$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/769845d8-20c6-4639-a605-e6db7bfa4f8f.roa File: 769845d8-20c6-4639-a605-e6db7bfa4f8f.roa (raw, json) Hash identifier: 6E5q+9ZlAu13QhElGUI7EBN4IKp/CrwxTiEKwWw1a0s= Subject key identifier: 4B:92:31:47:40:1B:77:49:60:CE:67:DC:21:4F:98:22:89:73:95:A2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 74CBA8DBAB3440A0CD5EF6EB92794A90E150113F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/769845d8-20c6-4639-a605-e6db7bfa4f8f.roa Signing time: Mon 18 Sep 2023 00:00:00 +0000 ROA not before: Mon 18 Sep 2023 00:00:00 +0000 ROA not after: Mon 23 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf0:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Sep 2023 03:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:cb:a8:db:ab:34:40:a0:cd:5e:f6:eb:92:79:4a:90:e1:50:11:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Sep 18 00:00:00 2023 GMT Not After : Oct 23 23:59:59 2023 GMT Subject: serialNumber=e4afe4dc5b837f35945449e5ab19f739a808e96029bacb760cb48dea818aed4e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:50:2f:67:6a:79:25:c6:07:65:60:5a:df:99: b4:73:78:37:20:49:a3:28:f2:d1:6e:41:74:76:65: d6:da:8e:84:6f:f1:fd:16:0e:c2:58:9a:0e:6a:21: 22:01:b9:9f:c5:d3:8f:cf:b4:9a:12:b6:8e:7a:20: 79:bf:c2:e8:14:e8:98:33:8e:a9:b0:b8:4f:f8:b7: 15:af:e4:2a:a0:ba:45:0e:c6:0f:2f:c0:d0:62:74: c0:21:00:07:10:e0:2e:a2:7a:2e:55:29:54:79:8a: 35:5c:d7:d9:bb:bc:a7:c6:f8:6f:1c:34:4d:2b:f4: d0:42:a0:ba:6f:5a:2f:17:b2:18:d9:72:f7:50:69: 3d:8a:a7:3c:be:03:93:91:45:0b:78:18:66:85:7e: 5a:1f:57:97:31:ff:20:0d:01:88:47:36:10:53:c1: 27:f9:da:89:4f:3e:a6:f9:02:e9:6e:9b:42:38:30: 01:87:8e:85:e6:7b:63:9a:09:66:dc:87:5a:94:2c: be:9b:8b:09:71:37:78:05:58:76:9d:d8:e6:81:15: 22:15:b7:b4:89:cd:cf:9d:df:f1:5e:dd:2f:f5:46: 7d:7e:d3:6f:6b:d5:62:fd:4f:45:94:dc:c2:1c:e2: 73:16:06:68:e5:44:2e:b8:5d:32:49:cf:d3:c5:7b: e6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:92:31:47:40:1B:77:49:60:CE:67:DC:21:4F:98:22:89:73:95:A2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/769845d8-20c6-4639-a605-e6db7bfa4f8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf0:4000::/40 Signature Algorithm: sha256WithRSAEncryption 51:f2:0b:66:fd:16:de:3c:6f:26:7c:69:78:9e:db:11:0e:fa: 07:9d:6d:5e:ab:30:96:c3:fe:ad:00:10:99:c7:1b:0f:af:28: f0:15:55:26:14:73:80:5a:f1:e7:ea:71:70:cc:43:2e:c1:f7: ad:92:9a:ac:38:1f:a7:5e:9e:3b:d9:50:35:e3:42:d3:af:b2: 26:65:d2:9a:18:5d:51:82:a4:b5:bb:62:17:1e:14:fd:38:ba: 69:27:20:26:ff:26:0b:cb:fa:91:5d:8b:39:f0:43:2c:10:86: 99:23:8c:eb:97:e9:be:92:4e:fd:3b:e5:36:46:f2:b6:63:42: a2:1a:ca:f1:5c:56:67:ca:fb:54:bf:9b:60:77:51:09:b2:17: 58:6f:e6:af:9d:63:58:9b:f3:47:a7:5c:ff:a4:36:92:fb:05: 69:0f:5c:ff:24:c2:21:09:94:c5:95:3d:92:dd:dd:d4:16:6e: 81:0d:62:6b:17:e4:8a:73:1f:2f:e3:f3:8e:0d:55:04:81:d8: 4d:17:78:c0:d0:63:2b:07:17:49:20:29:75:0c:51:a8:2d:10: f4:1b:e3:1d:f8:1e:08:2a:76:99:db:f8:b3:d4:ad:d9:7b:8b: 26:7e:45:0d:69:80:fa:60:ab:76:63:39:58:5d:d7:67:a3:45: e6:a5:ba:13 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdMuo26s0QKDNXvbrknlKkOFQET8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTIzMDkxODAwMDAwMFoX DTIzMTAyMzIzNTk1OVowejFJMEcGA1UEBRNAZTRhZmU0ZGM1YjgzN2YzNTk0NTQ0 OWU1YWIxOWY3MzlhODA4ZTk2MDI5YmFjYjc2MGNiNDhkZWE4MThhZWQ0ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolAvZ2p5JcYHZWBa35m0c3g3IEmj KPLRbkF0dmXW2o6Eb/H9Fg7CWJoOaiEiAbmfxdOPz7SaEraOeiB5v8LoFOiYM46p sLhP+LcVr+QqoLpFDsYPL8DQYnTAIQAHEOAuonouVSlUeYo1XNfZu7ynxvhvHDRN K/TQQqC6b1ovF7IY2XL3UGk9iqc8vgOTkUULeBhmhX5aH1eXMf8gDQGIRzYQU8En +dqJTz6m+QLpbptCODABh46F5ntjmglm3IdalCy+m4sJcTd4BVh2ndjmgRUiFbe0 ic3Pnd/xXt0v9UZ9ftNva9Vi/U9FlNzCHOJzFgZo5UQuuF0ySc/TxXvmqQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEuSMUdAG3dJYM5n3CFPmCKJc5WiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc2OTg0NWQ4LTIwYzYtNDYzOS1hNjA1LWU2ZGI3YmZhNGY4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8EAwDQYJKoZIhvcNAQELBQADggEBAFHyC2b9Ft48byZ8aXie 2xEO+gedbV6rMJbD/q0AEJnHGw+vKPAVVSYUc4Ba8efqcXDMQy7B962Smqw4H6de njvZUDXjQtOvsiZl0poYXVGCpLW7YhceFP04umknICb/JgvL+pFdiznwQywQhpkj jOuX6b6STv075TZG8rZjQqIayvFcVmfK+1S/m2B3UQmyF1hv5q+dY1ib80enXP+k NpL7BWkPXP8kwiEJlMWVPZLd3dQWboENYmsX5IpzHy/j844NVQSB2E0XeMDQYysH F0kgKXUMUagtEPQb4x34Hggqdpnb+LPUrdl7iyZ+RQ1pgPpgq3ZjOVhd12ejReal uhM= -----END CERTIFICATE-----Generated at Mon Sep 18 15:24:45 2023 by rpki-client on console-fra.rpki-client.org