$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a7bfd155-ec9a-4d86-bf47-6a3a8cd492c2.roa File: a7bfd155-ec9a-4d86-bf47-6a3a8cd492c2.roa (raw, json) Hash identifier: 6LyTOXpf9skTZxTrYJsYTBN/rqZCVtAhIG8k/Y7Rkzk= Subject key identifier: BD:D5:4E:48:AF:1C:20:7B:EB:5B:DA:F7:1B:F9:46:D6:42:52:08:3F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6200249E6D096232899E7E82E4D68D771390BE5E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a7bfd155-ec9a-4d86-bf47-6a3a8cd492c2.roa Signing time: Tue 09 Jul 2024 00:00:00 +0000 ROA not before: Tue 09 Jul 2024 00:00:00 +0000 ROA not after: Tue 13 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:c800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:00:24:9e:6d:09:62:32:89:9e:7e:82:e4:d6:8d:77:13:90:be:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 9 00:00:00 2024 GMT Not After : Aug 13 23:59:59 2024 GMT Subject: serialNumber=2e0118cfbca4fd42eaa64fa6c5ce43473230fd2915a5022df76920de476ede6b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:92:8e:ea:df:b1:3e:89:d2:8c:99:cd:0a:81: 12:f3:5f:d7:a3:47:56:8f:ec:6a:a0:df:bd:b6:02: 7d:16:7c:e1:12:33:1f:49:d5:40:f4:76:c1:c7:61: 80:15:d1:d5:8d:d3:82:12:a2:97:ef:4f:52:95:a9: 5c:bf:e6:79:8a:4d:cb:b2:36:10:da:8f:d5:18:a5: 3a:9d:8d:4a:be:5f:70:a4:40:f8:61:2a:54:9b:93: 9a:59:48:23:6a:03:3c:ba:b5:5f:94:ba:83:ff:5f: 28:91:f0:ba:7f:cd:2f:58:17:72:f8:ec:9e:96:30: c3:86:08:3b:d7:57:5f:0f:c4:f3:90:bc:48:9a:88: 01:65:31:01:4a:32:da:a9:e4:d6:13:43:41:c4:7c: 62:71:8d:de:47:9d:b9:9d:ce:35:9c:61:e0:73:20: 88:91:ab:dd:03:fa:4e:8b:9d:22:f1:35:fe:3f:dd: 8e:7e:90:84:33:f4:50:bb:59:de:e8:bf:39:03:bd: 88:b2:b8:ce:a5:32:f5:7b:b4:b0:ef:24:6f:40:5c: 82:1f:e2:ab:a7:b8:0c:d9:fb:72:b2:d4:a4:74:67: 8b:92:de:2b:06:d7:7e:23:2e:5a:16:bc:d5:9d:0e: d3:3f:3c:38:99:a5:74:78:8a:30:50:ac:c0:63:e7: 26:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D5:4E:48:AF:1C:20:7B:EB:5B:DA:F7:1B:F9:46:D6:42:52:08:3F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a7bfd155-ec9a-4d86-bf47-6a3a8cd492c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:c800::/40 Signature Algorithm: sha256WithRSAEncryption 2f:ea:b9:9a:50:ac:c8:58:ee:5d:10:d0:f1:21:d5:cf:e9:9f: 04:6d:a1:93:c5:b5:f1:38:f7:db:be:3c:ea:06:15:f7:26:e5: 34:41:eb:6b:11:8d:55:38:95:02:ec:79:8c:8c:8a:cd:f1:0d: 89:20:98:dd:30:64:55:c2:45:e5:31:03:8f:e6:ca:4a:4e:62: b5:cd:ef:d2:cc:da:62:b2:6c:cb:e1:06:2b:79:e2:dc:cd:26: 9f:df:a8:8d:86:89:4b:02:93:ae:96:e0:1d:fd:52:dc:93:c6: 30:4d:1f:13:61:53:77:4a:ed:78:0b:20:46:61:71:3b:7a:d8: fc:9a:14:0e:cf:d6:98:c4:6f:c7:d8:b5:8b:b1:b5:3a:db:f7: 28:6d:72:53:a0:62:36:d6:32:1a:9b:15:7f:60:f8:f3:6b:8b: ab:95:27:14:72:1c:e2:7b:23:2e:42:82:7e:e1:7f:ac:bb:dd: 53:6f:31:dd:54:5f:30:8f:d2:7c:60:6f:4a:00:b7:fa:14:65: 42:fd:9f:eb:97:04:b8:b6:aa:8b:60:3d:c6:de:fe:b2:24:06: 1e:1f:74:92:50:f9:66:af:84:99:d9:13:b3:30:cd:2c:13:27: 69:9d:06:fa:8c:49:af:22:32:20:8b:8f:a0:c4:52:80:eb:2b: f6:48:43:a3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYgAknm0JYjKJnn6C5NaNdxOQvl4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcwOTAwMDAwMFoX DTI0MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMmUwMTE4Y2ZiY2E0ZmQ0MmVhYTY0 ZmE2YzVjZTQzNDczMjMwZmQyOTE1YTUwMjJkZjc2OTIwZGU0NzZlZGU2YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5KO6t+xPonSjJnNCoES81/Xo0dW j+xqoN+9tgJ9FnzhEjMfSdVA9HbBx2GAFdHVjdOCEqKX709Slalcv+Z5ik3LsjYQ 2o/VGKU6nY1Kvl9wpED4YSpUm5OaWUgjagM8urVflLqD/18okfC6f80vWBdy+Oye ljDDhgg711dfD8TzkLxImogBZTEBSjLaqeTWE0NBxHxicY3eR525nc41nGHgcyCI kavdA/pOi50i8TX+P92OfpCEM/RQu1ne6L85A72IsrjOpTL1e7Sw7yRvQFyCH+Kr p7gM2ftystSkdGeLkt4rBtd+Iy5aFrzVnQ7TPzw4maV0eIowUKzAY+cmYwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFL3VTkivHCB761va9xv5RtZCUgg/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2E3YmZkMTU1LWVjOWEtNGQ4Ni1iZjQ3LTZhM2E4Y2Q0OTJjMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8cgwDQYJKoZIhvcNAQELBQADggEBAC/quZpQrMhY7l0Q0PEh 1c/pnwRtoZPFtfE499u+POoGFfcm5TRB62sRjVU4lQLseYyMis3xDYkgmN0wZFXC ReUxA4/mykpOYrXN79LM2mKybMvhBit54tzNJp/fqI2GiUsCk66W4B39UtyTxjBN HxNhU3dK7XgLIEZhcTt62PyaFA7P1pjEb8fYtYuxtTrb9yhtclOgYjbWMhqbFX9g +PNri6uVJxRyHOJ7Iy5Cgn7hf6y73VNvMd1UXzCP0nxgb0oAt/oUZUL9n+uXBLi2 qotgPcbe/rIkBh4fdJJQ+WavhJnZE7MwzSwTJ2mdBvqMSa8iMiCLj6DEUoDrK/ZI Q6M= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org