$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa File: 97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa (raw, json) Hash identifier: 8bAq1wrPI+neDXNgGoas8hbKhE5ikM5qqwYAO26I4nQ= Subject key identifier: 49:6F:0F:D9:B5:28:88:2B:8A:1A:64:3B:89:11:D3:D0:81:6E:E0:EE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 583B70EEC3B73B5490E14322728A4DDBBC86021F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa Signing time: Tue 12 Nov 2024 00:00:00 +0000 ROA not before: Tue 12 Nov 2024 00:00:00 +0000 ROA not after: Tue 17 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2b::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:3b:70:ee:c3:b7:3b:54:90:e1:43:22:72:8a:4d:db:bc:86:02:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 12 00:00:00 2024 GMT Not After : Dec 17 23:59:59 2024 GMT Subject: serialNumber=f45e492c866ab07fbf1bc4300a185575c4251d15657d6e859ac85e5d86031a49, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:06:92:43:0b:2c:7b:fc:3a:79:69:b8:84:1b: 60:00:05:bd:cc:bf:0b:6a:7a:be:e1:7b:6b:94:ef: 37:34:e8:07:01:8a:0d:af:a0:c2:20:d3:68:ae:a2: 33:6e:d7:3f:3b:d5:8b:dd:72:e7:34:cb:8b:1b:84: df:09:20:f3:b5:50:97:1a:81:5d:b8:c7:35:f5:15: ff:f2:ba:aa:9a:23:03:25:17:6e:50:f6:c0:1f:94: c1:88:e9:30:66:a7:a8:62:19:b3:8a:d1:49:48:f8: 92:7e:6a:0f:47:5d:8c:1e:93:8a:b8:2d:9b:46:0f: 25:02:a2:38:47:9f:64:ab:54:3c:14:e4:bf:bd:19: dd:15:9b:8d:0f:a1:c7:7a:95:83:9e:71:b3:1c:ff: 0f:e0:c6:cd:f6:58:32:30:4a:29:a1:99:11:3f:11: f3:03:bb:3b:c3:62:59:12:e5:ce:c2:c0:57:87:72: 61:2b:55:d6:f7:51:79:d8:6c:b2:1a:f1:37:ec:e6: 6a:08:cd:67:f2:78:6d:8d:29:f5:1c:e8:53:f6:fe: 16:68:ac:c3:7d:06:5e:e7:56:19:1e:e9:1f:b7:8f: 3b:b3:34:ad:1b:de:07:79:2c:c9:f0:d5:e2:4a:30: 1f:2f:7a:3f:8f:26:de:82:ff:49:e8:cd:88:6a:ca: 6d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6F:0F:D9:B5:28:88:2B:8A:1A:64:3B:89:11:D3:D0:81:6E:E0:EE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2b::/36 Signature Algorithm: sha256WithRSAEncryption 11:76:88:82:ae:f0:09:6e:02:b8:63:56:58:b7:42:5c:85:66: cc:21:f3:1d:25:fb:9e:aa:0d:26:e2:02:31:15:1f:a5:1c:17: 57:2a:3d:d5:6b:1c:af:a6:fb:c4:6a:52:1f:11:fe:fa:dd:7a: 80:56:5f:bb:b7:96:7c:d5:7c:18:ea:b8:f0:76:c1:7d:fd:c4: b5:ff:1e:5b:3d:dc:a3:0a:3a:30:5b:47:0e:60:4b:69:3d:de: cb:0e:a4:96:46:50:06:c3:61:41:c8:6e:5e:f1:4a:e3:96:49: 5a:fa:1c:b6:8a:66:5d:2e:01:bb:e6:d0:48:31:e5:6a:04:98: 0e:1e:92:a5:19:c8:10:cd:42:63:3f:e1:0d:d3:93:2d:b5:6f: 3c:37:51:ba:64:16:3d:16:d2:d8:f8:09:d5:f3:a5:04:33:f2: e8:bf:a9:26:15:e7:c8:c9:76:dd:e0:6f:e4:65:34:a8:3f:88: 7e:bc:6c:48:23:7b:ef:92:81:0b:a8:19:bc:76:5a:db:33:80: 6e:86:0a:80:92:88:cb:53:3a:2d:64:0a:3f:53:b9:f6:33:32: 7c:c0:19:11:a9:c5:ff:2d:dd:05:66:ce:bb:3f:00:8a:4b:ca: 26:35:fc:b2:fb:82:1e:ae:34:88:8e:26:fa:81:78:2e:5f:56: c1:82:9c:0b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWDtw7sO3O1SQ4UMicopN27yGAh8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExMjAwMDAwMFoX DTI0MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAZjQ1ZTQ5MmM4NjZhYjA3ZmJmMWJj NDMwMGExODU1NzVjNDI1MWQxNTY1N2Q2ZTg1OWFjODVlNWQ4NjAzMWE0OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAaSQwsse/w6eWm4hBtgAAW9zL8L anq+4XtrlO83NOgHAYoNr6DCINNorqIzbtc/O9WL3XLnNMuLG4TfCSDztVCXGoFd uMc19RX/8rqqmiMDJRduUPbAH5TBiOkwZqeoYhmzitFJSPiSfmoPR12MHpOKuC2b Rg8lAqI4R59kq1Q8FOS/vRndFZuND6HHepWDnnGzHP8P4MbN9lgyMEopoZkRPxHz A7s7w2JZEuXOwsBXh3JhK1XW91F52GyyGvE37OZqCM1n8nhtjSn1HOhT9v4WaKzD fQZe51YZHukft487szStG94HeSzJ8NXiSjAfL3o/jybegv9J6M2IasptIwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFElvD9m1KIgrihpkO4kR09CBbuDuMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3YWNiMDllLWE0YWMtNDk4Yi1iZmE4LWZmMmQ4ZGEyYmYzYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKwAwDQYJKoZIhvcNAQELBQADggEBABF2iIKu8AluArhjVli3 QlyFZswh8x0l+56qDSbiAjEVH6UcF1cqPdVrHK+m+8RqUh8R/vrdeoBWX7u3lnzV fBjquPB2wX39xLX/Hls93KMKOjBbRw5gS2k93ssOpJZGUAbDYUHIbl7xSuOWSVr6 HLaKZl0uAbvm0Egx5WoEmA4ekqUZyBDNQmM/4Q3Tky21bzw3UbpkFj0W0tj4CdXz pQQz8ui/qSYV58jJdt3gb+RlNKg/iH68bEgje++SgQuoGbx2WtszgG6GCoCSiMtT Oi1kCj9TufYzMnzAGRGpxf8t3QVmzrs/AIpLyiY1/LL7gh6uNIiOJvqBeC5fVsGC nAs= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:36 2024 by rpki-client on console-fra.rpki-client.org