$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75f54745-192b-433a-abc8-ed20883dd866.roa File: 75f54745-192b-433a-abc8-ed20883dd866.roa (raw, json) Hash identifier: liOrWM41XJq9armMbtPyf53aWiceILE+KDUdTCBbq0k= Subject key identifier: 1F:27:47:5D:7A:81:40:02:51:3F:03:8A:A6:A5:50:ED:DE:7E:AA:D5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0B38B0D04016A2CE4ACF155977F84CA184A34B17 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75f54745-192b-433a-abc8-ed20883dd866.roa Signing time: Mon 18 Sep 2023 00:00:00 +0000 ROA not before: Mon 18 Sep 2023 00:00:00 +0000 ROA not after: Mon 23 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Sep 2023 03:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:38:b0:d0:40:16:a2:ce:4a:cf:15:59:77:f8:4c:a1:84:a3:4b:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Sep 18 00:00:00 2023 GMT Not After : Oct 23 23:59:59 2023 GMT Subject: serialNumber=6cf4b5124171e164b005fc52a10450874cda6f9fc8e82293c8671ecbdd8aa9ae, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bd:7d:6b:85:3a:6b:ed:0e:82:c5:d1:18:af: 78:d9:b3:ba:9b:68:56:46:4c:ee:8a:c0:6e:96:3b: b2:f6:ec:d6:a4:fa:c9:e9:52:1f:be:79:26:37:4d: e8:70:7c:95:e2:31:c2:ea:d2:38:06:ac:aa:08:e5: 3e:98:85:b2:d0:ae:01:b1:a6:2a:01:75:7a:d7:64: 80:a4:d6:d2:83:dd:d7:77:5e:5d:a1:d8:87:a4:52: 01:9c:c1:3f:79:ab:97:72:5d:0f:eb:a6:b5:c6:04: b3:be:1c:56:b7:54:76:a8:b6:67:df:e1:a6:90:02: 2d:67:5a:2a:19:ad:a7:af:cd:eb:57:b1:76:c3:a3: 83:f2:cd:11:b0:f9:e1:51:1f:7f:2e:d3:80:af:55: 17:18:44:f2:10:de:b5:7a:9d:fd:ab:d0:f6:01:e5: ff:74:d0:fc:a9:79:f3:8c:6c:9d:b9:21:ad:56:c6: 92:16:51:7b:16:f9:b8:58:ff:52:01:74:57:ef:01: ba:a6:34:51:98:09:f8:e6:66:a1:37:09:2c:91:2b: 4d:f0:1c:67:8d:67:b0:ad:70:e3:49:38:cf:ad:28: b2:d7:6c:83:36:49:17:08:b2:50:49:ad:c5:8e:f7: 42:6f:37:3e:16:67:43:52:76:a4:c1:0a:6e:e4:6c: 8e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:27:47:5D:7A:81:40:02:51:3F:03:8A:A6:A5:50:ED:DE:7E:AA:D5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75f54745-192b-433a-abc8-ed20883dd866.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:7000::/40 Signature Algorithm: sha256WithRSAEncryption bc:07:16:85:98:fc:23:69:e8:4a:1c:72:ac:b6:37:0f:c5:1b: 13:9b:f3:76:0f:29:c7:26:1d:4e:22:6c:95:3d:8f:a7:9e:df: 78:5e:70:18:64:00:c3:58:fd:af:2f:ef:97:e0:07:cb:a4:72: 8a:f9:35:2e:27:07:44:7a:88:58:b8:b5:24:ba:87:db:78:51: b2:3f:44:aa:e1:e0:c3:38:4c:4d:f7:df:0f:03:c2:ba:cf:dd: 5c:fc:8a:f7:c6:20:89:a4:c2:7d:b5:b5:ba:04:65:6b:0a:e1: 21:00:bb:76:1c:16:d7:f0:12:0e:3b:96:d7:a8:97:fb:18:26: 4c:75:ab:44:1f:c6:fb:e2:3c:56:3e:7c:c1:e4:6d:1f:17:55: d4:06:ae:8a:82:3c:33:14:b2:a9:cf:f8:ef:77:5f:f5:05:64: f2:60:87:54:8f:5d:04:bc:02:4e:bd:ff:9a:29:90:f2:03:f4: b6:38:25:b4:c3:62:eb:28:d0:e7:1d:8c:ea:13:43:51:df:b4: a3:a9:5c:3a:04:53:43:32:9d:73:f3:f1:5b:6e:17:84:d1:97: 07:27:17:e8:03:3a:6a:82:1c:3e:4c:52:74:58:c1:db:d9:52: 51:cb:4e:89:7c:6f:6a:08:2c:75:3c:d1:3f:e9:a6:bb:b7:6b: ff:da:28:6a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCziw0EAWos5KzxVZd/hMoYSjSxcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTIzMDkxODAwMDAwMFoX DTIzMTAyMzIzNTk1OVowejFJMEcGA1UEBRNANmNmNGI1MTI0MTcxZTE2NGIwMDVm YzUyYTEwNDUwODc0Y2RhNmY5ZmM4ZTgyMjkzYzg2NzFlY2JkZDhhYTlhZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApL19a4U6a+0OgsXRGK942bO6m2hW RkzuisBuljuy9uzWpPrJ6VIfvnkmN03ocHyV4jHC6tI4BqyqCOU+mIWy0K4BsaYq AXV612SApNbSg93Xd15dodiHpFIBnME/eauXcl0P66a1xgSzvhxWt1R2qLZn3+Gm kAItZ1oqGa2nr83rV7F2w6OD8s0RsPnhUR9/LtOAr1UXGETyEN61ep39q9D2AeX/ dND8qXnzjGyduSGtVsaSFlF7Fvm4WP9SAXRX7wG6pjRRmAn45mahNwkskStN8Bxn jWewrXDjSTjPrSiy12yDNkkXCLJQSa3FjvdCbzc+FmdDUnakwQpu5GyOmQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFB8nR116gUACUT8DiqalUO3efqrVMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc1ZjU0NzQ1LTE5MmItNDMzYS1hYmM4LWVkMjA4ODNkZDg2Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaXAwDQYJKoZIhvcNAQELBQADggEBALwHFoWY/CNp6Eoccqy2 Nw/FGxOb83YPKccmHU4ibJU9j6ee33hecBhkAMNY/a8v75fgB8ukcor5NS4nB0R6 iFi4tSS6h9t4UbI/RKrh4MM4TE333w8DwrrP3Vz8ivfGIImkwn21tboEZWsK4SEA u3YcFtfwEg47lteol/sYJkx1q0QfxvviPFY+fMHkbR8XVdQGroqCPDMUsqnP+O93 X/UFZPJgh1SPXQS8Ak69/5opkPID9LY4JbTDYuso0OcdjOoTQ1HftKOpXDoEU0My nXPz8VtuF4TRlwcnF+gDOmqCHD5MUnRYwdvZUlHLTol8b2oILHU80T/ppru3a//a KGo= -----END CERTIFICATE-----Generated at Mon Sep 18 15:40:39 2023 by rpki-client on console-ams.rpki-client.org