$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4fd1d514-e9ac-44a6-93a0-af9ce79fc3de.roa File: 4fd1d514-e9ac-44a6-93a0-af9ce79fc3de.roa (raw, json) Hash identifier: mEALN3Hfj5IcoHBMB3jWVJGx+62sqSRnNrZM/XciEWw= Subject key identifier: D0:10:CC:56:88:18:0D:95:81:87:8F:0E:5F:90:06:D4:09:0D:71:E0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0EFA9C90042482252CFAF79EC93AE67490A13A1E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4fd1d514-e9ac-44a6-93a0-af9ce79fc3de.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fa:9c:90:04:24:82:25:2c:fa:f7:9e:c9:3a:e6:74:90:a1:3a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=ab041bcd32f2eee7212376bc0fc743e6a8a3a335af19d8757490709ecd3a102e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:c3:59:e5:68:0a:e8:86:72:23:89:2d:22: c3:9a:25:8a:29:be:f8:22:fe:d3:78:0d:ab:a5:8e: 95:55:1b:e5:d9:b1:ec:0a:ce:5b:db:28:0c:bd:5a: 24:fd:46:6c:0e:23:29:03:e5:30:cb:5d:d2:cc:da: d3:0f:99:49:f5:e7:ad:8b:b1:7c:87:a7:36:b0:0d: a2:d5:5f:2c:e2:bf:20:4f:43:9c:0e:43:35:8f:8f: 30:ed:e9:b1:c4:56:c4:9f:b6:37:38:95:c7:d2:3d: b2:c0:64:cd:d7:97:09:7d:4b:7c:e5:72:c1:20:11: d3:61:71:14:10:85:98:e0:ef:f8:43:6a:14:26:b8: 98:40:4d:09:42:e2:e1:a8:ef:dc:4d:5d:b8:03:b8: e3:93:8b:cb:bd:c6:7b:81:c3:4a:e4:88:0a:81:eb: ce:a4:10:9b:b7:5d:43:87:3f:dd:38:54:05:92:34: c4:8f:05:37:fc:11:97:af:15:c7:37:61:d2:d7:cf: 40:35:e1:82:b1:5d:bc:69:f0:db:7e:62:8d:bd:7d: 7f:f5:cf:83:d2:d7:94:9f:cb:ce:e6:02:94:71:f6: bd:82:7b:52:fd:6e:c7:25:f7:29:7a:28:fd:8a:2f: ff:d6:c1:85:79:34:95:25:26:20:92:57:df:f5:05: 9b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:10:CC:56:88:18:0D:95:81:87:8F:0E:5F:90:06:D4:09:0D:71:E0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4fd1d514-e9ac-44a6-93a0-af9ce79fc3de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:4000::/40 Signature Algorithm: sha256WithRSAEncryption a5:be:e4:a0:a4:93:ac:34:75:8a:1d:af:ef:b1:7e:0e:4c:c2: 53:04:49:3c:ab:50:93:40:51:ea:19:80:3f:ee:78:ab:3a:10: dd:9a:6d:91:ac:a3:f1:e5:63:06:2b:ed:c3:7e:45:a9:7d:c3: 72:da:e0:eb:2f:c2:e2:f3:61:a3:93:d4:66:91:7b:4a:6b:d1: 10:3a:35:b1:e7:6a:77:2b:d3:54:4e:8b:99:37:7b:fa:25:b8: b9:71:0a:39:47:04:af:07:70:04:fb:10:f0:c7:e2:ea:8c:35: 53:77:66:db:22:1e:fc:f2:22:e3:6a:c9:a3:d0:f5:1a:5d:d8: 1b:9c:9d:e0:28:c1:20:cc:82:ea:68:11:69:60:18:19:94:af: 78:1d:04:45:e2:2a:b0:5d:54:63:48:c9:59:86:5d:a0:cc:f6: 3f:f2:85:14:23:8a:5f:f0:1d:0c:1f:d4:05:66:f1:91:25:ec: 9e:70:38:62:3c:4d:a0:1b:7a:61:2f:64:91:15:67:5d:a9:39: 77:8e:95:c8:d6:5b:2c:a9:6f:50:b4:8e:38:1e:48:d0:c2:72: 53:43:a3:ef:3e:49:53:3e:61:50:60:19:99:c4:8f:0c:7f:53: 6c:ca:e6:95:e6:d1:cd:08:57:98:b5:68:17:50:53:59:7d:46: 17:5a:2c:58 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDvqckAQkgiUs+veeyTrmdJChOh4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAYWIwNDFiY2QzMmYyZWVlNzIxMjM3 NmJjMGZjNzQzZTZhOGEzYTMzNWFmMTlkODc1NzQ5MDcwOWVjZDNhMTAyZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWbDWeVoCuiGciOJLSLDmiWKKb74 Iv7TeA2rpY6VVRvl2bHsCs5b2ygMvVok/UZsDiMpA+Uwy13SzNrTD5lJ9eeti7F8 h6c2sA2i1V8s4r8gT0OcDkM1j48w7emxxFbEn7Y3OJXH0j2ywGTN15cJfUt85XLB IBHTYXEUEIWY4O/4Q2oUJriYQE0JQuLhqO/cTV24A7jjk4vLvcZ7gcNK5IgKgevO pBCbt11Dhz/dOFQFkjTEjwU3/BGXrxXHN2HS189ANeGCsV28afDbfmKNvX1/9c+D 0teUn8vO5gKUcfa9gntS/W7HJfcpeij9ii//1sGFeTSVJSYgklff9QWbeQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNAQzFaIGA2VgYePDl+QBtQJDXHgMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRmZDFkNTE0LWU5YWMtNDRhNi05M2EwLWFmOWNlNzlmYzNkZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOEAwDQYJKoZIhvcNAQELBQADggEBAKW+5KCkk6w0dYodr++x fg5MwlMESTyrUJNAUeoZgD/ueKs6EN2abZGso/HlYwYr7cN+Ral9w3La4OsvwuLz YaOT1GaRe0pr0RA6NbHnancr01ROi5k3e/oluLlxCjlHBK8HcAT7EPDH4uqMNVN3 ZtsiHvzyIuNqyaPQ9Rpd2BucneAowSDMgupoEWlgGBmUr3gdBEXiKrBdVGNIyVmG XaDM9j/yhRQjil/wHQwf1AVm8ZEl7J5wOGI8TaAbemEvZJEVZ12pOXeOlcjWWyyp b1C0jjgeSNDCclNDo+8+SVM+YVBgGZnEjwx/U2zK5pXm0c0IV5i1aBdQU1l9Rhda LFg= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:40 2024 by rpki-client on console-ams.rpki-client.org