$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6cd8a6e1-2c96-4d0a-bf8e-50e62884001f.roa File: 6cd8a6e1-2c96-4d0a-bf8e-50e62884001f.roa (raw, json) Hash identifier: ld7XKrApJKaBfs7+rzcafrv7cIJauBl2+RM8Li0+FOo= Subject key identifier: 05:A2:38:10:E7:63:EA:0F:E4:20:C5:CD:4D:6E:C7:87:E0:59:76:CB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2FD4B87F1B98903A7BE93E80C790BC659E4B34EE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6cd8a6e1-2c96-4d0a-bf8e-50e62884001f.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d4:b8:7f:1b:98:90:3a:7b:e9:3e:80:c7:90:bc:65:9e:4b:34:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=01743d9c9a42581bb1c4439a3230998918c87f4e5e142b13085d6c7df1620833, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d3:4e:00:74:32:25:be:4a:98:71:a6:9f:a3: d9:35:0d:4c:d1:fc:c0:c0:25:b1:ef:bd:a7:f0:86: 12:4a:62:aa:6c:9d:b8:6f:ce:e9:59:2f:fa:af:d4: ae:6c:2d:33:75:46:a0:c2:ca:14:5a:6a:42:45:99: a7:6c:37:d4:78:5c:36:1a:ed:04:75:f7:73:49:3d: 03:e4:76:28:ae:25:e1:08:11:d2:6a:07:0f:be:cc: ae:85:b3:5c:ce:a0:2b:bd:ad:1d:21:cb:20:5b:78: 79:56:7a:b5:44:f9:d1:cf:a1:5b:b0:01:4f:a7:4e: ec:23:d9:79:a4:4a:f7:1e:52:43:1d:80:64:f0:91: 87:3d:4c:ff:0d:5d:22:a2:6b:a1:22:ca:7f:97:96: 5c:e7:f5:ce:d5:d1:ea:9f:1d:78:b3:7f:38:4c:62: 33:17:c9:56:c4:f8:71:52:1b:77:37:e6:22:a2:21: 48:f8:46:a1:38:62:f0:c6:ba:45:29:c8:c2:2c:11: 45:3d:db:d8:98:80:e0:0b:9b:7e:48:a6:fd:9d:3b: 47:81:80:95:36:22:75:09:13:da:16:06:ae:68:2e: 77:9b:37:65:e5:33:5a:16:9b:b9:6a:1d:70:a8:50: b5:6a:47:60:d6:17:02:5f:0c:f9:57:88:af:b9:2a: 5c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A2:38:10:E7:63:EA:0F:E4:20:C5:CD:4D:6E:C7:87:E0:59:76:CB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6cd8a6e1-2c96-4d0a-bf8e-50e62884001f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:8000::/40 Signature Algorithm: sha256WithRSAEncryption 51:65:ba:9f:3c:85:c2:0f:5b:50:78:ca:bd:31:a8:93:71:19: 1c:20:ef:1c:f2:45:2e:2d:64:57:3e:54:3e:53:04:1f:26:5b: 46:d8:8c:f2:c3:60:c2:fc:51:1b:ca:5f:55:3c:af:5e:10:35: a3:3a:63:ab:c5:2b:ec:07:a2:3b:5a:ae:71:9d:eb:84:9e:a6: 61:ae:5b:2b:cb:09:97:fd:d5:85:08:ef:68:46:59:2f:42:b6: 97:98:d9:26:2f:3a:80:aa:70:d3:27:99:13:b0:5a:b6:a7:9f: 25:fb:61:2a:af:fe:29:da:18:14:70:e7:ca:ed:45:c0:66:fd: ce:39:27:25:f3:3b:c5:81:b4:71:8f:0f:39:d2:45:e3:a0:d0: c4:00:da:84:56:58:47:ca:1d:81:76:3e:24:a9:f3:7f:45:c8: 08:6e:3f:fd:05:3a:16:a3:1a:9d:b5:1a:50:05:3a:52:a4:d3: c7:63:bd:84:b5:af:6d:4e:89:45:38:6d:a2:b4:ef:ef:da:14: 1b:0e:9f:0b:7e:33:9e:8a:0e:2f:f3:69:c6:c5:da:4a:d2:c9: 4d:75:17:aa:27:3e:2b:11:75:cf:3a:e5:8f:90:9b:6e:70:54: d0:db:3b:10:d8:3d:41:0e:db:c3:15:1f:90:99:6c:ac:15:66: 11:45:84:aa -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUL9S4fxuYkDp76T6Ax5C8ZZ5LNO4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNAMDE3NDNkOWM5YTQyNTgxYmIxYzQ0 MzlhMzIzMDk5ODkxOGM4N2Y0ZTVlMTQyYjEzMDg1ZDZjN2RmMTYyMDgzMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9NOAHQyJb5KmHGmn6PZNQ1M0fzA wCWx772n8IYSSmKqbJ24b87pWS/6r9SubC0zdUagwsoUWmpCRZmnbDfUeFw2Gu0E dfdzST0D5HYoriXhCBHSagcPvsyuhbNczqArva0dIcsgW3h5Vnq1RPnRz6FbsAFP p07sI9l5pEr3HlJDHYBk8JGHPUz/DV0iomuhIsp/l5Zc5/XO1dHqnx14s384TGIz F8lWxPhxUht3N+YioiFI+EahOGLwxrpFKcjCLBFFPdvYmIDgC5t+SKb9nTtHgYCV NiJ1CRPaFgauaC53mzdl5TNaFpu5ah1wqFC1akdg1hcCXwz5V4ivuSpcbwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAWiOBDnY+oP5CDFzU1ux4fgWXbLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjZDhhNmUxLTJjOTYtNGQwYS1iZjhlLTUwZTYyODg0MDAxZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8oAwDQYJKoZIhvcNAQELBQADggEBAFFlup88hcIPW1B4yr0x qJNxGRwg7xzyRS4tZFc+VD5TBB8mW0bYjPLDYML8URvKX1U8r14QNaM6Y6vFK+wH ojtarnGd64SepmGuWyvLCZf91YUI72hGWS9CtpeY2SYvOoCqcNMnmROwWrannyX7 YSqv/inaGBRw58rtRcBm/c45JyXzO8WBtHGPDznSReOg0MQA2oRWWEfKHYF2PiSp 839FyAhuP/0FOhajGp21GlAFOlKk08djvYS1r21OiUU4baK07+/aFBsOnwt+M56K Di/zacbF2krSyU11F6onPisRdc865Y+Qm25wVNDbOxDYPUEO28MVH5CZbKwVZhFF hKo= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:15 2024 by rpki-client on console-fra.rpki-client.org