$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6111e375-8b37-46b7-8884-66a6b6c6fa47.roa File: 6111e375-8b37-46b7-8884-66a6b6c6fa47.roa (raw, json) Hash identifier: dEu7wkvTkvO8YY0/n+e5KHtdcEL2oFMGdtvZRsomDq0= Subject key identifier: F3:EC:0D:87:BA:5B:86:9E:CC:EA:CD:DC:82:B8:56:9C:1A:06:89:F8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 012AAF20822F7FDF79AAFA0F4C060D3F45C987AE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6111e375-8b37-46b7-8884-66a6b6c6fa47.roa Signing time: Wed 01 May 2024 00:00:00 +0000 ROA not before: Wed 01 May 2024 00:00:00 +0000 ROA not after: Wed 05 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf0:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 15:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:2a:af:20:82:2f:7f:df:79:aa:fa:0f:4c:06:0d:3f:45:c9:87:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 1 00:00:00 2024 GMT Not After : Jun 5 23:59:59 2024 GMT Subject: serialNumber=8c4b64224ac8d23928f818b645899e532eb517421d74096f7e94f0280fe5fbcb, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:80:fc:b2:db:43:79:35:e8:bc:03:05:f1:37: ea:34:7f:bf:d6:22:58:72:d0:9e:e1:76:5e:7a:c4: c1:10:db:f8:cd:5c:4c:68:5a:ed:02:4d:40:8c:22: ee:76:d6:f5:56:0e:3f:87:36:b8:c7:b1:93:0d:83: 83:9c:7b:20:73:be:89:cb:3a:78:ca:f5:ad:d5:26: 7a:4f:ba:3a:0e:9c:8d:eb:9f:f5:8a:ad:cc:f0:ad: 45:ba:e5:b7:d0:6a:d1:7f:39:04:b3:bd:ec:c9:55: b9:6b:8f:51:2f:ff:1a:43:7d:6b:d6:a4:1b:77:d1: c0:81:5c:7d:a1:c2:38:df:f8:fd:63:99:b9:e5:90: 09:db:ad:58:e6:50:a5:ec:d2:dd:35:41:ae:c0:03: 80:30:bc:75:7c:5e:f1:da:a7:4f:22:d2:40:cc:15: df:8b:8d:87:ed:19:78:73:7e:6b:79:72:bd:ef:18: 17:91:f6:7e:2b:81:20:d5:5c:57:11:c8:4b:ac:7a: b6:1c:f7:31:7e:16:d1:8f:b0:36:fa:a9:b4:a7:58: 76:10:5c:5e:51:87:72:c1:a0:84:e9:7f:cb:a4:29: dc:95:cd:0e:99:80:bb:86:9f:dc:bd:2f:f9:74:53: e1:18:8b:58:eb:0d:1d:6d:04:b6:c8:a2:fe:2a:73: 54:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:EC:0D:87:BA:5B:86:9E:CC:EA:CD:DC:82:B8:56:9C:1A:06:89:F8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6111e375-8b37-46b7-8884-66a6b6c6fa47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf0:4800::/40 Signature Algorithm: sha256WithRSAEncryption c8:de:e8:dc:67:b7:a2:3a:49:8c:cc:2b:1d:1a:a6:1c:6e:5e: ae:4e:b4:73:4b:b3:c2:3f:4d:b1:21:70:ee:e8:8e:22:94:9b: 89:23:0a:e9:11:d3:f0:5f:52:78:89:32:bc:ac:fb:87:fa:61: b1:48:08:81:b9:cb:de:c9:86:e3:dc:01:fa:50:2a:7f:04:a8: 5c:35:3d:07:ef:a6:02:d9:9c:36:99:f2:aa:c0:50:d6:9f:99: be:5a:f4:49:18:2a:6d:5b:e4:59:84:b6:2c:ce:ff:5b:49:ab: ca:af:c7:72:80:5e:e9:84:47:8c:b4:46:78:0c:7e:5b:8d:31: a0:cb:00:39:4a:fb:fa:f7:57:52:3a:f3:9b:61:63:86:37:59: 51:da:69:94:b9:b5:34:b7:fa:91:e1:e7:c2:e6:b8:ed:c3:2c: 77:c8:00:73:f0:77:93:b6:80:e1:27:04:06:9a:9a:c0:e7:fb: 4c:f1:2b:e0:09:2b:c1:84:67:e9:18:4e:fc:19:61:16:8f:84: 3b:b7:26:e4:6d:a7:a6:f0:33:44:72:08:d2:aa:a3:da:7a:b5: e3:3d:47:a7:18:30:b6:f9:6c:01:05:9b:11:70:cd:4c:87:f5: ca:90:31:c6:e7:0a:ee:ac:b2:39:0a:f3:b2:9c:42:57:3f:90: 4a:2f:86:73 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUASqvIIIvf995qvoPTAYNP0XJh64wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDUwMTAwMDAwMFoX DTI0MDYwNTIzNTk1OVowejFJMEcGA1UEBRNAOGM0YjY0MjI0YWM4ZDIzOTI4Zjgx OGI2NDU4OTllNTMyZWI1MTc0MjFkNzQwOTZmN2U5NGYwMjgwZmU1ZmJjYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqID8sttDeTXovAMF8TfqNH+/1iJY ctCe4XZeesTBENv4zVxMaFrtAk1AjCLudtb1Vg4/hza4x7GTDYODnHsgc76Jyzp4 yvWt1SZ6T7o6DpyN65/1iq3M8K1FuuW30GrRfzkEs73syVW5a49RL/8aQ31r1qQb d9HAgVx9ocI43/j9Y5m55ZAJ261Y5lCl7NLdNUGuwAOAMLx1fF7x2qdPItJAzBXf i42H7Rl4c35reXK97xgXkfZ+K4Eg1VxXEchLrHq2HPcxfhbRj7A2+qm0p1h2EFxe UYdywaCE6X/LpCnclc0OmYC7hp/cvS/5dFPhGItY6w0dbQS2yKL+KnNURQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPPsDYe6W4aezOrN3IK4VpwaBon4MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYxMTFlMzc1LThiMzctNDZiNy04ODg0LTY2YTZiNmM2ZmE0Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8EgwDQYJKoZIhvcNAQELBQADggEBAMje6Nxnt6I6SYzMKx0a phxuXq5OtHNLs8I/TbEhcO7ojiKUm4kjCukR0/BfUniJMrys+4f6YbFICIG5y97J huPcAfpQKn8EqFw1PQfvpgLZnDaZ8qrAUNafmb5a9EkYKm1b5FmEtizO/1tJq8qv x3KAXumER4y0RngMfluNMaDLADlK+/r3V1I685thY4Y3WVHaaZS5tTS3+pHh58Lm uO3DLHfIAHPwd5O2gOEnBAaamsDn+0zxK+AJK8GEZ+kYTvwZYRaPhDu3JuRtp6bw M0RyCNKqo9p6teM9R6cYMLb5bAEFmxFwzUyH9cqQMcbnCu6ssjkK87KcQlc/kEov hnM= -----END CERTIFICATE-----Generated at Thu May 2 20:48:26 2024 by rpki-client on console-fra.rpki-client.org