$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d3ca5a8-d6d1-42f0-a0f6-be78a237e8f2.roa File: 5d3ca5a8-d6d1-42f0-a0f6-be78a237e8f2.roa (raw, json) Hash identifier: baiPA6ozpRxNleqM3aWD9VOreGvqNix/m4NYYA1xCCE= Subject key identifier: 8F:3B:56:14:A3:85:6B:38:3A:F6:F4:B4:C3:F8:BD:47:4C:8E:7B:D1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 100AA21CCEFF5F783B84D54A39E17FE9B24ACB7E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d3ca5a8-d6d1-42f0-a0f6-be78a237e8f2.roa Signing time: Wed 17 Jul 2024 00:00:00 +0000 ROA not before: Wed 17 Jul 2024 00:00:00 +0000 ROA not after: Wed 21 Aug 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2406:da00::/24 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:0a:a2:1c:ce:ff:5f:78:3b:84:d5:4a:39:e1:7f:e9:b2:4a:cb:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 17 00:00:00 2024 GMT Not After : Aug 21 23:59:59 2024 GMT Subject: serialNumber=035e4b0bef5351abcccfc3314fad55d3232c3491909b93fd461a443ce09de86f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:02:b5:04:4c:28:4e:83:4f:13:fc:9a:26:40: 8d:58:6c:b8:fa:b4:02:33:f1:41:00:6d:65:c6:74: b9:3c:77:a9:4a:c6:5f:30:36:8e:dc:79:3e:3a:db: 93:21:26:b2:4a:7e:8e:d9:eb:5d:4c:83:1d:a3:60: 0c:bc:aa:a0:62:8f:c2:83:dc:e1:0c:74:c7:bb:2f: 10:dc:2a:36:95:9b:02:8f:2a:39:8c:2d:d4:71:af: 89:b9:2b:41:81:67:f3:d4:f1:10:31:5d:80:1b:8c: fd:fa:b1:57:9e:36:5e:9b:26:11:c8:1e:72:81:0c: 3f:f6:86:38:f5:7b:0e:b2:21:46:33:a7:87:c5:f2: d5:f2:f4:60:53:83:9d:da:10:d4:ee:49:ba:d7:f4: d9:6a:f7:91:9a:cd:5a:8c:99:fe:bc:5c:1f:37:53: 96:11:40:19:c0:c4:ef:8c:ee:9c:2c:56:19:d1:81: c9:67:05:8b:a4:e1:c8:db:50:29:a3:b4:c2:58:4a: 4c:35:76:17:5d:b2:e1:82:60:ee:ee:9b:5d:67:6e: 12:2f:27:05:6b:78:e0:71:ca:0b:88:03:05:a6:7d: 1a:a4:1f:95:de:20:2b:09:42:61:20:ee:32:02:44: fc:72:e2:93:13:dd:95:b4:42:6c:fb:3a:76:ab:2f: 62:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3B:56:14:A3:85:6B:38:3A:F6:F4:B4:C3:F8:BD:47:4C:8E:7B:D1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d3ca5a8-d6d1-42f0-a0f6-be78a237e8f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00::/24 Signature Algorithm: sha256WithRSAEncryption 02:43:8f:94:38:ce:ad:51:a1:d7:dd:a3:f2:18:dd:2d:e0:c2: 3b:b4:ca:0d:65:04:04:40:22:5a:cf:96:e2:a7:1a:19:7c:a3: 95:3a:c4:aa:e6:16:f0:0f:87:62:c0:69:4b:4d:ed:53:2b:6e: 14:b2:de:b9:4f:01:e4:20:49:ee:c0:fc:b1:f3:6b:bc:06:e2: 4b:17:c6:c8:13:30:3c:d9:fd:58:0b:77:5d:b1:96:69:e2:77: e0:f8:b5:5e:05:57:7d:7a:53:3b:9b:ed:ea:39:e2:37:91:1f: 9b:12:39:00:25:93:45:c4:d2:c6:d9:42:b3:d2:c8:14:2f:17: 63:aa:7a:79:82:ed:6a:7a:5e:e4:18:2a:eb:f6:d6:57:26:a4: 11:b5:f3:45:da:0b:7d:91:1f:ab:66:ad:0b:79:b2:4f:01:0b: df:26:c1:6a:c6:a3:73:f1:fb:2f:f3:a4:4b:8d:49:42:2d:bd: 32:e4:57:e6:b1:d7:a7:22:82:08:9d:1d:b5:a6:64:d5:1e:88: 2b:18:ff:a5:fe:5b:77:89:08:8a:ba:a1:f9:d3:45:60:b7:d9: 2d:23:33:e6:38:68:2d:3b:92:ac:ff:aa:47:c3:83:c5:b1:b1: 77:26:f5:df:9e:8d:7b:ea:3e:b1:41:29:c3:da:bf:42:67:31: 3c:1c:f9:b8 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUEAqiHM7/X3g7hNVKOeF/6bJKy34wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNzAwMDAwMFoX DTI0MDgyMTIzNTk1OVowejFJMEcGA1UEBRNAMDM1ZTRiMGJlZjUzNTFhYmNjY2Zj MzMxNGZhZDU1ZDMyMzJjMzQ5MTkwOWI5M2ZkNDYxYTQ0M2NlMDlkZTg2ZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwK1BEwoToNPE/yaJkCNWGy4+rQC M/FBAG1lxnS5PHepSsZfMDaO3Hk+OtuTISaySn6O2etdTIMdo2AMvKqgYo/Cg9zh DHTHuy8Q3Co2lZsCjyo5jC3Uca+JuStBgWfz1PEQMV2AG4z9+rFXnjZemyYRyB5y gQw/9oY49XsOsiFGM6eHxfLV8vRgU4Od2hDU7km61/TZaveRms1ajJn+vFwfN1OW EUAZwMTvjO6cLFYZ0YHJZwWLpOHI21Apo7TCWEpMNXYXXbLhgmDu7ptdZ24SLycF a3jgccoLiAMFpn0apB+V3iArCUJhIO4yAkT8cuKTE92VtEJs+zp2qy9iJwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFI87VhSjhWs4Ovb0tMP4vUdMjnvRMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVkM2NhNWE4LWQ2ZDEtNDJmMC1hMGY2LWJlNzhhMjM3ZThmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJAbaMA0GCSqGSIb3DQEBCwUAA4IBAQACQ4+UOM6tUaHX3aPyGN0t 4MI7tMoNZQQEQCJaz5bipxoZfKOVOsSq5hbwD4diwGlLTe1TK24Ust65TwHkIEnu wPyx82u8BuJLF8bIEzA82f1YC3ddsZZp4nfg+LVeBVd9elM7m+3qOeI3kR+bEjkA JZNFxNLG2UKz0sgULxdjqnp5gu1qel7kGCrr9tZXJqQRtfNF2gt9kR+rZq0LebJP AQvfJsFqxqNz8fsv86RLjUlCLb0y5FfmsdenIoIInR21pmTVHogrGP+l/lt3iQiK uqH500Vgt9ktIzPmOGgtO5Ks/6pHw4PFsbF3JvXfno176j6xQSnD2r9CZzE8HPm4 -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:40 2024 by rpki-client on console-ams.rpki-client.org