$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa File: 6c5d2129-c65c-4419-a480-b48028703d92.roa (raw, json) Hash identifier: ziI5w8+T7bISscBzniLG+Y/XB63XDjwMwp1uyiRXVZg= Subject key identifier: 10:15:22:43:7D:A0:BF:3F:3E:DA:D2:01:70:0B:69:B0:22:73:C8:89 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 49151A3F7335F3715EDF6DED646E7871B629724C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:15:1a:3f:73:35:f3:71:5e:df:6d:ed:64:6e:78:71:b6:29:72:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=ae6cf6013cdb8204cbc853654aa336210cc191b2f74ba2c45c9503a49f227254, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d8:32:86:11:32:61:32:0b:67:89:75:9f:d1: f4:60:af:60:69:f3:79:ee:f2:71:18:04:bc:32:20: 74:af:e4:c5:19:d3:9c:94:f8:02:2b:d2:07:7f:9a: ff:b6:7d:f0:53:b7:ff:58:a8:75:d1:80:ec:d4:55: f5:4e:70:fa:a0:8f:9f:0f:a3:e2:ab:45:2e:8c:1b: e1:33:46:6b:ee:93:23:7d:86:77:39:af:92:95:98: 3c:2b:93:13:5e:db:97:ab:85:7d:da:90:68:e6:09: 1f:5d:19:4b:b0:c1:fc:32:99:91:38:80:45:fb:6d: 75:7d:3f:a9:8e:32:97:f8:1c:a3:ee:af:d0:00:86: ce:46:4e:28:d2:ee:fb:c7:a7:c2:79:90:f6:11:2f: 5a:66:db:1c:13:6e:a4:a1:7a:14:65:2b:bd:c4:db: 28:71:a8:89:c8:d4:3b:9a:7e:7a:cf:6f:bb:90:d5: de:01:67:08:8f:e1:0b:7d:da:02:a4:3d:a9:f1:b7: c5:07:ed:d3:6f:a7:8e:5d:0e:24:5d:6f:e8:3e:3f: 76:5d:8c:6f:14:68:1e:78:9a:9d:9f:67:2b:ed:79: 3d:dd:9f:ac:eb:04:30:d5:a8:f3:16:1e:15:d0:e5: 4c:60:52:c1:f1:09:31:3c:33:d0:68:61:12:a1:53: 94:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:15:22:43:7D:A0:BF:3F:3E:DA:D2:01:70:0B:69:B0:22:73:C8:89 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:9000::/40 Signature Algorithm: sha256WithRSAEncryption 8c:14:70:2d:a4:31:b1:8a:0e:99:a6:32:77:7c:e6:4e:04:40: e5:af:92:b9:04:e8:ad:bb:44:33:19:38:d4:3b:2e:c8:68:e3: 06:a4:4a:72:58:d3:2c:3d:27:c3:de:77:e6:0b:de:ee:1e:e1: 04:c5:6d:49:46:87:ff:e3:38:79:9f:f3:58:28:ea:50:16:0d: 90:b1:96:41:a9:cd:61:43:cf:d4:5e:d2:ad:52:d4:cd:7e:ac: f9:0b:9e:e7:ac:56:9c:9e:be:70:e9:60:d0:1e:c6:45:e1:92: 10:f2:54:25:cd:44:03:5d:0b:12:59:f6:0f:38:91:fe:53:ef: cc:d4:b3:bd:0e:07:70:83:9d:a4:62:25:11:14:a2:7e:b4:a2: 5d:27:30:22:1a:ef:a6:1a:8b:db:46:32:62:b8:7d:15:b6:b5: f2:4a:a2:d1:af:9a:cf:3b:f9:94:b6:0b:87:d5:ea:17:af:64: 3c:0e:06:a4:99:75:37:25:5e:df:22:e6:ca:6e:7a:03:80:0f: 38:20:1e:73:2c:1b:a7:8c:1a:82:54:31:fc:80:43:7d:22:60: 4d:68:b3:7a:fd:69:ac:57:17:b1:bb:d2:9b:17:fa:bc:58:c8: 32:23:b1:4e:98:ae:fa:52:60:d9:3c:da:08:3f:00:56:9c:8d: 4e:53:de:9e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUSRUaP3M183Fe323tZG54cbYpckwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAYWU2Y2Y2MDEzY2RiODIwNGNiYzg1 MzY1NGFhMzM2MjEwY2MxOTFiMmY3NGJhMmM0NWM5NTAzYTQ5ZjIyNzI1NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtgyhhEyYTILZ4l1n9H0YK9gafN5 7vJxGAS8MiB0r+TFGdOclPgCK9IHf5r/tn3wU7f/WKh10YDs1FX1TnD6oI+fD6Pi q0UujBvhM0Zr7pMjfYZ3Oa+SlZg8K5MTXtuXq4V92pBo5gkfXRlLsMH8MpmROIBF +211fT+pjjKX+Byj7q/QAIbORk4o0u77x6fCeZD2ES9aZtscE26koXoUZSu9xNso caiJyNQ7mn56z2+7kNXeAWcIj+ELfdoCpD2p8bfFB+3Tb6eOXQ4kXW/oPj92XYxv FGgeeJqdn2cr7Xk93Z+s6wQw1ajzFh4V0OVMYFLB8QkxPDPQaGESoVOUIwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBAVIkN9oL8/PtrSAXALabAic8iJMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjNWQyMTI5LWM2NWMtNDQxOS1hNDgwLWI0ODAyODcwM2Q5Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOJAwDQYJKoZIhvcNAQELBQADggEBAIwUcC2kMbGKDpmmMnd8 5k4EQOWvkrkE6K27RDMZONQ7Lsho4wakSnJY0yw9J8Ped+YL3u4e4QTFbUlGh//j OHmf81go6lAWDZCxlkGpzWFDz9Re0q1S1M1+rPkLnuesVpyevnDpYNAexkXhkhDy VCXNRANdCxJZ9g84kf5T78zUs70OB3CDnaRiJREUon60ol0nMCIa76Yai9tGMmK4 fRW2tfJKotGvms87+ZS2C4fV6hevZDwOBqSZdTclXt8i5spuegOADzggHnMsG6eM GoJUMfyAQ30iYE1os3r9aaxXF7G70psX+rxYyDIjsU6YrvpSYNk82gg/AFacjU5T 3p4= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:15 2024 by rpki-client on console-fra.rpki-client.org