$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94aecf12-a0a8-43cd-b24c-37950ef5429d.roa File: 94aecf12-a0a8-43cd-b24c-37950ef5429d.roa (raw, json) Hash identifier: ohZ5Hc1/zOrXAp1AI1Ft1bhCWxXTME48XeHA4WFM71w= Subject key identifier: A5:A6:C5:61:02:BD:34:D9:9E:66:4E:CD:56:A6:16:6E:F3:8A:7A:A2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 04DF3AEB748C373EDFFC59AC490789740BBF4A22 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94aecf12-a0a8-43cd-b24c-37950ef5429d.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da27::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 00:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:df:3a:eb:74:8c:37:3e:df:fc:59:ac:49:07:89:74:0b:bf:4a:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=eba6305ae37a9822d4d37f46daab7a2675ba0f508c5ce2a1f52dfeda25769423, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:58:fc:3f:ce:44:04:21:42:d0:93:95:41:b3: 38:3f:32:fb:d6:eb:1f:68:78:a0:fe:31:1f:7e:29: a6:11:c1:51:a2:98:48:93:9b:e4:f8:f2:2f:c8:68: 05:3c:73:8f:e9:2f:34:90:88:f7:79:ff:6e:fa:de: 78:5f:4a:7a:ef:b3:83:7e:85:01:1b:19:7c:f5:71: 00:88:30:b6:81:9e:5d:f7:0e:52:d8:b6:ac:5b:ca: d7:d2:14:e8:83:45:c7:54:af:e9:be:52:77:f0:01: 51:a9:fa:c9:b6:ac:a4:c8:0a:c2:a6:cb:69:3c:43: 5a:fe:e3:84:94:50:7e:09:1c:a0:fb:b6:b3:65:50: 3c:4d:db:e5:67:9c:e3:31:e6:9d:b6:2e:af:be:ab: ff:43:e5:1f:7f:ec:dc:bc:39:87:56:d4:39:e4:39: 16:8f:51:af:b2:79:5b:ad:1a:36:cb:4a:68:a3:87: 34:7f:ca:cd:bf:32:9b:86:6c:e4:61:f8:90:eb:73: a5:e3:19:da:5c:8b:95:b4:cd:e9:27:24:94:91:54: 76:d4:24:df:04:43:8f:1a:7c:6b:b1:0f:4a:1b:f8: 0b:b7:33:af:aa:7f:ce:10:5b:40:4d:fe:02:05:85: 8b:1b:dd:66:d3:be:9e:dd:cb:51:3f:b8:10:2d:ea: 27:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A6:C5:61:02:BD:34:D9:9E:66:4E:CD:56:A6:16:6E:F3:8A:7A:A2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94aecf12-a0a8-43cd-b24c-37950ef5429d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da27::/36 Signature Algorithm: sha256WithRSAEncryption 5b:32:f6:59:f5:24:16:93:96:54:23:3a:04:d3:29:d6:36:a1: 1e:c3:1a:95:cc:2e:64:80:20:bc:03:f2:47:4f:5b:4f:c3:7a: 8d:1d:cc:88:88:b8:3c:24:ca:6b:ca:bc:d1:32:05:f8:13:4a: b5:35:9b:e4:a1:f5:97:fb:2d:8b:bd:4c:2a:1d:b3:63:4c:0e: e6:f3:8f:5b:95:01:c7:c4:70:49:1b:f6:c6:6b:95:a7:2f:30: ba:ee:db:88:ba:06:c6:09:63:b3:df:9e:a9:d4:d5:02:90:35: 09:d7:9c:27:c7:d6:07:14:c7:a7:cc:33:4d:d1:3b:0a:ba:22: 9b:0b:eb:a6:88:20:bf:79:f4:aa:30:fc:e2:76:fe:d1:ba:c0: b6:5f:a4:d5:bb:dd:f8:d0:3d:d8:6a:e5:c1:ec:a0:ba:5a:07: 3e:4d:44:0e:14:e2:e6:85:f3:9e:a0:e7:b7:a9:83:97:4a:a1: cd:c4:e2:5a:14:1c:02:a9:c6:47:10:1c:c8:9e:45:6a:cf:7f: 28:50:6d:97:dc:dd:fa:88:17:66:19:68:db:74:55:8e:8b:2c: 3e:53:26:56:e0:80:3b:df:66:47:2d:8e:2f:56:1b:70:9e:cf: ea:60:c9:5b:7e:f1:c5:43:b4:a1:a5:b1:13:46:77:2b:8b:8c: bf:28:73:e6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUBN8663SMNz7f/FmsSQeJdAu/SiIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQyNDAwMDAwMFoX DTI0MDUyOTIzNTk1OVowejFJMEcGA1UEBRNAZWJhNjMwNWFlMzdhOTgyMmQ0ZDM3 ZjQ2ZGFhYjdhMjY3NWJhMGY1MDhjNWNlMmExZjUyZGZlZGEyNTc2OTQyMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Fj8P85EBCFC0JOVQbM4PzL71usf aHig/jEffimmEcFRophIk5vk+PIvyGgFPHOP6S80kIj3ef9u+t54X0p677ODfoUB Gxl89XEAiDC2gZ5d9w5S2LasW8rX0hTog0XHVK/pvlJ38AFRqfrJtqykyArCpstp PENa/uOElFB+CRyg+7azZVA8TdvlZ5zjMeadti6vvqv/Q+Uff+zcvDmHVtQ55DkW j1GvsnlbrRo2y0poo4c0f8rNvzKbhmzkYfiQ63Ol4xnaXIuVtM3pJySUkVR21CTf BEOPGnxrsQ9KG/gLtzOvqn/OEFtATf4CBYWLG91m076e3ctRP7gQLeon8QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKWmxWECvTTZnmZOzVamFm7zinqiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk0YWVjZjEyLWEwYTgtNDNjZC1iMjRjLTM3OTUwZWY1NDI5ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaJwAwDQYJKoZIhvcNAQELBQADggEBAFsy9ln1JBaTllQjOgTT KdY2oR7DGpXMLmSAILwD8kdPW0/Deo0dzIiIuDwkymvKvNEyBfgTSrU1m+Sh9Zf7 LYu9TCods2NMDubzj1uVAcfEcEkb9sZrlacvMLru24i6BsYJY7PfnqnU1QKQNQnX nCfH1gcUx6fMM03ROwq6IpsL66aIIL959Kow/OJ2/tG6wLZfpNW73fjQPdhq5cHs oLpaBz5NRA4U4uaF856g57epg5dKoc3E4loUHAKpxkcQHMieRWrPfyhQbZfc3fqI F2YZaNt0VY6LLD5TJlbggDvfZkctji9WG3Cez+pgyVt+8cVDtKGlsRNGdyuLjL8o c+Y= -----END CERTIFICATE-----Generated at Thu Apr 25 00:30:40 2024 by rpki-client on console-fra.rpki-client.org