$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6055c99a-8ca5-4e31-bf2f-3b75ddd3d70d.roa File: 6055c99a-8ca5-4e31-bf2f-3b75ddd3d70d.roa (raw, json) Hash identifier: xSGtMHGa+Dz+c6iiD/1pzUEtGyEKme1tRmS2+mpuDmY= Subject key identifier: 07:E4:40:E9:C3:AB:0B:5B:17:7F:2B:22:DB:C5:54:35:01:5E:B4:2E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6AF018AF1D043C7D7696045E6CDB05A7A4424DBF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6055c99a-8ca5-4e31-bf2f-3b75ddd3d70d.roa Signing time: Fri 25 Oct 2024 00:00:00 +0000 ROA not before: Fri 25 Oct 2024 00:00:00 +0000 ROA not after: Fri 29 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f0:18:af:1d:04:3c:7d:76:96:04:5e:6c:db:05:a7:a4:42:4d:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 25 00:00:00 2024 GMT Not After : Nov 29 23:59:59 2024 GMT Subject: serialNumber=10dbce945b5e5d309445a85d1b631db83ce09f4edf68db9621c27ea7f01d6806, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:0c:f3:53:1d:f7:35:bc:e8:51:59:af:17: 48:07:4d:32:59:58:c5:44:a7:ee:3c:86:24:d0:b4: 95:c9:bc:94:2a:bf:c0:b1:0f:19:1b:36:13:0e:3c: 2e:25:17:73:e2:80:c8:91:f2:9a:27:51:a5:c9:c2: ee:fa:d4:81:4b:ff:47:4e:cb:d1:db:af:63:54:04: 68:a9:05:20:d3:d7:1a:4a:fd:61:95:10:1f:23:84: 4c:37:78:51:a2:f1:c1:fc:a1:8d:ce:1d:3e:43:23: c2:4b:9c:7a:bd:ea:27:a1:fd:1b:67:f1:8c:d5:84: 91:8e:73:66:f5:bf:f1:79:9a:a2:10:d1:53:a1:6d: 66:1c:2f:db:c2:22:15:46:99:40:45:6e:2b:80:f3: 55:d7:87:8e:fb:01:ec:f1:ef:ca:0a:3d:fc:30:8b: 0a:a2:08:5e:45:d0:44:ac:7d:14:d4:2e:53:0b:33: 9b:33:80:55:d8:0b:c7:8f:f1:86:5d:e8:76:70:ae: 09:ea:d3:78:2e:31:70:71:43:42:1f:75:f5:26:46: 7c:80:e1:9e:e0:73:fc:62:56:e0:aa:38:9e:02:a6: 88:51:35:97:70:2f:e4:3e:43:82:7b:fe:41:bc:c8: 43:95:f2:68:a7:7b:84:38:4c:6b:0d:1e:cc:fe:1d: 6c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E4:40:E9:C3:AB:0B:5B:17:7F:2B:22:DB:C5:54:35:01:5E:B4:2E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6055c99a-8ca5-4e31-bf2f-3b75ddd3d70d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:1000::/40 Signature Algorithm: sha256WithRSAEncryption 97:d1:15:0b:9a:05:d4:e3:ef:31:34:a5:29:68:a5:08:16:da: 3f:06:fd:f3:71:ed:cb:0d:16:90:8f:ed:b7:df:6d:5e:67:24: 7d:9e:7c:d9:09:43:50:23:99:5a:46:a9:45:a9:40:d4:9d:70: 15:45:44:94:d9:50:72:24:e2:c8:3b:c0:70:e2:b0:32:ac:b2: 55:75:75:86:88:46:67:fa:ac:15:30:73:e4:dc:09:a4:0f:28: a0:2e:a8:b4:0c:96:09:a1:6d:1c:00:73:18:55:4f:74:6d:5a: 19:e3:c1:16:ca:e8:6a:2d:30:f5:da:22:b9:9d:46:90:35:e1: ec:d0:51:51:77:8f:e5:08:64:36:98:16:51:73:46:1d:cc:b1: 68:dc:c7:d2:78:42:ae:be:82:1a:42:4d:b2:83:67:f7:73:e2: 16:88:3b:ac:4b:6f:97:0a:40:c3:8c:9c:32:4d:85:25:b1:84: c3:92:31:be:54:0a:1f:d5:6e:f0:75:c6:3d:46:ab:1e:65:fb: 8c:ac:4f:11:17:93:1f:66:48:13:a3:7e:41:21:89:49:88:8d: 70:34:f8:4b:9d:e4:22:5a:94:15:9d:ff:91:63:c6:99:ca:94: 62:57:3d:fa:d6:b0:0e:d0:ff:61:aa:db:a8:1c:bb:a1:9a:f5: 46:a3:f6:86 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUavAYrx0EPH12lgRebNsFp6RCTb8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAyNTAwMDAwMFoX DTI0MTEyOTIzNTk1OVowejFJMEcGA1UEBRNAMTBkYmNlOTQ1YjVlNWQzMDk0NDVh ODVkMWI2MzFkYjgzY2UwOWY0ZWRmNjhkYjk2MjFjMjdlYTdmMDFkNjgwNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAto8M81Md9zW86FFZrxdIB00yWVjF RKfuPIYk0LSVybyUKr/AsQ8ZGzYTDjwuJRdz4oDIkfKaJ1GlycLu+tSBS/9HTsvR 269jVARoqQUg09caSv1hlRAfI4RMN3hRovHB/KGNzh0+QyPCS5x6veonof0bZ/GM 1YSRjnNm9b/xeZqiENFToW1mHC/bwiIVRplARW4rgPNV14eO+wHs8e/KCj38MIsK ogheRdBErH0U1C5TCzObM4BV2AvHj/GGXeh2cK4J6tN4LjFwcUNCH3X1JkZ8gOGe 4HP8YlbgqjieAqaIUTWXcC/kPkOCe/5BvMhDlfJop3uEOExrDR7M/h1s8QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAfkQOnDqwtbF38rItvFVDUBXrQuMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYwNTVjOTlhLThjYTUtNGUzMS1iZjJmLTNiNzVkZGQzZDcwZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaABAwDQYJKoZIhvcNAQELBQADggEBAJfRFQuaBdTj7zE0pSlo pQgW2j8G/fNx7csNFpCP7bffbV5nJH2efNkJQ1AjmVpGqUWpQNSdcBVFRJTZUHIk 4sg7wHDisDKsslV1dYaIRmf6rBUwc+TcCaQPKKAuqLQMlgmhbRwAcxhVT3RtWhnj wRbK6GotMPXaIrmdRpA14ezQUVF3j+UIZDaYFlFzRh3MsWjcx9J4Qq6+ghpCTbKD Z/dz4haIO6xLb5cKQMOMnDJNhSWxhMOSMb5UCh/VbvB1xj1Gqx5l+4ysTxEXkx9m SBOjfkEhiUmIjXA0+Eud5CJalBWd/5FjxpnKlGJXPfrWsA7Q/2Gq26gcu6Ga9Uaj 9oY= -----END CERTIFICATE-----Generated at Fri Oct 25 16:44:25 2024 by rpki-client on console-ams.rpki-client.org