$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa File: 78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa (raw, json) Hash identifier: URDrZjK681HsgpJlxJQ1EyIB9fo5gIBPZhIDh3FhmyI= Subject key identifier: 55:F3:11:A1:78:4B:A5:60:14:3C:35:0A:28:A9:26:77:6A:3D:A6:66 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 68C793E3FAE06C02E92926DCDFF715DD5ABA2B25 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa Signing time: Tue 12 Nov 2024 00:00:00 +0000 ROA not before: Tue 12 Nov 2024 00:00:00 +0000 ROA not after: Tue 17 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c7:93:e3:fa:e0:6c:02:e9:29:26:dc:df:f7:15:dd:5a:ba:2b:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 12 00:00:00 2024 GMT Not After : Dec 17 23:59:59 2024 GMT Subject: serialNumber=433cbfdefc11c23d78ae4e4afa2b2669693a7b2ed02bc3f64450482aa2bcae7c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:65:fe:5e:e8:31:f5:09:ce:0a:f2:c3:12:60: c8:39:54:e2:c9:fe:73:f4:d7:da:4a:ba:a9:db:7b: 46:e8:35:f6:6d:a1:48:cc:3c:d3:5f:cc:5d:a2:70: 3d:3a:e9:ab:29:18:d8:ca:fe:0d:e5:39:b1:97:8f: 7d:29:f3:c7:95:72:05:2f:fb:4a:51:53:f7:a8:75: 29:3d:e0:6f:6c:fe:46:98:ca:ef:ba:19:96:96:a8: be:1d:01:0f:2f:c8:75:43:eb:3c:c5:08:d0:dd:87: 62:aa:da:a7:f5:f8:1f:b4:30:f6:e7:2f:dc:9a:ad: be:cf:10:42:9b:d8:ee:59:4d:5d:a7:10:c6:1a:d0: 26:dc:92:bc:81:9c:fe:53:7b:f2:0c:0e:e4:ff:74: ca:6e:eb:5b:2c:5e:f8:86:28:f7:07:95:b4:f9:24: 66:64:3c:8c:7a:46:ec:ff:ab:ff:85:f7:2d:1a:31: ef:f9:db:95:b2:b0:94:29:23:51:c1:f0:04:fe:d8: 78:db:20:b0:a7:ca:f4:b2:dc:3c:df:9e:44:ad:aa: 23:ee:8d:28:0d:6f:45:6a:30:1f:67:8d:40:f5:32: 69:52:c5:25:2d:c5:60:79:a5:fc:96:c7:bf:e7:70: c0:ab:66:03:aa:79:07:1b:80:63:ed:99:44:2b:2b: 19:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F3:11:A1:78:4B:A5:60:14:3C:35:0A:28:A9:26:77:6A:3D:A6:66 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:9000::/40 Signature Algorithm: sha256WithRSAEncryption 28:ef:e8:35:82:eb:be:28:d4:ed:20:08:bc:f2:82:61:cc:22: 87:bb:08:01:6d:54:8b:42:a4:36:5f:67:74:07:25:b6:61:d0: dc:04:66:b8:ba:cb:a3:a6:f7:e3:6b:58:49:df:3a:71:f8:6c: 56:7c:c6:d0:2c:6e:c3:13:dc:45:1a:24:9d:c0:6f:0e:22:66: 48:e1:9b:9c:bc:bb:70:c7:63:fb:ce:00:57:98:17:a2:1a:ac: 37:cd:9b:bf:97:d3:07:13:a3:71:48:4b:97:19:bc:ef:a1:9c: 84:06:58:e3:83:26:53:74:1b:14:59:b5:97:cd:ab:76:ac:20: 51:33:e9:6a:66:0e:0d:63:be:e3:be:62:35:24:26:4a:0c:9c: 31:20:ee:b5:41:de:86:d2:07:ff:10:e0:54:a8:ff:60:ba:57: fc:a0:56:89:cc:72:c1:77:f3:c2:bd:ef:1d:f5:fe:9e:3b:93: 9d:23:61:8b:7d:a6:3e:b9:8b:e2:af:fe:cf:c7:33:bd:4c:57: 4d:e3:78:7e:2f:88:6d:7c:90:16:74:a0:a7:dd:6e:43:3a:b9: 1f:fd:62:5c:e8:86:2e:2f:f3:1c:64:4c:00:36:19:37:ad:2b: 05:e8:66:a7:a5:3b:4a:09:7d:4e:c9:84:22:d4:2d:63:35:c3: 1d:4d:91:c8 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUaMeT4/rgbALpKSbc3/cV3Vq6KyUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExMjAwMDAwMFoX DTI0MTIxNzIzNTk1OVowejFJMEcGA1UEBRNANDMzY2JmZGVmYzExYzIzZDc4YWU0 ZTRhZmEyYjI2Njk2OTNhN2IyZWQwMmJjM2Y2NDQ1MDQ4MmFhMmJjYWU3YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WX+Xugx9QnOCvLDEmDIOVTiyf5z 9NfaSrqp23tG6DX2baFIzDzTX8xdonA9OumrKRjYyv4N5Tmxl499KfPHlXIFL/tK UVP3qHUpPeBvbP5GmMrvuhmWlqi+HQEPL8h1Q+s8xQjQ3Ydiqtqn9fgftDD25y/c mq2+zxBCm9juWU1dpxDGGtAm3JK8gZz+U3vyDA7k/3TKbutbLF74hij3B5W0+SRm ZDyMekbs/6v/hfctGjHv+duVsrCUKSNRwfAE/th42yCwp8r0stw8355Eraoj7o0o DW9FajAfZ41A9TJpUsUlLcVgeaX8lse/53DAq2YDqnkHG4Bj7ZlEKysZEwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFXzEaF4S6VgFDw1CiipJndqPaZmMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc4MzQzNzU0LTVkNmUtNGRlZC05YjRjLWQ5ZDcwYjZjY2FjOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9ZAwDQYJKoZIhvcNAQELBQADggEBACjv6DWC674o1O0gCLzy gmHMIoe7CAFtVItCpDZfZ3QHJbZh0NwEZri6y6Om9+NrWEnfOnH4bFZ8xtAsbsMT 3EUaJJ3Abw4iZkjhm5y8u3DHY/vOAFeYF6IarDfNm7+X0wcTo3FIS5cZvO+hnIQG WOODJlN0GxRZtZfNq3asIFEz6WpmDg1jvuO+YjUkJkoMnDEg7rVB3obSB/8Q4FSo /2C6V/ygVonMcsF388K97x31/p47k50jYYt9pj65i+Kv/s/HM71MV03jeH4viG18 kBZ0oKfdbkM6uR/9Ylzohi4v8xxkTAA2GTetKwXoZqelO0oJfU7JhCLULWM1wx1N kcg= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:15 2024 by rpki-client on console-fra.rpki-client.org