$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b01259d-9f22-4394-8476-cc9d3cf57a44.roa File: 7b01259d-9f22-4394-8476-cc9d3cf57a44.roa (raw, json) Hash identifier: GUQJ7wt9YdQ5FZJ0m5gPKvYSM0FhCscM1q+9BAfRdGM= Subject key identifier: 59:81:44:CC:67:C7:59:F5:5E:8C:28:C4:02:01:E0:ED:AA:F2:66:94 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1215F6BEA190678E7A61E83A9AA276571E16EEC6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b01259d-9f22-4394-8476-cc9d3cf57a44.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf7:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:15:f6:be:a1:90:67:8e:7a:61:e8:3a:9a:a2:76:57:1e:16:ee:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=7477916daee3250d0a5b27d25a46031944aee15d3ebeb87740757eef7f473186, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e8:1c:c1:09:c9:18:a4:c9:30:42:2b:16:4c: e3:ad:00:c3:17:5b:22:7e:4c:a1:61:36:8c:fe:a1: 69:61:37:43:45:3d:ce:cb:2e:89:85:99:36:6e:50: fb:ca:a8:2c:25:15:18:12:ec:d0:8c:14:6f:9c:a8: b7:0c:4b:b0:f2:eb:9d:85:b3:52:12:c7:be:4c:18: 78:9a:71:05:11:6d:b3:bf:95:e1:39:9d:12:54:1c: de:70:35:f0:b7:67:6d:7f:37:ce:9e:3d:83:e6:1d: 86:44:a5:f8:39:d8:6e:99:f8:85:04:89:47:56:64: b6:89:85:cf:ff:ef:49:60:f0:28:89:9c:fb:5b:d1: 4d:f1:42:53:a8:2d:7a:ce:ff:a6:9d:32:1e:4d:15: 5b:c2:54:4b:03:c4:b5:fe:95:10:43:96:21:e4:ef: 46:a4:bb:7d:99:3b:fa:d5:61:66:db:c2:15:bc:5e: 6c:78:aa:b5:1c:a1:9b:b6:76:10:2f:f8:38:0d:86: 2f:a5:35:2a:ed:0a:78:d9:5b:1e:8b:0a:de:e4:dd: a7:c6:5c:57:9d:b7:1d:84:ce:48:6f:51:61:e2:37: f4:f5:c7:c9:14:d6:3a:f9:cb:91:0e:2f:49:a1:68: f2:34:70:2b:a8:2d:b8:f3:6f:ee:ad:0a:a8:01:d4: 0a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:81:44:CC:67:C7:59:F5:5E:8C:28:C4:02:01:E0:ED:AA:F2:66:94 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b01259d-9f22-4394-8476-cc9d3cf57a44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf7:1000::/40 Signature Algorithm: sha256WithRSAEncryption 00:b3:83:ad:99:fe:7b:8a:50:36:22:dd:06:97:ef:94:8a:ab: 34:f7:9c:62:15:41:1a:0a:56:10:3a:a8:8e:48:3f:d3:81:f0: 2c:58:11:4e:ea:82:18:28:00:4e:fb:20:e6:c2:47:f7:e2:3a: ab:9e:d2:d3:32:4a:79:cb:50:4d:67:27:85:ca:e4:f3:73:af: d8:98:2a:74:58:4e:af:0e:26:ba:05:30:e9:3c:ca:f1:15:f3: ce:d8:70:71:04:92:61:fb:40:b9:f7:e1:7f:02:fb:90:d0:ff: 8c:d2:7b:f6:65:39:a5:50:02:cf:bc:46:81:f9:67:f6:03:64: 53:14:be:fc:98:8f:b8:92:9a:97:98:f2:11:32:81:e1:d8:48: f8:d4:71:d9:7e:54:fe:02:37:ad:e8:ac:6b:34:c1:5e:85:eb: 91:b8:a1:a1:30:73:88:fe:e3:f3:27:fe:ec:45:0e:84:46:94: 85:dd:b7:6e:67:8b:5f:ad:6f:77:f9:ad:4e:3f:8c:81:61:5e: a5:b7:0f:3f:52:b4:0d:7d:8d:6c:1f:c4:5d:8d:f3:18:a8:86: 3a:57:c2:d1:82:be:08:65:0d:94:d8:b6:30:bf:e1:99:09:95: 8d:de:41:a9:e9:86:b7:b5:6e:e2:47:4a:4e:ae:30:fc:8b:be: 60:a5:57:04 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUEhX2vqGQZ456Yeg6mqJ2Vx4W7sYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNANzQ3NzkxNmRhZWUzMjUwZDBhNWIy N2QyNWE0NjAzMTk0NGFlZTE1ZDNlYmViODc3NDA3NTdlZWY3ZjQ3MzE4NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOgcwQnJGKTJMEIrFkzjrQDDF1si fkyhYTaM/qFpYTdDRT3Oyy6JhZk2blD7yqgsJRUYEuzQjBRvnKi3DEuw8uudhbNS Ese+TBh4mnEFEW2zv5XhOZ0SVBzecDXwt2dtfzfOnj2D5h2GRKX4OdhumfiFBIlH VmS2iYXP/+9JYPAoiZz7W9FN8UJTqC16zv+mnTIeTRVbwlRLA8S1/pUQQ5Yh5O9G pLt9mTv61WFm28IVvF5seKq1HKGbtnYQL/g4DYYvpTUq7Qp42Vseiwre5N2nxlxX nbcdhM5Ib1Fh4jf09cfJFNY6+cuRDi9JoWjyNHArqC2482/urQqoAdQKZQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFmBRMxnx1n1XowoxAIB4O2q8maUMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdiMDEyNTlkLTlmMjItNDM5NC04NDc2LWNjOWQzY2Y1N2E0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9xAwDQYJKoZIhvcNAQELBQADggEBAACzg62Z/nuKUDYi3QaX 75SKqzT3nGIVQRoKVhA6qI5IP9OB8CxYEU7qghgoAE77IObCR/fiOque0tMySnnL UE1nJ4XK5PNzr9iYKnRYTq8OJroFMOk8yvEV887YcHEEkmH7QLn34X8C+5DQ/4zS e/ZlOaVQAs+8RoH5Z/YDZFMUvvyYj7iSmpeY8hEygeHYSPjUcdl+VP4CN63orGs0 wV6F65G4oaEwc4j+4/Mn/uxFDoRGlIXdt25ni1+tb3f5rU4/jIFhXqW3Dz9StA19 jWwfxF2N8xiohjpXwtGCvghlDZTYtjC/4ZkJlY3eQanphre1buJHSk6uMPyLvmCl VwQ= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:16 2024 by rpki-client on console-fra.rpki-client.org