$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5e3a6a73-be0f-463f-a67b-a132e473d6f7.roa File: 5e3a6a73-be0f-463f-a67b-a132e473d6f7.roa (raw, json) Hash identifier: acdhlF0lqaUnxFCvnWJOHiTZnCxoRe9s7Hhvq6kdMTg= Subject key identifier: 10:80:11:0D:FD:03:85:5E:98:41:BC:25:75:C5:D7:DD:6A:E2:D0:77 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5E5BEA4B9AFCE626FF429815DE7DE9E242196B58 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5e3a6a73-be0f-463f-a67b-a132e473d6f7.roa Signing time: Tue 01 Oct 2024 00:00:00 +0000 ROA not before: Tue 01 Oct 2024 00:00:00 +0000 ROA not after: Tue 05 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf9:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5b:ea:4b:9a:fc:e6:26:ff:42:98:15:de:7d:e9:e2:42:19:6b:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 1 00:00:00 2024 GMT Not After : Nov 5 23:59:59 2024 GMT Subject: serialNumber=e80ca3f6bd88c5437e6706ee79918904d24068fa89d90a54cf82b5090cabcb73, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6d:2e:09:8e:80:4b:40:f4:8e:8d:a1:9e:12: 64:01:d4:66:15:cd:91:c4:d1:2f:4e:4e:a3:cf:67: 24:e1:11:8b:27:ff:5e:4f:50:10:d0:4f:52:d5:00: fb:22:a8:66:8a:3e:69:d0:8f:7a:32:50:22:75:64: 3e:e3:be:e7:74:35:43:d6:04:08:ba:32:51:9a:9a: c3:35:0c:5a:f4:56:cf:2b:a8:83:b6:79:3d:8c:84: ce:59:44:2d:6d:89:29:24:17:29:d9:88:c7:f6:ac: 64:3e:af:d5:49:d5:d7:7f:0b:06:8e:97:0a:16:f2: 70:51:34:f0:48:70:55:c8:f7:dd:3a:b7:d2:0e:28: 04:06:78:c6:71:1c:51:13:fe:32:3b:fb:7e:4e:ae: 5a:ef:2b:38:00:85:8f:b8:d1:4b:15:be:5a:d9:01: b4:f8:b1:22:8e:ed:96:be:da:70:6f:d6:28:18:a4: a9:17:7a:07:1b:44:c1:a4:73:bf:98:9c:15:cc:6a: 14:d0:6c:2e:8a:bf:3e:5f:68:a3:f7:d0:70:05:b1: 9c:17:ab:9b:ee:91:5d:60:75:6e:6c:e6:c8:dc:f3: e2:78:a4:8c:68:ba:57:65:22:a6:76:98:79:2f:32: d7:4d:d1:90:00:e4:6b:a9:b9:af:dc:b8:79:9f:92: c6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:80:11:0D:FD:03:85:5E:98:41:BC:25:75:C5:D7:DD:6A:E2:D0:77 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5e3a6a73-be0f-463f-a67b-a132e473d6f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf9:4000::/40 Signature Algorithm: sha256WithRSAEncryption b0:d3:95:94:a1:7b:16:73:3a:6c:72:b2:59:de:95:de:63:d4: a4:b6:c1:f5:82:c7:bd:b2:16:39:87:9b:59:d7:0d:19:99:e0: 14:3c:dd:b8:a4:3e:e3:0a:4f:4e:8d:8e:c1:ae:49:e4:8a:20: f2:63:48:56:df:d1:c3:35:ad:9b:6f:c7:5f:0b:55:a4:fb:10: e1:29:ec:17:d6:a8:11:b2:6a:13:11:8a:64:2d:b2:66:cc:4f: 59:b2:81:e5:23:50:e6:0b:07:c1:17:75:ec:4d:59:5b:cf:40: af:98:59:31:3b:1f:84:fc:08:b4:26:4f:d1:53:66:55:3e:f2: a8:ad:96:b3:7f:7e:e9:85:6f:85:8e:9d:51:70:97:06:a8:e4: 6b:8d:b9:45:6b:17:2d:f6:ca:3e:ed:58:c5:80:35:44:05:c6: 91:fc:1d:63:a9:84:6c:62:ef:53:58:6b:aa:5e:f1:52:95:a2: 26:85:0c:4e:53:4e:1a:0d:2d:33:99:9d:17:33:f6:85:df:2b: 3b:3a:3d:33:7a:68:a2:94:27:9a:5d:4b:dc:bc:25:12:20:8d: e0:3e:8d:7e:95:aa:30:d0:c4:ca:29:0e:3a:e7:e7:ef:43:8e: bb:15:5d:17:6f:e5:67:3b:08:80:ad:63:f5:b6:da:da:b0:7b: e7:e8:89:9e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXlvqS5r85ib/QpgV3n3p4kIZa1gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAwMTAwMDAwMFoX DTI0MTEwNTIzNTk1OVowejFJMEcGA1UEBRNAZTgwY2EzZjZiZDg4YzU0MzdlNjcw NmVlNzk5MTg5MDRkMjQwNjhmYTg5ZDkwYTU0Y2Y4MmI1MDkwY2FiY2I3MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwW0uCY6AS0D0jo2hnhJkAdRmFc2R xNEvTk6jz2ck4RGLJ/9eT1AQ0E9S1QD7Iqhmij5p0I96MlAidWQ+477ndDVD1gQI ujJRmprDNQxa9FbPK6iDtnk9jITOWUQtbYkpJBcp2YjH9qxkPq/VSdXXfwsGjpcK FvJwUTTwSHBVyPfdOrfSDigEBnjGcRxRE/4yO/t+Tq5a7ys4AIWPuNFLFb5a2QG0 +LEiju2Wvtpwb9YoGKSpF3oHG0TBpHO/mJwVzGoU0Gwuir8+X2ij99BwBbGcF6ub 7pFdYHVubObI3PPieKSMaLpXZSKmdph5LzLXTdGQAORrqbmv3Lh5n5LGgQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBCAEQ39A4VemEG8JXXF191q4tB3MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVlM2E2YTczLWJlMGYtNDYzZi1hNjdiLWExMzJlNDczZDZmNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+UAwDQYJKoZIhvcNAQELBQADggEBALDTlZShexZzOmxyslne ld5j1KS2wfWCx72yFjmHm1nXDRmZ4BQ83bikPuMKT06NjsGuSeSKIPJjSFbf0cM1 rZtvx18LVaT7EOEp7BfWqBGyahMRimQtsmbMT1mygeUjUOYLB8EXdexNWVvPQK+Y WTE7H4T8CLQmT9FTZlU+8qitlrN/fumFb4WOnVFwlwao5GuNuUVrFy32yj7tWMWA NUQFxpH8HWOphGxi71NYa6pe8VKVoiaFDE5TThoNLTOZnRcz9oXfKzs6PTN6aKKU J5pdS9y8JRIgjeA+jX6VqjDQxMopDjrn5+9DjrsVXRdv5Wc7CICtY/W22tqwe+fo iZ4= -----END CERTIFICATE-----Generated at Fri Oct 25 16:44:25 2024 by rpki-client on console-ams.rpki-client.org