$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/903c59bc-cabc-47eb-8860-bcf9a87d7a72.roa File: 903c59bc-cabc-47eb-8860-bcf9a87d7a72.roa (raw, json) Hash identifier: DLK1Lcp/iv4K6vmGUe6kPs1yxhf9sQwlIn8PCFYdJa8= Subject key identifier: 68:A6:45:46:8E:CA:50:6B:E2:8D:14:5B:85:8D:E1:3F:A6:3D:51:A1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5267CCEB00A702F6343DB4C02919A6DB1083AE17 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/903c59bc-cabc-47eb-8860-bcf9a87d7a72.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafc:ffa0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:67:cc:eb:00:a7:02:f6:34:3d:b4:c0:29:19:a6:db:10:83:ae:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=81e6c6579ed6e19d73b4262abd6ed6af9c1d19208d48797bd537240f5953d8ed, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b3:95:11:58:cd:0d:56:18:cb:b3:0b:2e:5a: 47:f5:aa:4f:c2:3a:05:ff:83:53:3b:d1:eb:29:71: c7:6f:72:26:e5:47:1d:02:3a:32:09:92:c8:4e:c5: 7f:4e:81:d2:ae:99:5f:e7:a5:01:e1:11:35:7d:e3: 3b:42:b8:9b:d0:cb:4f:12:83:d6:3c:89:9f:d4:64: f1:88:26:7a:c9:4e:ba:38:82:89:40:27:b3:66:49: 8d:33:e6:fc:5f:fb:04:ec:81:25:ca:af:71:87:d0: 25:f9:65:33:7d:f2:93:27:9e:84:26:6a:5f:ad:2a: 10:e5:3a:52:5a:d6:b1:4c:23:c1:b1:97:f1:6a:1f: 6b:6d:8d:9b:53:ba:14:fd:36:66:06:f1:85:d9:0f: 67:a6:68:2e:65:cd:4d:26:eb:32:74:fb:24:d4:4e: 0f:b8:d4:61:c5:37:0d:e3:2e:59:1b:77:18:52:e2: c4:71:90:96:9b:6c:74:c4:e1:a1:68:b9:5c:84:11: 09:2d:e4:e0:b6:87:b7:bc:0d:49:6f:c7:2c:01:03: 3f:43:c3:35:7c:02:30:2f:c4:b0:1a:fd:4a:c7:f2: 0a:ab:90:69:63:08:80:5c:5d:ee:49:24:e4:48:c5: c6:37:da:6a:1a:1a:94:b6:f4:8e:03:82:ab:72:78: 27:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A6:45:46:8E:CA:50:6B:E2:8D:14:5B:85:8D:E1:3F:A6:3D:51:A1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/903c59bc-cabc-47eb-8860-bcf9a87d7a72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafc:ffa0::/46 Signature Algorithm: sha256WithRSAEncryption 5f:74:7f:b1:6c:19:41:14:72:15:bd:56:62:a4:53:76:b7:6c: 95:7f:f3:1e:2d:b8:d8:63:82:ad:21:8d:e5:ad:0a:df:19:e5: a5:c9:97:4a:85:15:56:52:49:08:1f:17:58:ab:5c:c0:fe:68: 7d:55:02:e9:78:7e:af:30:33:87:72:4b:3e:4b:a9:64:f0:db: 79:00:f9:47:16:25:7f:7a:a3:1b:52:84:cc:8d:1d:f1:fd:6c: fc:c7:9e:16:a1:a8:94:4c:e2:56:32:7f:59:88:f7:94:1a:78: 7f:f2:fa:db:08:0f:25:53:e8:b0:41:49:f8:6b:00:b6:ed:1f: 29:fe:f9:b4:c7:2a:18:2c:98:a7:a0:88:e8:93:72:82:41:ee: e1:66:16:8c:cc:da:28:58:d6:bc:5e:0f:9c:e3:8a:6c:14:c8: 64:f8:8c:7a:38:ef:87:ec:6e:05:1e:f1:33:cb:49:b3:7d:d4: 09:c6:38:ec:07:68:dc:e1:aa:81:9d:0d:28:99:41:16:19:a7: f1:09:b2:04:9d:0c:28:70:e8:0d:62:c2:1f:4c:44:19:b7:21: ef:d4:85:a6:82:09:a6:ef:4b:5a:b6:d4:43:f1:44:e9:56:ba: b1:f4:b5:64:55:2c:96:d5:44:57:ab:9e:96:19:62:9e:02:ab: 08:fb:8f:36 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUUmfM6wCnAvY0PbTAKRmm2xCDrhcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNAODFlNmM2NTc5ZWQ2ZTE5ZDczYjQy NjJhYmQ2ZWQ2YWY5YzFkMTkyMDhkNDg3OTdiZDUzNzI0MGY1OTUzZDhlZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7OVEVjNDVYYy7MLLlpH9apPwjoF /4NTO9HrKXHHb3Im5UcdAjoyCZLITsV/ToHSrplf56UB4RE1feM7Qrib0MtPEoPW PImf1GTxiCZ6yU66OIKJQCezZkmNM+b8X/sE7IElyq9xh9Al+WUzffKTJ56EJmpf rSoQ5TpSWtaxTCPBsZfxah9rbY2bU7oU/TZmBvGF2Q9npmguZc1NJusydPsk1E4P uNRhxTcN4y5ZG3cYUuLEcZCWm2x0xOGhaLlchBEJLeTgtoe3vA1Jb8csAQM/Q8M1 fAIwL8SwGv1Kx/IKq5BpYwiAXF3uSSTkSMXGN9pqGhqUtvSOA4KrcngnIQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGimRUaOylBr4o0UW4WN4T+mPVGhMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkwM2M1OWJjLWNhYmMtNDdlYi04ODYwLWJjZjlhODdkN2E3Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba/P+gMA0GCSqGSIb3DQEBCwUAA4IBAQBfdH+xbBlBFHIVvVZi pFN2t2yVf/MeLbjYY4KtIY3lrQrfGeWlyZdKhRVWUkkIHxdYq1zA/mh9VQLpeH6v MDOHcks+S6lk8Nt5APlHFiV/eqMbUoTMjR3x/Wz8x54WoaiUTOJWMn9ZiPeUGnh/ 8vrbCA8lU+iwQUn4awC27R8p/vm0xyoYLJinoIjok3KCQe7hZhaMzNooWNa8Xg+c 44psFMhk+Ix6OO+H7G4FHvEzy0mzfdQJxjjsB2jc4aqBnQ0omUEWGafxCbIEnQwo cOgNYsIfTEQZtyHv1IWmggmm70tattRD8UTpVrqx9LVkVSyW1URXq56WGWKeAqsI +482 -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:39 2024 by rpki-client on console-ams.rpki-client.org