$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa File: a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa (raw, json) Hash identifier: GvlfcZrHwLBJVOIHwFMfcJk41Ql/+KPK0jQA1hGaa0E= Subject key identifier: 83:72:D2:75:EC:20:51:EC:02:3D:6E:71:DE:3A:1E:16:CE:03:83:D3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 520FBF10D61A563EFB1195917802B6F4634EEF8D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa Signing time: Fri 18 Oct 2024 00:00:00 +0000 ROA not before: Fri 18 Oct 2024 00:00:00 +0000 ROA not after: Fri 22 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da21::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:0f:bf:10:d6:1a:56:3e:fb:11:95:91:78:02:b6:f4:63:4e:ef:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 18 00:00:00 2024 GMT Not After : Nov 22 23:59:59 2024 GMT Subject: serialNumber=c9b469747843c715a20b5f0b8dbbf81717638647c3be1c1f6a7c5b35262ad0d0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d8:aa:8e:43:f0:a9:26:29:b5:db:69:70:3e: 80:67:be:34:c7:0d:f9:2e:0f:12:13:a5:57:a8:5e: 10:8a:fe:a5:b9:3f:14:00:d8:33:5f:3b:0c:a1:cb: 9d:38:95:b4:e5:a3:f1:f7:3c:a3:c2:d7:13:da:04: 14:09:c6:df:12:43:a8:45:44:6c:21:ed:84:dd:b0: e5:ae:24:e0:71:1f:46:30:f3:e4:42:78:9b:5b:44: 7d:5a:25:86:39:3f:5a:77:24:99:9d:ac:26:a5:60: 48:b6:e9:2d:37:e5:04:1d:5d:02:ea:a9:fa:2e:85: ee:ad:47:20:ea:71:5e:60:ed:c6:23:4f:13:cd:23: 56:2a:b1:45:13:14:73:8d:69:cd:92:78:b0:44:a7: 79:21:fe:34:63:b9:90:91:d0:f9:e9:18:32:a0:2d: ae:89:bc:4c:b7:66:31:ee:84:11:f7:f0:b1:08:06: 41:91:df:74:64:2e:3f:df:a6:ab:fc:6c:0e:87:42: 33:f9:8e:aa:e3:61:75:34:e6:08:0c:42:f2:c7:1b: 24:da:2e:b9:59:6e:1b:c9:e0:5e:c4:e2:d2:03:7c: 70:23:96:df:e0:eb:63:29:ec:4d:cd:52:5e:7b:07: a4:09:d0:5d:20:c0:f7:fd:db:d9:e9:e8:bc:e0:2e: 96:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:72:D2:75:EC:20:51:EC:02:3D:6E:71:DE:3A:1E:16:CE:03:83:D3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da21::/36 Signature Algorithm: sha256WithRSAEncryption 3f:80:49:c7:50:cc:5c:84:84:7d:f4:b4:47:b2:14:96:c5:87: be:43:cb:5a:00:0a:d4:20:7b:68:08:0b:81:7e:02:2f:67:cd: ce:bb:7d:4f:42:b8:67:f5:85:c6:d8:8a:76:70:c2:f5:94:38: 36:55:f0:17:70:2c:0b:72:63:85:6a:5b:1a:98:3b:71:ad:05: 12:e7:11:e5:da:00:57:da:47:9f:81:e4:ac:fb:fd:6a:ba:9f: 02:ff:2a:2b:47:ae:92:e6:7f:5c:bc:81:a2:77:d2:9c:ec:31: de:61:62:d7:fd:1b:ca:5e:62:37:47:3e:33:4f:75:f8:0b:f8: 06:b0:9a:e7:1b:fc:ad:c0:e9:a8:af:2c:7d:b2:b3:9a:9b:04: be:79:6f:02:94:16:a2:89:c8:70:44:f9:a0:66:c3:52:b2:17: da:e4:1c:fd:90:b4:c1:98:ae:35:52:6d:bf:71:40:84:45:3c: 44:d6:e1:b4:60:2c:5e:a6:1d:75:84:48:75:45:84:ff:5b:c6: 55:87:87:29:a1:f0:5e:85:f0:c1:3d:46:b4:aa:dc:37:10:62: d9:e1:62:e5:7d:9a:ec:c9:b2:6c:55:2c:72:18:28:52:00:46: 8d:06:10:54:16:15:d6:1f:d5:0f:fe:b2:75:7e:91:37:15:fd: d6:d1:93:b4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUg+/ENYaVj77EZWReAK29GNO740wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAxODAwMDAwMFoX DTI0MTEyMjIzNTk1OVowejFJMEcGA1UEBRNAYzliNDY5NzQ3ODQzYzcxNWEyMGI1 ZjBiOGRiYmY4MTcxNzYzODY0N2MzYmUxYzFmNmE3YzViMzUyNjJhZDBkMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtiqjkPwqSYptdtpcD6AZ740xw35 Lg8SE6VXqF4Qiv6luT8UANgzXzsMocudOJW05aPx9zyjwtcT2gQUCcbfEkOoRURs Ie2E3bDlriTgcR9GMPPkQnibW0R9WiWGOT9adySZnawmpWBItuktN+UEHV0C6qn6 LoXurUcg6nFeYO3GI08TzSNWKrFFExRzjWnNkniwRKd5If40Y7mQkdD56RgyoC2u ibxMt2Yx7oQR9/CxCAZBkd90ZC4/36ar/GwOh0Iz+Y6q42F1NOYIDELyxxsk2i65 WW4byeBexOLSA3xwI5bf4OtjKexNzVJeewekCdBdIMD3/dvZ6ei84C6WNQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFINy0nXsIFHsAj1ucd46HhbOA4PTMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EyNTE0ZmUzLTU3NzktNDE3NC1iYTYyLTJhMTllMGM3ZGRmOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIQAwDQYJKoZIhvcNAQELBQADggEBAD+AScdQzFyEhH30tEey FJbFh75Dy1oACtQge2gIC4F+Ai9nzc67fU9CuGf1hcbYinZwwvWUODZV8BdwLAty Y4VqWxqYO3GtBRLnEeXaAFfaR5+B5Kz7/Wq6nwL/KitHrpLmf1y8gaJ30pzsMd5h Ytf9G8peYjdHPjNPdfgL+Aawmucb/K3A6aivLH2ys5qbBL55bwKUFqKJyHBE+aBm w1KyF9rkHP2QtMGYrjVSbb9xQIRFPETW4bRgLF6mHXWESHVFhP9bxlWHhymh8F6F 8ME9RrSq3DcQYtnhYuV9muzJsmxVLHIYKFIARo0GEFQWFdYf1Q/+snV+kTcV/dbR k7Q= -----END CERTIFICATE-----Generated at Fri Oct 25 16:44:26 2024 by rpki-client on console-ams.rpki-client.org