$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa File: 6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa (raw, json) Hash identifier: QM5mnyKjNDv92k4/eb85ruQ7GqNnYL2B2jpe6l+aHhU= Subject key identifier: 9B:2C:C7:E8:1D:3F:D5:09:9D:29:D5:35:47:F1:1D:76:87:D1:F4:78 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 07EC7F873DB3A26BEB52B2C795EF4FE0878D0326 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafe:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ec:7f:87:3d:b3:a2:6b:eb:52:b2:c7:95:ef:4f:e0:87:8d:03:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=21d0fb72c8a306fc3651e90a48f1272637718e3d703427307ff42488b093935c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8e:22:86:34:ee:10:01:bd:6e:04:3b:20:ae: ad:cd:65:60:71:93:00:2c:50:cf:a8:0d:e4:a3:18: e4:a3:53:23:b3:c5:0f:f0:8a:71:6c:3c:53:c1:5f: bb:5f:a9:84:f7:ab:39:c2:1f:04:3b:1a:3e:90:9e: 3d:b5:b6:49:bb:75:87:90:74:67:0b:e7:fd:fd:66: 82:54:6e:e2:ce:05:43:06:f3:67:c7:0c:6b:22:26: 37:07:99:fc:fb:ed:b3:ad:43:84:77:62:3b:b0:2e: c1:4a:cb:bb:1f:c6:cf:f4:c3:86:33:41:26:eb:9b: 6d:ab:ff:4d:d2:8b:84:46:45:63:52:de:2a:16:ed: 4f:14:5e:be:d2:d3:0e:15:4c:19:e0:f6:8b:26:13: 28:46:42:e2:fa:20:ee:e5:f3:5c:89:58:92:64:05: f3:35:1a:15:e6:c4:00:96:b9:df:ca:e2:27:31:b9: d5:45:7e:ec:28:96:10:eb:ca:59:59:6c:d0:c5:cd: 75:5d:61:43:ef:f2:2b:6c:3a:37:74:ac:d4:ae:ce: 75:78:e2:c9:b7:06:42:94:8e:47:b1:3b:79:d0:67: 38:2b:00:1f:66:d5:3b:78:92:a0:78:55:dc:b9:5c: 31:c4:a2:74:c8:e2:e8:04:7e:ca:61:b1:bf:f8:16: c6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2C:C7:E8:1D:3F:D5:09:9D:29:D5:35:47:F1:1D:76:87:D1:F4:78 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafe:4800::/40 Signature Algorithm: sha256WithRSAEncryption 80:69:4b:10:c4:bf:5c:2b:33:68:12:aa:ad:0e:d9:9e:49:28: 0c:28:a3:7f:f9:59:52:a4:cf:a5:34:27:33:8c:b5:85:d6:09: 29:20:3c:b8:4a:cf:d9:b7:3d:29:f1:b1:dd:4c:42:88:f0:a9: 3e:45:76:ce:07:3b:d2:b4:79:f1:c8:77:19:86:da:b8:fd:da: 04:57:08:a9:50:2b:38:82:fe:0a:2b:0c:80:38:12:a2:57:30: ed:4e:22:e2:fd:06:26:9a:f3:58:6f:48:1f:91:d0:f7:79:4d: 5b:10:3a:46:12:cf:3c:06:71:2b:89:d7:11:36:eb:4b:56:1b: 0e:64:e3:f4:37:ad:7c:b9:d3:23:57:79:64:2d:b6:f7:b6:42: c2:9d:11:bb:4a:03:f1:6f:e8:6a:4e:0e:70:c1:5d:cf:a1:1e: d0:8e:0d:0d:e0:1b:30:95:38:ab:63:f8:be:dd:76:03:89:00: 02:8d:dd:2c:92:f3:50:34:0d:6d:16:5b:92:ba:43:47:0c:37: db:65:36:c7:74:be:f7:bb:c6:6e:34:a1:8f:8f:d5:d0:c1:5e: e8:ef:2f:cd:4b:db:a1:a6:1c:3d:51:8d:d5:3d:85:3e:63:a1: d0:28:21:dc:ca:dc:e0:a7:7e:56:2b:0b:97:27:a9:3a:d0:42: 38:6e:9a:e4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUB+x/hz2zomvrUrLHle9P4IeNAyYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAMjFkMGZiNzJjOGEzMDZmYzM2NTFl OTBhNDhmMTI3MjYzNzcxOGUzZDcwMzQyNzMwN2ZmNDI0ODhiMDkzOTM1YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuo4ihjTuEAG9bgQ7IK6tzWVgcZMA LFDPqA3koxjko1Mjs8UP8IpxbDxTwV+7X6mE96s5wh8EOxo+kJ49tbZJu3WHkHRn C+f9/WaCVG7izgVDBvNnxwxrIiY3B5n8++2zrUOEd2I7sC7BSsu7H8bP9MOGM0Em 65ttq/9N0ouERkVjUt4qFu1PFF6+0tMOFUwZ4PaLJhMoRkLi+iDu5fNciViSZAXz NRoV5sQAlrnfyuInMbnVRX7sKJYQ68pZWWzQxc11XWFD7/IrbDo3dKzUrs51eOLJ twZClI5HsTt50Gc4KwAfZtU7eJKgeFXcuVwxxKJ0yOLoBH7KYbG/+BbGzQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJssx+gdP9UJnSnVNUfxHXaH0fR4MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZkNzhhZGJkLTgyNjMtNDZiYS05YzZiLTRjM2VkNDU2ZjQxMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/kgwDQYJKoZIhvcNAQELBQADggEBAIBpSxDEv1wrM2gSqq0O 2Z5JKAwoo3/5WVKkz6U0JzOMtYXWCSkgPLhKz9m3PSnxsd1MQojwqT5Fds4HO9K0 efHIdxmG2rj92gRXCKlQKziC/gorDIA4EqJXMO1OIuL9Biaa81hvSB+R0Pd5TVsQ OkYSzzwGcSuJ1xE260tWGw5k4/Q3rXy50yNXeWQttve2QsKdEbtKA/Fv6GpODnDB Xc+hHtCODQ3gGzCVOKtj+L7ddgOJAAKN3SyS81A0DW0WW5K6Q0cMN9tlNsd0vve7 xm40oY+P1dDBXujvL81L26GmHD1RjdU9hT5jodAoIdzK3OCnflYrC5cnqTrQQjhu muQ= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:40 2024 by rpki-client on console-ams.rpki-client.org