$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa File: 26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa (raw, json) Hash identifier: JsKThruVrasVqII0HemrqwCoFmaKHuVJMiZCA/LAtI8= Subject key identifier: 00:CD:F9:A4:15:74:D0:A5:44:85:92:43:F9:4D:9F:A0:DE:2B:02:46 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5E79ED087D91DF47DB7200A1776FEB9615953424 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa Signing time: Fri 19 Jul 2024 00:00:00 +0000 ROA not before: Fri 19 Jul 2024 00:00:00 +0000 ROA not after: Fri 23 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:79:ed:08:7d:91:df:47:db:72:00:a1:77:6f:eb:96:15:95:34:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 19 00:00:00 2024 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: serialNumber=4e755197022ae756eb43cb957ef484c3b3782b56e59eb3b735d6d995bafe884e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:28:87:eb:1a:2a:2b:d7:60:e2:bd:71:14:9e: 5c:5b:04:8e:e9:69:87:ce:d3:64:de:62:c1:ad:80: 7c:e1:ce:68:82:14:21:6a:0e:b1:c7:a7:be:3a:8f: 19:46:d3:b2:f0:25:f1:df:e7:89:d3:49:14:a0:21: 7b:89:d6:d9:b5:29:93:11:c1:d9:07:87:74:52:1d: 55:2e:b8:a2:8a:89:9d:43:b8:f4:6c:f7:34:70:c7: 93:78:6b:95:09:75:bf:b6:43:cb:70:44:d9:cd:8a: a5:62:8a:20:2c:3d:e4:d8:01:cd:ca:46:6f:83:03: 2f:1f:a5:a0:69:d9:c2:b0:74:f5:cd:ab:2a:0c:c3: 2f:5e:ab:c4:00:b5:d4:ed:73:b1:34:95:ea:d3:61: c9:01:ec:7c:4d:69:31:19:25:34:a8:09:e7:0c:fa: 2f:f0:81:39:95:12:32:46:ae:b1:27:ea:ee:07:a1: c9:de:22:ef:05:dc:84:74:c2:25:39:fc:12:d6:81: 7e:03:92:d0:8e:7d:5a:f0:4c:de:08:43:8f:e9:9d: ec:24:76:6f:a3:e2:ba:5c:31:3a:4c:e7:7a:9d:c0: a7:6b:20:c5:ff:de:04:04:e7:97:73:52:8c:1a:d4: b6:c3:61:61:20:26:e7:b1:bc:2b:45:7a:2d:c4:29: 07:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CD:F9:A4:15:74:D0:A5:44:85:92:43:F9:4D:9F:A0:DE:2B:02:46 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:800::/40 Signature Algorithm: sha256WithRSAEncryption 0c:af:2a:81:2b:55:3e:6b:7f:bb:69:21:ce:28:91:bd:0b:b0: c0:31:d1:4f:9d:25:fa:4b:48:41:e7:97:fa:82:9b:7b:43:77: e7:e7:24:cf:71:b4:a8:93:63:8c:16:82:f7:d9:d2:5b:16:1a: 6c:b9:56:b4:99:6d:42:71:8d:bc:0e:77:3f:7c:c0:34:95:a8: 5e:12:94:54:d3:94:49:33:ac:55:75:e3:c6:77:92:d0:65:cc: ba:18:1e:56:ba:18:c8:90:05:69:bd:be:0c:e6:f9:fe:b9:e7: 0c:f6:e8:91:e8:9f:d3:de:37:0a:ad:86:f6:2a:4c:60:c6:c3: 57:72:25:b2:7e:64:e6:55:11:ec:25:58:34:2e:bc:ca:e3:f5: 73:fa:7a:98:dd:9e:a9:d0:7b:d6:30:c8:cd:51:2b:fe:91:17: f9:82:c1:67:53:00:ab:c5:b5:3d:b2:b9:f9:1f:2c:8f:18:00: b0:1d:d2:a1:5b:9a:c8:d9:fe:ee:d8:c8:27:bb:30:87:b8:a0: 60:62:ea:80:96:1f:ea:c6:c0:28:58:7a:bd:28:15:d2:0a:80: 43:1a:2e:44:7a:c1:da:e0:5f:16:fc:04:b9:fb:e5:54:a7:41: 2b:46:f9:2b:d1:e9:6d:27:dd:e3:4e:18:5a:42:5c:25:d4:f3: 9d:7f:89:ce -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXnntCH2R30fbcgChd2/rlhWVNCQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxOTAwMDAwMFoX DTI0MDgyMzIzNTk1OVowejFJMEcGA1UEBRNANGU3NTUxOTcwMjJhZTc1NmViNDNj Yjk1N2VmNDg0YzNiMzc4MmI1NmU1OWViM2I3MzVkNmQ5OTViYWZlODg0ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCiH6xoqK9dg4r1xFJ5cWwSO6WmH ztNk3mLBrYB84c5oghQhag6xx6e+Oo8ZRtOy8CXx3+eJ00kUoCF7idbZtSmTEcHZ B4d0Uh1VLriiiomdQ7j0bPc0cMeTeGuVCXW/tkPLcETZzYqlYoogLD3k2AHNykZv gwMvH6WgadnCsHT1zasqDMMvXqvEALXU7XOxNJXq02HJAex8TWkxGSU0qAnnDPov 8IE5lRIyRq6xJ+ruB6HJ3iLvBdyEdMIlOfwS1oF+A5LQjn1a8EzeCEOP6Z3sJHZv o+K6XDE6TOd6ncCnayDF/94EBOeXc1KMGtS2w2FhICbnsbwrRXotxCkHswIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFADN+aQVdNClRIWSQ/lNn6DeKwJGMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzI2YTFhNmMwLTdjNTEtNGY2MC04ZDY2LTgzZDU1M2FkMjg0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaQgwDQYJKoZIhvcNAQELBQADggEBAAyvKoErVT5rf7tpIc4o kb0LsMAx0U+dJfpLSEHnl/qCm3tDd+fnJM9xtKiTY4wWgvfZ0lsWGmy5VrSZbUJx jbwOdz98wDSVqF4SlFTTlEkzrFV148Z3ktBlzLoYHla6GMiQBWm9vgzm+f655wz2 6JHon9PeNwqthvYqTGDGw1dyJbJ+ZOZVEewlWDQuvMrj9XP6epjdnqnQe9YwyM1R K/6RF/mCwWdTAKvFtT2yufkfLI8YALAd0qFbmsjZ/u7YyCe7MIe4oGBi6oCWH+rG wChYer0oFdIKgEMaLkR6wdrgXxb8BLn75VSnQStG+SvR6W0n3eNOGFpCXCXU851/ ic4= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:40 2024 by rpki-client on console-ams.rpki-client.org