$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19a059cd-1f45-46d0-9fec-e41f3b4c08b5.roa File: 19a059cd-1f45-46d0-9fec-e41f3b4c08b5.roa (raw, json) Hash identifier: HXg1YmvCO/Cg/+qwo7AA0ANZ/E3EtYBrwbMwkXcZoWY= Subject key identifier: 0C:05:5F:14:FE:C5:19:24:56:5E:71:B1:F1:E2:13:D3:C7:FE:A3:B5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 30A8C71E0F9CBA41B00E1B7D53FB92887CE802E7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19a059cd-1f45-46d0-9fec-e41f3b4c08b5.roa Signing time: Mon 18 Sep 2023 00:00:00 +0000 ROA not before: Mon 18 Sep 2023 00:00:00 +0000 ROA not after: Mon 23 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Sep 2023 03:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:a8:c7:1e:0f:9c:ba:41:b0:0e:1b:7d:53:fb:92:88:7c:e8:02:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Sep 18 00:00:00 2023 GMT Not After : Oct 23 23:59:59 2023 GMT Subject: serialNumber=422132639bc086a386fea3245a813d4335d64bfb2b3a70782cb0175773247bba, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:30:e3:9a:ed:67:e7:e1:b1:1a:ca:aa:13:e6: 5f:b3:4d:ea:8e:e5:90:ad:a0:fe:64:29:2a:34:e3: f9:cb:df:be:ed:de:70:3f:92:1f:de:98:e1:e3:a1: 59:6e:29:2d:15:c6:34:78:d3:9f:f3:04:cb:f2:2d: f3:4e:9b:09:65:5c:33:ea:51:0e:cc:71:9e:52:46: 59:ff:33:84:2f:69:03:aa:db:3b:ee:e0:5e:4b:81: e4:c8:ea:40:6a:c4:54:f7:89:06:f9:62:ea:fd:95: cb:d5:f9:8f:df:aa:11:1b:7d:74:f1:48:07:47:27: d1:7b:72:4b:62:12:44:0d:46:37:95:a6:82:1f:6d: 3b:e4:6c:b9:c5:c9:e7:f2:9a:8d:4b:7c:d9:b3:7c: 6f:b4:78:93:d8:85:7f:78:6a:63:9e:0c:0a:34:6a: 2c:11:19:8a:e7:3d:d5:51:0b:18:64:b0:6c:ef:95: 24:20:28:41:61:02:5b:ed:8f:de:b3:51:d5:c0:a6: a8:36:60:95:a7:63:93:3e:88:b8:08:d8:b5:91:ce: d4:79:77:72:09:2c:94:c4:0e:b8:5e:ad:ee:91:04: 00:6e:4b:25:e3:4a:ff:83:04:b2:56:01:76:1b:8d: 4b:e1:8e:30:d4:7b:da:12:d4:93:83:91:51:a0:d5: d7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:05:5F:14:FE:C5:19:24:56:5E:71:B1:F1:E2:13:D3:C7:FE:A3:B5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19a059cd-1f45-46d0-9fec-e41f3b4c08b5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:f000::/40 Signature Algorithm: sha256WithRSAEncryption 52:fb:34:2b:f6:b9:cb:87:c1:9c:77:3a:57:7b:1a:d2:f5:89: b2:be:eb:d2:a9:f0:20:b1:25:2a:96:54:5b:fd:68:af:8e:1d: 37:99:1d:1a:d6:2e:4e:37:71:fd:ef:07:c8:aa:28:9c:7a:00: fc:31:32:95:77:8d:19:3d:93:49:04:43:a1:cb:52:6a:38:b8: 24:76:05:62:35:52:f7:0b:33:30:fb:0f:b6:52:c8:3a:9c:e2: 34:37:54:e4:b4:61:9e:78:93:69:64:52:e4:ee:e6:a7:ec:c0: a9:3c:06:54:71:9c:bf:92:6d:4b:23:92:2f:5c:a1:63:c6:9b: 59:9c:1b:20:73:02:97:5d:6e:0d:fc:e4:2f:73:94:66:5a:db: af:3b:ca:d2:59:a5:52:7f:b8:5d:1e:44:b6:9c:14:65:f3:c9: f9:38:97:ed:69:b1:12:88:68:70:a6:33:8a:80:d8:44:9d:58: a6:cc:7f:d5:5b:90:bd:e8:94:db:df:ee:d5:16:1c:79:1c:6a: 99:0f:b3:3a:66:00:fa:55:d7:cc:65:f0:6a:2b:be:cf:cf:aa: cd:ae:1e:df:05:c8:75:b6:14:ad:a1:59:f7:34:55:7d:3a:66: 6b:60:fa:f4:4b:de:ce:c1:64:6a:5e:db:5d:f3:54:aa:d4:0f: 96:21:db:2d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMKjHHg+cukGwDht9U/uSiHzoAucwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTIzMDkxODAwMDAwMFoX DTIzMTAyMzIzNTk1OVowejFJMEcGA1UEBRNANDIyMTMyNjM5YmMwODZhMzg2ZmVh MzI0NWE4MTNkNDMzNWQ2NGJmYjJiM2E3MDc4MmNiMDE3NTc3MzI0N2JiYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5jDjmu1n5+GxGsqqE+Zfs03qjuWQ raD+ZCkqNOP5y9++7d5wP5If3pjh46FZbiktFcY0eNOf8wTL8i3zTpsJZVwz6lEO zHGeUkZZ/zOEL2kDqts77uBeS4HkyOpAasRU94kG+WLq/ZXL1fmP36oRG3108UgH RyfRe3JLYhJEDUY3laaCH2075Gy5xcnn8pqNS3zZs3xvtHiT2IV/eGpjngwKNGos ERmK5z3VUQsYZLBs75UkIChBYQJb7Y/es1HVwKaoNmCVp2OTPoi4CNi1kc7UeXdy CSyUxA64Xq3ukQQAbksl40r/gwSyVgF2G41L4Y4w1HvaEtSTg5FRoNXX3QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAwFXxT+xRkkVl5xsfHiE9PH/qO1MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE5YTA1OWNkLTFmNDUtNDZkMC05ZmVjLWU0MWYzYjRjMDhiNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaafAwDQYJKoZIhvcNAQELBQADggEBAFL7NCv2ucuHwZx3Old7 GtL1ibK+69Kp8CCxJSqWVFv9aK+OHTeZHRrWLk43cf3vB8iqKJx6APwxMpV3jRk9 k0kEQ6HLUmo4uCR2BWI1UvcLMzD7D7ZSyDqc4jQ3VOS0YZ54k2lkUuTu5qfswKk8 BlRxnL+SbUsjki9coWPGm1mcGyBzApddbg385C9zlGZa2687ytJZpVJ/uF0eRLac FGXzyfk4l+1psRKIaHCmM4qA2ESdWKbMf9VbkL3olNvf7tUWHHkcapkPszpmAPpV 18xl8Gorvs/Pqs2uHt8FyHW2FK2hWfc0VX06Zmtg+vRL3s7BZGpe213zVKrUD5Yh 2y0= -----END CERTIFICATE-----Generated at Mon Sep 18 15:24:45 2023 by rpki-client on console-fra.rpki-client.org