$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa File: 97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa (raw, json) Hash identifier: QwB5quh8yPJVQG6RIPUrAKu41SSTtjDnwu2OnvmVCiQ= Subject key identifier: 27:D1:59:74:37:22:E8:4C:C2:BD:92:5C:ED:1F:F5:82:5D:35:1B:EE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 07D3665009EE43266FC2E572DB59F65DFE86CE4B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa Signing time: Fri 18 Oct 2024 00:00:00 +0000 ROA not before: Fri 18 Oct 2024 00:00:00 +0000 ROA not after: Fri 22 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2b::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d3:66:50:09:ee:43:26:6f:c2:e5:72:db:59:f6:5d:fe:86:ce:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 18 00:00:00 2024 GMT Not After : Nov 22 23:59:59 2024 GMT Subject: serialNumber=bf3ac20671f08fedc6ac40fa5aa455aa4deb1024188a5891fd4c7c46270c6dd5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:23:0e:26:0b:75:43:43:04:da:fd:66:b1:3f: 84:30:b9:6b:26:4d:ca:f5:9c:43:1e:f6:4d:36:d3: 7a:99:58:76:c8:80:76:e3:a3:c5:cb:d5:fc:d2:2e: 85:b4:b5:6b:14:8d:b8:0b:3a:95:59:74:cb:4a:75: 28:b8:fc:9d:6d:c1:52:55:0b:82:17:24:19:b1:b2: 75:17:3b:eb:9d:c3:e4:fe:eb:a9:b7:f0:c5:f4:3f: 77:5b:8b:9a:9c:39:30:54:39:4f:02:85:b7:c7:73: 1e:09:ee:8c:1f:b5:a4:54:ff:43:8f:bc:c8:d2:9d: 58:2e:e0:bc:a9:38:04:5e:33:54:97:7a:8a:86:e6: f6:37:63:10:46:24:72:d5:75:c6:fe:f8:b6:9a:ae: 1f:85:99:79:ff:2d:0d:a8:5b:ca:52:2c:0c:9f:91: 6b:9f:f7:c7:5c:14:9c:2c:88:79:5d:72:12:67:4a: 4f:d5:aa:b9:77:47:a4:67:11:b1:81:15:53:53:4a: bb:8f:ff:c2:1c:93:d8:e2:4c:3e:fc:6c:1c:8d:1a: 7c:48:04:9c:90:f8:03:65:27:25:b1:e0:6d:35:a5: df:a1:e2:6d:25:87:a5:8a:8e:71:3b:87:ac:16:4c: 16:c2:2d:09:7f:e9:a7:e4:3d:63:db:a2:93:d2:5c: ee:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D1:59:74:37:22:E8:4C:C2:BD:92:5C:ED:1F:F5:82:5D:35:1B:EE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2b::/36 Signature Algorithm: sha256WithRSAEncryption 87:88:e2:c3:4a:69:ad:00:2f:61:61:8c:00:99:3e:55:c7:5e: e1:ec:ed:3a:f2:ae:0a:88:7d:f5:85:1d:e1:bf:b6:8c:46:74: dc:9c:ee:c0:0e:6a:81:12:c5:82:ef:03:ab:21:03:60:88:ff: c9:8c:06:48:88:27:fb:b3:6f:34:08:72:3a:88:d0:34:6b:17: 1e:46:5f:6d:a2:ca:f9:79:d8:41:20:c0:f2:cd:f9:38:e2:57: a0:9f:28:86:c7:e4:b8:fd:9d:73:de:d4:c2:3b:72:01:88:d0: 99:89:3f:11:57:88:4c:31:bb:48:3a:0f:4c:2c:d0:62:92:78: f0:7c:60:93:df:78:20:2c:cb:8d:69:f0:7c:9f:05:6f:45:ba: 03:f2:71:78:b5:81:73:a4:89:26:b2:f5:b2:67:f9:c7:5e:4a: 59:e8:75:b4:d9:a8:b9:80:4e:a4:43:9e:11:3c:07:4b:08:e2: 28:81:57:e0:1d:0e:52:ff:a3:7a:4a:37:b2:4f:5f:25:41:59: 2c:fc:e6:8c:df:8c:c6:ae:63:f1:b3:6a:7e:97:bc:31:8f:4b: cc:64:cd:b4:3d:9c:02:e9:7f:a4:d0:14:e3:86:30:a8:b5:9b: 22:29:de:a7:fd:83:6b:92:33:65:da:ab:60:d6:aa:31:b7:62: 12:7d:95:64 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUB9NmUAnuQyZvwuVy21n2Xf6GzkswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAxODAwMDAwMFoX DTI0MTEyMjIzNTk1OVowejFJMEcGA1UEBRNAYmYzYWMyMDY3MWYwOGZlZGM2YWM0 MGZhNWFhNDU1YWE0ZGViMTAyNDE4OGE1ODkxZmQ0YzdjNDYyNzBjNmRkNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyMOJgt1Q0ME2v1msT+EMLlrJk3K 9ZxDHvZNNtN6mVh2yIB246PFy9X80i6FtLVrFI24CzqVWXTLSnUouPydbcFSVQuC FyQZsbJ1FzvrncPk/uupt/DF9D93W4uanDkwVDlPAoW3x3MeCe6MH7WkVP9Dj7zI 0p1YLuC8qTgEXjNUl3qKhub2N2MQRiRy1XXG/vi2mq4fhZl5/y0NqFvKUiwMn5Fr n/fHXBScLIh5XXISZ0pP1aq5d0ekZxGxgRVTU0q7j//CHJPY4kw+/GwcjRp8SASc kPgDZSclseBtNaXfoeJtJYelio5xO4esFkwWwi0Jf+mn5D1j26KT0lzuswIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCfRWXQ3IuhMwr2SXO0f9YJdNRvuMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3YWNiMDllLWE0YWMtNDk4Yi1iZmE4LWZmMmQ4ZGEyYmYzYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKwAwDQYJKoZIhvcNAQELBQADggEBAIeI4sNKaa0AL2FhjACZ PlXHXuHs7TryrgqIffWFHeG/toxGdNyc7sAOaoESxYLvA6shA2CI/8mMBkiIJ/uz bzQIcjqI0DRrFx5GX22iyvl52EEgwPLN+TjiV6CfKIbH5Lj9nXPe1MI7cgGI0JmJ PxFXiEwxu0g6D0ws0GKSePB8YJPfeCAsy41p8HyfBW9FugPycXi1gXOkiSay9bJn +cdeSlnodbTZqLmATqRDnhE8B0sI4iiBV+AdDlL/o3pKN7JPXyVBWSz85ozfjMau Y/Gzan6XvDGPS8xkzbQ9nALpf6TQFOOGMKi1myIp3qf9g2uSM2Xaq2DWqjG3YhJ9 lWQ= -----END CERTIFICATE-----Generated at Fri Oct 25 17:02:33 2024 by rpki-client on console-fra.rpki-client.org