$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/02a51e54-6bb5-43e7-94d0-a8e95771f2a3.roa File: 02a51e54-6bb5-43e7-94d0-a8e95771f2a3.roa (raw, json) Hash identifier: fHMwfM3KDxQ9ISN+QIU3q6HrPMfIgweuJvQdKWqjy1k= Subject key identifier: 6B:B0:9D:05:B2:8A:93:1D:50:BD:4F:1D:F9:92:12:14:23:FE:B3:F0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 23414AF65FE94D6999BF628098D62E3FF63D9938 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/02a51e54-6bb5-43e7-94d0-a8e95771f2a3.roa Signing time: Fri 25 Oct 2024 00:00:00 +0000 ROA not before: Fri 25 Oct 2024 00:00:00 +0000 ROA not after: Fri 29 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:41:4a:f6:5f:e9:4d:69:99:bf:62:80:98:d6:2e:3f:f6:3d:99:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 25 00:00:00 2024 GMT Not After : Nov 29 23:59:59 2024 GMT Subject: serialNumber=510bcadad307169655587ec32e4994297fc7d864067ab404d2dbf4c5af27c9de, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e7:33:93:6a:e8:6d:06:a6:86:a7:11:a8:2b: c6:4a:83:a3:d7:ca:79:ba:11:81:30:12:bd:1f:dc: f0:4a:e9:4c:39:1b:60:db:05:86:ee:62:0d:79:64: 2e:8c:4d:1e:5e:01:fa:e9:1c:45:4a:a3:89:38:65: c9:53:a8:81:8d:f7:4d:82:5e:1d:d7:7b:96:7e:70: 39:08:5c:aa:4e:77:4e:78:ac:4b:c3:ff:d4:d5:a9: be:59:06:86:86:8b:1a:1f:60:16:fd:12:10:24:61: 99:fa:37:5f:80:42:87:54:7a:a4:bb:42:05:89:a5: 88:f3:60:4b:cc:3b:83:63:24:8d:bc:76:e1:b2:83: 8c:41:a1:70:ed:53:a7:29:5d:01:20:4b:e2:47:57: 26:a4:ee:82:53:25:8b:78:f2:06:7b:4e:e6:fb:8b: ba:da:e3:c3:58:78:14:41:d1:73:4c:07:b7:8e:72: 65:e3:86:5c:47:18:5d:c1:a7:4c:52:40:50:fe:26: d6:a5:86:b1:ff:7a:4c:eb:9b:8d:91:a4:ad:64:39: c3:e9:c4:41:08:d6:28:1b:29:29:1b:0a:ae:6a:5e: 12:61:53:30:95:9e:44:aa:2a:19:15:d4:f5:8e:a7: fc:cb:30:d6:f5:d9:a4:d9:7a:5e:aa:f4:c3:2d:3a: fc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B0:9D:05:B2:8A:93:1D:50:BD:4F:1D:F9:92:12:14:23:FE:B3:F0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/02a51e54-6bb5-43e7-94d0-a8e95771f2a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:2000::/40 Signature Algorithm: sha256WithRSAEncryption 5c:65:01:5c:1d:7d:0d:07:d2:26:cc:d2:ee:30:c9:7c:2e:8f: 85:c1:7d:ce:00:6f:5e:b6:c2:dd:fb:cd:25:05:21:9d:e7:27: 3a:b5:01:bf:c2:1f:2e:a1:b2:67:18:07:50:1c:a7:25:c8:ec: 8f:95:81:e3:49:6f:40:a4:70:49:f7:41:a5:19:d9:e2:b8:a4: ae:ba:d6:57:aa:5c:53:70:d4:d9:15:ff:db:db:32:b5:5d:96: ce:cc:d2:c5:f4:fd:1c:13:c4:5d:07:d0:c7:67:91:ba:88:c5: 29:34:ed:79:e5:0c:25:86:94:2b:86:e3:c7:2e:51:b2:3e:b5: 41:5c:f4:91:00:7e:53:cd:f4:ab:41:d1:43:33:cf:14:cb:ff: 8a:2e:d9:c4:30:82:3a:31:a9:9f:49:f5:9f:8f:8a:93:04:6d: 7b:39:ef:1c:d8:57:f6:29:73:cc:95:04:19:49:fb:54:1b:50: 7d:5b:38:ec:0e:a4:2f:8a:af:37:02:c7:74:e7:64:30:88:bd: c9:f9:c0:55:00:f3:ae:d0:6a:19:63:fe:b9:97:3a:54:d2:eb: 1a:1c:88:3b:47:0e:d9:26:36:5a:2e:a4:89:e4:83:16:a9:b7: 9a:c6:26:b0:dd:5a:6d:13:57:56:e9:55:19:ce:79:b4:e6:8d: 3c:30:69:46 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUI0FK9l/pTWmZv2KAmNYuP/Y9mTgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAyNTAwMDAwMFoX DTI0MTEyOTIzNTk1OVowejFJMEcGA1UEBRNANTEwYmNhZGFkMzA3MTY5NjU1NTg3 ZWMzMmU0OTk0Mjk3ZmM3ZDg2NDA2N2FiNDA0ZDJkYmY0YzVhZjI3YzlkZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreczk2robQamhqcRqCvGSoOj18p5 uhGBMBK9H9zwSulMORtg2wWG7mINeWQujE0eXgH66RxFSqOJOGXJU6iBjfdNgl4d 13uWfnA5CFyqTndOeKxLw//U1am+WQaGhosaH2AW/RIQJGGZ+jdfgEKHVHqku0IF iaWI82BLzDuDYySNvHbhsoOMQaFw7VOnKV0BIEviR1cmpO6CUyWLePIGe07m+4u6 2uPDWHgUQdFzTAe3jnJl44ZcRxhdwadMUkBQ/ibWpYax/3pM65uNkaStZDnD6cRB CNYoGykpGwqual4SYVMwlZ5EqioZFdT1jqf8yzDW9dmk2XpeqvTDLTr8xwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGuwnQWyipMdUL1PHfmSEhQj/rPwMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzAyYTUxZTU0LTZiYjUtNDNlNy05NGQwLWE4ZTk1NzcxZjJhMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8SAwDQYJKoZIhvcNAQELBQADggEBAFxlAVwdfQ0H0ibM0u4w yXwuj4XBfc4Ab162wt37zSUFIZ3nJzq1Ab/CHy6hsmcYB1AcpyXI7I+VgeNJb0Ck cEn3QaUZ2eK4pK661leqXFNw1NkV/9vbMrVdls7M0sX0/RwTxF0H0MdnkbqIxSk0 7XnlDCWGlCuG48cuUbI+tUFc9JEAflPN9KtB0UMzzxTL/4ou2cQwgjoxqZ9J9Z+P ipMEbXs57xzYV/Ypc8yVBBlJ+1QbUH1bOOwOpC+KrzcCx3TnZDCIvcn5wFUA867Q ahlj/rmXOlTS6xociDtHDtkmNloupInkgxapt5rGJrDdWm0TV1bpVRnOebTmjTww aUY= -----END CERTIFICATE-----Generated at Fri Oct 25 16:44:23 2024 by rpki-client on console-ams.rpki-client.org