$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7df6bca0-8cd5-4f91-9650-444a54f32a1e.roa File: 7df6bca0-8cd5-4f91-9650-444a54f32a1e.roa (raw, json) Hash identifier: Axvo1Q+e5q4vm90PRDnCZ8o2/mm+z/o0UB2dlwyRsUw= Subject key identifier: E0:42:EF:95:35:83:32:FD:F0:80:C6:81:EF:BB:33:02:01:8F:C2:D0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 337D745A7327B2A92ACFF6D45751C681B75C5371 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7df6bca0-8cd5-4f91-9650-444a54f32a1e.roa Signing time: Wed 01 May 2024 00:00:00 +0000 ROA not before: Wed 01 May 2024 00:00:00 +0000 ROA not after: Wed 05 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da30:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 00:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7d:74:5a:73:27:b2:a9:2a:cf:f6:d4:57:51:c6:81:b7:5c:53:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 1 00:00:00 2024 GMT Not After : Jun 5 23:59:59 2024 GMT Subject: serialNumber=a6ced5369e2a242cb1d7a7d3ab93bc7c83274bd11d1ba3d54782f12f22484644, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5b:a4:0d:d2:b3:17:cc:cc:de:9e:2a:3d:88: 5f:1d:3a:2a:51:3b:f4:5c:87:39:18:41:0e:77:a3: 42:76:28:34:0c:77:a6:35:0a:cb:03:38:c0:c9:07: 72:b1:71:46:cf:2b:02:53:18:43:45:75:f7:1a:ef: bb:87:18:53:d4:bb:82:a8:0a:5a:56:00:5e:84:05: 7a:81:11:4b:c2:aa:79:20:61:f8:b2:35:db:ae:67: 42:28:80:a2:4a:3d:cd:60:fb:2f:d7:43:f7:3f:00: 4f:11:3a:5e:59:10:11:48:80:d7:fd:2e:db:14:14: 5d:bd:73:be:9a:d9:49:97:e1:f3:c0:4d:8b:8e:39: 02:00:26:19:87:00:49:2c:ba:a5:af:02:08:70:81: 96:16:99:f7:b5:3f:e7:a5:18:2c:78:0b:7c:e4:9c: 83:2d:66:4c:3b:8d:7d:e6:05:bb:2b:87:e3:99:73: ca:a8:2e:fa:82:1c:76:52:54:e4:e3:db:a7:e5:9b: a1:c2:87:e2:f7:40:f4:17:34:3b:a2:33:ce:0b:0c: cf:0d:3d:6f:78:6f:c8:24:45:8a:20:98:7a:fe:a1: b8:bc:17:60:18:ac:73:e4:4e:08:15:a3:aa:f3:f1: eb:d8:d9:ba:bf:c8:9a:2b:39:f4:5a:9a:f2:3f:d8: 27:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:42:EF:95:35:83:32:FD:F0:80:C6:81:EF:BB:33:02:01:8F:C2:D0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7df6bca0-8cd5-4f91-9650-444a54f32a1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da30:6000::/40 Signature Algorithm: sha256WithRSAEncryption 7b:a6:7f:f1:ac:e3:0d:cc:c6:03:47:02:2e:c7:26:dd:cc:0c: 00:aa:04:95:79:ee:57:34:1c:a0:05:f5:1e:7f:bc:89:98:b0: 69:a7:c2:a5:b7:98:91:5b:89:64:73:d3:ad:56:44:96:fb:30: 3a:2d:0f:3a:09:39:1d:b9:98:a6:c7:8d:3b:dd:b3:7c:75:48: a3:5b:a4:8a:ea:12:b9:20:8e:f7:05:2d:93:6f:2d:ce:2a:17: ec:60:7d:28:81:a2:b1:ff:e3:e0:f8:85:a2:a9:42:50:ee:85: 4f:ec:21:88:e4:9a:65:a0:96:6e:d5:68:58:02:1e:9b:d8:2a: 1b:05:30:be:0e:0d:3d:6d:cf:3f:5b:55:6e:ea:46:5a:8d:f2: ab:42:4f:13:66:cc:d4:f8:34:0b:f2:ee:12:23:9a:fd:a6:a9: da:e6:0a:29:0d:1d:27:d5:1b:8d:79:c1:ae:30:e0:19:12:5c: 28:91:e7:c2:fd:e7:d2:f6:87:49:15:5f:05:60:00:60:5e:ba: c9:8b:01:ae:c9:15:b4:c6:ec:c5:09:07:cf:05:1c:d2:54:3e: 93:b1:73:be:3d:9c:81:0d:2e:16:cb:ec:07:f2:1e:33:0c:73: b7:0e:22:c4:98:6a:ad:fe:0d:f6:61:08:17:a0:14:9f:8d:1f: f4:af:ed:8c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUM310WnMnsqkqz/bUV1HGgbdcU3EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDUwMTAwMDAwMFoX DTI0MDYwNTIzNTk1OVowejFJMEcGA1UEBRNAYTZjZWQ1MzY5ZTJhMjQyY2IxZDdh N2QzYWI5M2JjN2M4MzI3NGJkMTFkMWJhM2Q1NDc4MmYxMmYyMjQ4NDY0NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4FukDdKzF8zM3p4qPYhfHToqUTv0 XIc5GEEOd6NCdig0DHemNQrLAzjAyQdysXFGzysCUxhDRXX3Gu+7hxhT1LuCqApa VgBehAV6gRFLwqp5IGH4sjXbrmdCKICiSj3NYPsv10P3PwBPETpeWRARSIDX/S7b FBRdvXO+mtlJl+HzwE2LjjkCACYZhwBJLLqlrwIIcIGWFpn3tT/npRgseAt85JyD LWZMO4195gW7K4fjmXPKqC76ghx2UlTk49un5Zuhwofi90D0FzQ7ojPOCwzPDT1v eG/IJEWKIJh6/qG4vBdgGKxz5E4IFaOq8/Hr2Nm6v8iaKzn0WpryP9gnKQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOBC75U1gzL98IDGge+7MwIBj8LQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdkZjZiY2EwLThjZDUtNGY5MS05NjUwLTQ0NGE1NGYzMmExZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaMGAwDQYJKoZIhvcNAQELBQADggEBAHumf/Gs4w3MxgNHAi7H Jt3MDACqBJV57lc0HKAF9R5/vImYsGmnwqW3mJFbiWRz061WRJb7MDotDzoJOR25 mKbHjTvds3x1SKNbpIrqErkgjvcFLZNvLc4qF+xgfSiBorH/4+D4haKpQlDuhU/s IYjkmmWglm7VaFgCHpvYKhsFML4ODT1tzz9bVW7qRlqN8qtCTxNmzNT4NAvy7hIj mv2mqdrmCikNHSfVG415wa4w4BkSXCiR58L959L2h0kVXwVgAGBeusmLAa7JFbTG 7MUJB88FHNJUPpOxc749nIENLhbL7AfyHjMMc7cOIsSYaq3+DfZhCBegFJ+NH/Sv 7Yw= -----END CERTIFICATE-----Generated at Sat May 18 01:42:47 2024 by rpki-client on console-ams.rpki-client.org