$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa File: 55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa (raw, json) Hash identifier: 3uVeconqniQEFzhR7WdmCxwxvBbRutGSkjTsWn5x/hE= Subject key identifier: 25:AC:CD:1C:C2:00:56:D9:3C:65:BA:0F:A9:5A:44:1E:3A:81:19:59 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 67EEFB08F0EA28DA020CF127ED54D142179380BB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ee:fb:08:f0:ea:28:da:02:0c:f1:27:ed:54:d1:42:17:93:80:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=b1bc47665ca3573973baba09f1faf25a49a3d3f7f6a07bf1358e8daf28a2c614, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c8:8e:d9:c8:08:33:e8:78:70:a6:ee:d3:eb: 2e:e7:a4:1f:27:3e:13:35:3e:46:72:71:8c:2f:b6: da:6f:ff:eb:18:6e:b1:d0:42:80:76:13:26:58:60: 77:37:86:2a:2c:00:ef:91:27:87:dd:ec:b0:45:14: 1c:7c:d1:aa:77:e7:e3:45:1d:f9:26:62:0a:da:ca: 0c:1b:97:ae:79:84:2c:fe:5d:52:dc:6a:fd:56:8e: 21:b1:e7:82:c9:ed:bf:ae:25:7a:65:bf:00:35:d7: d9:7a:9f:de:fa:e9:92:0c:cf:d6:14:90:25:3b:f5: 0b:70:60:09:63:72:7d:28:ae:ea:44:63:74:39:55: 38:83:1f:2f:4d:08:7f:83:53:89:91:bc:47:e2:6e: 93:e2:62:71:eb:50:73:b4:77:6c:84:93:d2:14:c3: cc:b9:6d:e8:57:f9:90:eb:ae:c6:e2:e9:39:0c:7e: b2:c9:70:fc:74:14:54:be:20:4a:1d:61:fd:a6:dd: 58:75:59:91:f5:af:ad:ab:b3:9d:98:27:74:21:6e: 24:a7:b5:71:70:f5:7d:e1:18:55:b5:ee:47:21:51: 81:ce:20:7b:7f:85:aa:54:c9:2d:4f:62:23:37:1e: 25:82:c6:f7:a6:bb:08:e7:6a:02:ce:41:5b:52:4e: 5d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:AC:CD:1C:C2:00:56:D9:3C:65:BA:0F:A9:5A:44:1E:3A:81:19:59 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:800::/40 Signature Algorithm: sha256WithRSAEncryption 65:7f:32:3a:20:05:04:61:52:ab:82:ff:93:c1:0a:a8:d9:a4: ef:c1:f6:ac:55:bb:80:b8:db:83:8a:f6:23:da:d8:c9:a7:b9: b3:c8:86:08:b7:e8:b1:ce:f6:4a:05:6a:d4:2d:a3:07:9c:43: 0a:e9:9c:06:57:1b:5e:e1:35:dc:6c:7e:94:9f:d3:1c:6c:e9: a5:37:ac:8a:0a:5f:6f:21:26:75:91:0f:43:67:3d:68:cc:9a: b9:1e:2b:af:e7:de:65:7c:0f:95:77:eb:3a:10:66:98:26:86: 63:26:7e:38:35:85:a3:0b:de:9d:f3:c8:52:5e:ad:27:07:d9: 9e:97:8d:96:87:55:e4:5a:8f:a2:42:3f:0c:2b:dd:7a:ca:b7: c4:b3:69:6e:b8:40:7a:68:d7:01:c0:d2:3f:94:a6:a2:7e:41: 7d:a0:8c:f5:4a:01:ec:69:d5:df:0e:86:84:ce:7f:d9:ab:1b: 30:e6:b3:24:1c:a0:0a:3b:d5:6d:65:6e:c4:34:bd:1d:40:92: 8b:3e:6c:36:61:16:74:04:b6:0f:87:24:25:a7:4b:b5:8b:d1: 50:1d:2c:77:11:9d:a3:a9:a7:83:2d:af:36:6f:fe:8a:fd:89: 94:db:99:0b:13:88:ec:92:71:a6:e5:22:0b:43:d3:54:78:a0: 75:e1:81:69 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZ+77CPDqKNoCDPEn7VTRQheTgLswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMjAwMDAwMFoX DTI0MTIyNzIzNTk1OVowejFJMEcGA1UEBRNAYjFiYzQ3NjY1Y2EzNTczOTczYmFi YTA5ZjFmYWYyNWE0OWEzZDNmN2Y2YTA3YmYxMzU4ZThkYWYyOGEyYzYxNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMiO2cgIM+h4cKbu0+su56QfJz4T NT5GcnGML7bab//rGG6x0EKAdhMmWGB3N4YqLADvkSeH3eywRRQcfNGqd+fjRR35 JmIK2soMG5eueYQs/l1S3Gr9Vo4hseeCye2/riV6Zb8ANdfZep/e+umSDM/WFJAl O/ULcGAJY3J9KK7qRGN0OVU4gx8vTQh/g1OJkbxH4m6T4mJx61BztHdshJPSFMPM uW3oV/mQ667G4uk5DH6yyXD8dBRUviBKHWH9pt1YdVmR9a+tq7OdmCd0IW4kp7Vx cPV94RhVte5HIVGBziB7f4WqVMktT2IjNx4lgsb3prsI52oCzkFbUk5djwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCWszRzCAFbZPGW6D6laRB46gRlZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1ZGU0ZDNjLWMyNjItNDRlMi05YjRiLTRkYjZiZWRjOGM2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaAgwDQYJKoZIhvcNAQELBQADggEBAGV/MjogBQRhUquC/5PB CqjZpO/B9qxVu4C424OK9iPa2MmnubPIhgi36LHO9koFatQtowecQwrpnAZXG17h NdxsfpSf0xxs6aU3rIoKX28hJnWRD0NnPWjMmrkeK6/n3mV8D5V36zoQZpgmhmMm fjg1haML3p3zyFJerScH2Z6XjZaHVeRaj6JCPwwr3XrKt8SzaW64QHpo1wHA0j+U pqJ+QX2gjPVKAexp1d8OhoTOf9mrGzDmsyQcoAo71W1lbsQ0vR1Akos+bDZhFnQE tg+HJCWnS7WL0VAdLHcRnaOpp4MtrzZv/or9iZTbmQsTiOyScablIgtD01R4oHXh gWk= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:38 2024 by rpki-client on console-ams.rpki-client.org