$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/168088ed-555e-4d13-9a8c-5dacdd77b796.roa File: 168088ed-555e-4d13-9a8c-5dacdd77b796.roa (raw, json) Hash identifier: e9GQOhDmFT0NknL0GpTGSAfGRbvlpFcZkmz0WcYFbmM= Subject key identifier: 05:CC:DC:6C:4A:8A:94:D8:3E:5E:92:FE:5E:15:8A:FE:57:82:E3:63 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 637E6EBE9368EA2FBDD06A0B813FCBBDB3958FD6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/168088ed-555e-4d13-9a8c-5dacdd77b796.roa Signing time: Mon 18 Sep 2023 00:00:00 +0000 ROA not before: Mon 18 Sep 2023 00:00:00 +0000 ROA not after: Mon 23 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafc:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Sep 2023 03:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:7e:6e:be:93:68:ea:2f:bd:d0:6a:0b:81:3f:cb:bd:b3:95:8f:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Sep 18 00:00:00 2023 GMT Not After : Oct 23 23:59:59 2023 GMT Subject: serialNumber=8ed5621f6624eb50130424ea1100b195e5cf7ca78572fc5059366687b7ab569d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:6f:fb:87:46:6b:2d:86:15:86:78:ad:47:e0: db:3d:2c:95:d2:26:b9:40:a0:20:6e:6e:87:30:aa: b6:bc:2b:53:43:0a:10:fe:2d:cd:4a:7d:f0:2c:48: 67:d4:3d:bf:5e:26:ef:8c:86:ff:b4:e9:53:a0:db: d2:4c:3c:52:b1:df:cf:5c:37:b6:76:e1:45:9c:6a: 78:dc:6b:d1:2d:35:7c:ea:aa:83:03:62:89:8c:0d: 50:e9:45:02:be:8f:91:17:59:85:10:9b:a0:56:3b: 11:3a:83:32:61:38:49:fb:1b:7b:79:83:b3:10:95: b6:7e:15:02:1a:41:c3:28:c4:05:30:e3:7e:02:ca: e1:d6:2b:eb:2f:70:b7:e0:4c:49:a8:c2:9b:d5:83: 51:97:f0:17:13:d5:59:93:55:b1:4b:0a:0d:f6:de: 76:38:a3:4b:18:8a:88:87:70:bc:f7:30:56:a1:83: 76:d6:e0:f1:2c:4d:f6:84:b5:95:d0:af:41:14:01: 35:37:3e:21:f7:a4:ea:5d:23:33:44:ff:da:b5:0c: 41:f4:42:64:00:91:3e:39:46:fa:29:02:87:28:41: 90:1c:94:37:da:1d:45:c6:a7:cf:08:81:ed:c8:29: 48:12:53:2f:55:1b:1e:7e:82:fa:d8:38:5e:7f:a6: 2a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CC:DC:6C:4A:8A:94:D8:3E:5E:92:FE:5E:15:8A:FE:57:82:E3:63 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/168088ed-555e-4d13-9a8c-5dacdd77b796.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafc:6000::/40 Signature Algorithm: sha256WithRSAEncryption af:56:05:ad:e3:02:90:e6:cb:62:c3:ac:d3:82:a8:f9:c3:33: 7a:43:f4:92:f2:06:2d:2b:a8:33:bb:71:a7:3d:f2:be:73:6d: 43:8f:40:83:7e:77:7b:48:85:f7:a3:ce:57:c7:08:f6:36:d2: 31:37:36:dc:a9:d2:aa:dd:b2:cc:4b:34:e1:1b:06:4f:3e:21: 4a:06:e4:d9:1e:b0:36:18:15:ea:e8:6b:ab:bf:0b:74:a1:ee: e9:cd:58:23:e3:ba:f1:22:80:55:11:67:d7:15:5d:a4:8e:24: e5:19:ea:81:e9:ad:aa:4b:02:50:71:da:d3:34:60:b0:cb:02: e4:4f:60:3d:c5:ee:a6:39:a6:22:25:2f:9a:31:01:a8:22:33: 2b:9b:aa:68:76:ae:e1:5d:fc:ec:89:f4:19:6a:e4:f9:d2:a7: 08:b2:ff:d1:28:1a:7b:48:17:86:6f:46:b4:87:00:18:24:9f: b9:50:31:03:da:f2:53:67:8a:8f:84:fc:46:c0:3a:a6:ea:47: 7c:43:cc:08:2b:c7:72:96:e2:6f:6c:d4:76:f9:9d:c6:f7:ed: 6d:f3:4f:43:2d:11:b7:f6:db:07:db:cb:17:dd:4a:df:b3:1c: 94:fa:2a:97:1f:4b:16:3c:78:54:91:cb:1f:bb:18:7f:bd:36: cb:6e:6a:27 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUY35uvpNo6i+90GoLgT/LvbOVj9YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTIzMDkxODAwMDAwMFoX DTIzMTAyMzIzNTk1OVowejFJMEcGA1UEBRNAOGVkNTYyMWY2NjI0ZWI1MDEzMDQy NGVhMTEwMGIxOTVlNWNmN2NhNzg1NzJmYzUwNTkzNjY2ODdiN2FiNTY5ZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjm/7h0ZrLYYVhnitR+DbPSyV0ia5 QKAgbm6HMKq2vCtTQwoQ/i3NSn3wLEhn1D2/XibvjIb/tOlToNvSTDxSsd/PXDe2 duFFnGp43GvRLTV86qqDA2KJjA1Q6UUCvo+RF1mFEJugVjsROoMyYThJ+xt7eYOz EJW2fhUCGkHDKMQFMON+Asrh1ivrL3C34ExJqMKb1YNRl/AXE9VZk1WxSwoN9t52 OKNLGIqIh3C89zBWoYN21uDxLE32hLWV0K9BFAE1Nz4h96TqXSMzRP/atQxB9EJk AJE+OUb6KQKHKEGQHJQ32h1FxqfPCIHtyClIElMvVRsefoL62Dhef6Yq2wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAXM3GxKipTYPl6S/l4Viv5XguNjMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE2ODA4OGVkLTU1NWUtNGQxMy05YThjLTVkYWNkZDc3Yjc5Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/GAwDQYJKoZIhvcNAQELBQADggEBAK9WBa3jApDmy2LDrNOC qPnDM3pD9JLyBi0rqDO7cac98r5zbUOPQIN+d3tIhfejzlfHCPY20jE3Ntyp0qrd ssxLNOEbBk8+IUoG5NkesDYYFeroa6u/C3Sh7unNWCPjuvEigFURZ9cVXaSOJOUZ 6oHprapLAlBx2tM0YLDLAuRPYD3F7qY5piIlL5oxAagiMyubqmh2ruFd/OyJ9Blq 5PnSpwiy/9EoGntIF4ZvRrSHABgkn7lQMQPa8lNnio+E/EbAOqbqR3xDzAgrx3KW 4m9s1Hb5ncb37W3zT0MtEbf22wfbyxfdSt+zHJT6KpcfSxY8eFSRyx+7GH+9Nstu aic= -----END CERTIFICATE-----Generated at Mon Sep 18 15:40:39 2023 by rpki-client on console-ams.rpki-client.org