$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/519f0e88-fa90-4b61-957d-57fe1cc2f6c1.roa File: 519f0e88-fa90-4b61-957d-57fe1cc2f6c1.roa (raw, json) Hash identifier: n/IUQm9XB8Hfpg4zkQvpTmq/gzo5gOE+mIYh90Hk/fo= Subject key identifier: 35:B3:C4:13:76:4A:E0:FF:94:2B:A4:2C:A3:56:54:5B:22:79:01:96 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4FEA935D994C52A0188F7CBD552C684284EA9B2B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/519f0e88-fa90-4b61-957d-57fe1cc2f6c1.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daa0:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 00:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ea:93:5d:99:4c:52:a0:18:8f:7c:bd:55:2c:68:42:84:ea:9b:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=4d2c2eb28c6ad96bc1d71486135a8cd62338ef161d726bff98be2bca38a76c2c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:64:03:fe:b8:73:97:0b:2f:f3:91:5d:ae: 8e:ba:21:de:d2:e2:7f:62:da:23:a3:ec:73:f4:92: 4d:43:04:6b:ba:cc:ea:fa:d2:e2:42:b7:49:f5:3d: 99:c0:50:fc:bd:b9:d4:83:97:c8:1d:a3:77:51:a1: 04:90:a3:9d:32:e7:13:ef:38:89:aa:a1:09:6d:ce: 19:42:8e:f7:77:00:aa:f2:0b:1f:bc:45:62:85:bc: 8d:55:59:77:4d:6e:51:69:6a:18:ce:b2:68:0c:c2: 23:42:67:13:24:95:11:55:e0:0b:a9:b4:79:ef:ed: 91:86:f1:d9:7f:9b:c2:37:7a:37:43:7e:c3:96:09: e3:87:72:9f:35:88:b4:4d:2b:be:36:e8:66:5f:95: 34:a5:72:b8:8f:93:81:3e:39:f2:4d:6f:9a:89:cc: 98:28:f6:00:ec:2e:f8:e5:69:c1:49:87:31:2b:31: 29:ce:ed:cf:69:7c:6e:80:5c:4c:f1:9b:10:17:32: de:51:04:b4:9e:91:08:0a:6c:ee:af:28:97:2c:c6: a7:b7:11:16:29:21:c1:dc:1c:67:6d:d5:b2:b7:de: 63:86:03:4e:6c:79:99:0d:53:5e:7c:35:ae:f5:15: 83:3d:ad:74:56:b1:fd:32:cf:59:40:53:aa:78:04: b3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B3:C4:13:76:4A:E0:FF:94:2B:A4:2C:A3:56:54:5B:22:79:01:96 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/519f0e88-fa90-4b61-957d-57fe1cc2f6c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daa0:e000::/40 Signature Algorithm: sha256WithRSAEncryption 8f:aa:9d:2c:7d:d7:dd:33:da:d9:68:29:7b:b7:9e:7d:f9:12: ca:b3:31:0a:30:1d:e9:7e:be:60:79:11:85:68:d8:c2:6e:72: 64:aa:e1:08:e6:d7:20:c8:5d:aa:b7:62:dc:a7:60:da:4b:8c: 4f:61:1a:90:14:3e:48:5d:95:f1:bb:a8:1c:cc:7a:94:a6:fa: da:eb:a2:45:ff:f8:bc:de:29:05:31:4f:07:ea:fd:b0:41:5e: 0d:87:d9:1b:74:12:db:61:62:7b:22:64:d0:04:6d:16:9c:eb: ec:66:88:ae:1b:f2:cd:2d:ed:22:18:f7:cd:40:2e:1b:d2:52: fd:76:a5:a4:7a:5f:33:5f:ca:9a:e6:8c:cc:b1:14:a2:13:f1: a0:db:ee:15:c0:55:af:85:bb:4b:73:a4:10:e7:7b:5b:f2:f2: 70:7e:db:9f:2d:9d:4a:22:61:34:d5:e7:ff:0f:ad:a3:3b:21: 19:02:7c:67:a6:eb:d8:90:c0:da:43:77:e8:76:e1:e5:f1:c4: 01:34:5b:26:e2:d0:8e:20:60:a7:d9:0c:a9:47:94:1b:86:98: 53:d3:5c:de:f3:2f:80:e9:da:e0:f5:d1:f9:e4:6f:e3:ab:a7: 58:ff:c8:61:e4:b8:54:fb:8d:c0:12:1d:45:0b:0f:ef:f3:88: cf:09:29:f3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUT+qTXZlMUqAYj3y9VSxoQoTqmyswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNANGQyYzJlYjI4YzZhZDk2YmMxZDcx NDg2MTM1YThjZDYyMzM4ZWYxNjFkNzI2YmZmOThiZTJiY2EzOGE3NmMyYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuJkA/64c5cLL/ORXa6OuiHe0uJ/ Ytojo+xz9JJNQwRruszq+tLiQrdJ9T2ZwFD8vbnUg5fIHaN3UaEEkKOdMucT7ziJ qqEJbc4ZQo73dwCq8gsfvEVihbyNVVl3TW5RaWoYzrJoDMIjQmcTJJURVeALqbR5 7+2RhvHZf5vCN3o3Q37Dlgnjh3KfNYi0TSu+NuhmX5U0pXK4j5OBPjnyTW+aicyY KPYA7C745WnBSYcxKzEpzu3PaXxugFxM8ZsQFzLeUQS0npEICmzuryiXLMantxEW KSHB3BxnbdWyt95jhgNObHmZDVNefDWu9RWDPa10VrH9Ms9ZQFOqeASzFQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDWzxBN2SuD/lCukLKNWVFsieQGWMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzUxOWYwZTg4LWZhOTAtNGI2MS05NTdkLTU3ZmUxY2MyZjZjMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaoOAwDQYJKoZIhvcNAQELBQADggEBAI+qnSx9190z2tloKXu3 nn35EsqzMQowHel+vmB5EYVo2MJucmSq4Qjm1yDIXaq3YtynYNpLjE9hGpAUPkhd lfG7qBzMepSm+trrokX/+LzeKQUxTwfq/bBBXg2H2Rt0EtthYnsiZNAEbRac6+xm iK4b8s0t7SIY981ALhvSUv12paR6XzNfyprmjMyxFKIT8aDb7hXAVa+Fu0tzpBDn e1vy8nB+258tnUoiYTTV5/8PraM7IRkCfGem69iQwNpDd+h24eXxxAE0Wybi0I4g YKfZDKlHlBuGmFPTXN7zL4Dp2uD10fnkb+Orp1j/yGHkuFT7jcASHUULD+/ziM8J KfM= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:13 2024 by rpki-client on console-ams.rpki-client.org