$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c009993-5553-4873-85cc-bcb3b5e4a58c.roa File: 6c009993-5553-4873-85cc-bcb3b5e4a58c.roa (raw, json) Hash identifier: W8YQMIOLopFuzn86raglf6/+5Izk8Ea9JGDpNYs8fw8= Subject key identifier: 4C:FC:09:5F:20:4B:67:D8:76:59:7F:62:64:F5:CD:09:02:D7:A3:3E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0249B8F99716368B941DADCD59CF0CC110FA66BF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c009993-5553-4873-85cc-bcb3b5e4a58c.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf9:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:49:b8:f9:97:16:36:8b:94:1d:ad:cd:59:cf:0c:c1:10:fa:66:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=6e7de0e73eb88ad39867cd74ef6fd762cae3d658613396d2b65b31c4f66378c2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:92:20:ae:68:13:45:77:9d:f4:e9:13:5e:eb: dd:d8:a8:fe:54:f4:9a:1e:f7:1b:69:1c:9d:2a:72: 56:f3:6a:25:98:a9:f4:93:3a:62:d1:73:e9:4e:f6: 60:6f:a1:41:f8:17:64:3b:24:c8:d8:c8:75:4b:2d: 46:56:45:ed:e8:77:1b:09:73:fc:41:43:c7:ee:bc: 3b:ad:6d:eb:8e:8d:ab:43:df:b5:f7:37:5d:59:9f: 18:2a:36:fe:34:c9:b1:d3:b2:15:fe:db:bd:f7:8a: 5c:1e:07:cc:a1:e2:b7:5b:cd:a2:1b:7a:ad:2b:fd: 63:e6:ee:c4:f5:05:00:65:f6:90:c7:f9:38:fc:5e: f8:2f:ae:97:61:ae:6c:c8:7c:e5:82:d5:1f:f1:d8: 55:8c:36:27:90:75:ff:73:0b:fa:95:4d:55:8a:0c: 3b:e3:f2:60:b1:15:ef:7a:cd:48:5e:ba:d2:51:c2: 3a:e4:55:9a:90:d6:62:bb:9e:19:a4:26:25:cf:10: 66:fd:bf:bf:eb:88:a1:25:a4:dd:03:fb:bf:c2:c7: e2:3d:43:40:b4:d9:39:66:1f:7e:29:83:5c:c7:22: 6a:16:28:84:fb:90:af:52:c2:bd:b8:f0:65:54:67: b4:d8:21:1a:24:dd:2f:26:29:f0:10:d1:4f:b2:97: 00:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FC:09:5F:20:4B:67:D8:76:59:7F:62:64:F5:CD:09:02:D7:A3:3E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c009993-5553-4873-85cc-bcb3b5e4a58c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf9:4800::/40 Signature Algorithm: sha256WithRSAEncryption 05:fc:7a:5a:d6:c4:9a:94:05:4d:60:16:e4:6a:79:a2:a6:b5: 1a:8d:e5:d6:ca:c6:c7:29:d8:ae:09:1a:19:c8:9c:e1:9b:3b: 42:54:97:77:a3:05:1f:ee:d0:85:13:f2:7e:68:2b:af:9f:23: 92:d4:6d:00:fe:04:8e:a2:e3:92:03:29:b0:55:41:8a:33:17: 4b:c5:dd:a3:08:8c:8e:8e:00:01:d7:59:28:fd:4a:82:79:1f: ef:60:a5:96:11:5f:41:48:47:78:67:96:ed:5b:0c:71:a6:57: 82:fe:df:66:59:36:12:cf:3d:77:c7:9a:a9:90:d0:d0:7a:55: 38:39:a3:49:b2:fb:b0:a9:c7:ff:09:bb:9e:b1:15:62:19:c9: c0:a9:7a:85:00:6c:86:18:80:ef:ce:4e:91:d7:45:02:c9:3c: 80:37:fd:e8:aa:ec:f8:97:80:d0:3e:ee:ce:29:a1:b2:b7:22: dc:a4:e1:45:10:36:b7:5b:37:3e:c7:e7:8b:ab:38:10:51:42: 93:0a:14:53:49:74:54:f2:99:73:2e:df:ba:74:c3:a9:5d:bb: 62:92:c1:b1:07:21:92:18:bf:db:4d:da:9c:58:19:5e:94:bb: 8e:c7:f6:4f:cc:7d:88:44:c7:96:56:8a:17:9f:5e:f6:62:e9: 3d:8d:6f:66 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUAkm4+ZcWNouUHa3NWc8MwRD6Zr8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNANmU3ZGUwZTczZWI4OGFkMzk4Njdj ZDc0ZWY2ZmQ3NjJjYWUzZDY1ODYxMzM5NmQyYjY1YjMxYzRmNjYzNzhjMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5IgrmgTRXed9OkTXuvd2Kj+VPSa HvcbaRydKnJW82olmKn0kzpi0XPpTvZgb6FB+BdkOyTI2Mh1Sy1GVkXt6HcbCXP8 QUPH7rw7rW3rjo2rQ9+19zddWZ8YKjb+NMmx07IV/tu994pcHgfMoeK3W82iG3qt K/1j5u7E9QUAZfaQx/k4/F74L66XYa5syHzlgtUf8dhVjDYnkHX/cwv6lU1Vigw7 4/JgsRXves1IXrrSUcI65FWakNZiu54ZpCYlzxBm/b+/64ihJaTdA/u/wsfiPUNA tNk5Zh9+KYNcxyJqFiiE+5CvUsK9uPBlVGe02CEaJN0vJinwENFPspcAvQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEz8CV8gS2fYdll/YmT1zQkC16M+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjMDA5OTkzLTU1NTMtNDg3My04NWNjLWJjYjNiNWU0YTU4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+UgwDQYJKoZIhvcNAQELBQADggEBAAX8elrWxJqUBU1gFuRq eaKmtRqN5dbKxscp2K4JGhnInOGbO0JUl3ejBR/u0IUT8n5oK6+fI5LUbQD+BI6i 45IDKbBVQYozF0vF3aMIjI6OAAHXWSj9SoJ5H+9gpZYRX0FIR3hnlu1bDHGmV4L+ 32ZZNhLPPXfHmqmQ0NB6VTg5o0my+7Cpx/8Ju56xFWIZycCpeoUAbIYYgO/OTpHX RQLJPIA3/eiq7PiXgNA+7s4pobK3Ityk4UUQNrdbNz7H54urOBBRQpMKFFNJdFTy mXMu37p0w6ldu2KSwbEHIZIYv9tN2pxYGV6Uu47H9k/MfYhEx5ZWihefXvZi6T2N b2Y= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:38 2024 by rpki-client on console-ams.rpki-client.org