$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa File: 26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa (raw, json) Hash identifier: f6Hvol7WWxeSbBidhocjfATBjpjNTN1ZvK06Itx0RXw= Subject key identifier: 07:75:CB:3C:2C:38:4A:05:BB:6B:0F:25:EF:5E:F3:B1:74:74:8D:24 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1FB71B876C310E06FD2A85F560937D4752155488 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa Signing time: Tue 09 Apr 2024 00:00:00 +0000 ROA not before: Tue 09 Apr 2024 00:00:00 +0000 ROA not after: Tue 14 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 00:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b7:1b:87:6c:31:0e:06:fd:2a:85:f5:60:93:7d:47:52:15:54:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 9 00:00:00 2024 GMT Not After : May 14 23:59:59 2024 GMT Subject: serialNumber=199fcc740d596ebd18692b449570a29d6636ae6591ae4a20bfc03f9bc013a16b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:64:f3:58:7c:aa:0d:50:a5:f2:74:02:15:be: 98:51:d2:1b:ff:98:03:c9:59:48:70:ba:d8:37:48: 97:42:cd:05:bd:27:06:96:d1:bf:f2:e9:a3:bb:9f: ac:cb:76:a7:73:a9:0e:e2:1e:00:08:c6:50:95:54: d5:ff:ab:8f:77:56:4b:79:0a:6a:4f:f2:3d:17:c0: ac:92:f6:7e:7f:a5:70:e5:23:8e:63:42:44:45:5d: 87:6d:71:b8:41:40:39:ea:61:c1:43:f3:a8:c3:55: d1:d7:2d:2c:df:50:61:48:41:61:12:d5:9c:9c:58: 20:e8:72:87:5b:5d:c6:51:6e:3a:a1:3a:ee:db:0c: 60:88:db:22:13:5c:23:1b:9d:35:dd:c4:77:d7:ed: f5:ae:7b:43:06:d9:c2:46:29:f2:84:b9:32:f1:a1: ec:f9:ce:62:89:c4:41:c1:5d:9b:1d:fc:1c:af:42: 6f:63:6e:51:e9:73:18:ff:8f:f5:2f:2d:b4:95:ee: 33:ac:ee:b2:2f:a5:40:01:1b:21:30:00:3f:89:4b: 87:c2:58:65:fc:27:eb:07:27:df:90:bb:95:25:32: 15:b0:86:ec:35:87:9d:e3:bd:60:be:8c:bb:2f:cc: 01:31:99:f4:37:3a:bb:d8:a0:41:d0:09:8c:f6:08: 4c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:75:CB:3C:2C:38:4A:05:BB:6B:0F:25:EF:5E:F3:B1:74:74:8D:24 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26a1a6c0-7c51-4f60-8d66-83d553ad2844.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:800::/40 Signature Algorithm: sha256WithRSAEncryption 31:0d:d6:34:f0:37:4a:07:ee:6a:c2:2d:70:67:4d:27:48:af: c8:8e:cd:8b:ba:de:9e:6a:ca:86:4b:3e:ae:1c:13:56:ab:73: 12:56:42:e0:1d:e6:b6:24:39:af:4f:27:08:c4:37:ad:1e:ca: 0d:84:9c:c5:a4:64:66:b9:fb:01:0c:56:85:04:ef:28:33:cd: d8:c0:13:67:8f:e5:67:42:1d:9f:49:8f:42:75:49:2e:15:d6: 3b:8d:61:51:30:ad:ed:32:49:8f:23:68:ee:88:3b:b0:eb:11: 03:c0:8c:7e:e2:0a:19:d7:47:53:c3:f2:95:6a:01:a1:72:91: d9:8b:4a:31:51:9c:74:17:16:19:0c:79:f1:c1:50:96:5d:9a: da:fe:85:48:49:97:0a:e8:a3:8d:b9:05:a2:d1:48:5d:e5:30: 3b:af:51:cc:8d:93:c5:b3:69:11:a2:2f:83:de:72:60:fc:31: 3c:dd:65:f9:ea:e6:0f:26:72:e6:d1:56:98:45:0b:b5:92:30: ac:7f:b1:ab:62:75:80:1b:b2:14:a7:42:f4:c8:b8:08:00:3e: 4e:68:d3:97:66:04:09:08:8c:e4:62:03:fb:5b:54:97:48:0e: 56:4b:63:27:1d:f9:be:1b:7f:96:45:ad:84:04:0f:6d:53:00: 18:e7:9d:8e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUH7cbh2wxDgb9KoX1YJN9R1IVVIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQwOTAwMDAwMFoX DTI0MDUxNDIzNTk1OVowejFJMEcGA1UEBRNAMTk5ZmNjNzQwZDU5NmViZDE4Njky YjQ0OTU3MGEyOWQ2NjM2YWU2NTkxYWU0YTIwYmZjMDNmOWJjMDEzYTE2YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGTzWHyqDVCl8nQCFb6YUdIb/5gD yVlIcLrYN0iXQs0FvScGltG/8umju5+sy3anc6kO4h4ACMZQlVTV/6uPd1ZLeQpq T/I9F8CskvZ+f6Vw5SOOY0JERV2HbXG4QUA56mHBQ/Oow1XR1y0s31BhSEFhEtWc nFgg6HKHW13GUW46oTru2wxgiNsiE1wjG5013cR31+31rntDBtnCRinyhLky8aHs +c5iicRBwV2bHfwcr0JvY25R6XMY/4/1Ly20le4zrO6yL6VAARshMAA/iUuHwlhl /CfrByffkLuVJTIVsIbsNYed471gvoy7L8wBMZn0Nzq72KBB0AmM9ghM4QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAd1yzwsOEoFu2sPJe9e87F0dI0kMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzI2YTFhNmMwLTdjNTEtNGY2MC04ZDY2LTgzZDU1M2FkMjg0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaQgwDQYJKoZIhvcNAQELBQADggEBADEN1jTwN0oH7mrCLXBn TSdIr8iOzYu63p5qyoZLPq4cE1arcxJWQuAd5rYkOa9PJwjEN60eyg2EnMWkZGa5 +wEMVoUE7ygzzdjAE2eP5WdCHZ9Jj0J1SS4V1juNYVEwre0ySY8jaO6IO7DrEQPA jH7iChnXR1PD8pVqAaFykdmLSjFRnHQXFhkMefHBUJZdmtr+hUhJlwroo425BaLR SF3lMDuvUcyNk8WzaRGiL4PecmD8MTzdZfnq5g8mcubRVphFC7WSMKx/satidYAb shSnQvTIuAgAPk5o05dmBAkIjORiA/tbVJdIDlZLYycd+b4bf5ZFrYQED21TABjn nY4= -----END CERTIFICATE-----Generated at Fri May 3 00:47:14 2024 by rpki-client on console-ams.rpki-client.org