$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d102807-40dd-40e5-afc4-d585427a8404.roa File: 6d102807-40dd-40e5-afc4-d585427a8404.roa (raw, json) Hash identifier: AYuFrG4fYZTEZ94HKLXmIZPdPH5JMTi1tydlxlsitAM= Subject key identifier: 13:4B:C1:9C:8D:ED:94:35:6A:6D:68:F6:E7:63:1C:19:A1:10:8D:E9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3F8BFB59CCDC9D67A9676921D652D648CA54F9C1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d102807-40dd-40e5-afc4-d585427a8404.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da30:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8b:fb:59:cc:dc:9d:67:a9:67:69:21:d6:52:d6:48:ca:54:f9:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=297d48edf9767f65a78ebf15f7d92b10d2b0f651bee9a4571dab3a12ed570274, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:73:b1:8d:6b:ea:f4:67:19:91:04:ec:dc:6f: f3:21:dc:3d:97:9e:3f:c9:74:a7:af:47:07:d9:9f: cf:d4:fc:bd:ec:e6:de:70:77:51:fc:a6:b4:c6:52: 81:ad:41:5d:11:56:2a:fb:b3:97:33:22:7e:34:d5: 95:85:a9:c0:61:50:6d:52:b6:dd:8b:1d:39:f5:3b: 61:f1:a3:34:b5:11:29:35:bf:39:14:60:e5:c7:8c: 4c:50:d3:ef:6b:c1:c4:5f:3b:bc:53:f6:26:32:5f: 0e:83:47:8c:69:fc:4c:35:52:c0:18:30:ee:76:55: 4a:22:56:69:1e:d0:cf:64:57:df:ab:9e:62:21:73: 5d:fe:3b:80:14:6e:69:8d:c9:60:86:6e:96:b0:cc: 3d:8a:26:fa:ab:be:b0:c5:45:43:40:8b:a2:3f:10: b3:cb:eb:f3:4c:79:6f:3b:17:d2:59:61:52:26:54: 92:f1:30:45:0e:9a:42:8d:db:ff:85:a0:f6:02:a7: 1c:b0:e4:75:a2:18:27:0a:1f:1c:a4:7a:55:0a:d4: 81:39:2c:42:04:cc:89:44:26:fb:77:a0:1b:c5:0d: 23:71:69:e8:93:d6:44:70:cd:76:70:b4:75:86:be: 49:e1:e2:99:48:09:78:55:62:ab:aa:c3:64:99:eb: 72:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:4B:C1:9C:8D:ED:94:35:6A:6D:68:F6:E7:63:1C:19:A1:10:8D:E9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d102807-40dd-40e5-afc4-d585427a8404.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da30:2800::/40 Signature Algorithm: sha256WithRSAEncryption 00:00:c2:da:2c:f5:0f:a9:e4:14:d4:2c:9d:96:4c:2f:0b:50: e3:f8:b2:17:44:5c:f1:a6:6a:7a:30:1f:34:06:ed:a2:9d:26: 9a:0e:9c:c2:06:65:7e:a2:ce:fd:c1:be:18:3b:17:88:e1:a7: ec:ef:32:1a:e3:a9:6e:da:31:09:d2:32:7b:fc:ba:57:9c:ea: 2e:6b:8e:6b:91:79:bd:10:ae:33:49:c8:22:c9:0d:6f:27:c6: 05:45:04:34:11:79:ab:f7:a8:a9:f7:82:ef:4a:f2:32:d5:0e: 20:00:0f:73:bb:6f:57:93:43:27:57:83:ad:47:94:1e:54:52: 5c:38:5f:1c:f6:1e:e2:bd:86:a7:9b:a0:9b:09:a0:d6:57:df: 40:27:6e:ec:2d:60:28:99:5b:f1:fe:ab:e2:dc:84:8c:6a:7c: 87:7b:45:f5:6c:d9:06:43:58:78:02:e9:64:94:8b:ff:62:ad: 27:10:96:bb:c4:32:c6:82:f7:c9:bf:83:49:3f:79:87:ad:74: 72:69:66:30:46:4c:46:73:1d:03:2c:9a:eb:6c:70:f1:cb:5c: 90:36:75:9f:b6:8c:eb:86:b5:ce:70:30:c4:48:00:72:c9:ac: fb:02:fd:83:b7:67:73:89:12:c7:b9:e1:de:33:3b:40:ef:e3: b3:2f:35:4e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUP4v7WczcnWepZ2kh1lLWSMpU+cEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNAMjk3ZDQ4ZWRmOTc2N2Y2NWE3OGVi ZjE1ZjdkOTJiMTBkMmIwZjY1MWJlZTlhNDU3MWRhYjNhMTJlZDU3MDI3NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1nOxjWvq9GcZkQTs3G/zIdw9l54/ yXSnr0cH2Z/P1Py97ObecHdR/Ka0xlKBrUFdEVYq+7OXMyJ+NNWVhanAYVBtUrbd ix059Tth8aM0tREpNb85FGDlx4xMUNPva8HEXzu8U/YmMl8Og0eMafxMNVLAGDDu dlVKIlZpHtDPZFffq55iIXNd/juAFG5pjclghm6WsMw9iib6q76wxUVDQIuiPxCz y+vzTHlvOxfSWWFSJlSS8TBFDppCjdv/haD2AqccsOR1ohgnCh8cpHpVCtSBOSxC BMyJRCb7d6AbxQ0jcWnok9ZEcM12cLR1hr5J4eKZSAl4VWKrqsNkmetydQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBNLwZyN7ZQ1am1o9udjHBmhEI3pMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZkMTAyODA3LTQwZGQtNDBlNS1hZmM0LWQ1ODU0MjdhODQwNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaMCgwDQYJKoZIhvcNAQELBQADggEBAAAAwtos9Q+p5BTULJ2W TC8LUOP4shdEXPGmanowHzQG7aKdJpoOnMIGZX6izv3Bvhg7F4jhp+zvMhrjqW7a MQnSMnv8ulec6i5rjmuReb0QrjNJyCLJDW8nxgVFBDQReav3qKn3gu9K8jLVDiAA D3O7b1eTQydXg61HlB5UUlw4Xxz2HuK9hqeboJsJoNZX30AnbuwtYCiZW/H+q+Lc hIxqfId7RfVs2QZDWHgC6WSUi/9irScQlrvEMsaC98m/g0k/eYetdHJpZjBGTEZz HQMsmutscPHLXJA2dZ+2jOuGtc5wMMRIAHLJrPsC/YO3Z3OJEse54d4zO0Dv47Mv NU4= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:35 2024 by rpki-client on console-fra.rpki-client.org