$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa File: 7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa (raw, json) Hash identifier: 9oS6NrY3zDhplMEDFsNtjWaA/78xDrtH9RwoAiTAur8= Subject key identifier: 18:3D:FC:34:30:6B:25:BC:77:4D:1F:8B:C1:39:CB:E5:B8:56:F3:5F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 698ED870F9E0AAB2927705DE33D0C451BEA0EA2A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa Signing time: Tue 09 Jul 2024 00:00:00 +0000 ROA not before: Tue 09 Jul 2024 00:00:00 +0000 ROA not after: Tue 13 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da22::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:8e:d8:70:f9:e0:aa:b2:92:77:05:de:33:d0:c4:51:be:a0:ea:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 9 00:00:00 2024 GMT Not After : Aug 13 23:59:59 2024 GMT Subject: serialNumber=5a22a35e910b2ccdff386537d2d475722c8cd1c365d3d8ee801b5541bb2b721f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:95:1c:f3:f7:16:6d:bb:54:dc:97:40:9b:44: ed:95:f2:90:a6:13:71:18:ea:9b:95:5d:e5:73:49: e3:8b:7f:07:48:9c:04:17:95:04:a0:fb:b5:ae:e0: 76:04:5d:29:cd:82:a7:97:1f:3f:07:1d:7e:64:da: db:6a:be:e6:f3:30:01:21:ca:4a:98:b0:05:b3:97: 0f:44:8f:91:9c:69:20:c2:21:d7:e4:41:bb:db:9f: d2:05:ca:6e:8c:9a:21:60:53:ea:7b:a3:45:34:8b: 20:3f:35:cc:e1:f1:dc:d5:51:f1:0b:a4:e6:f7:3a: b6:7e:f1:5b:07:c8:f8:ba:10:59:f5:18:06:42:06: dd:74:28:5d:40:50:91:48:44:10:79:ee:92:bd:fa: a5:ee:df:ea:1b:81:5a:34:a0:30:88:0c:42:3a:39: 7d:d5:d3:b8:3a:eb:84:35:7a:19:b2:51:9b:f4:fa: ee:a9:ed:5a:90:b3:1c:df:dd:39:5b:ec:10:1f:63: c6:eb:72:04:5c:9c:a5:f8:56:f8:08:61:e8:cf:0d: 08:72:b9:da:dd:3f:16:f8:7b:11:fc:c5:e0:fc:25: 63:20:0d:31:c6:38:60:fe:b8:23:15:ee:d4:9a:bf: 0b:d9:a4:1a:9a:9f:43:c3:b8:d9:e0:ae:25:34:74: d3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3D:FC:34:30:6B:25:BC:77:4D:1F:8B:C1:39:CB:E5:B8:56:F3:5F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da22::/36 Signature Algorithm: sha256WithRSAEncryption 79:d3:5e:90:53:06:61:6a:5d:46:87:6e:a9:11:04:76:17:b2: 03:67:f0:47:8b:56:d4:5c:56:25:19:96:6e:8c:2e:01:a1:af: 16:f1:1e:6b:05:8c:a0:f3:33:ae:63:53:20:03:02:aa:c1:13: 1c:b5:73:10:ff:57:12:9b:e1:2c:fa:bd:39:df:a1:4c:a6:da: fa:cd:17:ea:f8:98:b3:47:11:2e:29:a9:eb:51:c0:21:31:f2: f6:e4:8e:63:9a:d2:17:83:7f:99:d8:e7:50:7d:31:c2:e7:5b: e1:08:28:73:62:6f:cc:52:64:49:40:c5:a2:23:36:0d:10:26: 14:f0:39:60:cc:65:18:4d:f0:31:de:81:8e:b8:83:99:52:74: 65:6a:b5:06:1f:64:8e:be:8a:78:52:93:4a:f2:d5:4f:4c:15: c6:79:8d:de:d5:6b:b8:ea:4e:1e:81:76:4b:1e:be:76:38:c9: 74:42:9e:a6:de:26:3a:da:6c:b7:fd:91:1b:81:e9:c2:f5:73: 83:1c:83:84:59:a9:91:11:0b:cc:16:a0:5e:7c:c8:bd:94:19: 71:aa:2e:7c:a9:e5:85:8b:dc:d2:42:f0:66:d6:01:a6:d1:91: 80:c4:19:6e:01:ad:23:39:43:ad:4a:a6:5b:d0:8d:76:a1:ee: b9:5b:89:7d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUaY7YcPngqrKSdwXeM9DEUb6g6iowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcwOTAwMDAwMFoX DTI0MDgxMzIzNTk1OVowejFJMEcGA1UEBRNANWEyMmEzNWU5MTBiMmNjZGZmMzg2 NTM3ZDJkNDc1NzIyYzhjZDFjMzY1ZDNkOGVlODAxYjU1NDFiYjJiNzIxZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJUc8/cWbbtU3JdAm0TtlfKQphNx GOqblV3lc0nji38HSJwEF5UEoPu1ruB2BF0pzYKnlx8/Bx1+ZNrbar7m8zABIcpK mLAFs5cPRI+RnGkgwiHX5EG725/SBcpujJohYFPqe6NFNIsgPzXM4fHc1VHxC6Tm 9zq2fvFbB8j4uhBZ9RgGQgbddChdQFCRSEQQee6Svfql7t/qG4FaNKAwiAxCOjl9 1dO4OuuENXoZslGb9Pruqe1akLMc3905W+wQH2PG63IEXJyl+Fb4CGHozw0Icrna 3T8W+HsR/MXg/CVjIA0xxjhg/rgjFe7Umr8L2aQamp9Dw7jZ4K4lNHTTTQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBg9/DQwayW8d00fi8E5y+W4VvNfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdlNGU3MTM3LTEzOGQtNGJhOC04YTE3LTgxYzNkNmQzYTk4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIgAwDQYJKoZIhvcNAQELBQADggEBAHnTXpBTBmFqXUaHbqkR BHYXsgNn8EeLVtRcViUZlm6MLgGhrxbxHmsFjKDzM65jUyADAqrBExy1cxD/VxKb 4Sz6vTnfoUym2vrNF+r4mLNHES4pqetRwCEx8vbkjmOa0heDf5nY51B9McLnW+EI KHNib8xSZElAxaIjNg0QJhTwOWDMZRhN8DHegY64g5lSdGVqtQYfZI6+inhSk0ry 1U9MFcZ5jd7Va7jqTh6BdksevnY4yXRCnqbeJjrabLf9kRuB6cL1c4Mcg4RZqZER C8wWoF58yL2UGXGqLnyp5YWL3NJC8GbWAabRkYDEGW4BrSM5Q61KplvQjXah7rlb iX0= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:16 2024 by rpki-client on console-fra.rpki-client.org