$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa File: 6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa (raw, json) Hash identifier: 5douT0ycCuNM5v9rGkp2FVjikpU+K7OmRPZzdOK/STc= Subject key identifier: AC:A3:4E:5F:99:D9:85:94:8D:56:09:BE:44:B3:DB:C7:A9:7F:B3:48 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 79851758B1CAB547509012B0E55E05F28181C209 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa Signing time: Wed 01 May 2024 00:00:00 +0000 ROA not before: Wed 01 May 2024 00:00:00 +0000 ROA not after: Wed 05 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafe:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 15:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:85:17:58:b1:ca:b5:47:50:90:12:b0:e5:5e:05:f2:81:81:c2:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 1 00:00:00 2024 GMT Not After : Jun 5 23:59:59 2024 GMT Subject: serialNumber=2d98712a6f5b14c1693fd004799f08300fabc5dd738575a359630e32462e22db, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:47:8b:da:9c:da:e0:1f:93:62:60:b0:11:c3: 8a:46:91:d3:0d:54:c8:01:b4:69:c9:7b:d0:e6:27: 9a:1d:5f:83:5a:57:51:3e:cd:e6:f1:63:b9:ae:75: f5:11:19:81:d8:b4:a0:8f:6b:14:81:c8:c1:5a:25: d6:bb:bb:62:4e:3a:c9:4d:6e:8d:0d:bf:4b:9e:06: ac:7b:20:55:55:55:99:f2:45:df:2a:cf:38:03:25: 2c:0f:cc:d7:2e:41:5e:63:87:15:0d:55:d3:b4:eb: 33:61:33:2a:3e:1a:0c:88:fb:5a:e0:ad:19:40:d0: a3:a5:e8:df:94:c5:c5:e5:35:67:8f:1a:ad:72:16: 96:1d:67:56:90:f7:59:05:e6:7d:ec:e2:8f:b7:bd: 3b:1b:f7:f9:fc:ca:4e:7f:20:fd:28:d9:78:6d:a4: 4a:d8:ae:73:86:8f:ed:70:cf:ac:8a:5b:14:43:79: 7a:8d:f7:67:ee:2d:ea:e9:f4:55:8d:8f:3e:f2:bc: 28:16:65:1d:60:f1:73:2b:a8:f7:29:45:bc:da:54: a8:5b:e7:c2:27:75:9d:c7:86:2d:8e:83:a6:9a:84: 51:b0:9d:ef:fa:03:56:0e:9f:4f:0c:44:5c:00:8a: 0d:aa:3d:7f:fc:1c:9d:29:51:0a:ba:78:eb:2a:07: b1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A3:4E:5F:99:D9:85:94:8D:56:09:BE:44:B3:DB:C7:A9:7F:B3:48 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafe:4800::/40 Signature Algorithm: sha256WithRSAEncryption 08:6b:a0:df:57:64:66:88:63:4a:a4:67:4b:55:4a:19:c7:6a: af:45:f7:87:ec:00:c2:16:f3:e4:8b:a7:0b:ca:09:0f:13:ef: 88:0a:38:0d:d3:e0:8d:93:d5:d6:03:98:7f:20:10:c0:64:02: 1a:f6:aa:72:07:79:49:3f:30:90:6d:be:b0:2b:0e:b4:ab:dc: 83:4a:98:26:a8:0e:6d:d6:12:b2:3a:04:7a:d3:d6:82:4f:b9: 87:9d:fe:df:ef:f3:13:b1:02:bb:58:c1:4a:20:2b:9c:7b:c2: d6:94:14:df:d7:00:5c:8a:e4:6d:18:6c:b9:f1:f7:44:d2:1a: 29:e9:b5:74:c2:ce:b8:f9:8f:84:81:db:29:ba:57:de:97:91: 48:20:21:cb:e0:63:67:83:53:03:fc:75:b5:67:d6:46:b4:9a: eb:b3:02:93:2f:8f:76:6a:45:99:f5:d4:56:54:32:85:0c:5c: 11:58:90:09:cf:a3:d8:b6:60:ab:d0:73:ad:22:82:c0:8d:a0: f7:6d:fa:fa:6e:f3:4c:e6:64:c9:8c:be:a5:57:f7:41:6f:ba: 1e:a3:ed:30:f5:87:38:57:2e:4d:18:91:e4:c0:5d:e1:75:4f: a1:21:9e:ce:22:be:71:8a:29:92:af:d4:ba:eb:78:70:bd:3d: 16:e6:e0:b1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUeYUXWLHKtUdQkBKw5V4F8oGBwgkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDUwMTAwMDAwMFoX DTI0MDYwNTIzNTk1OVowejFJMEcGA1UEBRNAMmQ5ODcxMmE2ZjViMTRjMTY5M2Zk MDA0Nzk5ZjA4MzAwZmFiYzVkZDczODU3NWEzNTk2MzBlMzI0NjJlMjJkYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUeL2pza4B+TYmCwEcOKRpHTDVTI AbRpyXvQ5ieaHV+DWldRPs3m8WO5rnX1ERmB2LSgj2sUgcjBWiXWu7tiTjrJTW6N Db9LngaseyBVVVWZ8kXfKs84AyUsD8zXLkFeY4cVDVXTtOszYTMqPhoMiPta4K0Z QNCjpejflMXF5TVnjxqtchaWHWdWkPdZBeZ97OKPt707G/f5/MpOfyD9KNl4baRK 2K5zho/tcM+silsUQ3l6jfdn7i3q6fRVjY8+8rwoFmUdYPFzK6j3KUW82lSoW+fC J3Wdx4YtjoOmmoRRsJ3v+gNWDp9PDERcAIoNqj1//BydKVEKunjrKgexdwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKyjTl+Z2YWUjVYJvkSz28epf7NIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZkNzhhZGJkLTgyNjMtNDZiYS05YzZiLTRjM2VkNDU2ZjQxMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/kgwDQYJKoZIhvcNAQELBQADggEBAAhroN9XZGaIY0qkZ0tV ShnHaq9F94fsAMIW8+SLpwvKCQ8T74gKOA3T4I2T1dYDmH8gEMBkAhr2qnIHeUk/ MJBtvrArDrSr3INKmCaoDm3WErI6BHrT1oJPuYed/t/v8xOxArtYwUogK5x7wtaU FN/XAFyK5G0YbLnx90TSGinptXTCzrj5j4SB2ym6V96XkUggIcvgY2eDUwP8dbVn 1ka0muuzApMvj3ZqRZn11FZUMoUMXBFYkAnPo9i2YKvQc60igsCNoPdt+vpu80zm ZMmMvqVX90Fvuh6j7TD1hzhXLk0YkeTAXeF1T6Ehns4ivnGKKZKv1LrreHC9PRbm 4LE= -----END CERTIFICATE-----Generated at Thu May 2 17:40:58 2024 by rpki-client on console-fra.rpki-client.org