$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/025e96a4-3d7c-410e-9052-27b26f5f569c.roa File: 025e96a4-3d7c-410e-9052-27b26f5f569c.roa (raw, json) Hash identifier: mHZL6K4RbchpNc6sfMvl5Ta4tkuA753v6FZHthtkTOU= Subject key identifier: 51:B4:23:F5:CB:4A:29:57:58:E4:63:71:84:41:A6:71:FC:E1:75:7F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 29E142E748A5AB6882A894DEBCF6CC02FD3C2581 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/025e96a4-3d7c-410e-9052-27b26f5f569c.roa Signing time: Wed 20 Nov 2024 00:00:00 +0000 ROA not before: Wed 20 Nov 2024 00:00:00 +0000 ROA not after: Wed 25 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:e1:42:e7:48:a5:ab:68:82:a8:94:de:bc:f6:cc:02:fd:3c:25:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 20 00:00:00 2024 GMT Not After : Dec 25 23:59:59 2024 GMT Subject: serialNumber=fee2d35fc71f404248cfc7de8030047f355a24256ccfa0ed5cb6d40758bcafc9, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:12:ff:26:21:f2:d5:30:3e:4b:99:1b:05:1e: 9b:b4:f9:b7:79:40:fc:57:54:19:02:b1:cd:22:c2: 2a:24:83:94:3c:a1:92:61:9c:6e:8d:e2:c6:d8:fd: 7e:5e:1e:98:f2:07:5c:06:e9:28:5f:4e:21:4e:bb: 5e:c6:78:6b:ce:d7:a9:ac:cf:4e:fb:81:41:f2:7a: 39:7d:26:74:cd:dc:92:e5:6f:d3:32:bf:71:f8:73: 14:52:9a:e9:60:19:37:d5:c3:16:9a:97:e3:2c:ed: 9e:0a:29:45:25:85:3e:d5:c7:9f:6b:38:f5:1e:20: f4:c2:f7:c6:22:ef:65:f7:ff:c6:91:d3:35:e0:31: 63:aa:a1:55:98:4c:92:52:3b:61:a5:94:9b:4b:a0: 57:38:43:75:7a:dc:59:9f:18:5c:22:db:4d:c6:2c: eb:c5:dd:a6:69:11:cf:25:27:b5:f7:3d:e1:95:d9: ba:7d:b4:1b:da:40:7b:a4:9c:15:2d:f8:dc:d0:e5: 9a:8f:8a:32:63:7b:ff:e4:c9:d0:b3:10:b4:91:e3: fa:2c:f9:59:7e:7b:58:97:10:0f:4b:69:ad:44:cb: 82:ce:9a:9e:40:07:7c:f3:8a:6a:94:3d:96:8e:d9: 71:94:4f:b7:bb:8d:5b:c9:c9:f7:91:d0:17:c1:a3: 74:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B4:23:F5:CB:4A:29:57:58:E4:63:71:84:41:A6:71:FC:E1:75:7F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/025e96a4-3d7c-410e-9052-27b26f5f569c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:6000::/40 Signature Algorithm: sha256WithRSAEncryption 09:9b:9a:d6:78:60:ea:11:2b:81:50:c3:09:02:13:ee:09:1b: 5f:c1:3b:98:82:f0:1b:c3:d4:0d:08:c5:43:e7:ed:ab:7b:13: 5c:bf:65:46:4b:9d:f5:ed:45:13:5b:5f:d7:cf:39:e6:cc:2f: b8:16:5b:50:d9:48:88:7e:ee:06:fa:d4:ff:dd:54:6c:f4:ef: 07:e9:aa:af:57:1c:84:e1:c6:d7:80:11:07:50:a9:bc:ec:05: 9b:53:e2:b4:4d:a5:43:95:2d:70:fc:10:37:bc:69:cb:01:bc: 26:be:50:e8:40:65:53:c0:6a:45:b7:d6:f5:41:32:99:68:7a: 7c:fb:6d:00:fa:4a:5d:f8:13:f0:12:49:77:43:76:c4:b6:a9: 46:5c:6e:67:cd:f0:aa:3d:dd:f5:d8:43:f7:2a:f0:59:88:62: c6:92:4d:de:1a:73:fc:ee:2f:e0:ba:79:69:04:9d:d1:a5:61: 06:f1:23:c4:e1:81:f5:b0:be:e9:e7:b8:31:51:8b:37:1a:22: fa:63:8f:69:5a:8c:af:35:c0:d6:77:71:ca:c8:25:6e:57:d9: 2d:ba:9e:bd:d1:32:7f:60:f5:97:eb:2c:a3:d2:d9:7e:25:9d: 90:44:c6:6c:c7:81:71:2b:00:41:fe:dc:34:2a:fb:c8:ce:2f: fb:a1:fa:3d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKeFC50ilq2iCqJTevPbMAv08JYEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMDAwMDAwMFoX DTI0MTIyNTIzNTk1OVowejFJMEcGA1UEBRNAZmVlMmQzNWZjNzFmNDA0MjQ4Y2Zj N2RlODAzMDA0N2YzNTVhMjQyNTZjY2ZhMGVkNWNiNmQ0MDc1OGJjYWZjOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshL/JiHy1TA+S5kbBR6btPm3eUD8 V1QZArHNIsIqJIOUPKGSYZxujeLG2P1+Xh6Y8gdcBukoX04hTrtexnhrzteprM9O +4FB8no5fSZ0zdyS5W/TMr9x+HMUUprpYBk31cMWmpfjLO2eCilFJYU+1cefazj1 HiD0wvfGIu9l9//GkdM14DFjqqFVmEySUjthpZSbS6BXOEN1etxZnxhcIttNxizr xd2maRHPJSe19z3hldm6fbQb2kB7pJwVLfjc0OWaj4oyY3v/5MnQsxC0keP6LPlZ fntYlxAPS2mtRMuCzpqeQAd884pqlD2WjtlxlE+3u41bycn3kdAXwaN05QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFG0I/XLSilXWORjcYRBpnH84XV/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzAyNWU5NmE0LTNkN2MtNDEwZS05MDUyLTI3YjI2ZjVmNTY5Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/2AwDQYJKoZIhvcNAQELBQADggEBAAmbmtZ4YOoRK4FQwwkC E+4JG1/BO5iC8BvD1A0IxUPn7at7E1y/ZUZLnfXtRRNbX9fPOebML7gWW1DZSIh+ 7gb61P/dVGz07wfpqq9XHIThxteAEQdQqbzsBZtT4rRNpUOVLXD8EDe8acsBvCa+ UOhAZVPAakW31vVBMploenz7bQD6Sl34E/ASSXdDdsS2qUZcbmfN8Ko93fXYQ/cq 8FmIYsaSTd4ac/zuL+C6eWkEndGlYQbxI8ThgfWwvunnuDFRizcaIvpjj2lajK81 wNZ3ccrIJW5X2S26nr3RMn9g9ZfrLKPS2X4lnZBExmzHgXErAEH+3DQq+8jOL/uh +j0= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:37 2024 by rpki-client on console-ams.rpki-client.org