$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa File: 6c5d2129-c65c-4419-a480-b48028703d92.roa (raw, json) Hash identifier: fmtjjmKkWXwmfWgapkS+fnOe0ytEAtCy4OupDN+ZXFQ= Subject key identifier: F3:B4:4B:AA:08:71:81:C1:B0:F6:B7:8B:ED:D9:54:79:E2:E2:E2:DE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7C421B259B1D6A1E38A80A6542C18A55CAE33E49 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:42:1b:25:9b:1d:6a:1e:38:a8:0a:65:42:c1:8a:55:ca:e3:3e:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=b21ec636e3f6e3e407d15ac36754747bfe5a6cd93984a48f1d0a33859774eb5e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:4d:36:0f:1c:b7:e7:75:22:0d:fd:a0:ca: 9c:04:5a:e4:0b:c8:83:e2:f0:50:cc:43:06:72:77: f0:b5:6c:91:98:ce:82:fe:78:be:ec:73:c8:56:38: 30:cc:40:27:14:40:3d:45:d4:bf:fa:75:0a:b7:e3: 73:b6:6f:37:4e:11:94:91:d3:77:db:ec:c2:35:f7: 9b:33:c6:7f:2e:8d:16:37:9c:20:20:9f:5e:46:df: 0c:21:68:77:f7:3c:15:1c:a6:47:17:e4:60:22:51: 6b:2d:aa:ea:cc:0f:ce:f8:46:fd:95:18:b0:66:6a: 22:73:14:59:40:b5:b4:dc:b5:45:01:d8:8f:04:37: a1:26:c3:42:eb:57:e9:6c:70:48:92:ee:6b:9d:7e: 39:5d:59:1f:5c:9d:62:e4:b6:2e:f4:da:35:87:5e: 67:98:79:1f:2e:bb:43:12:aa:42:91:04:05:8d:a3: 56:08:e2:56:01:e7:1d:60:41:9c:83:61:8e:6a:0c: 77:e0:c6:66:59:13:bf:89:99:0f:dc:9a:bd:40:40: d5:7a:c9:ad:53:3b:e3:16:35:8a:bf:65:36:f2:9a: ca:52:00:5f:53:c9:c4:0e:1b:ab:89:b1:87:34:50: be:7c:55:af:c0:6d:54:c5:c3:d3:b0:bf:05:d9:6a: 13:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B4:4B:AA:08:71:81:C1:B0:F6:B7:8B:ED:D9:54:79:E2:E2:E2:DE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:9000::/40 Signature Algorithm: sha256WithRSAEncryption 47:ae:6d:74:1e:7a:e2:7e:3f:53:50:e9:2c:c0:e8:0a:ec:74: 7f:fc:a5:88:74:eb:e2:84:d0:c1:d1:53:bf:5b:6f:13:89:1d: d1:69:68:f8:57:bd:ad:3c:7a:ef:e3:92:4d:49:22:95:9c:92: 76:30:36:d1:96:94:bf:9e:c0:ff:d3:4d:d1:8d:2c:13:25:a8: 94:a9:54:ef:0e:49:f6:ac:99:3b:96:d8:17:90:77:f8:3e:c6: 16:97:dc:d2:23:1d:09:fe:c3:39:55:46:85:b3:5e:cf:55:fc: 9b:40:29:78:c1:0e:e2:2f:b6:e8:4c:52:2f:ed:26:22:d9:2b: 05:94:c2:b0:d5:9a:2f:83:5e:58:a5:1f:48:a0:a4:ac:1f:a6: 20:14:ab:a9:f1:8d:91:42:0e:4b:43:35:69:24:71:d7:93:7f: e9:88:ef:4d:8d:4b:83:80:8f:2c:43:71:97:b8:8b:fc:cf:87: 70:e2:af:f7:aa:89:6b:fd:df:7d:69:3a:be:53:f6:41:9b:91: 97:9f:26:3b:b9:25:fd:47:b2:b1:59:a5:ac:ac:e6:55:24:65: 4a:56:ca:f3:3e:b4:27:a7:33:2f:69:40:40:a7:4f:b3:12:b8: bd:f8:c7:88:ea:f0:9b:e9:ab:60:4d:bc:56:2e:84:d6:10:69: c4:1c:95:be -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUfEIbJZsdah44qAplQsGKVcrjPkkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNAYjIxZWM2MzZlM2Y2ZTNlNDA3ZDE1 YWMzNjc1NDc0N2JmZTVhNmNkOTM5ODRhNDhmMWQwYTMzODU5Nzc0ZWI1ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvz9NNg8ct+d1Ig39oMqcBFrkC8iD 4vBQzEMGcnfwtWyRmM6C/ni+7HPIVjgwzEAnFEA9RdS/+nUKt+Nztm83ThGUkdN3 2+zCNfebM8Z/Lo0WN5wgIJ9eRt8MIWh39zwVHKZHF+RgIlFrLarqzA/O+Eb9lRiw ZmoicxRZQLW03LVFAdiPBDehJsNC61fpbHBIku5rnX45XVkfXJ1i5LYu9No1h15n mHkfLrtDEqpCkQQFjaNWCOJWAecdYEGcg2GOagx34MZmWRO/iZkP3Jq9QEDVesmt UzvjFjWKv2U28prKUgBfU8nEDhuribGHNFC+fFWvwG1UxcPTsL8F2WoTWQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPO0S6oIcYHBsPa3i+3ZVHni4uLeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjNWQyMTI5LWM2NWMtNDQxOS1hNDgwLWI0ODAyODcwM2Q5Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOJAwDQYJKoZIhvcNAQELBQADggEBAEeubXQeeuJ+P1NQ6SzA 6ArsdH/8pYh06+KE0MHRU79bbxOJHdFpaPhXva08eu/jkk1JIpWcknYwNtGWlL+e wP/TTdGNLBMlqJSpVO8OSfasmTuW2BeQd/g+xhaX3NIjHQn+wzlVRoWzXs9V/JtA KXjBDuIvtuhMUi/tJiLZKwWUwrDVmi+DXlilH0igpKwfpiAUq6nxjZFCDktDNWkk cdeTf+mI702NS4OAjyxDcZe4i/zPh3Dir/eqiWv9331pOr5T9kGbkZefJju5Jf1H srFZpays5lUkZUpWyvM+tCenMy9pQECnT7MSuL34x4jq8Jvpq2BNvFYuhNYQacQc lb4= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:15 2024 by rpki-client on console-fra.rpki-client.org