$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9c0c2fd2-a3e6-4530-a632-2b2fbb4434c8.roa File: 9c0c2fd2-a3e6-4530-a632-2b2fbb4434c8.roa (raw, json) Hash identifier: xlg1WkyLzAmU87KZ0Iz1XvGaRI4PqXeApTAvfvL8qZU= Subject key identifier: 9F:27:C4:6D:22:4E:32:47:11:04:B8:CD:67:CA:2C:1D:71:1D:D2:A9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 10DB7B608FD867934E4F5D9DE19B4AD03176C083 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9c0c2fd2-a3e6-4530-a632-2b2fbb4434c8.roa Signing time: Sat 23 Nov 2024 00:00:00 +0000 ROA not before: Sat 23 Nov 2024 00:00:00 +0000 ROA not after: Sat 28 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:db:7b:60:8f:d8:67:93:4e:4f:5d:9d:e1:9b:4a:d0:31:76:c0:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:00:00 2024 GMT Not After : Dec 28 23:59:59 2024 GMT Subject: serialNumber=3db8d82648adbf098e85d62346070559b0cc0c6d1bbbb66a3f427eb97fa1d74d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:36:59:23:45:a0:89:3a:97:de:b6:53:38:82: e3:9c:5b:67:4d:fb:3c:39:96:b5:d3:a1:ad:46:3b: 9d:2d:3f:d4:b2:d5:b6:1a:ed:e2:c8:da:b0:bf:f9: 87:1f:d4:70:10:5b:fb:7c:6f:5b:db:64:3c:d0:ca: 37:04:fa:1b:b6:8d:f1:ce:74:20:f2:5b:a9:73:65: 41:ab:f1:7b:82:c7:98:d1:91:51:27:00:7e:2b:92: 3b:12:17:c9:1d:f0:e5:24:dc:26:c0:63:38:3b:1f: be:dc:fd:0e:b3:ec:f2:ec:5e:d4:de:cf:af:9f:ef: a6:4d:84:26:71:ec:5b:4f:53:76:6b:dc:3a:aa:8b: 0f:8c:aa:70:5f:10:70:b5:45:e9:7a:de:fd:2c:1c: 9b:9c:fb:fc:95:b7:20:c2:85:14:a5:e5:18:03:a1: 72:98:ca:dc:80:ab:ce:d1:4e:02:a7:cb:8a:1d:37: 48:b0:b0:1d:49:14:73:e1:49:9f:01:0c:60:1b:28: 9b:41:5e:ad:fc:29:72:a1:36:43:a5:12:1f:49:c1: 8f:21:41:72:4c:89:0b:97:53:d2:8f:f4:0e:b5:61: 3f:f2:d2:57:5b:4d:45:e7:6d:1c:cc:dc:2d:b6:02: 7f:20:48:b6:56:d6:b9:1c:d5:85:06:72:ac:a2:61: 7d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:27:C4:6D:22:4E:32:47:11:04:B8:CD:67:CA:2C:1D:71:1D:D2:A9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9c0c2fd2-a3e6-4530-a632-2b2fbb4434c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:2000::/40 Signature Algorithm: sha256WithRSAEncryption 98:3b:e9:b8:13:7f:9c:fa:4a:20:28:93:a8:dd:2d:72:51:25: 4e:1a:51:91:f4:dd:5f:c0:c1:9f:79:fd:df:b0:dd:e2:1a:c1: 22:78:22:23:02:cc:0d:6a:73:5d:70:d9:2f:6d:5c:2f:92:c3: cf:83:09:c4:4e:21:14:2d:e4:3d:ac:21:71:bb:48:5a:ac:17: 25:0b:09:e1:cf:d0:95:de:e7:a8:06:b2:1e:6c:36:6e:7a:08: 8b:33:34:f0:29:45:69:d2:3a:ce:87:15:d4:a8:a4:cb:e9:ed: 60:c7:d5:a0:07:7e:72:8c:f3:36:38:95:c3:07:52:df:a7:15: db:e5:32:5b:c5:b8:72:9c:2e:6e:63:ae:ca:59:48:4a:60:07: 81:cf:97:d2:07:f1:1e:b4:94:32:64:de:3e:50:06:ac:e4:e2: 2c:87:43:d6:71:48:5a:08:fd:b7:87:a8:99:30:61:a1:3d:2b: 2f:85:43:d1:7c:7d:b6:36:a6:bf:85:5b:4d:af:d2:f1:02:f3: 9b:3c:c5:b5:50:af:9a:16:a2:2c:59:11:0e:a0:dd:dc:dc:d7: 40:30:1a:40:d0:b1:43:06:ac:d0:9d:0b:ee:2d:1b:8c:9d:99: 73:5e:0a:a2:df:f0:71:60:0b:37:34:48:38:0f:88:09:9a:ab: 61:64:05:85 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUENt7YI/YZ5NOT12d4ZtK0DF2wIMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMzAwMDAwMFoX DTI0MTIyODIzNTk1OVowejFJMEcGA1UEBRNAM2RiOGQ4MjY0OGFkYmYwOThlODVk NjIzNDYwNzA1NTliMGNjMGM2ZDFiYmJiNjZhM2Y0MjdlYjk3ZmExZDc0ZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6TZZI0WgiTqX3rZTOILjnFtnTfs8 OZa106GtRjudLT/UstW2Gu3iyNqwv/mHH9RwEFv7fG9b22Q80Mo3BPobto3xznQg 8lupc2VBq/F7gseY0ZFRJwB+K5I7EhfJHfDlJNwmwGM4Ox++3P0Os+zy7F7U3s+v n++mTYQmcexbT1N2a9w6qosPjKpwXxBwtUXpet79LBybnPv8lbcgwoUUpeUYA6Fy mMrcgKvO0U4Cp8uKHTdIsLAdSRRz4UmfAQxgGyibQV6t/ClyoTZDpRIfScGPIUFy TIkLl1PSj/QOtWE/8tJXW01F520czNwttgJ/IEi2Vta5HNWFBnKsomF9jQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJ8nxG0iTjJHEQS4zWfKLB1xHdKpMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzljMGMyZmQyLWEzZTYtNDUzMC1hNjMyLTJiMmZiYjQ0MzRjOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/yAwDQYJKoZIhvcNAQELBQADggEBAJg76bgTf5z6SiAok6jd LXJRJU4aUZH03V/AwZ95/d+w3eIawSJ4IiMCzA1qc11w2S9tXC+Sw8+DCcROIRQt 5D2sIXG7SFqsFyULCeHP0JXe56gGsh5sNm56CIszNPApRWnSOs6HFdSopMvp7WDH 1aAHfnKM8zY4lcMHUt+nFdvlMlvFuHKcLm5jrspZSEpgB4HPl9IH8R60lDJk3j5Q Bqzk4iyHQ9ZxSFoI/beHqJkwYaE9Ky+FQ9F8fbY2pr+FW02v0vEC85s8xbVQr5oW oixZEQ6g3dzc10AwGkDQsUMGrNCdC+4tG4ydmXNeCqLf8HFgCzc0SDgPiAmaq2Fk BYU= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:16 2024 by rpki-client on console-fra.rpki-client.org