$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a27a6eed-8d4e-4ed8-a0e5-18566991ae5c.roa File: a27a6eed-8d4e-4ed8-a0e5-18566991ae5c.roa (raw, json) Hash identifier: vlNh8ZBRLupag8Vi4HZ3ddR51biRgyqye+Bc4K/XjUc= Subject key identifier: 80:E9:25:24:C6:D9:4B:97:AC:B3:76:89:EF:1A:D4:E4:25:69:67:C6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0CB858881F6256ED782C236B6310B06A4C8D5B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a27a6eed-8d4e-4ed8-a0e5-18566991ae5c.roa Signing time: Fri 25 Oct 2024 00:00:00 +0000 ROA not before: Fri 25 Oct 2024 00:00:00 +0000 ROA not after: Fri 29 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafc:ff60::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b8:58:88:1f:62:56:ed:78:2c:23:6b:63:10:b0:6a:4c:8d:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 25 00:00:00 2024 GMT Not After : Nov 29 23:59:59 2024 GMT Subject: serialNumber=a558569872b886de72035a295c8a06d545ccfcbfb08e492f869c0978e3a88f95, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:35:03:f4:6e:f5:e4:6d:d0:b3:13:4b:38:11: 04:2e:05:5a:a1:eb:bf:58:28:18:dd:a0:b4:25:8b: 91:16:67:0b:99:22:c8:63:93:b9:af:d5:72:50:04: 33:e8:8b:e4:a2:76:1b:e8:cf:05:3d:5c:82:22:08: c0:74:56:ba:ab:01:4c:04:75:eb:6e:9b:40:41:bc: f0:aa:6d:9e:0c:fb:7d:e5:b2:a2:4b:b4:04:34:ac: 3b:6a:50:44:4d:09:7a:98:07:5d:ea:e1:e1:10:00: 8e:23:42:86:0c:d1:9a:3b:96:f9:de:35:c9:62:04: 1b:b1:94:85:09:cd:e7:ec:b5:b1:8b:39:4d:2c:d6: 35:7b:f2:c9:32:15:1d:a8:3b:ce:8f:c3:e3:b5:56: 61:3e:d7:ca:04:35:95:7c:13:83:b3:71:2c:9d:36: 63:98:ca:6d:88:af:f2:49:e3:b5:80:3a:4e:95:2d: 61:cc:a3:8d:1c:49:b3:ed:ed:55:58:d1:9e:0d:ea: 3d:c4:db:24:2f:df:0c:63:8b:5c:02:1b:2b:51:57: d7:93:74:9c:ab:ec:9d:db:92:1f:2a:68:84:b6:1d: 30:56:93:31:6e:65:52:7b:8d:cc:d7:24:21:82:da: 62:77:14:d4:2a:ac:88:67:9e:56:d4:8e:18:42:3d: 53:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E9:25:24:C6:D9:4B:97:AC:B3:76:89:EF:1A:D4:E4:25:69:67:C6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a27a6eed-8d4e-4ed8-a0e5-18566991ae5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafc:ff60::/46 Signature Algorithm: sha256WithRSAEncryption 20:c4:14:f9:1a:d3:a6:41:ec:b8:48:72:67:4e:ed:15:50:86: 73:f7:7c:5d:7d:75:86:e0:f8:da:25:b4:dd:3e:fe:f2:29:fc: 9b:d7:1e:55:8b:77:f5:5f:3d:25:a5:7a:59:23:08:1e:35:9d: 2b:92:aa:b7:1e:5b:f2:4f:32:b4:c6:37:3a:14:60:ba:bf:a8: 18:59:4e:22:fe:62:19:f2:df:ee:c9:74:e4:d0:5d:59:d1:28: dc:e9:a3:fe:bf:6c:d1:f1:26:87:f4:9e:0a:d6:ea:2e:9a:b9: b4:91:2f:d1:3e:4b:8f:5d:17:ce:7c:12:7c:62:de:c1:21:fc: 6b:ea:3e:f8:56:15:13:e3:07:5b:45:d9:7b:81:a8:69:91:56: fb:e4:dc:df:ea:9b:b1:6f:b8:0e:45:e1:0c:ad:63:bb:59:02: 45:5f:fd:01:84:83:c2:a4:57:ed:29:3a:22:01:e5:01:46:94: 6f:98:0b:8f:d4:e2:a3:e7:a0:0e:fb:97:f2:64:80:37:b0:e6: cf:19:15:b5:33:6b:b5:f8:e8:23:c4:df:96:ff:1f:4f:09:67: 99:12:11:8f:de:53:ef:b1:72:13:89:8c:6a:cc:5f:e8:77:3a: a3:b0:b1:47:2d:d1:3e:f4:dd:02:ce:66:19:a8:e9:ba:9a:a9: b9:be:6c:72 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgITDLhYiB9iVu14LCNrYxCwakyNWzANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTFGNjM1RjAwMDAxMTAvBgNVBAUTKDQwNzY4MjU1MjRE MkM2NkQyRTEwNDM2RkU2NUU5M0U4QzFCRDRBMzcwHhcNMjQxMDI1MDAwMDAwWhcN MjQxMTI5MjM1OTU5WjB6MUkwRwYDVQQFE0BhNTU4NTY5ODcyYjg4NmRlNzIwMzVh Mjk1YzhhMDZkNTQ1Y2NmY2JmYjA4ZTQ5MmY4NjljMDk3OGUzYTg4Zjk1MS0wKwYD VQQDEyRjMGJmMGZlOC03MTdjLTRmNzItOWI0NS1jOWM1MTkxMzJhODEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9NQP0bvXkbdCzE0s4EQQuBVqh679Y KBjdoLQli5EWZwuZIshjk7mv1XJQBDPoi+SidhvozwU9XIIiCMB0VrqrAUwEdetu m0BBvPCqbZ4M+33lsqJLtAQ0rDtqUERNCXqYB13q4eEQAI4jQoYM0Zo7lvneNcli BBuxlIUJzefstbGLOU0s1jV78skyFR2oO86Pw+O1VmE+18oENZV8E4OzcSydNmOY ym2Ir/JJ47WAOk6VLWHMo40cSbPt7VVY0Z4N6j3E2yQv3wxji1wCGytRV9eTdJyr 7J3bkh8qaIS2HTBWkzFuZVJ7jczXJCGC2mJ3FNQqrIhnnlbUjhhCPVORAgMBAAGj ggJLMIICRzAdBgNVHQ4EFgQUgOklJMbZS5ess3aJ7xrU5CVpZ8YwHwYDVR0jBBgw FoAUQHaCVSTSxm0uEENv5l6T6MG9SjcwDgYDVR0PAQH/BAQDAgeAMH4GCCsGAQUF BwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBv c2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL1FIYUNWU1RT eG0wdUVFTnY1bDZUNk1HOVNqYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEv YTI3YTZlZWQtOGQ0ZS00ZWQ4LWEwZTUtMTg1NjY5OTFhZTVjLnJvYTCBlQYDVR0f BIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFt YXpvbmF3cy5jb20vdm9sdW1lLzA4YzJmMjY0LTIzZjktNDlmYi05ZDQzLWY4YjUw YmVjOTI2MS83YmExNzg2My1hNjEzLTQxOTctOWVkNS1iZWRhNmE4OTg2OWYuY3Js MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwIkBtr8/2AwDQYJKoZIhvcNAQELBQADggEBACDEFPka06ZB7LhIcmdO 7RVQhnP3fF19dYbg+NoltN0+/vIp/JvXHlWLd/VfPSWlelkjCB41nSuSqrceW/JP MrTGNzoUYLq/qBhZTiL+Yhny3+7JdOTQXVnRKNzpo/6/bNHxJof0ngrW6i6aubSR L9E+S49dF858Enxi3sEh/GvqPvhWFRPjB1tF2XuBqGmRVvvk3N/qm7FvuA5F4Qyt Y7tZAkVf/QGEg8KkV+0pOiIB5QFGlG+YC4/U4qPnoA77l/JkgDew5s8ZFbUza7X4 6CPE35b/H08JZ5kSEY/eU++xchOJjGrMX+h3OqOwsUct0T703QLOZhmo6bqaqbm+ bHI= -----END CERTIFICATE-----Generated at Fri Oct 25 17:02:34 2024 by rpki-client on console-fra.rpki-client.org