$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f704d7c-8714-47ad-ab1e-df728b87b2a4.roa File: 1f704d7c-8714-47ad-ab1e-df728b87b2a4.roa (raw, json) Hash identifier: 8zpRv4XbOAAohstdtNtAY+cnYQ0lVLXrpMBf4I0fyQQ= Subject key identifier: 78:41:B3:54:16:97:22:8A:31:E7:DF:15:F6:6F:51:39:1D:D9:B9:5D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 640835B3AFCE19D2E7932B5324D6EF70EB7BD482 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f704d7c-8714-47ad-ab1e-df728b87b2a4.roa Signing time: Fri 25 Oct 2024 00:00:00 +0000 ROA not before: Fri 25 Oct 2024 00:00:00 +0000 ROA not after: Fri 29 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf8:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:08:35:b3:af:ce:19:d2:e7:93:2b:53:24:d6:ef:70:eb:7b:d4:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 25 00:00:00 2024 GMT Not After : Nov 29 23:59:59 2024 GMT Subject: serialNumber=952b7b0e135ff682af55fde7e16b5b2d26fc1b02d81065547e3dafdb6ae8cf29, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:56:61:9f:b2:49:dd:84:19:89:c1:14:e0:c9: c9:24:14:32:fa:89:a5:33:39:c0:28:dc:b4:93:9a: 64:b0:a2:e0:43:68:03:13:c6:69:12:f6:db:ad:55: 91:30:c0:74:aa:35:f3:cf:03:cd:4b:fe:bc:a0:c1: 99:7f:50:65:61:59:87:bd:10:b9:ee:e5:69:9f:7c: f6:e8:be:bb:32:7f:6e:08:f2:55:05:83:a5:53:33: 88:25:f7:37:f8:43:6e:b5:86:d3:3b:2f:81:8b:4d: 20:02:29:dc:7b:6c:9f:82:a0:01:f6:37:7a:e5:bb: 36:73:16:78:95:75:9b:10:19:19:7e:b9:4a:54:f0: cc:03:9f:9e:34:4c:fb:c2:ad:4a:5b:1e:96:bd:8a: 51:bc:1a:e1:d8:17:c5:6a:ec:c1:a4:bb:d7:9f:71: 2d:25:ff:9b:e2:cd:dc:17:8a:86:d5:10:61:94:f5: 4e:7a:bb:92:c2:32:e9:6f:ee:8f:ae:f0:61:f4:b0: 15:76:82:20:9f:c7:2a:ce:8e:4d:8e:a2:f2:1b:c4: d3:e6:5e:f8:14:4b:a7:1b:ec:91:8e:26:d6:4b:ce: c4:43:81:27:d7:98:26:2e:b9:ad:06:3f:d5:07:aa: a8:5b:9b:4c:97:5e:46:fe:ae:de:8e:41:e6:44:58: 9f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:41:B3:54:16:97:22:8A:31:E7:DF:15:F6:6F:51:39:1D:D9:B9:5D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f704d7c-8714-47ad-ab1e-df728b87b2a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf8:7000::/40 Signature Algorithm: sha256WithRSAEncryption 1b:78:10:75:38:ff:8f:06:d8:fb:83:76:98:25:f4:3f:30:cb: ea:62:a5:ba:c3:85:e1:a0:5b:eb:03:f1:6b:27:97:e0:1e:4f: 1f:3b:2b:b7:3b:7c:d3:35:95:16:44:f2:01:34:4b:10:22:80: c8:05:8c:d0:5d:d3:2c:10:6a:69:ca:1b:87:ba:e8:7a:69:43: 52:b2:c4:cf:46:f4:33:18:10:ee:5c:54:91:24:b8:2e:0c:64: 6a:3f:bf:cf:81:af:fc:e2:ef:f0:a3:fc:ef:c2:d7:50:44:ee: 8a:d1:5b:39:55:e2:d0:23:14:98:c5:ae:62:bf:26:43:b0:00: c0:ab:c6:32:38:84:55:9d:58:f2:4a:7b:25:81:cf:c0:d3:b7: cd:c1:5e:7a:66:0b:45:cf:d7:15:9e:65:c0:f3:44:1c:ce:28: fb:f7:2d:72:15:7a:bf:2e:0a:ee:2e:99:7e:92:cc:28:0c:56: c3:8b:43:8f:bb:ac:1e:b1:77:36:8c:e4:6a:ff:af:06:48:8d: 6a:b9:ce:66:a4:94:c1:4b:74:a9:de:63:bb:1f:2a:bc:15:6c: 20:5d:85:3f:58:b5:c1:23:5b:5c:ab:34:6b:39:4e:8f:fc:e0: fe:b9:1d:58:6f:aa:68:a6:5a:e3:6c:b4:eb:7c:6f:7d:7b:dd: ca:79:8a:92 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZAg1s6/OGdLnkytTJNbvcOt71IIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAyNTAwMDAwMFoX DTI0MTEyOTIzNTk1OVowejFJMEcGA1UEBRNAOTUyYjdiMGUxMzVmZjY4MmFmNTVm ZGU3ZTE2YjViMmQyNmZjMWIwMmQ4MTA2NTU0N2UzZGFmZGI2YWU4Y2YyOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVZhn7JJ3YQZicEU4MnJJBQy+oml MznAKNy0k5pksKLgQ2gDE8ZpEvbbrVWRMMB0qjXzzwPNS/68oMGZf1BlYVmHvRC5 7uVpn3z26L67Mn9uCPJVBYOlUzOIJfc3+ENutYbTOy+Bi00gAince2yfgqAB9jd6 5bs2cxZ4lXWbEBkZfrlKVPDMA5+eNEz7wq1KWx6WvYpRvBrh2BfFauzBpLvXn3Et Jf+b4s3cF4qG1RBhlPVOeruSwjLpb+6PrvBh9LAVdoIgn8cqzo5NjqLyG8TT5l74 FEunG+yRjibWS87EQ4En15gmLrmtBj/VB6qoW5tMl15G/q7ejkHmRFifcwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHhBs1QWlyKKMeffFfZvUTkd2bldMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFmNzA0ZDdjLTg3MTQtNDdhZC1hYjFlLWRmNzI4Yjg3YjJhNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+HAwDQYJKoZIhvcNAQELBQADggEBABt4EHU4/48G2PuDdpgl 9D8wy+pipbrDheGgW+sD8Wsnl+AeTx87K7c7fNM1lRZE8gE0SxAigMgFjNBd0ywQ amnKG4e66HppQ1KyxM9G9DMYEO5cVJEkuC4MZGo/v8+Br/zi7/Cj/O/C11BE7orR WzlV4tAjFJjFrmK/JkOwAMCrxjI4hFWdWPJKeyWBz8DTt83BXnpmC0XP1xWeZcDz RBzOKPv3LXIVer8uCu4umX6SzCgMVsOLQ4+7rB6xdzaM5Gr/rwZIjWq5zmaklMFL dKneY7sfKrwVbCBdhT9YtcEjW1yrNGs5To/84P65HVhvqmimWuNstOt8b3173cp5 ipI= -----END CERTIFICATE-----Generated at Fri Oct 25 17:02:32 2024 by rpki-client on console-fra.rpki-client.org