$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e4dba79-465b-4e61-8acf-c4f517fe30a5.roa File: 0e4dba79-465b-4e61-8acf-c4f517fe30a5.roa (raw, json) Hash identifier: 5Hy5dQ1oqdbs5dL9cTt4j44+AM3dpTFWn3sFLA8Hxec= Subject key identifier: 6E:C1:3B:61:62:C9:15:4C:DE:91:4D:22:2D:F9:67:81:7E:6B:F2:D0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 749A83102A5BAB1CA1DBECB6CE996443A004C85B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e4dba79-465b-4e61-8acf-c4f517fe30a5.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Aug 2023 03:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:9a:83:10:2a:5b:ab:1c:a1:db:ec:b6:ce:99:64:43:a0:04:c8:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=d4265105f9a92c5d256cab696bfc2693bf7b5b081b9bad096b6bcbe540afe71a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:79:a2:a7:5c:5f:55:6f:03:c3:fe:ce:b6:93: c3:62:9f:c3:52:b6:91:6a:53:50:3c:7a:0b:a2:79: e5:26:5b:cc:ee:ba:b6:24:18:82:3c:f0:48:0b:b8: 39:44:14:16:89:40:a1:7e:93:ac:e7:d4:46:94:54: df:94:bf:82:82:c9:64:d6:4d:aa:80:db:a8:74:55: 88:81:d7:8d:1f:c8:7c:ec:84:a0:ae:88:d2:57:75: 6c:17:a3:a5:8a:b9:4d:1a:ed:b3:e6:d2:4a:34:a1: 77:cb:a5:06:37:4f:4f:d8:23:78:a1:f1:5e:c1:dd: 15:3e:88:7c:d0:2d:14:ca:35:8a:01:a8:4f:7d:59: 47:1f:72:a0:e0:0a:b1:bc:f3:44:24:47:57:70:42: 4b:59:13:c8:b4:ea:05:30:44:89:80:dd:e0:e2:17: 5a:08:3a:d2:6f:df:8e:f6:d6:b1:b7:06:50:bb:d1: de:2a:c0:77:75:12:b6:4f:de:25:70:f8:21:6f:3b: 24:05:64:d4:66:73:81:e5:6f:9b:99:19:c0:20:0d: e1:66:be:24:0d:62:61:50:d1:f6:ed:7d:c1:c4:52: 0e:f5:db:e4:97:47:b9:0d:0c:34:72:9c:a9:18:1a: 38:40:04:14:77:e9:a5:8b:2d:bb:d0:68:ce:16:95: 22:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C1:3B:61:62:C9:15:4C:DE:91:4D:22:2D:F9:67:81:7E:6B:F2:D0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e4dba79-465b-4e61-8acf-c4f517fe30a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:4000::/40 Signature Algorithm: sha256WithRSAEncryption 6b:a8:d6:14:e1:36:d8:95:06:b1:3a:01:f4:7d:9e:92:75:2a: 89:d3:d7:52:c7:60:09:85:9d:36:c4:01:b3:93:48:5f:9a:e8: 8f:80:22:7f:27:e6:1e:96:2f:24:87:4f:b5:98:8b:a4:af:c8: 6a:de:6b:64:24:85:6c:ea:75:5d:29:99:ff:9b:3b:1e:72:96: ce:11:1f:ad:10:7d:31:69:16:d0:43:7f:06:e7:ca:25:08:06: 0a:23:b0:3d:e2:5e:26:3b:09:37:13:61:b4:6e:fa:8c:eb:99: 46:4d:86:39:02:b1:ad:93:5b:2d:23:88:2e:8a:ce:ee:d4:29: 18:71:4f:68:2b:aa:ca:3d:54:38:09:ae:a2:e8:24:8e:6f:05: 2c:2f:fb:25:80:31:89:80:48:3d:47:71:00:fa:40:fc:5c:27: 33:2c:5f:ca:9e:93:16:a3:90:e7:2f:8e:5e:c6:fb:0b:d0:66: 8b:f3:6d:9a:f6:18:31:3a:6c:2a:30:98:12:61:13:e9:3d:14: 99:70:d3:7c:c0:b8:76:d5:c8:bb:91:56:1e:27:ba:e6:04:2f: 5b:55:2d:cf:aa:31:d4:7e:75:54:b1:ee:11:0f:fd:1e:4c:fd: 9a:60:a2:ea:14:b0:3b:83:97:2e:50:8c:3f:c0:d3:c1:43:f1: eb:e8:ba:64 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdJqDECpbqxyh2+y2zplkQ6AEyFswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTIzMDgyODAwMDAwMFoX DTIzMTAwMjIzNTk1OVowejFJMEcGA1UEBRNAZDQyNjUxMDVmOWE5MmM1ZDI1NmNh YjY5NmJmYzI2OTNiZjdiNWIwODFiOWJhZDA5NmI2YmNiZTU0MGFmZTcxYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Hmip1xfVW8Dw/7OtpPDYp/DUraR alNQPHoLonnlJlvM7rq2JBiCPPBIC7g5RBQWiUChfpOs59RGlFTflL+Cgslk1k2q gNuodFWIgdeNH8h87ISgrojSV3VsF6OlirlNGu2z5tJKNKF3y6UGN09P2CN4ofFe wd0VPoh80C0UyjWKAahPfVlHH3Kg4AqxvPNEJEdXcEJLWRPItOoFMESJgN3g4hda CDrSb9+O9taxtwZQu9HeKsB3dRK2T94lcPghbzskBWTUZnOB5W+bmRnAIA3hZr4k DWJhUNH27X3BxFIO9dvkl0e5DQw0cpypGBo4QAQUd+mliy270GjOFpUiCQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFG7BO2FiyRVM3pFNIi35Z4F+a/LQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzBlNGRiYTc5LTQ2NWItNGU2MS04YWNmLWM0ZjUxN2ZlMzBhNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/0AwDQYJKoZIhvcNAQELBQADggEBAGuo1hThNtiVBrE6AfR9 npJ1KonT11LHYAmFnTbEAbOTSF+a6I+AIn8n5h6WLySHT7WYi6SvyGrea2QkhWzq dV0pmf+bOx5yls4RH60QfTFpFtBDfwbnyiUIBgojsD3iXiY7CTcTYbRu+ozrmUZN hjkCsa2TWy0jiC6Kzu7UKRhxT2grqso9VDgJrqLoJI5vBSwv+yWAMYmASD1HcQD6 QPxcJzMsX8qekxajkOcvjl7G+wvQZovzbZr2GDE6bCowmBJhE+k9FJlw03zAuHbV yLuRVh4nuuYEL1tVLc+qMdR+dVSx7hEP/R5M/ZpgouoUsDuDly5QjD/A08FD8evo umQ= -----END CERTIFICATE-----Generated at Mon Aug 28 15:21:23 2023 by rpki-client on console-ams.rpki-client.org