$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/15b5f216-60e3-4b03-97f3-40e4b5d1e247.roa File: 15b5f216-60e3-4b03-97f3-40e4b5d1e247.roa (raw, json) Hash identifier: 1yTT629XGmkhsySYHuqmGtLadCeL7ILR6gdFx43MmHE= Subject key identifier: 7A:D4:91:F3:6A:93:05:0A:97:7E:C7:53:AB:C8:BB:C0:EE:BF:5C:F5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3E78D6B855C401D15924E36BB54BD7A76D2D9DBC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/15b5f216-60e3-4b03-97f3-40e4b5d1e247.roa Signing time: Fri 19 Jul 2024 00:00:00 +0000 ROA not before: Fri 19 Jul 2024 00:00:00 +0000 ROA not after: Fri 23 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:78:d6:b8:55:c4:01:d1:59:24:e3:6b:b5:4b:d7:a7:6d:2d:9d:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 19 00:00:00 2024 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: serialNumber=6e145a7a927502b6e56bc9c2ceba0f91907e9a16174a741faede2f8dbfad5534, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:02:44:ac:d9:46:0e:cc:7c:19:53:eb:ac:6b: 41:11:2e:7b:ad:e9:c5:e0:9c:f7:35:3c:1c:fd:2f: d3:53:13:69:5b:7b:6c:72:b0:3d:d0:95:c1:f2:7d: 2d:da:63:03:e0:16:c0:b8:f6:55:f3:91:17:21:4d: 27:03:3e:a9:04:d7:25:ad:04:a0:fa:3e:38:7d:77: cf:dc:1d:47:2a:5c:fb:b1:42:e2:01:70:92:ff:ab: 0f:09:f2:5b:4d:9e:51:21:dc:55:fd:9f:79:06:3f: 2a:75:bc:87:bb:78:32:35:9e:c4:cb:0f:05:36:db: 98:a2:bd:72:34:a4:00:53:d4:80:cf:5f:8e:43:ae: f5:26:c2:a2:af:bc:4a:ce:7c:83:a3:0e:e3:2c:60: 8f:31:8a:01:19:d5:58:f9:9c:04:8f:03:8c:0d:f3: ef:d3:f7:62:bc:c6:40:40:2e:6c:02:75:63:c5:a8: c4:fa:4b:0d:df:db:4a:4b:03:2d:b7:c5:cb:06:a2: 92:2c:88:00:82:a8:bc:75:7f:2a:b9:5f:0c:1e:25: 20:a9:05:78:a1:58:57:cd:96:ce:9e:56:ef:e9:4d: 85:8b:1c:b2:86:81:e3:b2:72:ce:6e:36:3d:fa:d3: 89:0d:b8:1c:37:c5:d8:a0:f1:0e:95:bd:1b:10:88: 91:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D4:91:F3:6A:93:05:0A:97:7E:C7:53:AB:C8:BB:C0:EE:BF:5C:F5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/15b5f216-60e3-4b03-97f3-40e4b5d1e247.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:8000::/40 Signature Algorithm: sha256WithRSAEncryption 91:55:ce:4b:d8:0e:8c:f7:82:59:e5:59:ef:99:00:df:ef:87: 63:79:ae:d7:d8:31:6a:b9:13:46:15:f3:1f:36:01:d9:e6:29: 40:b3:d3:03:48:a6:81:50:5e:10:40:a8:fb:e6:07:06:43:83: 93:43:13:be:80:8b:36:12:94:1e:e2:94:51:1c:4b:68:26:01: da:e8:66:53:70:31:47:3d:35:ff:07:ac:d3:45:37:f8:89:fc: cc:a7:79:77:a8:af:71:c8:20:29:33:db:9b:17:41:ff:24:95: 8a:17:c1:b3:ae:a9:8f:60:ad:6b:6a:0a:52:6f:98:c2:de:04: 2d:30:8f:ba:4d:25:9a:63:76:66:a8:df:62:57:27:8a:8f:9f: 14:0e:f1:4e:c9:85:2f:2f:e8:8e:8b:3b:bf:37:40:18:e5:8c: 48:b8:94:94:4d:e8:d9:f5:1b:80:93:52:e0:e7:26:b6:77:d9: 3c:bc:a8:bf:ba:38:52:c0:a6:9f:14:86:3c:f2:35:5d:8f:d7: 7c:f3:92:48:2a:ba:96:18:48:d6:4f:41:fd:48:4d:7b:5d:6e: 00:20:0c:bd:48:de:7d:9c:e2:c5:88:a7:13:80:3d:86:5f:e5: 13:4d:92:2d:84:ed:a4:fd:c2:48:8e:49:f8:59:77:1d:21:1f: b5:5c:e8:8b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPnjWuFXEAdFZJONrtUvXp20tnbwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxOTAwMDAwMFoX DTI0MDgyMzIzNTk1OVowejFJMEcGA1UEBRNANmUxNDVhN2E5Mjc1MDJiNmU1NmJj OWMyY2ViYTBmOTE5MDdlOWExNjE3NGE3NDFmYWVkZTJmOGRiZmFkNTUzNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQJErNlGDsx8GVPrrGtBES57renF 4Jz3NTwc/S/TUxNpW3tscrA90JXB8n0t2mMD4BbAuPZV85EXIU0nAz6pBNclrQSg +j44fXfP3B1HKlz7sULiAXCS/6sPCfJbTZ5RIdxV/Z95Bj8qdbyHu3gyNZ7Eyw8F NtuYor1yNKQAU9SAz1+OQ671JsKir7xKznyDow7jLGCPMYoBGdVY+ZwEjwOMDfPv 0/divMZAQC5sAnVjxajE+ksN39tKSwMtt8XLBqKSLIgAgqi8dX8quV8MHiUgqQV4 oVhXzZbOnlbv6U2FixyyhoHjsnLObjY9+tOJDbgcN8XYoPEOlb0bEIiR3QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHrUkfNqkwUKl37HU6vIu8Duv1z1MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE1YjVmMjE2LTYwZTMtNGIwMy05N2YzLTQwZTRiNWQxZTI0Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9oAwDQYJKoZIhvcNAQELBQADggEBAJFVzkvYDoz3glnlWe+Z AN/vh2N5rtfYMWq5E0YV8x82AdnmKUCz0wNIpoFQXhBAqPvmBwZDg5NDE76AizYS lB7ilFEcS2gmAdroZlNwMUc9Nf8HrNNFN/iJ/MyneXeor3HIICkz25sXQf8klYoX wbOuqY9grWtqClJvmMLeBC0wj7pNJZpjdmao32JXJ4qPnxQO8U7JhS8v6I6LO783 QBjljEi4lJRN6Nn1G4CTUuDnJrZ32Ty8qL+6OFLApp8UhjzyNV2P13zzkkgqupYY SNZPQf1ITXtdbgAgDL1I3n2c4sWIpxOAPYZf5RNNki2E7aT9wkiOSfhZdx0hH7Vc 6Is= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:14 2024 by rpki-client on console-fra.rpki-client.org