$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa File: 78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa (raw, json) Hash identifier: oVoUNiJ/yO2yRTCgWLGd/0Kr+mTO1ycARrUY4o2lIj8= Subject key identifier: 3E:56:50:EB:E9:9F:40:FE:F5:ED:81:C7:45:14:23:75:0C:E2:34:3B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 15906F0AF70C3AFE4A1725C0110BB746B6AF2890 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 15:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:90:6f:0a:f7:0c:3a:fe:4a:17:25:c0:11:0b:b7:46:b6:af:28:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=afdd5e17cc3beaeaddb8fc4bf031f5e35ab5205aa7606a17b71058ecc2f893aa, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:54:8b:9f:d4:69:e7:6f:72:26:3c:08:1d:b5: f3:99:b1:ba:30:c2:d8:68:8c:fc:5c:01:58:20:06: a3:01:33:84:7f:44:c0:7c:db:99:c2:24:2e:49:b7: e1:e2:30:2d:27:39:9e:d6:9f:ec:a0:cd:7e:b4:9d: 12:d8:51:de:d9:ee:74:66:ac:c3:34:d7:98:4f:95: 49:03:e9:1e:32:c4:34:ca:85:02:19:cf:19:ee:02: 71:cc:7f:10:4a:50:0a:5e:55:9f:a5:66:52:1a:fa: 71:d9:e9:4d:30:84:b9:31:65:8b:73:c6:e4:87:bf: 1e:4b:18:c5:98:e9:2c:4d:cf:aa:f7:47:10:d0:f3: 5a:ca:45:aa:59:78:37:41:e6:78:a0:32:f7:ce:c3: 6e:3c:e7:99:b3:cd:ce:b9:b8:10:5c:f0:09:08:8f: 20:7d:92:8e:0d:37:db:6d:ba:ff:43:7a:ed:96:db: b0:a0:94:46:8f:cf:9c:b3:a3:05:65:c7:89:a7:fc: ba:f4:ed:ed:27:44:f9:16:0f:4d:a3:98:1b:92:db: 8d:48:8b:0b:86:03:02:e3:a0:a3:de:4b:51:3b:20: 46:63:9e:f6:3d:f2:68:6d:fa:fa:69:20:1a:48:c8: 2c:17:28:3f:18:73:ad:ac:f1:8f:75:6c:5c:55:c9: 00:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:56:50:EB:E9:9F:40:FE:F5:ED:81:C7:45:14:23:75:0C:E2:34:3B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:9000::/40 Signature Algorithm: sha256WithRSAEncryption 63:d4:dc:d6:23:3a:b5:62:15:aa:24:01:9d:82:b0:28:56:bf: 1a:1b:1e:44:8e:eb:13:09:4d:d0:56:8a:1b:d3:98:4c:d5:1c: 31:a5:be:45:ff:10:ce:cf:a4:90:97:be:3a:47:6e:9c:2e:de: cd:46:e8:f8:84:dc:29:41:2d:03:41:5c:bb:90:96:8d:b4:f0: a4:c1:48:15:de:80:3a:22:37:aa:7c:a0:e6:5e:9f:3f:9c:35: f5:0b:ad:eb:12:fd:69:de:4f:28:a1:05:a9:f0:c9:6f:0a:47: a4:ee:75:e4:98:41:f4:87:a5:59:f9:6b:ab:79:22:d7:51:d5: 29:e1:d5:f4:bf:18:02:67:52:d4:04:e8:eb:20:cd:c3:47:e1: 27:28:46:56:03:32:e6:ec:fd:f4:68:97:71:13:48:55:fa:ee: 4c:e2:96:30:c3:fa:59:3b:25:62:fd:a8:eb:d0:1a:08:41:00: 04:a7:1b:80:de:6e:88:fb:c3:20:bc:de:d9:34:fe:02:c3:a3: c2:41:1e:40:19:69:04:f2:cf:a1:47:a8:40:7b:2a:2b:e6:16: 9b:99:00:4a:92:ff:87:fe:e5:c1:2d:2f:5a:2f:1d:0e:3b:12: 80:40:a1:7c:5e:7e:77:22:bb:80:ab:3e:79:d1:61:6f:07:cd: 27:e6:80:1b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFZBvCvcMOv5KFyXAEQu3RravKJAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQyNDAwMDAwMFoX DTI0MDUyOTIzNTk1OVowejFJMEcGA1UEBRNAYWZkZDVlMTdjYzNiZWFlYWRkYjhm YzRiZjAzMWY1ZTM1YWI1MjA1YWE3NjA2YTE3YjcxMDU4ZWNjMmY4OTNhYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFSLn9Rp529yJjwIHbXzmbG6MMLY aIz8XAFYIAajATOEf0TAfNuZwiQuSbfh4jAtJzme1p/soM1+tJ0S2FHe2e50ZqzD NNeYT5VJA+keMsQ0yoUCGc8Z7gJxzH8QSlAKXlWfpWZSGvpx2elNMIS5MWWLc8bk h78eSxjFmOksTc+q90cQ0PNaykWqWXg3QeZ4oDL3zsNuPOeZs83OubgQXPAJCI8g fZKODTfbbbr/Q3rtltuwoJRGj8+cs6MFZceJp/y69O3tJ0T5Fg9No5gbktuNSIsL hgMC46Cj3ktROyBGY572PfJobfr6aSAaSMgsFyg/GHOtrPGPdWxcVckA/wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFD5WUOvpn0D+9e2Bx0UUI3UM4jQ7MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc4MzQzNzU0LTVkNmUtNGRlZC05YjRjLWQ5ZDcwYjZjY2FjOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9ZAwDQYJKoZIhvcNAQELBQADggEBAGPU3NYjOrViFaokAZ2C sChWvxobHkSO6xMJTdBWihvTmEzVHDGlvkX/EM7PpJCXvjpHbpwu3s1G6PiE3ClB LQNBXLuQlo208KTBSBXegDoiN6p8oOZenz+cNfULresS/WneTyihBanwyW8KR6Tu deSYQfSHpVn5a6t5ItdR1Snh1fS/GAJnUtQE6OsgzcNH4ScoRlYDMubs/fRol3ET SFX67kziljDD+lk7JWL9qOvQGghBAASnG4Deboj7wyC83tk0/gLDo8JBHkAZaQTy z6FHqEB7KivmFpuZAEqS/4f+5cEtL1ovHQ47EoBAoXxefnciu4CrPnnRYW8HzSfm gBs= -----END CERTIFICATE-----Generated at Thu May 2 20:03:15 2024 by rpki-client on console-ams.rpki-client.org