$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa File: 7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa (raw, json) Hash identifier: asMWSRQePWXiDWseESyGRyHMwxopSbOY4uaT23U7UI4= Subject key identifier: 8F:40:44:81:F5:1E:B0:E7:69:3C:46:44:72:89:10:3F:6A:19:93:6B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 230813DEF53AC63D965553E30F9C4E2EB52E9D13 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da22::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 00:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:08:13:de:f5:3a:c6:3d:96:55:53:e3:0f:9c:4e:2e:b5:2e:9d:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=bd28170b35411f5d07eef4d11c30e8dce3057002625383602606591f9e93c757, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:45:43:dd:06:7a:94:dc:00:67:40:3f:1f:74: 6d:e3:64:e0:92:aa:73:03:3b:a9:44:8f:2f:b1:99: 29:ce:b7:1d:71:3c:63:ad:ce:00:73:1a:19:d2:4b: 0c:9a:ee:16:bb:5f:93:74:19:86:b5:da:28:cb:fc: 83:96:b8:08:2a:3c:58:90:d8:7f:d0:56:db:2d:a4: ef:5e:f0:05:e6:f6:a5:51:a3:34:78:b6:bc:aa:f1: b2:87:9c:94:b1:87:87:a6:16:b3:d5:13:37:b2:f8: 57:bd:68:cb:27:9e:ad:75:26:d1:0b:77:71:60:7f: e0:f4:47:f6:98:ca:e5:d2:cb:e6:ce:c2:cc:f7:47: 4e:27:46:e1:43:bb:06:ca:06:0f:5c:a9:37:62:16: 91:71:fb:a4:7e:01:69:23:ff:9f:0a:5b:75:69:b3: 15:ef:a1:3a:9b:71:84:10:6e:27:18:ad:81:ed:ba: 8d:33:ab:f3:5f:04:3b:ba:79:c7:bf:70:eb:ae:0f: d0:a9:32:3a:ba:0a:d5:a7:0c:8e:87:e0:0e:76:7a: 31:e6:0e:4e:30:42:a4:0f:39:01:09:dc:6c:9e:be: fe:6b:e7:e6:c4:d8:4d:b6:b0:83:9e:d5:59:61:14: 52:4d:2c:be:f9:c0:d9:47:43:a1:a2:60:64:ba:35: 5a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:40:44:81:F5:1E:B0:E7:69:3C:46:44:72:89:10:3F:6A:19:93:6B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da22::/36 Signature Algorithm: sha256WithRSAEncryption 55:6d:cd:52:13:1b:48:32:e6:7a:06:cd:47:6e:76:a8:b5:d4: 99:dd:ce:e4:0a:2f:8c:83:27:e8:ea:57:a8:81:2e:23:4e:a2: 2a:0e:68:92:db:82:72:28:f5:00:3f:97:dc:d8:84:6b:4c:5b: 47:8b:e1:b3:59:b9:bc:da:a9:e6:5f:11:47:ab:9f:8d:2f:35: c6:f0:2d:e9:a4:6d:7e:2d:60:a4:7e:10:2f:2c:00:37:90:25: 76:b7:67:46:7e:db:c7:70:8c:a8:45:de:12:b0:52:31:c0:60: 7e:0d:ff:69:9d:73:72:bf:08:7a:c9:30:03:5f:2e:31:1c:2b: 06:e7:9f:ae:29:c1:c6:22:cc:15:f2:1f:46:e2:78:fb:4b:77: 6b:6a:82:01:46:7d:c4:4b:bf:1b:c2:a8:87:c7:8d:9b:71:08: df:7f:44:14:9b:74:1a:fb:5e:82:c3:51:c5:dc:4c:74:01:e4: 16:3a:53:75:fa:90:70:ca:68:15:f6:14:82:c6:4a:93:7f:ef: c7:a1:42:63:7f:ba:90:8b:7f:9c:47:f8:6c:02:57:d2:29:6d: 12:b4:9c:a5:27:3d:37:d2:a3:eb:43:80:db:56:f2:a8:61:d1: db:b9:d0:84:79:41:b4:27:c5:f1:0c:ea:e6:a2:37:27:a2:0e: f5:ce:63:b8 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUIwgT3vU6xj2WVVPjD5xOLrUunRMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQyNDAwMDAwMFoX DTI0MDUyOTIzNTk1OVowejFJMEcGA1UEBRNAYmQyODE3MGIzNTQxMWY1ZDA3ZWVm NGQxMWMzMGU4ZGNlMzA1NzAwMjYyNTM4MzYwMjYwNjU5MWY5ZTkzYzc1NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkVD3QZ6lNwAZ0A/H3Rt42Tgkqpz AzupRI8vsZkpzrcdcTxjrc4AcxoZ0ksMmu4Wu1+TdBmGtdooy/yDlrgIKjxYkNh/ 0FbbLaTvXvAF5valUaM0eLa8qvGyh5yUsYeHphaz1RM3svhXvWjLJ56tdSbRC3dx YH/g9Ef2mMrl0svmzsLM90dOJ0bhQ7sGygYPXKk3YhaRcfukfgFpI/+fClt1abMV 76E6m3GEEG4nGK2B7bqNM6vzXwQ7unnHv3Drrg/QqTI6ugrVpwyOh+AOdnox5g5O MEKkDzkBCdxsnr7+a+fmxNhNtrCDntVZYRRSTSy++cDZR0OhomBkujVapQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFI9ARIH1HrDnaTxGRHKJED9qGZNrMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdlNGU3MTM3LTEzOGQtNGJhOC04YTE3LTgxYzNkNmQzYTk4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIgAwDQYJKoZIhvcNAQELBQADggEBAFVtzVITG0gy5noGzUdu dqi11JndzuQKL4yDJ+jqV6iBLiNOoioOaJLbgnIo9QA/l9zYhGtMW0eL4bNZubza qeZfEUern40vNcbwLemkbX4tYKR+EC8sADeQJXa3Z0Z+28dwjKhF3hKwUjHAYH4N /2mdc3K/CHrJMANfLjEcKwbnn64pwcYizBXyH0biePtLd2tqggFGfcRLvxvCqIfH jZtxCN9/RBSbdBr7XoLDUcXcTHQB5BY6U3X6kHDKaBX2FILGSpN/78ehQmN/upCL f5xH+GwCV9IpbRK0nKUnPTfSo+tDgNtW8qhh0du50IR5QbQnxfEM6uaiNyeiDvXO Y7g= -----END CERTIFICATE-----Generated at Thu Apr 25 00:30:39 2024 by rpki-client on console-fra.rpki-client.org