$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e9cc6af-bc2c-4dca-8915-0cddf25cc8db.roa File: 3e9cc6af-bc2c-4dca-8915-0cddf25cc8db.roa (raw, json) Hash identifier: IACDAi5AM9b+tJTUeIPACN3y0wryMbUCV64dyTA8T6I= Subject key identifier: 4E:DE:54:DE:DC:64:B7:49:7A:7B:80:8E:A1:58:F0:49:F5:06:EC:0F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6ADB565067475792DC7EDC6FCC0C0F83FF663F9B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e9cc6af-bc2c-4dca-8915-0cddf25cc8db.roa Signing time: Mon 15 Jul 2024 00:00:00 +0000 ROA not before: Mon 15 Jul 2024 00:00:00 +0000 ROA not after: Mon 19 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:db:56:50:67:47:57:92:dc:7e:dc:6f:cc:0c:0f:83:ff:66:3f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 15 00:00:00 2024 GMT Not After : Aug 19 23:59:59 2024 GMT Subject: serialNumber=7544e0b95a951ab8abc053ab90cbca0c520700dfdcecd4cb0f31f0757470bb09, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:32:b7:c1:a4:90:e2:57:e3:7f:83:e9:40: f0:ee:e6:93:8e:a9:3a:96:20:78:e1:a6:f0:b5:f7: e8:f9:c9:34:c0:57:03:45:5d:34:0a:49:8d:05:87: dc:a4:64:8e:f2:ec:f5:14:dd:61:e1:20:60:f8:45: 5a:8a:b5:d9:80:ea:ea:fe:8c:5f:dc:ac:f3:4d:04: f9:26:4d:e4:93:14:e6:e0:87:77:f5:d5:7a:dc:b1: 99:10:a2:43:74:fc:34:f3:99:e9:1d:9d:59:f0:28: 91:9e:0c:9e:7c:b1:5c:51:22:e0:3f:ce:9e:9c:fc: 19:9c:74:c4:36:7c:4a:f3:53:c8:15:23:5b:4f:8d: d3:dc:04:08:59:23:bc:ac:e9:53:90:f5:fa:42:6c: 88:ef:cb:c3:0e:d0:8d:d8:d6:f4:e6:0a:46:bd:06: 9a:c0:10:d1:c6:9f:ab:b9:5c:42:2c:58:e1:1a:4d: 90:61:38:ed:6a:df:f1:02:a3:7e:ec:51:0d:91:00: 51:bf:68:e0:a7:99:6c:9d:aa:63:e0:7d:73:56:b5: 76:91:ae:35:81:eb:d9:3b:8c:d8:b1:9d:6d:01:5b: 68:82:46:c7:6c:78:3f:73:2d:54:9e:fc:21:5e:cc: 4e:e2:78:21:0d:32:78:45:58:77:37:1d:22:fc:31: 38:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DE:54:DE:DC:64:B7:49:7A:7B:80:8E:A1:58:F0:49:F5:06:EC:0F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e9cc6af-bc2c-4dca-8915-0cddf25cc8db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:4800::/40 Signature Algorithm: sha256WithRSAEncryption aa:d2:42:27:20:47:04:9f:24:f9:0c:52:cf:74:11:de:de:e7: cc:fa:f5:4c:73:72:eb:c0:96:30:34:25:98:53:4a:1d:c8:2e: 44:23:fa:18:b1:31:15:26:e3:23:c4:3e:0f:4f:c3:97:87:bc: 1b:98:03:e8:e2:66:c9:4c:10:7d:3d:84:5d:84:4a:cc:55:5c: ea:95:f5:85:5b:2e:5d:29:7f:52:3b:1b:17:01:67:9e:9d:cc: c7:46:24:82:67:87:83:e5:8e:ef:bc:f9:43:ca:71:dc:14:30: 3e:79:a3:87:78:67:ba:7f:be:a8:49:e4:96:8a:be:64:00:a7: bf:db:15:b8:c3:03:27:70:41:48:ac:64:1e:89:fd:a2:21:f1: fd:40:69:77:8b:80:fb:71:68:3f:11:03:f0:95:bb:f1:8f:c6: 46:bd:6e:d2:ec:c4:06:d5:e1:c4:5c:c6:6e:9b:ed:f7:eb:81: 68:0c:c5:29:f3:94:a0:88:bb:8e:ec:fe:c6:70:56:e3:03:cf: c3:0a:9f:54:5f:9e:cb:81:86:0e:6c:ec:a4:5d:cd:80:b2:aa: 0d:fc:54:73:2d:46:6d:64:b9:86:d2:3f:4d:41:d8:62:54:73: 33:60:68:da:51:53:f5:c6:eb:e4:d0:7f:14:8e:18:f4:19:05: 35:61:ae:cb -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUattWUGdHV5LcftxvzAwPg/9mP5swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNTAwMDAwMFoX DTI0MDgxOTIzNTk1OVowejFJMEcGA1UEBRNANzU0NGUwYjk1YTk1MWFiOGFiYzA1 M2FiOTBjYmNhMGM1MjA3MDBkZmRjZWNkNGNiMGYzMWYwNzU3NDcwYmIwOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFIyt8GkkOJX43+D6UDw7uaTjqk6 liB44abwtffo+ck0wFcDRV00CkmNBYfcpGSO8uz1FN1h4SBg+EVairXZgOrq/oxf 3KzzTQT5Jk3kkxTm4Id39dV63LGZEKJDdPw085npHZ1Z8CiRngyefLFcUSLgP86e nPwZnHTENnxK81PIFSNbT43T3AQIWSO8rOlTkPX6QmyI78vDDtCN2Nb05gpGvQaa wBDRxp+ruVxCLFjhGk2QYTjtat/xAqN+7FENkQBRv2jgp5lsnapj4H1zVrV2ka41 gevZO4zYsZ1tAVtogkbHbHg/cy1UnvwhXsxO4nghDTJ4RVh3Nx0i/DE4mwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFE7eVN7cZLdJenuAjqFY8En1BuwPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzNlOWNjNmFmLWJjMmMtNGRjYS04OTE1LTBjZGRmMjVjYzhkYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaEgwDQYJKoZIhvcNAQELBQADggEBAKrSQicgRwSfJPkMUs90 Ed7e58z69UxzcuvAljA0JZhTSh3ILkQj+hixMRUm4yPEPg9Pw5eHvBuYA+jiZslM EH09hF2ESsxVXOqV9YVbLl0pf1I7GxcBZ56dzMdGJIJnh4Plju+8+UPKcdwUMD55 o4d4Z7p/vqhJ5JaKvmQAp7/bFbjDAydwQUisZB6J/aIh8f1AaXeLgPtxaD8RA/CV u/GPxka9btLsxAbV4cRcxm6b7ffrgWgMxSnzlKCIu47s/sZwVuMDz8MKn1RfnsuB hg5s7KRdzYCyqg38VHMtRm1kuYbSP01B2GJUczNgaNpRU/XG6+TQfxSOGPQZBTVh rss= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:15 2024 by rpki-client on console-fra.rpki-client.org