$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/60bdc157-596d-496e-bdbc-bada0f6826ad.roa File: 60bdc157-596d-496e-bdbc-bada0f6826ad.roa (raw, json) Hash identifier: VZxvwxHdoLXE1GUMGRYY1X5fCLJyULJtdmuelbbsqPY= Subject key identifier: 3F:76:52:8B:25:FF:73:AB:D5:29:3D:00:55:83:8F:52:59:FC:77:D2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 297FA62F03D4167A733A1545B0D35A159F16AE31 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/60bdc157-596d-496e-bdbc-bada0f6826ad.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafc:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:7f:a6:2f:03:d4:16:7a:73:3a:15:45:b0:d3:5a:15:9f:16:ae:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=b89e71c32b2bfdcd11fec006d7f4565bde26f947db44319e9a8a5aa11b291b83, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:33:6e:75:ef:f2:4d:72:a9:30:28:cc:bc: ab:16:13:31:3f:9c:38:8f:fe:10:17:4e:df:6d:3d: 46:98:ac:26:c5:cc:85:ba:3e:53:e5:fe:8e:d6:c7: a6:c6:88:11:fd:5b:3a:88:7e:b9:58:fb:55:bc:15: dc:16:43:a1:7f:88:c4:90:6e:6f:30:db:4a:a8:8b: 3d:0f:4e:ba:74:c6:27:74:9f:2e:39:15:51:c4:54: 9f:a3:66:83:c5:ec:ed:b5:59:c6:0a:30:e3:22:0c: 3b:5f:a7:55:44:64:fa:68:c5:16:69:12:b5:b7:5a: 4a:be:2c:e0:eb:fa:53:66:ba:17:a7:8c:bb:0c:99: ef:94:2f:36:1d:2f:18:4a:ea:4a:bb:50:2a:a4:05: 04:f5:c2:6d:40:53:3c:f4:eb:a2:21:b9:61:51:a9: a0:cf:14:be:3a:90:18:b3:ac:c9:5b:d0:28:37:a7: 70:07:23:4d:e9:7b:83:82:23:31:05:19:45:7b:d5: d5:b4:98:18:fa:7f:ff:18:1b:b2:e7:73:8b:23:10: 94:c3:fc:77:53:78:e2:f9:7f:3a:67:e9:86:3f:00: 20:9a:91:42:63:b0:5b:f7:e4:83:0c:a9:4f:4f:46: ff:da:fe:2d:e6:2e:61:28:46:a2:b3:65:a7:d1:d4: 11:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:76:52:8B:25:FF:73:AB:D5:29:3D:00:55:83:8F:52:59:FC:77:D2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/60bdc157-596d-496e-bdbc-bada0f6826ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafc:a000::/40 Signature Algorithm: sha256WithRSAEncryption 24:bd:11:67:68:a5:60:8d:8d:18:f1:77:c2:bd:aa:df:e3:dc: ad:71:bd:6e:44:68:a0:2a:2c:4b:f9:81:79:54:27:52:b0:c9: a6:63:d0:18:f4:f0:cf:65:78:1f:98:68:80:0f:43:77:ac:ec: f1:5d:5a:41:c3:4a:85:dd:e1:30:97:af:a9:91:0e:1a:06:c3: a6:d6:3e:03:c6:53:42:f8:e8:c9:86:5c:38:b6:0f:6d:74:18: 69:06:87:06:d1:fc:95:bb:ff:41:09:d8:46:17:d7:c7:3c:76: 91:13:20:88:4f:2d:58:ff:c1:88:2c:b2:b3:7d:92:ab:61:c5: 85:1b:fd:2f:b5:39:43:2e:4a:82:ce:d1:0f:4a:3a:38:18:f2: b4:83:c6:7b:31:d1:84:16:e1:6f:de:1d:97:f0:60:bd:46:86: 49:44:1e:77:1d:d8:ff:57:93:5d:8b:cc:70:da:6c:84:79:ca: f6:91:6e:f7:9f:0d:5b:c4:06:6b:51:91:c3:74:b0:91:b4:b5: b2:80:75:f0:58:c3:ee:73:c3:c6:be:d1:27:4a:b1:b3:ba:71: 83:63:a4:2b:d1:ee:fe:29:fb:b2:8a:b1:96:e8:1b:35:b6:4e: 2e:80:e0:4a:f9:de:f9:44:7d:27:9b:73:30:eb:ee:d4:3b:ae: 15:9a:a1:b0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKX+mLwPUFnpzOhVFsNNaFZ8WrjEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAYjg5ZTcxYzMyYjJiZmRjZDExZmVj MDA2ZDdmNDU2NWJkZTI2Zjk0N2RiNDQzMTllOWE4YTVhYTExYjI5MWI4MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcczbnXv8k1yqTAozLyrFhMxP5w4 j/4QF07fbT1GmKwmxcyFuj5T5f6O1semxogR/Vs6iH65WPtVvBXcFkOhf4jEkG5v MNtKqIs9D066dMYndJ8uORVRxFSfo2aDxezttVnGCjDjIgw7X6dVRGT6aMUWaRK1 t1pKvizg6/pTZroXp4y7DJnvlC82HS8YSupKu1AqpAUE9cJtQFM89OuiIblhUamg zxS+OpAYs6zJW9AoN6dwByNN6XuDgiMxBRlFe9XVtJgY+n//GBuy53OLIxCUw/x3 U3ji+X86Z+mGPwAgmpFCY7Bb9+SDDKlPT0b/2v4t5i5hKEais2Wn0dQRjwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFD92Uosl/3Or1Sk9AFWDj1JZ/HfSMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYwYmRjMTU3LTU5NmQtNDk2ZS1iZGJjLWJhZGEwZjY4MjZhZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/KAwDQYJKoZIhvcNAQELBQADggEBACS9EWdopWCNjRjxd8K9 qt/j3K1xvW5EaKAqLEv5gXlUJ1KwyaZj0Bj08M9leB+YaIAPQ3es7PFdWkHDSoXd 4TCXr6mRDhoGw6bWPgPGU0L46MmGXDi2D210GGkGhwbR/JW7/0EJ2EYX18c8dpET IIhPLVj/wYgssrN9kqthxYUb/S+1OUMuSoLO0Q9KOjgY8rSDxnsx0YQW4W/eHZfw YL1GhklEHncd2P9Xk12LzHDabIR5yvaRbvefDVvEBmtRkcN0sJG0tbKAdfBYw+5z w8a+0SdKsbO6cYNjpCvR7v4p+7KKsZboGzW2Ti6A4Er53vlEfSebczDr7tQ7rhWa obA= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:40 2024 by rpki-client on console-ams.rpki-client.org