$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6111e375-8b37-46b7-8884-66a6b6c6fa47.roa File: 6111e375-8b37-46b7-8884-66a6b6c6fa47.roa (raw, json) Hash identifier: 7SB+Z5crirqcFKlCx8GjiXyHdgb0Wn9QDyTe718zoaE= Subject key identifier: CD:CC:8F:0E:88:7C:F9:F2:0F:B5:2C:EE:07:13:4D:81:8B:E7:4F:80 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 40AAA144CEB90703AAB08A52B30A2529B9631A20 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6111e375-8b37-46b7-8884-66a6b6c6fa47.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf0:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:aa:a1:44:ce:b9:07:03:aa:b0:8a:52:b3:0a:25:29:b9:63:1a:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=71240c22068d411f0970b80a5a3af0b61cf1565b132e24026403d5a765194cd0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:65:f5:bf:81:32:f5:69:46:53:5d:36:b2:0b: e2:10:ec:4b:43:d9:25:dd:01:e8:01:35:04:40:ec: 1e:57:f6:88:cd:a6:1d:79:9f:f1:ed:98:42:9a:bb: 5e:78:01:45:db:cc:89:24:7d:a1:aa:17:a3:55:72: c1:b1:36:c5:7f:aa:51:fd:4c:97:c1:84:7c:53:09: 66:4e:2e:5f:76:90:70:9e:f2:54:21:66:c6:a6:32: c0:3c:63:7f:e8:12:3f:3c:be:bb:46:d9:d5:f8:40: 60:21:ed:20:54:7a:3d:06:a2:8c:03:a9:a2:70:89: dc:f3:c3:e7:cc:64:ce:85:b1:f9:33:d7:17:09:da: c9:82:2d:93:0a:fb:9e:d9:a9:ed:a8:3c:aa:7c:95: c8:5d:82:43:28:e6:f3:1c:de:b5:e5:80:91:f0:1f: 26:32:7d:20:70:9c:8c:c2:6f:7d:83:b7:19:da:b0: 5e:5b:f2:2f:d2:e0:fe:8e:fd:e3:c3:ca:96:6f:95: 5a:19:ef:20:72:31:37:37:8b:07:ea:d7:40:0c:76: 98:45:da:f7:00:1e:4a:2c:7e:30:be:eb:72:63:f8: 59:a4:ef:74:dd:54:d0:53:ff:cf:c6:88:9d:e6:3f: 71:33:bf:54:a9:25:e5:a2:56:4f:6c:9a:72:c5:94: 8c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:CC:8F:0E:88:7C:F9:F2:0F:B5:2C:EE:07:13:4D:81:8B:E7:4F:80 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6111e375-8b37-46b7-8884-66a6b6c6fa47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf0:4800::/40 Signature Algorithm: sha256WithRSAEncryption ac:60:8f:00:3e:f7:90:06:39:c5:e5:9b:57:49:af:b4:a6:4d: 36:de:c4:5a:39:15:be:b1:f0:bb:68:ec:3d:68:01:c8:28:b2: 6c:33:0d:d6:1c:b0:92:fe:7c:ee:46:9d:d4:0d:7b:7f:df:92: 75:f6:f2:d4:b4:d2:bd:21:7c:80:6a:de:62:75:b7:8e:b3:47: b5:55:0e:a5:02:c1:b6:a7:6c:2d:e7:e6:eb:de:72:83:25:4a: 51:d1:7a:da:86:95:0c:9f:df:06:38:25:58:d4:5a:d4:54:5f: 77:34:42:00:91:03:04:dc:c6:e0:d8:18:5d:92:f9:04:dd:5b: 9e:7d:70:4e:23:47:71:fd:10:d0:d1:da:0f:9b:fa:36:af:ca: 80:c0:ac:2d:ea:3c:eb:a1:e3:f3:ea:68:04:d3:bd:f2:51:71: 77:64:87:75:43:d7:da:65:e9:ad:79:04:c7:8d:31:ae:bd:d6: b9:79:ae:6b:ab:55:41:bb:de:68:92:1b:23:39:d5:bf:50:62: 04:d6:b9:a5:fa:13:aa:55:27:59:85:6b:fc:f7:9d:dd:46:bb: 4c:85:77:6f:3a:5d:52:e4:7b:bb:1a:39:dd:ca:4f:1d:04:a7: c0:74:cd:c0:fe:95:0f:ec:49:03:38:4d:82:17:7b:7c:00:ee: d5:ae:1a:c6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQKqhRM65BwOqsIpSswolKbljGiAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNANzEyNDBjMjIwNjhkNDExZjA5NzBi ODBhNWEzYWYwYjYxY2YxNTY1YjEzMmUyNDAyNjQwM2Q1YTc2NTE5NGNkMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGX1v4Ey9WlGU102sgviEOxLQ9kl 3QHoATUEQOweV/aIzaYdeZ/x7ZhCmrteeAFF28yJJH2hqhejVXLBsTbFf6pR/UyX wYR8UwlmTi5fdpBwnvJUIWbGpjLAPGN/6BI/PL67RtnV+EBgIe0gVHo9BqKMA6mi cInc88PnzGTOhbH5M9cXCdrJgi2TCvue2antqDyqfJXIXYJDKObzHN615YCR8B8m Mn0gcJyMwm99g7cZ2rBeW/Iv0uD+jv3jw8qWb5VaGe8gcjE3N4sH6tdADHaYRdr3 AB5KLH4wvutyY/hZpO903VTQU//Pxoid5j9xM79UqSXlolZPbJpyxZSM0wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFM3Mjw6IfPnyD7Us7gcTTYGL50+AMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYxMTFlMzc1LThiMzctNDZiNy04ODg0LTY2YTZiNmM2ZmE0Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8EgwDQYJKoZIhvcNAQELBQADggEBAKxgjwA+95AGOcXlm1dJ r7SmTTbexFo5Fb6x8Lto7D1oAcgosmwzDdYcsJL+fO5GndQNe3/fknX28tS00r0h fIBq3mJ1t46zR7VVDqUCwbanbC3n5uvecoMlSlHRetqGlQyf3wY4JVjUWtRUX3c0 QgCRAwTcxuDYGF2S+QTdW559cE4jR3H9ENDR2g+b+javyoDArC3qPOuh4/PqaATT vfJRcXdkh3VD19pl6a15BMeNMa691rl5rmurVUG73miSGyM51b9QYgTWuaX6E6pV J1mFa/z3nd1Gu0yFd286XVLke7saOd3KTx0Ep8B0zcD+lQ/sSQM4TYIXe3wA7tWu GsY= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:15 2024 by rpki-client on console-fra.rpki-client.org