$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e4dba79-465b-4e61-8acf-c4f517fe30a5.roa File: 0e4dba79-465b-4e61-8acf-c4f517fe30a5.roa (raw, json) Hash identifier: rG+EdCGASwsXJovCfsSi/Ya9v/jwbf6LlgQDPGWFc1E= Subject key identifier: 5D:0E:B9:91:F7:21:A1:0C:78:74:E7:F3:3A:8F:18:E2:A0:7D:71:39 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 14EE001364C3C1D9C717D4FE6E2D7B53277C5D48 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e4dba79-465b-4e61-8acf-c4f517fe30a5.roa Signing time: Fri 04 Oct 2024 00:00:00 +0000 ROA not before: Fri 04 Oct 2024 00:00:00 +0000 ROA not after: Fri 08 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:ee:00:13:64:c3:c1:d9:c7:17:d4:fe:6e:2d:7b:53:27:7c:5d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 4 00:00:00 2024 GMT Not After : Nov 8 23:59:59 2024 GMT Subject: serialNumber=84c3441d15d47d025c9efe0e303b85c48a49b09bec0b4083efd8b9d57367a576, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c6:ff:58:9e:21:9c:8b:50:62:e0:1e:36:c3: d9:47:6d:5e:91:fc:b8:5f:6c:15:b4:3a:6d:d0:36: 56:43:7d:e8:de:26:3a:fd:6c:f5:67:c8:a6:d6:08: 36:76:75:a0:0c:b3:9f:7e:6c:7a:6f:75:47:eb:fc: 21:6d:73:e2:2c:c5:41:4e:86:b0:86:e3:64:ed:cd: d6:3c:4e:9c:b7:e5:7e:59:34:c1:2f:a0:d2:35:e1: 5f:27:bc:39:db:97:44:7d:cf:31:21:c9:8e:44:5c: 3b:ff:d8:5c:a2:f6:ae:60:d8:7d:6d:93:39:ee:67: 73:f0:46:f0:ac:ff:7a:05:31:21:a3:72:64:f4:02: 99:d6:fa:46:94:27:15:bf:e1:49:6f:62:76:83:95: 7b:7a:1a:47:00:fc:e3:99:86:0e:24:07:d7:3f:d3: b0:04:44:90:5d:93:c7:f9:85:da:6d:16:74:0c:35: 8e:18:96:dd:1c:07:34:54:fa:2b:1e:a7:8b:18:22: 81:a4:60:40:27:3f:57:e6:5f:28:5e:84:20:99:8a: 9b:28:46:f7:f6:56:db:38:e0:ef:42:79:de:1f:80: 6c:f2:9f:5e:aa:30:d2:a5:02:ad:01:6e:d0:28:b2: bf:db:3d:32:0f:07:37:c6:9b:f1:5c:e4:7c:fe:e7: 2a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0E:B9:91:F7:21:A1:0C:78:74:E7:F3:3A:8F:18:E2:A0:7D:71:39 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e4dba79-465b-4e61-8acf-c4f517fe30a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:4000::/40 Signature Algorithm: sha256WithRSAEncryption 15:72:ca:7e:2e:e5:e0:5f:3f:6b:c0:ac:2b:15:72:30:c9:19: f1:fb:4e:82:2d:bd:d9:64:69:67:38:87:38:c6:a1:a0:51:59: 99:23:53:21:b2:26:5b:07:75:3c:19:5e:be:8c:ea:f7:c6:08: 94:e1:87:2f:db:c4:1f:bc:04:14:2a:1c:fe:f2:d5:36:f7:5c: 35:dc:8b:7b:09:1d:5d:cc:e8:fc:cf:80:90:9d:2d:61:a1:95: 3c:36:d3:ff:df:b7:3d:6d:51:5b:8c:e8:8f:37:34:74:59:4d: 64:30:e0:a8:bd:a5:5b:f5:3c:75:98:fe:67:21:83:d0:22:4a: c1:71:01:72:c0:ed:93:46:72:31:b9:53:5a:9b:10:bf:2c:bb: 32:ce:06:d0:8c:74:8e:2e:81:f5:79:d3:a8:92:2e:15:df:bb: ff:be:7f:5b:77:eb:6c:3d:62:3f:bb:d6:e0:96:f6:ca:ca:3c: e1:be:b5:27:b0:ed:a7:a1:c0:9a:51:a9:63:b2:61:0c:8b:6f: ae:4f:b4:4d:32:c7:1c:3e:99:c9:cf:f4:55:a7:1d:ba:75:f8: 17:f4:3a:6d:c2:ec:30:2b:5a:65:12:59:93:e7:73:05:c4:60: 93:e2:f4:53:2c:2e:27:0a:4b:2c:34:5b:5c:ed:e8:70:b4:d4: 56:69:54:90 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFO4AE2TDwdnHF9T+bi17Uyd8XUgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAwNDAwMDAwMFoX DTI0MTEwODIzNTk1OVowejFJMEcGA1UEBRNAODRjMzQ0MWQxNWQ0N2QwMjVjOWVm ZTBlMzAzYjg1YzQ4YTQ5YjA5YmVjMGI0MDgzZWZkOGI5ZDU3MzY3YTU3NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcb/WJ4hnItQYuAeNsPZR21ekfy4 X2wVtDpt0DZWQ33o3iY6/Wz1Z8im1gg2dnWgDLOffmx6b3VH6/whbXPiLMVBToaw huNk7c3WPE6ct+V+WTTBL6DSNeFfJ7w525dEfc8xIcmORFw7/9hcovauYNh9bZM5 7mdz8EbwrP96BTEho3Jk9AKZ1vpGlCcVv+FJb2J2g5V7ehpHAPzjmYYOJAfXP9Ow BESQXZPH+YXabRZ0DDWOGJbdHAc0VPorHqeLGCKBpGBAJz9X5l8oXoQgmYqbKEb3 9lbbOODvQnneH4Bs8p9eqjDSpQKtAW7QKLK/2z0yDwc3xpvxXOR8/ucqkwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFF0OuZH3IaEMeHTn8zqPGOKgfXE5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzBlNGRiYTc5LTQ2NWItNGU2MS04YWNmLWM0ZjUxN2ZlMzBhNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/0AwDQYJKoZIhvcNAQELBQADggEBABVyyn4u5eBfP2vArCsV cjDJGfH7ToItvdlkaWc4hzjGoaBRWZkjUyGyJlsHdTwZXr6M6vfGCJThhy/bxB+8 BBQqHP7y1Tb3XDXci3sJHV3M6PzPgJCdLWGhlTw20//ftz1tUVuM6I83NHRZTWQw 4Ki9pVv1PHWY/mchg9AiSsFxAXLA7ZNGcjG5U1qbEL8suzLOBtCMdI4ugfV506iS LhXfu/++f1t362w9Yj+71uCW9srKPOG+tSew7aehwJpRqWOyYQyLb65PtE0yxxw+ mcnP9FWnHbp1+Bf0Om3C7DArWmUSWZPncwXEYJPi9FMsLicKSyw0W1zt6HC01FZp VJA= -----END CERTIFICATE-----Generated at Fri Oct 25 17:02:31 2024 by rpki-client on console-fra.rpki-client.org