$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aa0d983a-95e1-4b43-a953-b6dc2c882c45.roa File: aa0d983a-95e1-4b43-a953-b6dc2c882c45.roa (raw, json) Hash identifier: gVP4Gi/uhI+Mhzozv2Tb+7oSBf7/F13YFFawvYK53Tg= Subject key identifier: DC:A5:89:C5:4C:87:AA:FF:FF:CE:DB:14:26:43:CB:07:A1:81:15:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0D7050C4ADA951E239E4AF2B6C9DD3B5E4CA4524 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aa0d983a-95e1-4b43-a953-b6dc2c882c45.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf7:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:70:50:c4:ad:a9:51:e2:39:e4:af:2b:6c:9d:d3:b5:e4:ca:45:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=970b4a5f1298d439e0fc68935e254145f432434f50ac86c12e07821329b13408, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a8:0c:f0:ee:a1:ac:d8:53:8f:f8:65:44:fc: 2b:db:25:44:b8:95:13:59:62:eb:be:50:7c:42:7a: 03:d9:5d:dc:12:60:1b:8e:fe:43:c9:89:7b:44:b6: 34:08:9c:8d:13:da:2b:a1:ea:47:b2:1a:5d:87:92: 11:be:19:6c:00:f5:76:33:70:8d:39:fa:7e:e9:0d: dc:0d:b3:20:e1:e7:75:0b:c2:14:c8:9a:3f:d5:6e: dc:79:ee:90:17:e0:52:99:c4:4c:5b:9b:51:b4:96: d9:3e:81:d7:c6:b7:2c:30:53:ec:d3:3f:77:be:76: 1d:54:3f:32:fe:89:90:fa:ee:71:41:a8:07:93:43: e5:19:8e:be:61:26:46:29:e7:d5:aa:20:5d:c1:ef: 94:2b:bb:44:0e:13:9a:e6:33:53:4c:e2:36:36:7f: 11:6b:ef:7b:d7:b5:c7:d4:ad:30:ff:fc:a7:33:76: a1:50:e7:d1:10:9d:40:8b:1a:af:55:1f:3a:7d:1e: 71:fe:78:a8:c7:dc:a9:92:bd:93:5c:18:b7:25:e9: 61:35:03:10:04:04:66:89:dc:00:94:41:d3:c4:46: 8a:50:38:7d:31:14:f4:1f:0e:8e:c1:13:e9:a2:ce: 7a:fa:4a:ee:cb:4a:af:ff:4d:6f:d4:5d:36:82:3f: 16:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A5:89:C5:4C:87:AA:FF:FF:CE:DB:14:26:43:CB:07:A1:81:15:E7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aa0d983a-95e1-4b43-a953-b6dc2c882c45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf7:a000::/40 Signature Algorithm: sha256WithRSAEncryption 4a:2b:6d:5a:2b:bd:69:7a:70:6a:0c:77:0d:63:3d:dc:e2:ec: f8:57:ae:97:99:f4:85:eb:d7:c0:55:6c:3b:4f:10:36:d7:a2: 88:07:7e:c8:a0:91:90:52:37:58:b9:be:ed:06:a4:b8:1f:a7: e7:d9:d1:ac:32:13:a6:20:c5:84:74:f2:fb:51:83:15:55:ae: 62:c5:0e:66:04:63:6d:74:c7:80:08:3a:37:63:6a:dc:19:26: 11:42:a7:16:5b:27:ff:44:6d:d6:74:82:a2:ef:0d:ec:6e:81: a9:2b:6e:37:f9:d7:23:80:0b:f5:2d:8b:41:71:53:5a:52:19: 33:b4:64:bc:8b:cc:5b:28:43:2c:7c:1f:71:09:ee:1d:57:7c: 77:0a:fd:cf:94:ef:3d:7e:6e:f5:af:e1:a7:fb:d3:d3:44:4d: 21:49:f0:a7:1a:4a:f0:72:00:7d:74:5c:d7:37:42:89:53:26: b0:69:a3:7a:06:a8:ba:76:f5:4d:56:59:47:73:69:cf:d8:07: 84:d9:f9:9c:4b:ec:cb:9e:9a:1b:8c:5f:0a:98:f0:9b:02:d5: 5c:d3:06:9c:30:c1:9c:b4:e5:6b:13:1e:29:76:2c:62:06:83: 20:f7:3e:ef:4d:ec:cd:a9:ed:94:7a:5c:36:ad:4e:10:3d:27: e2:36:37:c6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDXBQxK2pUeI55K8rbJ3TteTKRSQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAOTcwYjRhNWYxMjk4ZDQzOWUwZmM2 ODkzNWUyNTQxNDVmNDMyNDM0ZjUwYWM4NmMxMmUwNzgyMTMyOWIxMzQwODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKgM8O6hrNhTj/hlRPwr2yVEuJUT WWLrvlB8QnoD2V3cEmAbjv5DyYl7RLY0CJyNE9oroepHshpdh5IRvhlsAPV2M3CN Ofp+6Q3cDbMg4ed1C8IUyJo/1W7cee6QF+BSmcRMW5tRtJbZPoHXxrcsMFPs0z93 vnYdVD8y/omQ+u5xQagHk0PlGY6+YSZGKefVqiBdwe+UK7tEDhOa5jNTTOI2Nn8R a+9717XH1K0w//ynM3ahUOfREJ1AixqvVR86fR5x/niox9ypkr2TXBi3JelhNQMQ BARmidwAlEHTxEaKUDh9MRT0Hw6OwRPpos56+kruy0qv/01v1F02gj8W6wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNylicVMh6r//87bFCZDywehgRXnMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FhMGQ5ODNhLTk1ZTEtNGI0My1hOTUzLWI2ZGMyYzg4MmM0NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba96AwDQYJKoZIhvcNAQELBQADggEBAEorbVorvWl6cGoMdw1j Pdzi7PhXrpeZ9IXr18BVbDtPEDbXoogHfsigkZBSN1i5vu0GpLgfp+fZ0awyE6Yg xYR08vtRgxVVrmLFDmYEY210x4AIOjdjatwZJhFCpxZbJ/9EbdZ0gqLvDexugakr bjf51yOAC/Uti0FxU1pSGTO0ZLyLzFsoQyx8H3EJ7h1XfHcK/c+U7z1+bvWv4af7 09NETSFJ8KcaSvByAH10XNc3QolTJrBpo3oGqLp29U1WWUdzac/YB4TZ+ZxL7Mue mhuMXwqY8JsC1VzTBpwwwZy05WsTHil2LGIGgyD3Pu9N7M2p7ZR6XDatThA9J+I2 N8Y= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org