$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0edb47a4-e59a-40a8-8e61-744230716a79.roa File: 0edb47a4-e59a-40a8-8e61-744230716a79.roa (raw, json) Hash identifier: MgQ4OUtHqkeO/eTxTl3EORpek13+Q3PY73qsrBUBFtk= Subject key identifier: 26:5B:59:24:DA:F7:A4:FA:29:93:DE:B6:0D:CD:20:6A:D4:7F:CC:2F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 39DD1FD1E798E53FD4ECE5203083264B849D11CB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0edb47a4-e59a-40a8-8e61-744230716a79.roa Signing time: Fri 19 Jul 2024 00:00:00 +0000 ROA not before: Fri 19 Jul 2024 00:00:00 +0000 ROA not after: Fri 23 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:dd:1f:d1:e7:98:e5:3f:d4:ec:e5:20:30:83:26:4b:84:9d:11:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 19 00:00:00 2024 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: serialNumber=e95b8888ecbb5df3721bf55453326c704c692d5a8e35d744e45e8fda753f9d18, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dd:fa:dd:24:8a:80:a0:15:02:81:50:dd:02: 34:38:f9:9c:7b:dd:24:d3:70:2b:a4:46:b1:eb:89: ce:8c:8d:f7:28:b1:9f:6b:76:c4:2a:4c:cb:73:a5: 54:6d:60:be:88:90:3f:89:8a:9a:e3:c6:28:c3:a7: 1f:24:c5:c0:98:07:35:ad:40:10:53:3e:ff:33:57: 22:63:17:00:71:44:b2:42:46:14:ab:4f:f1:e9:20: 48:db:da:ff:63:0d:0c:37:32:06:57:a7:55:f5:ba: 69:4f:9a:6f:00:e5:8f:8c:ac:e4:8e:c4:7d:ce:b7: 99:a8:65:82:71:3b:cc:6e:04:04:a9:78:65:7f:82: 08:de:0f:61:1b:4d:33:9a:a3:77:94:05:95:20:f5: 4d:fc:f6:22:ba:39:d1:d8:1e:85:7e:9f:40:ad:bf: 38:da:22:fa:23:f9:09:ce:ef:a2:fe:88:96:0d:98: af:9f:28:f2:ec:6f:ea:35:1b:38:c0:dd:2e:b2:dd: cb:32:57:de:51:13:6d:cc:bb:24:4a:2b:94:cb:25: 73:33:d1:16:75:f5:69:a9:fb:12:e5:88:bc:44:32: 95:6d:a6:23:6b:eb:e9:d3:38:e1:89:eb:24:bd:6e: ef:b6:79:c6:9b:3c:a3:a4:51:96:df:f0:9d:a5:94: 09:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5B:59:24:DA:F7:A4:FA:29:93:DE:B6:0D:CD:20:6A:D4:7F:CC:2F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0edb47a4-e59a-40a8-8e61-744230716a79.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:800::/40 Signature Algorithm: sha256WithRSAEncryption 9b:31:82:d0:93:63:20:fd:42:e4:be:85:a8:1d:a0:39:88:fd: 0a:bc:6c:c6:48:2d:b5:2e:66:a6:35:f8:64:cf:73:ee:e9:72: 8d:fc:eb:ba:f7:36:cf:42:dc:48:84:95:07:4d:61:01:8d:bd: a6:24:25:f8:9e:c6:7b:ca:38:80:dd:7d:fc:31:87:4d:6d:a2: 66:5b:a8:a2:d4:3b:23:54:2e:87:3d:de:18:b6:0d:3e:3e:14: 3a:d4:4a:b5:67:5a:34:75:92:45:a8:d6:91:f3:b3:5f:66:5d: be:a9:f8:70:5f:4c:27:9c:2b:d2:a7:d4:80:80:94:1b:63:d7: 56:51:a7:79:e8:cc:37:ee:8c:49:62:6c:b0:a1:d8:73:d1:b6: 4d:73:a5:54:25:c3:30:72:bd:e5:85:04:a8:34:62:f3:df:34: ac:12:45:c1:c7:8d:49:2d:21:6c:06:79:6d:de:f1:31:b9:62: 54:de:d8:59:77:df:fb:ad:1b:ad:1c:d6:f9:ce:28:fe:de:92: df:0b:c2:a4:56:be:c8:8a:7f:71:c3:4f:6a:7b:2e:b9:33:62: bc:6f:a1:99:92:74:5b:46:49:82:c6:37:31:85:00:a4:9c:7d: 8d:1c:f7:fb:09:89:b5:99:d4:92:96:09:32:36:98:65:b5:ce: b6:6e:aa:9f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUOd0f0eeY5T/U7OUgMIMmS4SdEcswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxOTAwMDAwMFoX DTI0MDgyMzIzNTk1OVowejFJMEcGA1UEBRNAZTk1Yjg4ODhlY2JiNWRmMzcyMWJm NTU0NTMzMjZjNzA0YzY5MmQ1YThlMzVkNzQ0ZTQ1ZThmZGE3NTNmOWQxODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtN363SSKgKAVAoFQ3QI0OPmce90k 03ArpEax64nOjI33KLGfa3bEKkzLc6VUbWC+iJA/iYqa48Yow6cfJMXAmAc1rUAQ Uz7/M1ciYxcAcUSyQkYUq0/x6SBI29r/Yw0MNzIGV6dV9bppT5pvAOWPjKzkjsR9 zreZqGWCcTvMbgQEqXhlf4II3g9hG00zmqN3lAWVIPVN/PYiujnR2B6Ffp9Arb84 2iL6I/kJzu+i/oiWDZivnyjy7G/qNRs4wN0ust3LMlfeURNtzLskSiuUyyVzM9EW dfVpqfsS5Yi8RDKVbaYja+vp0zjhieskvW7vtnnGmzyjpFGW3/CdpZQJuwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCZbWSTa96T6KZPetg3NIGrUf8wvMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzBlZGI0N2E0LWU1OWEtNDBhOC04ZTYxLTc0NDIzMDcxNmE3OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaAAgwDQYJKoZIhvcNAQELBQADggEBAJsxgtCTYyD9QuS+hagd oDmI/Qq8bMZILbUuZqY1+GTPc+7pco3867r3Ns9C3EiElQdNYQGNvaYkJfiexnvK OIDdffwxh01tomZbqKLUOyNULoc93hi2DT4+FDrUSrVnWjR1kkWo1pHzs19mXb6p +HBfTCecK9Kn1ICAlBtj11ZRp3nozDfujElibLCh2HPRtk1zpVQlwzByveWFBKg0 YvPfNKwSRcHHjUktIWwGeW3e8TG5YlTe2Fl33/utG60c1vnOKP7ekt8LwqRWvsiK f3HDT2p7LrkzYrxvoZmSdFtGSYLGNzGFAKScfY0c9/sJibWZ1JKWCTI2mGW1zrZu qp8= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:14 2024 by rpki-client on console-fra.rpki-client.org