$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/00b2a2b4-99de-45a2-b5f4-a01609c997f1.roa File: 00b2a2b4-99de-45a2-b5f4-a01609c997f1.roa (raw, json) Hash identifier: SjPjRlP+wl5BxQyJcR3Z3gWW6J695zfghOFhMgCKufE= Subject key identifier: 3D:4D:46:36:F8:87:27:2B:C7:A2:3E:B0:D8:C2:46:D2:14:38:BE:64 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 167709B2570E9A631D65C4D6B0855A3493FC7BE6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/00b2a2b4-99de-45a2-b5f4-a01609c997f1.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:77:09:b2:57:0e:9a:63:1d:65:c4:d6:b0:85:5a:34:93:fc:7b:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=45affe0b228621dca52fe9bfd8accffa33b3eb2ab65c414d50790805818fb3d5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:82:6f:dc:4a:34:43:97:69:b0:cf:ae:b8: 5d:79:dd:a2:79:58:47:b4:8a:1c:bd:ff:7f:97:59: 3f:04:6d:9d:34:97:4a:85:4d:fe:10:d0:e8:fe:63: b4:f6:ea:84:c8:6a:34:bc:88:a8:6d:fe:7d:03:86: 42:4c:dc:9d:3e:89:c9:b0:0e:ac:40:12:d4:4f:99: 7a:18:0d:b6:17:ed:b0:d3:b9:37:80:eb:4c:d1:6d: 34:02:c7:b0:ee:ed:c0:0c:4f:fe:b7:fb:f4:fb:c1: d7:a9:8f:20:49:3d:1e:f7:73:0d:1e:31:c8:a8:55: ae:a6:34:25:cd:77:a2:fc:3a:75:8b:be:31:28:11: bf:5a:b0:95:c4:66:c8:4a:d5:0a:cb:0a:20:14:78: 36:0c:64:7e:ff:d1:43:14:ad:d7:83:f5:5a:e8:ef: 8f:3b:48:36:01:c7:76:ac:cc:93:98:40:09:1a:d5: 9a:b2:38:d4:20:e3:44:d9:9e:a0:d9:50:80:cf:87: 2b:b2:8d:49:2c:45:56:7d:4c:4e:6b:60:e2:4d:23: e9:f3:54:52:40:47:ac:6b:45:cd:34:22:36:7e:d9: 34:f7:f3:2a:d6:58:75:25:58:2e:da:5c:14:7d:f5: eb:5a:80:84:04:de:40:23:0d:95:7d:9a:6e:22:1a: b0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:4D:46:36:F8:87:27:2B:C7:A2:3E:B0:D8:C2:46:D2:14:38:BE:64 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/00b2a2b4-99de-45a2-b5f4-a01609c997f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:7000::/40 Signature Algorithm: sha256WithRSAEncryption 5b:30:9c:84:60:e7:2a:ba:80:f7:b1:d5:25:8c:88:40:79:5f: c7:35:d7:ed:5b:cb:bc:b6:3f:ef:2c:1b:ed:c3:ee:e4:30:e3: ec:25:be:dd:6a:39:50:1e:9f:de:92:31:cd:82:34:f4:e7:63: df:fe:b1:d8:d1:6f:31:49:3e:fd:f8:09:f0:bc:36:ff:35:87: 14:33:75:e9:1e:17:a3:08:3a:11:7a:ba:10:f8:fa:1c:55:7a: 04:c2:f2:2a:77:dc:e2:76:1f:5d:9e:2f:17:42:9b:52:7f:eb: 91:74:8f:be:4e:41:87:f8:a7:b1:86:ed:9e:90:66:14:91:4e: 02:fc:5b:51:f8:8a:64:39:a1:cb:c3:ad:c5:92:5b:32:e1:ec: 82:a2:aa:e3:11:fb:12:e7:ad:cf:f2:3b:25:10:c1:a2:18:f1: 54:a7:31:fe:56:a5:9b:2c:ff:2f:38:73:d2:fe:04:d0:f5:a4: 67:f8:ad:91:57:84:44:3d:a1:ff:ca:3b:78:28:c4:5c:93:94: 89:8e:85:a8:49:1b:4b:b5:68:c9:f4:51:98:e0:05:e3:44:22: 03:0c:95:4e:a2:7c:64:f7:5a:eb:fa:26:06:8d:07:56:e2:ac: 69:d2:b4:ec:f6:86:d7:b0:7a:2b:3a:0b:34:23:a4:19:47:16: c6:47:73:97 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFncJslcOmmMdZcTWsIVaNJP8e+YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNANDVhZmZlMGIyMjg2MjFkY2E1MmZl OWJmZDhhY2NmZmEzM2IzZWIyYWI2NWM0MTRkNTA3OTA4MDU4MThmYjNkNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbSCb9xKNEOXabDPrrhded2ieVhH tIocvf9/l1k/BG2dNJdKhU3+ENDo/mO09uqEyGo0vIiobf59A4ZCTNydPonJsA6s QBLUT5l6GA22F+2w07k3gOtM0W00Asew7u3ADE/+t/v0+8HXqY8gST0e93MNHjHI qFWupjQlzXei/Dp1i74xKBG/WrCVxGbIStUKywogFHg2DGR+/9FDFK3Xg/Va6O+P O0g2Acd2rMyTmEAJGtWasjjUIONE2Z6g2VCAz4crso1JLEVWfUxOa2DiTSPp81RS QEesa0XNNCI2ftk09/Mq1lh1JVgu2lwUffXrWoCEBN5AIw2VfZpuIhqweQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFD1NRjb4hycrx6I+sNjCRtIUOL5kMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzAwYjJhMmI0LTk5ZGUtNDVhMi1iNWY0LWEwMTYwOWM5OTdmMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOHAwDQYJKoZIhvcNAQELBQADggEBAFswnIRg5yq6gPex1SWM iEB5X8c11+1by7y2P+8sG+3D7uQw4+wlvt1qOVAen96SMc2CNPTnY9/+sdjRbzFJ Pv34CfC8Nv81hxQzdekeF6MIOhF6uhD4+hxVegTC8ip33OJ2H12eLxdCm1J/65F0 j75OQYf4p7GG7Z6QZhSRTgL8W1H4imQ5ocvDrcWSWzLh7IKiquMR+xLnrc/yOyUQ waIY8VSnMf5WpZss/y84c9L+BND1pGf4rZFXhEQ9of/KO3goxFyTlImOhahJG0u1 aMn0UZjgBeNEIgMMlU6ifGT3Wuv6JgaNB1birGnStOz2hteweis6CzQjpBlHFsZH c5c= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:14 2024 by rpki-client on console-fra.rpki-client.org