$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d3ca5a8-d6d1-42f0-a0f6-be78a237e8f2.roa File: 5d3ca5a8-d6d1-42f0-a0f6-be78a237e8f2.roa (raw, json) Hash identifier: losWzU1bNHDyq7FEqcF4y3m/Vx7CwrVmh8h6QIVYzqQ= Subject key identifier: C9:04:08:05:2F:EB:9B:61:4E:9B:F6:9C:0F:9B:26:2F:5A:0F:CA:C4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 729BA56AEBC8B59435D07EDA32683E1C4B27CD10 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d3ca5a8-d6d1-42f0-a0f6-be78a237e8f2.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2406:da00::/24 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 00:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9b:a5:6a:eb:c8:b5:94:35:d0:7e:da:32:68:3e:1c:4b:27:cd:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=f2eb979cbe048b3679d1e08c986b17fb73fb22c2bb5e0d04859dd006ec8872a2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:23:85:9c:6a:15:a6:47:5e:3d:8b:dc:cc:6a: 0f:df:ae:96:e5:cf:eb:8b:bc:2b:a0:69:54:60:83: 66:b5:2c:6e:cf:59:d6:c6:fa:82:42:8d:7b:82:af: d6:a7:22:36:6c:d6:da:46:50:41:cc:b7:bf:ee:4a: 5f:6d:e1:a5:1f:75:4a:18:aa:a7:80:5c:1a:71:38: 83:81:4f:ea:9b:5f:e0:3b:04:64:20:92:f6:9f:f9: 29:f0:06:cb:c1:59:2c:30:89:61:cc:f8:d1:b1:88: 65:ba:e5:64:52:b0:05:21:ef:ba:24:10:85:50:be: 5a:43:52:cb:d3:a5:26:59:f2:0f:df:4a:b9:90:4e: 43:73:ed:41:24:36:cb:95:ff:d0:b1:24:28:ad:e6: b9:6c:06:12:67:bd:5d:bb:34:cf:2d:84:32:12:97: 83:ce:bd:85:c0:3b:2e:e5:98:fb:92:65:69:6c:51: 11:02:f7:27:82:e7:b1:ef:af:a2:46:76:69:6a:ed: 4b:03:88:85:4b:c6:c1:6e:75:cd:43:81:66:95:cd: 2b:7f:77:65:cc:e8:11:95:6f:28:14:38:d3:3f:15: e2:9e:31:6d:42:6e:a7:86:62:23:84:70:48:46:7c: 5e:97:a1:a7:1c:d8:0d:30:92:41:8a:bb:0b:8d:f9: 5a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:04:08:05:2F:EB:9B:61:4E:9B:F6:9C:0F:9B:26:2F:5A:0F:CA:C4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d3ca5a8-d6d1-42f0-a0f6-be78a237e8f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00::/24 Signature Algorithm: sha256WithRSAEncryption 81:5b:f3:96:64:8d:d0:8b:45:62:ed:27:7c:c7:ed:ab:7d:69: 5e:3d:06:ad:a1:43:d5:2e:45:ad:76:0a:02:56:79:1f:7c:f0: 1d:35:f9:0a:f8:d7:fd:44:fe:dc:9d:d0:1e:e5:b7:c0:47:e1: 4d:32:43:7a:63:52:ce:8c:23:ef:4c:0b:4a:0a:ef:c0:cd:97: f1:3a:c0:1d:dc:40:d0:e6:6d:49:88:b3:6d:26:6d:ca:7c:a7: fd:7a:07:50:ed:ea:e7:80:07:5c:79:19:ff:8c:e6:fb:37:cf: 24:59:6d:e5:5c:82:8f:45:91:fb:a4:d4:c0:24:5f:4f:81:ea: 19:f7:a8:0b:d3:91:75:4f:88:01:c1:6e:f5:c5:bd:4c:3f:b6: 95:90:11:5b:a3:12:27:9e:4b:44:cf:7c:5d:89:2b:dc:bd:ad: 10:97:ab:4a:c3:f0:fe:25:0c:ae:e4:5e:b1:b8:88:37:31:7e: e1:5e:ad:2e:bb:2a:c2:f8:fa:df:de:cb:cf:9c:0b:c5:f6:5b: cb:fa:90:6c:20:04:cb:05:c0:22:0a:e4:dd:54:3e:7b:2b:45: cf:c1:43:57:cb:08:8a:42:a6:71:ef:39:d9:4a:e2:00:56:d9: 0b:4c:d1:44:87:a6:4d:b5:ec:dc:45:a5:20:18:b9:8d:b3:eb: 9c:58:2a:4d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUcpulauvItZQ10H7aMmg+HEsnzRAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQwODAwMDAwMFoX DTI0MDUxMzIzNTk1OVowejFJMEcGA1UEBRNAZjJlYjk3OWNiZTA0OGIzNjc5ZDFl MDhjOTg2YjE3ZmI3M2ZiMjJjMmJiNWUwZDA0ODU5ZGQwMDZlYzg4NzJhMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkSOFnGoVpkdePYvczGoP366W5c/r i7wroGlUYINmtSxuz1nWxvqCQo17gq/WpyI2bNbaRlBBzLe/7kpfbeGlH3VKGKqn gFwacTiDgU/qm1/gOwRkIJL2n/kp8AbLwVksMIlhzPjRsYhluuVkUrAFIe+6JBCF UL5aQ1LL06UmWfIP30q5kE5Dc+1BJDbLlf/QsSQorea5bAYSZ71duzTPLYQyEpeD zr2FwDsu5Zj7kmVpbFERAvcnguex76+iRnZpau1LA4iFS8bBbnXNQ4Fmlc0rf3dl zOgRlW8oFDjTPxXinjFtQm6nhmIjhHBIRnxel6GnHNgNMJJBirsLjflaHwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFMkECAUv65thTpv2nA+bJi9aD8rEMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVkM2NhNWE4LWQ2ZDEtNDJmMC1hMGY2LWJlNzhhMjM3ZThmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJAbaMA0GCSqGSIb3DQEBCwUAA4IBAQCBW/OWZI3Qi0Vi7Sd8x+2r fWlePQatoUPVLkWtdgoCVnkffPAdNfkK+Nf9RP7cndAe5bfAR+FNMkN6Y1LOjCPv TAtKCu/AzZfxOsAd3EDQ5m1JiLNtJm3KfKf9egdQ7erngAdceRn/jOb7N88kWW3l XIKPRZH7pNTAJF9PgeoZ96gL05F1T4gBwW71xb1MP7aVkBFboxInnktEz3xdiSvc va0Ql6tKw/D+JQyu5F6xuIg3MX7hXq0uuyrC+Prf3svPnAvF9lvL+pBsIATLBcAi CuTdVD57K0XPwUNXywiKQqZx7znZSuIAVtkLTNFEh6ZNtezcRaUgGLmNs+ucWCpN -----END CERTIFICATE-----Generated at Wed Apr 24 05:31:46 2024 by rpki-client on console-fra.rpki-client.org