$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c009993-5553-4873-85cc-bcb3b5e4a58c.roa File: 6c009993-5553-4873-85cc-bcb3b5e4a58c.roa (raw, json) Hash identifier: EgGIhhedx5+G9CBdxwC8NjooBrK+0Ejwo6bvZ85v830= Subject key identifier: 2C:0D:52:7D:31:85:9F:F1:3E:3C:E9:8A:81:8C:5B:F1:AC:63:01:18 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 60A9B4B89595F078E3B019087C60938E3FBCD707 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c009993-5553-4873-85cc-bcb3b5e4a58c.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf9:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:a9:b4:b8:95:95:f0:78:e3:b0:19:08:7c:60:93:8e:3f:bc:d7:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=ec9785d1a3ffde4518570232b638ec76701f7798e2938cef227b127e291dc496, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d6:6a:90:01:1f:46:9d:83:80:b4:e9:f3:b9: 7c:15:91:84:ee:76:05:91:56:ee:59:6c:b4:d9:b2: 2c:0b:eb:7a:40:70:01:3d:86:4e:5a:d3:2d:97:c8: 26:b4:67:50:14:f3:d1:34:43:c2:ac:1a:ae:86:08: b8:15:09:ad:a5:74:cb:9f:f1:ed:e5:1f:77:eb:ce: 57:bc:79:21:03:13:f4:7c:28:86:7e:1d:0a:18:fb: c4:fd:92:4e:4e:fd:30:c0:09:7c:db:ed:c5:7d:d5: ab:b3:19:91:ea:64:d4:3f:a5:03:25:70:38:8b:fe: 80:4c:41:72:de:1e:85:e2:af:50:cd:1f:86:49:dd: 83:c1:5f:ac:e5:3f:43:bb:a1:dc:c8:11:d1:56:99: 59:80:c9:e6:9d:3c:53:a0:63:03:b2:e1:74:9b:49: d1:05:d9:77:f8:9b:2e:f2:13:2d:dd:8a:4f:87:83: 9d:25:b8:e1:0b:a6:23:3b:b2:56:7c:80:84:89:cd: 41:e7:17:71:c8:c0:77:36:55:24:93:20:89:e5:2f: c9:83:fa:7b:ea:4c:23:41:41:81:75:3b:7e:db:af: 3d:88:58:c2:e2:04:7d:5f:e8:72:03:ea:9c:de:24: 28:dc:23:7b:aa:0e:1d:28:2d:2c:b4:a3:c7:19:08: 7e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0D:52:7D:31:85:9F:F1:3E:3C:E9:8A:81:8C:5B:F1:AC:63:01:18 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c009993-5553-4873-85cc-bcb3b5e4a58c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf9:4800::/40 Signature Algorithm: sha256WithRSAEncryption 2b:a1:7e:b8:d3:a2:9c:dc:eb:f3:37:83:66:35:2b:21:c4:64: 21:03:ec:92:29:b4:dd:71:ce:8c:5f:c3:39:e3:8d:23:48:aa: 4c:67:9d:0c:e0:0d:91:72:42:bb:60:60:27:e8:65:9d:36:93: bc:2c:dd:bc:05:df:a6:03:9b:a1:02:0a:0e:e2:93:27:9f:42: 38:f8:c3:7b:84:b1:f6:fd:d4:01:0e:4d:d8:f4:cf:f1:4a:50: d0:e6:58:0f:b4:34:b5:f9:5e:80:ec:41:bc:31:b9:ef:93:25: b1:de:dc:7b:75:71:99:d2:6d:76:a5:50:c6:1e:22:3b:ee:73: 1c:46:b9:77:cc:94:e2:c5:2b:e3:8e:a9:5f:e5:db:0e:10:4d: 17:c0:48:2a:2d:e6:a1:34:53:75:4d:c0:5f:45:f3:3e:78:13: b6:81:bf:5d:95:a6:29:cc:d9:4b:40:39:d5:0e:a1:88:a6:d3: 42:6b:3a:f5:d0:d9:9d:2c:37:2d:37:0f:1a:17:fa:ef:c7:9d: eb:9c:ce:9a:02:b3:96:c6:66:23:43:02:4b:19:c1:05:9c:54: 0d:56:7d:02:51:fb:54:b5:70:7d:67:89:b8:98:55:96:bc:78: 4b:04:2a:b9:2b:cf:ce:1a:be:5b:f0:ad:50:a2:fd:5d:95:ac: ed:61:b1:2e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYKm0uJWV8HjjsBkIfGCTjj+81wcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAZWM5Nzg1ZDFhM2ZmZGU0NTE4NTcw MjMyYjYzOGVjNzY3MDFmNzc5OGUyOTM4Y2VmMjI3YjEyN2UyOTFkYzQ5NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstZqkAEfRp2DgLTp87l8FZGE7nYF kVbuWWy02bIsC+t6QHABPYZOWtMtl8gmtGdQFPPRNEPCrBquhgi4FQmtpXTLn/Ht 5R93685XvHkhAxP0fCiGfh0KGPvE/ZJOTv0wwAl82+3FfdWrsxmR6mTUP6UDJXA4 i/6ATEFy3h6F4q9QzR+GSd2DwV+s5T9Du6HcyBHRVplZgMnmnTxToGMDsuF0m0nR Bdl3+Jsu8hMt3YpPh4OdJbjhC6YjO7JWfICEic1B5xdxyMB3NlUkkyCJ5S/Jg/p7 6kwjQUGBdTt+2689iFjC4gR9X+hyA+qc3iQo3CN7qg4dKC0stKPHGQh+4wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCwNUn0xhZ/xPjzpioGMW/GsYwEYMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjMDA5OTkzLTU1NTMtNDg3My04NWNjLWJjYjNiNWU0YTU4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+UgwDQYJKoZIhvcNAQELBQADggEBACuhfrjTopzc6/M3g2Y1 KyHEZCED7JIptN1xzoxfwznjjSNIqkxnnQzgDZFyQrtgYCfoZZ02k7ws3bwF36YD m6ECCg7ikyefQjj4w3uEsfb91AEOTdj0z/FKUNDmWA+0NLX5XoDsQbwxue+TJbHe 3Ht1cZnSbXalUMYeIjvucxxGuXfMlOLFK+OOqV/l2w4QTRfASCot5qE0U3VNwF9F 8z54E7aBv12VpinM2UtAOdUOoYim00JrOvXQ2Z0sNy03DxoX+u/HneuczpoCs5bG ZiNDAksZwQWcVA1WfQJR+1S1cH1nibiYVZa8eEsEKrkrz84avlvwrVCi/V2VrO1h sS4= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:15 2024 by rpki-client on console-fra.rpki-client.org