$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8c5d1ede-16f9-48c3-9629-bbfb05d99ba7.roa File: 8c5d1ede-16f9-48c3-9629-bbfb05d99ba7.roa (raw, json) Hash identifier: zvQMsb3aviKbE+ufjg5zRYyxbvaz7ofIFXTLoTx5TVE= Subject key identifier: 9E:6A:BD:E2:D2:86:DC:A2:55:85:36:82:72:85:95:C0:41:FB:5E:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 22650F070BE498678EFAFB6008E5311F1DFCD7B5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8c5d1ede-16f9-48c3-9629-bbfb05d99ba7.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 00:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:65:0f:07:0b:e4:98:67:8e:fa:fb:60:08:e5:31:1f:1d:fc:d7:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=f97aad79643828f8005001642f09c38848066f0ac108b71c6275756a31620890, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:52:8e:b5:9f:ae:44:d6:eb:36:d3:df:3b:38: 8b:a2:2a:1e:56:21:2c:10:4c:00:a4:0c:89:0f:81: 56:29:4c:d8:8a:1d:0c:c4:6b:d5:bd:83:87:e1:8b: 37:c2:6b:1b:f4:f0:09:63:1a:42:35:a3:eb:50:a8: 84:8a:1c:16:2e:c4:fd:5b:bb:a8:2a:fa:8c:8a:ca: f1:f4:50:72:ce:91:f3:50:fe:bd:d0:52:ab:8b:c3: 64:52:c4:24:d6:39:67:cb:73:85:1f:7a:c7:72:fa: 9e:29:23:8e:d3:81:a5:67:e3:8f:01:7b:63:b7:26: 6c:70:77:00:9a:cf:16:37:4b:13:a7:0a:8c:a5:5f: b6:9b:f6:90:0e:19:6f:9c:29:1c:36:e6:00:e8:ef: c4:51:10:52:12:90:c7:f4:6e:ec:c1:b8:38:29:f8: 8d:37:e8:27:d4:99:52:c4:9d:21:67:72:b8:5a:56: 6c:9c:75:3f:89:ee:42:64:7a:c9:d0:0b:ab:ae:90: 1a:fc:8f:41:31:63:94:25:3d:cc:e8:f3:89:ee:a5: 40:89:20:66:3b:25:84:f3:5e:9e:ef:93:50:88:9e: c8:7a:f6:ba:21:98:22:27:65:37:ec:a0:fc:8f:45: 90:36:66:1f:cf:48:e1:e1:4c:3a:01:b8:15:90:09: 23:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:6A:BD:E2:D2:86:DC:A2:55:85:36:82:72:85:95:C0:41:FB:5E:E7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8c5d1ede-16f9-48c3-9629-bbfb05d99ba7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:8800::/40 Signature Algorithm: sha256WithRSAEncryption 2a:97:0e:b6:b2:5e:b3:c2:32:79:bb:24:71:1a:b4:f3:a1:eb: 4f:f0:98:4e:9f:91:d5:c4:85:27:79:61:c4:ab:d9:d8:37:f4: 53:80:09:5f:95:87:ab:ad:64:c3:e8:29:14:68:95:48:a8:94: 5b:a5:57:77:61:76:93:43:e6:56:9d:9e:86:e9:76:f7:ec:f6: 8e:43:4d:21:68:be:72:4e:5d:dc:76:1f:23:58:ed:53:4c:f3: ab:99:cb:da:df:69:fd:03:82:48:4c:a0:9f:70:47:a5:29:2f: 4b:8b:9d:e5:dc:86:5d:23:d8:8a:7d:72:fe:56:fd:36:c9:42: cb:13:cb:64:86:88:e6:11:c4:4c:42:6e:8c:4e:08:00:ba:ef: 50:4d:06:5c:29:8e:69:e2:fc:80:4a:22:d8:de:bc:9c:bf:66: 92:e5:5f:94:22:b2:72:89:01:fc:c2:85:2e:a2:40:88:15:01: bd:a8:d3:aa:1f:0a:1f:05:25:cd:b3:0c:b3:bb:b7:41:38:7e: 7e:3d:a1:ec:bc:be:06:09:eb:8e:06:15:b2:ab:bf:f3:9b:33: 02:50:c3:d5:93:b8:e5:e9:45:78:49:62:60:9c:a0:0b:47:72: 15:c1:7c:42:8d:c5:61:55:44:b3:5b:1c:76:c2:86:d3:f8:01: b4:fc:56:9f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUImUPBwvkmGeO+vtgCOUxHx3817UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEwNTAwMDAwMFoX DTI0MTIxMDIzNTk1OVowejFJMEcGA1UEBRNAZjk3YWFkNzk2NDM4MjhmODAwNTAw MTY0MmYwOWMzODg0ODA2NmYwYWMxMDhiNzFjNjI3NTc1NmEzMTYyMDg5MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlKOtZ+uRNbrNtPfOziLoioeViEs EEwApAyJD4FWKUzYih0MxGvVvYOH4Ys3wmsb9PAJYxpCNaPrUKiEihwWLsT9W7uo KvqMisrx9FByzpHzUP690FKri8NkUsQk1jlny3OFH3rHcvqeKSOO04GlZ+OPAXtj tyZscHcAms8WN0sTpwqMpV+2m/aQDhlvnCkcNuYA6O/EURBSEpDH9G7swbg4KfiN N+gn1JlSxJ0hZ3K4WlZsnHU/ie5CZHrJ0AurrpAa/I9BMWOUJT3M6POJ7qVAiSBm OyWE816e75NQiJ7Ieva6IZgiJ2U37KD8j0WQNmYfz0jh4Uw6AbgVkAkjIQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJ5qveLShtyiVYU2gnKFlcBB+17nMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhjNWQxZWRlLTE2ZjktNDhjMy05NjI5LWJiZmIwNWQ5OWJhNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8ogwDQYJKoZIhvcNAQELBQADggEBACqXDrayXrPCMnm7JHEa tPOh60/wmE6fkdXEhSd5YcSr2dg39FOACV+Vh6utZMPoKRRolUiolFulV3dhdpND 5ladnobpdvfs9o5DTSFovnJOXdx2HyNY7VNM86uZy9rfaf0DgkhMoJ9wR6UpL0uL neXchl0j2Ip9cv5W/TbJQssTy2SGiOYRxExCboxOCAC671BNBlwpjmni/IBKItje vJy/ZpLlX5QisnKJAfzChS6iQIgVAb2o06ofCh8FJc2zDLO7t0E4fn49oey8vgYJ 644GFbKrv/ObMwJQw9WTuOXpRXhJYmCcoAtHchXBfEKNxWFVRLNbHHbChtP4AbT8 Vp8= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:14 2024 by rpki-client on console-ams.rpki-client.org