$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/49c96710-1e67-4b08-aeed-9db02b3e6469.roa File: 49c96710-1e67-4b08-aeed-9db02b3e6469.roa (raw, json) Hash identifier: 2eyWp/DgOfo0dUPf5LExdWOMgxc+IaEkdMZjoEFPzVU= Subject key identifier: 6E:00:91:DD:31:A8:0A:02:22:22:DA:4F:B4:6E:E4:C7:DE:0D:EC:31 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4FB77ACD033CB7735C64908D81009FE822F05D8C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/49c96710-1e67-4b08-aeed-9db02b3e6469.roa Signing time: Tue 12 Nov 2024 00:00:00 +0000 ROA not before: Tue 12 Nov 2024 00:00:00 +0000 ROA not after: Tue 17 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:b7:7a:cd:03:3c:b7:73:5c:64:90:8d:81:00:9f:e8:22:f0:5d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 12 00:00:00 2024 GMT Not After : Dec 17 23:59:59 2024 GMT Subject: serialNumber=4da3fc1d09f9f65c3f5160a70bbb459630e3a5313ff22489f9cda8239a5ccc69, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:25:2e:ad:a0:dc:8b:cd:41:b4:0e:4d:34:b1: eb:12:10:6c:03:7f:66:36:22:8e:56:69:8a:6a:fb: 20:56:33:0d:90:5f:4c:bc:b3:fe:e7:a7:d6:5b:1c: 95:0d:50:d1:03:7c:a0:a0:d3:9a:8a:dd:e0:c8:d4: 95:8d:9a:ac:06:54:d4:81:04:6e:5d:c5:e2:33:5e: b5:5e:19:35:61:06:ba:5e:6d:f5:d9:57:c5:e6:3c: 34:0c:fc:fe:78:a3:7e:ea:ee:aa:1e:03:99:7d:33: d5:0c:8a:41:ce:9d:6b:8a:4f:25:6c:25:ef:88:5c: 48:05:4b:44:cf:78:d9:39:b3:21:95:2d:ce:ac:de: a5:42:5f:5c:41:c6:35:76:69:18:6e:3b:fc:6d:df: 43:d4:94:d6:b2:38:8e:73:ae:e6:29:8c:af:d4:c7: e4:46:08:cb:9b:6f:bf:07:b6:8a:ce:13:36:21:26: be:3e:b0:a2:47:2c:ec:6d:1e:8f:fd:42:f3:76:31: b3:a1:ee:d1:6f:ca:2a:71:f8:5d:c2:c4:e0:a1:6c: af:ee:d5:a1:2d:8a:68:db:ab:77:ea:2f:77:e8:5a: 41:43:9f:44:2b:7b:c9:51:c8:e6:3a:58:79:94:55: 54:1c:ae:f3:83:17:83:1e:bc:44:1c:bf:9c:fd:19: 51:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:00:91:DD:31:A8:0A:02:22:22:DA:4F:B4:6E:E4:C7:DE:0D:EC:31 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/49c96710-1e67-4b08-aeed-9db02b3e6469.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:e000::/40 Signature Algorithm: sha256WithRSAEncryption 0c:e8:c6:ac:b2:1e:ba:72:48:cf:6c:13:59:00:01:a7:78:d0: 93:ad:01:e2:31:ea:3d:f1:ad:c3:bd:49:a0:50:bd:4f:8c:4d: 27:a3:47:62:ca:bd:d0:65:42:b0:c9:3e:ba:7d:b8:62:41:41: 56:f7:0f:48:b4:3b:a3:fb:72:d8:ba:2f:28:11:f8:10:8c:b3: 8f:8f:0c:6a:b4:39:a4:a0:9d:f3:0d:50:17:31:22:4c:c0:5d: 1f:aa:33:da:85:d4:2e:c3:16:4f:1f:21:9f:61:01:3f:a8:85: 0a:02:68:5f:20:36:87:73:9d:ee:74:cc:91:37:ac:c3:f0:0e: bd:58:dc:c4:02:bd:1d:ee:93:ce:29:df:4b:39:ad:99:20:3e: 19:59:ca:2e:a9:5e:d1:bf:ed:43:a6:57:0c:90:0c:e9:dc:79: 26:38:3a:60:1e:c0:db:ed:0b:76:a1:bb:50:23:14:97:a8:05: 10:56:8b:42:94:21:4d:1d:f1:f5:64:f1:b3:08:38:0d:73:b0: bb:99:1c:87:4b:8b:7c:c3:6a:a3:df:41:69:d6:20:52:fc:64: d9:bb:be:9e:52:69:65:d0:86:51:87:c9:95:f6:d2:df:c1:c1: e7:f4:cc:07:2a:da:b7:09:f6:1d:27:0b:2d:b2:25:52:42:55: 7c:2c:2c:13 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUT7d6zQM8t3NcZJCNgQCf6CLwXYwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExMjAwMDAwMFoX DTI0MTIxNzIzNTk1OVowejFJMEcGA1UEBRNANGRhM2ZjMWQwOWY5ZjY1YzNmNTE2 MGE3MGJiYjQ1OTYzMGUzYTUzMTNmZjIyNDg5ZjljZGE4MjM5YTVjY2M2OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmyUuraDci81BtA5NNLHrEhBsA39m NiKOVmmKavsgVjMNkF9MvLP+56fWWxyVDVDRA3ygoNOait3gyNSVjZqsBlTUgQRu XcXiM161Xhk1YQa6Xm312VfF5jw0DPz+eKN+6u6qHgOZfTPVDIpBzp1rik8lbCXv iFxIBUtEz3jZObMhlS3OrN6lQl9cQcY1dmkYbjv8bd9D1JTWsjiOc67mKYyv1Mfk RgjLm2+/B7aKzhM2ISa+PrCiRyzsbR6P/ULzdjGzoe7Rb8oqcfhdwsTgoWyv7tWh LYpo26t36i936FpBQ59EK3vJUcjmOlh5lFVUHK7zgxeDHrxEHL+c/RlRDQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFG4Akd0xqAoCIiLaT7Ru5MfeDewxMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQ5Yzk2NzEwLTFlNjctNGIwOC1hZWVkLTlkYjAyYjNlNjQ2OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9eAwDQYJKoZIhvcNAQELBQADggEBAAzoxqyyHrpySM9sE1kA Aad40JOtAeIx6j3xrcO9SaBQvU+MTSejR2LKvdBlQrDJPrp9uGJBQVb3D0i0O6P7 cti6LygR+BCMs4+PDGq0OaSgnfMNUBcxIkzAXR+qM9qF1C7DFk8fIZ9hAT+ohQoC aF8gNodzne50zJE3rMPwDr1Y3MQCvR3uk84p30s5rZkgPhlZyi6pXtG/7UOmVwyQ DOnceSY4OmAewNvtC3ahu1AjFJeoBRBWi0KUIU0d8fVk8bMIOA1zsLuZHIdLi3zD aqPfQWnWIFL8ZNm7vp5SaWXQhlGHyZX20t/Bwef0zAcq2rcJ9h0nCy2yJVJCVXws LBM= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:15 2024 by rpki-client on console-fra.rpki-client.org