$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa File: 710800d0-a544-4fe9-abd4-369c82fabbb3.roa (raw, json) Hash identifier: e4uAyDOPAFzrSmK6LJDARzDOXztbqqt3MrTkUXONuSE= Subject key identifier: 3E:5F:47:89:40:E7:D7:BF:DA:2B:6E:45:91:BD:B5:27:91:8C:59:C8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5C2078B98F10911379C52E0C871AF89E130E79E4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa Signing time: Sat 20 Jul 2024 00:00:00 +0000 ROA not before: Sat 20 Jul 2024 00:00:00 +0000 ROA not after: Sat 24 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafe:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Jul 2024 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:20:78:b9:8f:10:91:13:79:c5:2e:0c:87:1a:f8:9e:13:0e:79:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 20 00:00:00 2024 GMT Not After : Aug 24 23:59:59 2024 GMT Subject: serialNumber=63a31f8f78ddf939a887e090179cf646a054ac9da47233465537f49f3de57e93, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ac:b1:53:3f:70:c5:45:f9:6b:0c:f3:a6:1c: f2:06:6b:92:04:41:29:8c:33:1a:4f:a8:c1:f3:8f: 2d:bd:57:ae:a5:96:c1:c5:bf:7a:e1:7c:86:42:5b: 12:e6:53:00:dd:88:54:2c:04:3b:58:1a:5d:cf:9b: 55:4c:32:43:92:6f:29:d6:35:a9:d5:f4:40:70:8b: f2:34:cd:c1:41:f7:d7:e1:be:73:d0:b6:75:9d:17: 45:98:84:b7:72:92:0f:00:11:21:72:ff:ec:67:db: ad:94:b8:84:34:61:10:f8:e9:a4:08:4e:3f:38:ab: d8:10:02:08:11:61:34:f3:04:73:29:81:4c:f4:65: 19:d5:91:bf:1d:48:c7:39:e1:5b:d2:bc:16:d2:2f: 8f:0e:ba:b0:e2:a4:50:6b:bd:d0:d7:1c:83:41:3c: 98:6d:81:9a:70:aa:f5:15:76:cc:77:23:f7:13:9d: eb:37:41:89:45:bc:93:01:0b:32:07:5c:c4:a0:74: 01:d5:5e:6b:32:d9:ae:3d:af:b6:81:84:52:00:c5: cd:9c:8a:60:f0:db:3f:70:4e:d6:3f:46:76:c3:79: f2:7f:b4:0b:7f:21:9e:cd:65:ca:64:ba:3f:ab:d2: 6b:48:f9:b7:d2:32:3a:c8:04:11:1e:bb:79:0f:fe: 34:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:5F:47:89:40:E7:D7:BF:DA:2B:6E:45:91:BD:B5:27:91:8C:59:C8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafe:800::/40 Signature Algorithm: sha256WithRSAEncryption 24:b2:09:8e:4e:a0:0e:f4:9f:92:88:09:bd:7b:a8:bb:00:6a: 4c:0c:61:de:44:c4:e9:8f:67:c2:0a:ee:1e:2f:14:ba:d8:48: d7:04:6a:bf:fc:e7:21:57:41:a1:46:8b:4a:0d:3f:f7:cf:65: ee:a8:74:82:cf:b2:d1:ac:c4:a7:a4:02:76:72:c3:a1:4b:31: ef:a6:37:82:35:a8:ca:98:29:0f:bb:ee:eb:06:cd:23:db:f8: e7:6f:2f:a3:01:08:af:69:dc:fc:1b:37:e8:3d:3b:ca:72:97: 8e:1c:ec:21:03:62:a8:e4:63:c2:29:26:4e:15:a7:f3:04:ad: d0:71:c6:d1:9c:8c:7c:6a:e6:2c:99:c0:83:a0:3e:78:99:ca: 82:36:3f:1d:8c:a6:bb:ce:81:e9:c8:4c:eb:f6:76:14:ac:d9: 8e:0a:82:81:49:74:84:f7:23:99:28:53:a2:f1:7a:17:b8:94: ea:f6:58:10:a0:7d:11:1e:a6:14:f4:54:ab:30:8c:66:e6:91: bf:68:89:51:ad:7c:85:f8:3a:b7:f9:d0:41:e4:31:fd:81:11: 3b:75:72:50:0d:6a:fa:65:68:e8:06:b6:61:82:a8:f2:74:ff: 9e:cb:76:c9:94:8b:00:b2:a0:27:76:6a:dd:0a:b1:1e:2b:7c: 22:fe:c3:ff -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXCB4uY8QkRN5xS4Mhxr4nhMOeeQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcyMDAwMDAwMFoX DTI0MDgyNDIzNTk1OVowejFJMEcGA1UEBRNANjNhMzFmOGY3OGRkZjkzOWE4ODdl MDkwMTc5Y2Y2NDZhMDU0YWM5ZGE0NzIzMzQ2NTUzN2Y0OWYzZGU1N2U5MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvayxUz9wxUX5awzzphzyBmuSBEEp jDMaT6jB848tvVeupZbBxb964XyGQlsS5lMA3YhULAQ7WBpdz5tVTDJDkm8p1jWp 1fRAcIvyNM3BQffX4b5z0LZ1nRdFmIS3cpIPABEhcv/sZ9utlLiENGEQ+OmkCE4/ OKvYEAIIEWE08wRzKYFM9GUZ1ZG/HUjHOeFb0rwW0i+PDrqw4qRQa73Q1xyDQTyY bYGacKr1FXbMdyP3E53rN0GJRbyTAQsyB1zEoHQB1V5rMtmuPa+2gYRSAMXNnIpg 8Ns/cE7WP0Z2w3nyf7QLfyGezWXKZLo/q9JrSPm30jI6yAQRHrt5D/40HQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFD5fR4lA59e/2ituRZG9tSeRjFnIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcxMDgwMGQwLWE1NDQtNGZlOS1hYmQ0LTM2OWM4MmZhYmJiMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/ggwDQYJKoZIhvcNAQELBQADggEBACSyCY5OoA70n5KICb17 qLsAakwMYd5ExOmPZ8IK7h4vFLrYSNcEar/85yFXQaFGi0oNP/fPZe6odILPstGs xKekAnZyw6FLMe+mN4I1qMqYKQ+77usGzSPb+OdvL6MBCK9p3PwbN+g9O8pyl44c 7CEDYqjkY8IpJk4Vp/MErdBxxtGcjHxq5iyZwIOgPniZyoI2Px2MprvOgenITOv2 dhSs2Y4KgoFJdIT3I5koU6Lxehe4lOr2WBCgfREephT0VKswjGbmkb9oiVGtfIX4 Orf50EHkMf2BETt1clANavplaOgGtmGCqPJ0/57LdsmUiwCyoCd2at0KsR4rfCL+ w/8= -----END CERTIFICATE-----Generated at Sat Jul 27 00:57:55 2024 by rpki-client on console-ams.rpki-client.org