$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/906d1094-02f1-42d9-b22e-24f2ee4caa70.roa File: 906d1094-02f1-42d9-b22e-24f2ee4caa70.roa (raw, json) Hash identifier: gPMaMcen0oMfvZ3a465yWi+ZcgzgLaZw8gNjbUcDZPw= Subject key identifier: D9:D7:61:FE:0A:BE:05:CD:4C:F1:F5:20:28:FE:7B:7F:F5:E1:E7:E4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0988276219A7D693AA0E317FEFE6E0A368DCEEC7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/906d1094-02f1-42d9-b22e-24f2ee4caa70.roa Signing time: Thu 02 May 2024 00:00:00 +0000 ROA not before: Thu 02 May 2024 00:00:00 +0000 ROA not after: Thu 06 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 00:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:88:27:62:19:a7:d6:93:aa:0e:31:7f:ef:e6:e0:a3:68:dc:ee:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:00:00 2024 GMT Not After : Jun 6 23:59:59 2024 GMT Subject: serialNumber=fe61c4580ff151e081b87e0b7f242f2492b0983a0e59403fabc7b7265ccf73a6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:10:c8:61:06:b8:2d:68:5a:f8:33:a7:36:14: 69:98:e3:5d:11:b7:90:ce:f0:ed:a4:d7:54:68:af: 46:22:e9:26:5f:14:59:f1:7d:a8:04:1e:9d:aa:47: 6d:25:6b:7b:94:fe:c8:24:e0:22:ea:35:ee:32:00: e5:95:63:76:a6:8a:f0:f5:25:43:59:68:2a:f4:42: 04:1c:92:54:71:2c:e4:7c:f2:f4:dd:9a:d1:be:87: c5:e9:43:3e:50:10:39:da:96:a2:5f:88:57:35:b7: fa:78:b4:63:d3:62:d3:ed:2a:28:4f:04:f9:19:f7: 44:82:66:a6:9b:29:69:89:fc:d8:83:8f:99:29:f1: 4e:3b:41:cc:62:d6:73:94:58:e3:bf:d8:0e:dc:ba: 37:26:9f:fa:eb:98:75:c8:f2:09:c6:e8:ef:c5:f8: e0:d3:2a:77:60:19:f3:95:a8:78:be:91:06:fa:d0: 1b:06:6e:7f:d5:1f:6b:58:0c:48:4e:51:87:53:db: 38:a1:be:a2:2b:32:15:02:9b:79:29:df:18:6c:e5: 59:8a:5b:38:f8:d5:58:33:c0:f4:c2:6d:e1:4f:89: b4:55:56:d9:3c:10:db:8a:2f:61:2e:4d:dd:00:06: be:e4:6d:dc:12:ae:c7:c6:cb:1a:05:64:57:5e:83: 19:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D7:61:FE:0A:BE:05:CD:4C:F1:F5:20:28:FE:7B:7F:F5:E1:E7:E4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/906d1094-02f1-42d9-b22e-24f2ee4caa70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:1000::/40 Signature Algorithm: sha256WithRSAEncryption 1e:7d:55:ca:4c:a1:db:e3:08:58:fd:9e:b9:a2:46:5c:40:3b: eb:da:5c:aa:34:83:ac:8e:c9:79:6e:c0:1b:e9:c4:7f:37:57: ee:c4:e4:99:10:5e:e5:17:17:43:d5:92:f3:c6:06:d9:c2:f3: bd:8e:aa:7d:c7:5d:d9:11:0f:89:a5:80:ed:b8:c8:d2:e8:b1: 3d:da:f6:33:29:5d:87:e7:95:69:76:e6:e7:a9:ed:6a:8b:67: f7:79:f0:91:dd:a5:09:5f:a7:87:67:45:cf:1a:32:23:3b:32: 11:f0:2c:4b:e1:bb:9b:d6:cc:56:e8:68:bb:f3:66:cd:c1:70: b2:b0:17:c8:41:47:18:94:da:95:82:10:b1:8f:c9:87:0b:a5: 69:0d:ae:8d:e1:54:87:7d:8a:a5:6c:13:d2:5d:8d:14:43:0f: 4b:83:ec:a1:6d:49:27:f5:5d:8a:1a:73:7b:fc:25:8e:29:57: c2:32:0f:01:59:ac:59:ef:8f:45:f1:10:29:1d:85:b5:45:5c: b0:3f:dd:25:1f:ca:4c:0c:6b:7f:a9:88:19:7d:57:0b:a4:6c: 94:a9:d4:81:4b:c4:e3:d8:be:a2:ba:93:7f:f2:a1:61:b5:34: be:f6:5e:3b:c9:f1:0f:a9:7d:b8:99:c5:ac:fe:73:53:d3:af: 6b:67:df:4a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCYgnYhmn1pOqDjF/7+bgo2jc7scwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDUwMjAwMDAwMFoX DTI0MDYwNjIzNTk1OVowejFJMEcGA1UEBRNAZmU2MWM0NTgwZmYxNTFlMDgxYjg3 ZTBiN2YyNDJmMjQ5MmIwOTgzYTBlNTk0MDNmYWJjN2I3MjY1Y2NmNzNhNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxDIYQa4LWha+DOnNhRpmONdEbeQ zvDtpNdUaK9GIukmXxRZ8X2oBB6dqkdtJWt7lP7IJOAi6jXuMgDllWN2porw9SVD WWgq9EIEHJJUcSzkfPL03ZrRvofF6UM+UBA52paiX4hXNbf6eLRj02LT7SooTwT5 GfdEgmammylpifzYg4+ZKfFOO0HMYtZzlFjjv9gO3Lo3Jp/665h1yPIJxujvxfjg 0yp3YBnzlah4vpEG+tAbBm5/1R9rWAxITlGHU9s4ob6iKzIVApt5Kd8YbOVZils4 +NVYM8D0wm3hT4m0VVbZPBDbii9hLk3dAAa+5G3cEq7HxssaBWRXXoMZzwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNnXYf4KvgXNTPH1ICj+e3/14efkMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkwNmQxMDk0LTAyZjEtNDJkOS1iMjJlLTI0ZjJlZTRjYWE3MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOBAwDQYJKoZIhvcNAQELBQADggEBAB59VcpModvjCFj9nrmi RlxAO+vaXKo0g6yOyXluwBvpxH83V+7E5JkQXuUXF0PVkvPGBtnC872Oqn3HXdkR D4mlgO24yNLosT3a9jMpXYfnlWl25uep7WqLZ/d58JHdpQlfp4dnRc8aMiM7MhHw LEvhu5vWzFboaLvzZs3BcLKwF8hBRxiU2pWCELGPyYcLpWkNro3hVId9iqVsE9Jd jRRDD0uD7KFtSSf1XYoac3v8JY4pV8IyDwFZrFnvj0XxECkdhbVFXLA/3SUfykwM a3+piBl9VwukbJSp1IFLxOPYvqK6k3/yoWG1NL72XjvJ8Q+pfbiZxaz+c1PTr2tn 30o= -----END CERTIFICATE-----Generated at Sat May 18 05:38:26 2024 by rpki-client on console-ams.rpki-client.org