$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa File: 26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa (raw, json) Hash identifier: e+LLnylx7Va+0kjCUprBoIW/PRc6JNCGk2nPA/hMvDI= Subject key identifier: 6C:5D:49:22:4A:60:0B:97:E8:C6:20:8D:73:5C:A4:53:72:7B:7B:EE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0BDDD6C2A26E0B720CF1921C203E46FB27DB1757 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 00:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:dd:d6:c2:a2:6e:0b:72:0c:f1:92:1c:20:3e:46:fb:27:db:17:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=c6f656d76f077d78d814ddefe5ae5b4b6d4484b406f993cbdaf49fa05af86a22, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:95:7e:f1:db:8f:20:29:05:7c:f9:40:42:3b: f4:a0:de:4d:5e:65:a2:9d:8c:2e:03:93:27:78:08: 0c:69:4f:49:89:03:98:7c:28:bf:a1:c4:88:a4:66: b5:0c:44:ae:02:ab:06:5b:20:63:3e:66:04:3b:b3: b7:69:5b:87:5a:92:fd:38:8f:78:74:ee:9d:88:e6: bd:55:a8:cd:c9:c7:77:f0:1a:b5:c6:37:df:a2:ba: 99:89:c7:65:5b:c8:0c:3a:9f:7c:02:c1:e0:7b:1d: 33:d4:5a:45:44:b0:f1:18:b7:81:dc:7d:01:43:33: 62:91:e4:8c:7c:87:60:46:a7:6b:99:a4:a3:fc:8d: 9a:60:f9:42:79:33:61:28:1e:b9:89:cf:4b:f2:66: e2:ff:e4:1d:14:e2:b4:cc:5c:1f:1e:58:bd:80:c9: 8b:60:4a:33:b9:3c:c4:f1:43:fe:40:ae:9e:92:4c: 76:75:4b:07:f1:d5:5b:84:a5:96:9d:0c:67:c1:0b: 1b:a2:28:0f:d0:90:c7:07:77:26:0f:28:28:57:64: f4:e7:2e:00:c7:de:33:74:44:8e:98:30:6a:8f:45: fa:6e:bc:da:f4:37:80:90:1b:a7:bf:1a:41:bc:fb: 48:be:be:e5:b1:e7:8a:fd:dc:47:ce:b9:f5:77:74: 80:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:5D:49:22:4A:60:0B:97:E8:C6:20:8D:73:5C:A4:53:72:7B:7B:EE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:800::/40 Signature Algorithm: sha256WithRSAEncryption c8:2d:3f:21:f8:01:c8:d0:98:30:ad:5c:5c:ce:30:59:97:e9: 42:1d:87:cc:62:fa:e7:46:96:69:ca:06:e5:9e:fa:67:fb:2c: b5:61:09:a8:b1:b8:eb:48:ba:82:75:80:cc:f6:3b:62:4e:50: 07:96:35:b1:7f:44:0b:41:49:34:3b:d4:b5:d9:98:9f:dc:8e: a5:da:70:e7:e6:f8:77:1c:be:4f:b2:ec:d9:dc:4b:f1:96:51: 58:cf:05:a8:4e:ab:5d:d8:c2:cd:cc:8e:9c:28:a0:e5:cf:89: 54:d2:d0:72:50:d5:96:98:41:da:12:3c:45:4c:44:88:3d:cc: 17:8f:00:2c:9b:43:ff:ac:bd:08:97:c4:3f:96:0f:da:39:31: c3:4b:32:4d:37:b5:5f:ca:f6:da:ad:19:37:04:ba:60:eb:4e: a7:a3:9f:3a:2e:3b:79:79:bc:b1:fd:99:2d:77:ee:e9:30:8c: 47:2b:a6:bb:74:3c:14:1d:27:ed:d8:48:fb:e3:ee:74:8d:55: f1:6d:75:a0:2d:57:c1:97:18:21:89:75:57:e5:4e:43:6b:f7: 33:ef:67:63:88:36:19:04:3d:b2:27:3f:ec:f5:8e:8c:c1:fb: 72:6c:cc:67:16:eb:c8:78:1c:16:9a:27:b9:94:4c:be:2d:ba: b9:fe:eb:1b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUC93WwqJuC3IM8ZIcID5G+yfbF1cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMjAwMDAwMFoX DTI0MTIyNzIzNTk1OVowejFJMEcGA1UEBRNAYzZmNjU2ZDc2ZjA3N2Q3OGQ4MTRk ZGVmZTVhZTViNGI2ZDQ0ODRiNDA2Zjk5M2NiZGFmNDlmYTA1YWY4NmEyMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5V+8duPICkFfPlAQjv0oN5NXmWi nYwuA5MneAgMaU9JiQOYfCi/ocSIpGa1DESuAqsGWyBjPmYEO7O3aVuHWpL9OI94 dO6diOa9VajNycd38Bq1xjfforqZicdlW8gMOp98AsHgex0z1FpFRLDxGLeB3H0B QzNikeSMfIdgRqdrmaSj/I2aYPlCeTNhKB65ic9L8mbi/+QdFOK0zFwfHli9gMmL YEozuTzE8UP+QK6ekkx2dUsH8dVbhKWWnQxnwQsboigP0JDHB3cmDygoV2T05y4A x94zdESOmDBqj0X6brza9DeAkBunvxpBvPtIvr7lseeK/dxHzrn1d3SAXwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGxdSSJKYAuX6MYgjXNcpFNye3vuMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzI2YTFhNmMwLTdjNTEtNGY2MC04ZDY2LTgzZDU1M2FkMjg0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaQgwDQYJKoZIhvcNAQELBQADggEBAMgtPyH4AcjQmDCtXFzO MFmX6UIdh8xi+udGlmnKBuWe+mf7LLVhCaixuOtIuoJ1gMz2O2JOUAeWNbF/RAtB STQ71LXZmJ/cjqXacOfm+Hccvk+y7NncS/GWUVjPBahOq13Yws3MjpwooOXPiVTS 0HJQ1ZaYQdoSPEVMRIg9zBePACybQ/+svQiXxD+WD9o5McNLMk03tV/K9tqtGTcE umDrTqejnzouO3l5vLH9mS137ukwjEcrprt0PBQdJ+3YSPvj7nSNVfFtdaAtV8GX GCGJdVflTkNr9zPvZ2OINhkEPbInP+z1jozB+3JszGcW68h4HBaaJ7mUTL4turn+ 6xs= -----END CERTIFICATE-----Generated at Sun Nov 24 02:34:55 2024 by rpki-client on console-fra.rpki-client.org