$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d5a8513-21e5-4af7-b1b9-e85bc8e16eb8.roa File: 4d5a8513-21e5-4af7-b1b9-e85bc8e16eb8.roa (raw, json) Hash identifier: 7ev+bVH+GRG/ICu6Nsoc7p4r0u/FmqQY45HLvRrJVAA= Subject key identifier: C8:B6:43:EB:70:ED:C4:81:64:F8:6D:70:F5:65:BA:78:86:21:63:C1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 30D4AF5ABBBBB0C37CF1BD79B3817EF00A6D65D3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d5a8513-21e5-4af7-b1b9-e85bc8e16eb8.roa Signing time: Tue 29 Oct 2024 00:00:00 +0000 ROA not before: Tue 29 Oct 2024 00:00:00 +0000 ROA not after: Tue 03 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafa:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d4:af:5a:bb:bb:b0:c3:7c:f1:bd:79:b3:81:7e:f0:0a:6d:65:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 29 00:00:00 2024 GMT Not After : Dec 3 23:59:59 2024 GMT Subject: serialNumber=99551ffed1e6fa359eba9fa0cc1faeb6fbdf1c7154777754fe70cc56264ed8b9, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b7:f7:be:79:d5:da:91:3e:92:90:76:2e:b6: e1:7e:df:46:66:22:eb:fe:1d:9e:d7:d5:22:2d:03: 8a:93:e0:3a:dd:d4:f5:8b:60:01:ca:ec:79:bc:1b: 6d:dd:4d:99:d9:3d:1b:15:5e:c6:1d:3b:49:c0:f3: 40:32:82:cd:3c:c2:e9:d6:50:6c:82:de:06:07:1c: fd:f6:a5:03:90:b4:ee:73:44:34:0e:95:af:50:71: 4c:2a:44:ad:28:00:32:8a:33:5c:74:7b:12:ca:43: 50:0e:6a:25:8b:7d:77:86:e4:e1:3e:4b:cb:48:fe: 94:2f:db:e7:0d:b9:2c:ce:1e:40:50:37:b2:66:ba: c6:77:19:81:cb:8c:e7:d8:39:e2:0d:a3:48:49:d8: bd:a2:fb:82:b3:22:43:c3:34:c6:01:26:88:66:72: 5a:16:5b:3b:d4:ce:b1:72:7b:72:72:d8:0e:45:ef: 07:be:37:65:49:8c:3e:5c:ef:31:85:68:3d:08:3a: cb:bd:78:82:82:a5:48:ba:73:2c:18:95:7e:de:b9: ec:2c:3c:13:5d:1b:f9:e2:f8:0e:6f:da:e4:0b:f2: 7d:a2:f1:11:68:0f:b9:1c:3e:ef:91:e4:a9:30:a6: fd:29:d4:d0:b1:aa:84:72:b9:d8:f9:eb:c6:ca:c4: 9b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B6:43:EB:70:ED:C4:81:64:F8:6D:70:F5:65:BA:78:86:21:63:C1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d5a8513-21e5-4af7-b1b9-e85bc8e16eb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafa:4000::/40 Signature Algorithm: sha256WithRSAEncryption a3:66:d5:63:2d:f9:71:54:44:31:77:b1:f1:2a:ac:0d:4b:c9: 89:b6:20:dd:4f:28:c4:d1:40:be:69:32:44:ab:73:59:ce:92: b2:f2:d6:a6:af:f9:ec:c5:f3:bc:12:e8:db:7d:a3:b2:38:e8: ef:41:64:17:71:44:e2:42:58:80:7b:7d:37:84:aa:50:06:00: ea:1b:4e:69:5d:28:97:97:85:d6:6b:1f:f3:df:2d:0d:0a:e7: 3b:0e:5e:09:68:94:da:42:4a:bf:88:b0:46:70:32:e2:c7:84: ff:fa:7e:65:e3:c3:1f:29:75:fb:62:4c:49:f9:c3:9a:c2:43: 66:d2:cb:3d:2d:77:87:31:72:79:e3:a0:37:11:82:ff:82:93: 39:0f:f5:79:d5:57:e3:a2:34:6e:db:fd:d5:65:62:5c:f4:b5: 32:a0:5c:d6:47:42:c0:f5:18:e7:0e:03:29:15:cc:61:5f:bc: d3:62:d0:13:7a:9f:09:94:12:c5:87:d9:47:5a:d5:7b:7c:30: 5a:15:d1:c9:e6:2c:e3:15:c7:be:93:0c:e5:1b:94:af:61:68: dd:2f:bf:fc:8d:a9:aa:cb:6c:1b:59:58:46:c6:ed:71:6d:38: 72:73:b6:7d:81:1d:59:2f:dc:2e:62:71:95:fb:b1:ea:4f:fd: 39:c2:28:31 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMNSvWru7sMN88b15s4F+8AptZdMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAyOTAwMDAwMFoX DTI0MTIwMzIzNTk1OVowejFJMEcGA1UEBRNAOTk1NTFmZmVkMWU2ZmEzNTllYmE5 ZmEwY2MxZmFlYjZmYmRmMWM3MTU0Nzc3NzU0ZmU3MGNjNTYyNjRlZDhiOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbf3vnnV2pE+kpB2Lrbhft9GZiLr /h2e19UiLQOKk+A63dT1i2AByux5vBtt3U2Z2T0bFV7GHTtJwPNAMoLNPMLp1lBs gt4GBxz99qUDkLTuc0Q0DpWvUHFMKkStKAAyijNcdHsSykNQDmoli313huThPkvL SP6UL9vnDbkszh5AUDeyZrrGdxmBy4zn2DniDaNISdi9ovuCsyJDwzTGASaIZnJa Fls71M6xcntyctgORe8HvjdlSYw+XO8xhWg9CDrLvXiCgqVIunMsGJV+3rnsLDwT XRv54vgOb9rkC/J9ovERaA+5HD7vkeSpMKb9KdTQsaqEcrnY+evGysSbYwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMi2Q+tw7cSBZPhtcPVluniGIWPBMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRkNWE4NTEzLTIxZTUtNGFmNy1iMWI5LWU4NWJjOGUxNmViOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+kAwDQYJKoZIhvcNAQELBQADggEBAKNm1WMt+XFURDF3sfEq rA1LyYm2IN1PKMTRQL5pMkSrc1nOkrLy1qav+ezF87wS6Nt9o7I46O9BZBdxROJC WIB7fTeEqlAGAOobTmldKJeXhdZrH/PfLQ0K5zsOXglolNpCSr+IsEZwMuLHhP/6 fmXjwx8pdftiTEn5w5rCQ2bSyz0td4cxcnnjoDcRgv+CkzkP9XnVV+OiNG7b/dVl Ylz0tTKgXNZHQsD1GOcOAykVzGFfvNNi0BN6nwmUEsWH2Uda1Xt8MFoV0cnmLOMV x76TDOUblK9haN0vv/yNqarLbBtZWEbG7XFtOHJztn2BHVkv3C5icZX7sepP/TnC KDE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:35 2024 by rpki-client on console-fra.rpki-client.org