$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c826f56-d1e7-4f1c-9da9-d1e523c4c28f.roa File: 6c826f56-d1e7-4f1c-9da9-d1e523c4c28f.roa (raw, json) Hash identifier: 0/rQF9Mag5epi/bf1v9NvsrCnvGgMWrwPL//exPLRMg= Subject key identifier: D4:C1:27:59:42:74:19:FA:CA:1C:23:D4:83:CE:11:A8:19:A7:73:83 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0C2A13EDF37081C950F5F476E34E417785A2BB68 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c826f56-d1e7-4f1c-9da9-d1e523c4c28f.roa Signing time: Wed 20 Nov 2024 00:00:00 +0000 ROA not before: Wed 20 Nov 2024 00:00:00 +0000 ROA not after: Wed 25 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 27.0.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:2a:13:ed:f3:70:81:c9:50:f5:f4:76:e3:4e:41:77:85:a2:bb:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 20 00:00:00 2024 GMT Not After : Dec 25 23:59:59 2024 GMT Subject: serialNumber=dac94d67a306dd0fda230f0af468ccb1d621f5a572af11852096620ddb408611, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c6:32:7b:65:cf:d8:cd:88:75:77:f5:4a:81: 37:5b:2e:23:99:eb:a9:67:43:2f:16:47:49:0a:a3: 68:9c:2c:cd:2e:dd:59:4d:b9:f0:61:0c:a8:e2:96: 0a:d6:2a:3b:c3:2b:f2:ec:18:8e:ec:af:73:31:f7: cb:dd:c1:a2:36:91:81:f6:e4:0e:4b:2a:48:ec:9f: c7:47:d1:d3:e3:25:ae:57:c9:05:59:37:81:d1:b8: b2:5d:5a:69:fc:b8:9d:e6:9f:71:60:d9:b3:aa:53: f7:ce:b2:47:9f:82:62:cf:20:78:0f:1e:20:3a:1b: e7:91:8d:0d:21:9e:ae:5f:3a:6c:34:9a:f0:74:73: 72:72:5b:71:77:c3:04:72:ca:ce:65:ca:2f:87:58: 68:f0:b1:4f:76:56:bd:45:fa:96:8d:e8:c0:8a:39: 69:3e:65:06:86:58:fc:df:d7:2a:fa:db:43:c1:83: 03:dc:fc:15:c1:7a:7b:7c:17:8f:ba:63:e5:bd:e3: 25:b5:67:21:74:f7:8a:5e:fb:33:30:4a:5d:3c:26: 20:c4:f4:2d:59:74:cd:3c:f3:58:a9:8b:90:d1:94: 45:40:0e:d0:59:ee:f1:62:1c:3d:d0:04:77:44:6e: a7:26:5a:c1:d0:c8:e0:a9:98:48:64:0d:d9:11:5f: a9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C1:27:59:42:74:19:FA:CA:1C:23:D4:83:CE:11:A8:19:A7:73:83 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c826f56-d1e7-4f1c-9da9-d1e523c4c28f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.0.0/22 Signature Algorithm: sha256WithRSAEncryption 00:5a:c7:b9:4a:3d:e1:94:39:0c:93:f7:4b:c7:a7:12:55:88: 48:72:80:56:f9:4d:1d:01:f9:00:17:c7:30:96:9d:c2:d2:bc: b1:d0:a7:fa:3f:7f:9d:e4:97:1c:3b:bb:ea:07:92:ce:69:cf: 97:4a:41:d5:6d:91:25:9d:8d:e9:bd:52:3c:8b:28:ad:59:5c: 0a:4b:7e:89:32:fa:72:63:74:9a:71:92:40:6d:5f:21:11:c9: 3f:c0:66:71:ad:fe:3c:e0:06:22:e4:24:d5:41:c0:0f:35:35: 2b:13:08:17:ba:50:bb:d9:22:22:75:df:ce:a7:0a:f2:1f:21: f2:a2:1c:83:1d:56:26:91:97:bf:c1:af:73:89:ba:db:93:25: 09:b8:4d:92:6a:b7:35:c7:18:ba:c1:73:e0:30:7b:6a:22:54: d0:f1:11:bf:c9:65:9e:00:1a:9a:7b:bd:2c:24:2b:eb:26:15: 5f:68:51:47:5e:dd:3a:e8:22:85:4a:b3:b3:09:8f:51:52:c9: 93:3f:fe:bb:df:a1:ef:34:17:4e:61:3d:4b:fd:62:97:f6:ad: f4:e0:e8:ba:de:ba:6f:d1:d3:fb:ae:81:ce:03:d2:59:33:76: ad:9a:47:5c:37:6a:e0:b6:29:e6:6c:69:75:5a:e1:dd:ac:65: dc:c9:2a:f5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUDCoT7fNwgclQ9fR2405Bd4Wiu2gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMDAwMDAwMFoX DTI0MTIyNTIzNTk1OVowejFJMEcGA1UEBRNAZGFjOTRkNjdhMzA2ZGQwZmRhMjMw ZjBhZjQ2OGNjYjFkNjIxZjVhNTcyYWYxMTg1MjA5NjYyMGRkYjQwODYxMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMYye2XP2M2IdXf1SoE3Wy4jmeup Z0MvFkdJCqNonCzNLt1ZTbnwYQyo4pYK1io7wyvy7BiO7K9zMffL3cGiNpGB9uQO SypI7J/HR9HT4yWuV8kFWTeB0biyXVpp/Lid5p9xYNmzqlP3zrJHn4JizyB4Dx4g OhvnkY0NIZ6uXzpsNJrwdHNycltxd8MEcsrOZcovh1ho8LFPdla9RfqWjejAijlp PmUGhlj839cq+ttDwYMD3PwVwXp7fBePumPlveMltWchdPeKXvszMEpdPCYgxPQt WXTNPPNYqYuQ0ZRFQA7QWe7xYhw90AR3RG6nJlrB0MjgqZhIZA3ZEV+pqwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNTBJ1lCdBn6yhwj1IPOEagZp3ODMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjODI2ZjU2LWQxZTctNGYxYy05ZGE5LWQxZTUyM2M0YzI4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCGwAAMA0GCSqGSIb3DQEBCwUAA4IBAQAAWse5Sj3hlDkMk/dLx6cS VYhIcoBW+U0dAfkAF8cwlp3C0ryx0Kf6P3+d5JccO7vqB5LOac+XSkHVbZElnY3p vVI8iyitWVwKS36JMvpyY3SacZJAbV8hEck/wGZxrf484AYi5CTVQcAPNTUrEwgX ulC72SIidd/OpwryHyHyohyDHVYmkZe/wa9zibrbkyUJuE2Sarc1xxi6wXPgMHtq IlTQ8RG/yWWeABqae70sJCvrJhVfaFFHXt066CKFSrOzCY9RUsmTP/6736HvNBdO YT1L/WKX9q304Oi63rpv0dP7roHOA9JZM3atmkdcN2rgtinmbGl1WuHdrGXcySr1 -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:35 2024 by rpki-client on console-fra.rpki-client.org