04:c8:2b:3c:c3:cd:73:34:21:0c:0b:35:7d:dc: c1:7f:01:fa:1d:9b:29:6f:79:d2:aa:9f:34:c9:c5:3f:ae:1d: f1:3d:74:eb:e8:59:e7:3f:81:5c:c7:6d:d0:dc:11:65:79:cc: be:2e:4f:3b:25:49:c2:19:1d:7b:a9:52:57:7c:f7:63:b0:38: 06:37:99:80:51:89:54:a2:dc:95:f8:58:37:93:73:1c:a0:55: 4f:1d:23:a0:eb:78:01:c7:c8:a8:fe:17:f9:dd:3c:55:26:f9: f3:da:de:1c:21:41:d0:01:42:be:30:16:1f:39:89:19:f8:75: d3:36:31:19:c6:89:4e:f7:95:5c:9f:e2:a2:a7:c8:b9:f4:db: 76:18:4c:32:f6:5c:a3:15:cd:ca:3b:63:f3:26:69:d6:c4:af: 6c:d6:c9:72:c9:be:22:cc:16:a2:04:38:f4:f3:1e:ee:b6:92: ea:0d:b6:27:b7:ec:d0:1c:59:d4:af:64:1d:7d:61:d3:f3:c1: f1:a0:1b:15:2a:b8:c0:0c:6c:cf:26:3c:9a:64:db:a3:85:9d: 54:49:a6:79:ef:82:15:b7:e6:d9:66:5d:27:2c:c2:3e:9e:c0: a2:d6:c0:92:7e:43:ef:0b:21:2e:5f:75:20:1d:96:f1:dd:cb: ee:66:aa:f1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMJKcPOOmiFNtsIG3W9lY3lel6PEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDUyNzAwMDAwMFoX DTI0MDcwMTIzNTk1OVowejFJMEcGA1UEBRNAYmFjNDZiOGIyM2NjYTRjOTAxYzhl MmNiOTYyYzZiNmFlNjM5MmIwYjhjODUyNDc2MzRhM2U3NDcwY2M2OWZhYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFz11WlODYShTN4v57567fBSwzgR +R8x+BvHtBWzaFOQjN1ZSMSag1guAgbUL4+7LcIqYAcParJNu7yr81OGaZ8Jcz8k foEARAdEL7UwKGCgBILq41A2/uuOG9fnt4j19OX40GdIkbsYV2Ks9goltYJdSSw9 vqDE3d/5CtdvaBssLrqQptHSZkjA5X48b2AsWzTrQ7tV6E+Q6XdwvjZ8UVA+PZYv nYg+q4stkkTN8DwwxX16gPSjfBI+p9DzjDbKxgYdMg33sKTPCIBFWwK7GBNldCE8 LSR91zpjsSPVcccuNopadAx5jIWmbuucvPui+JYd5DorY/o0NtBYmFaznQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFP3Iz2+f/R/OkIhmW6UYP33Eah1eMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZlM2JiYjY2LTAyNDYtNGMxNi1hYzMwLTQ2MzgwNzQwYmZkOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8HAwDQYJKoZIhvcNAQELBQADggEBAIXk5MwEyCs8w81zNCEM CzV93MF/AfodmylvedKqnzTJxT+uHfE9dOvoWec/gVzHbdDcEWV5zL4uTzslScIZ HXupUld892OwOAY3mYBRiVSi3JX4WDeTcxygVU8dI6DreAHHyKj+F/ndPFUm+fPa 3hwhQdABQr4wFh85iRn4ddM2MRnGiU73lVyf4qKnyLn023YYTDL2XKMVzco7Y/Mm adbEr2zWyXLJviLMFqIEOPTzHu62kuoNtie37NAcWdSvZB19YdPzwfGgGxUquMAM bM8mPJpk26OFnVRJpnnvghW35tlmXScswj6ewKLWwJJ+Q+8LIS5fdSAdlvHdy+5m qvE= -----END CERTIFICATE-----Generated at Sun Jun 2 01:00:42 2024 by rpki-client on console-fra.rpki-client.org