$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b62cc556-cef5-487f-bfb5-dff3bf516a3a.roa File: b62cc556-cef5-487f-bfb5-dff3bf516a3a.roa (raw, json) Hash identifier: i7Bo55C+6UWbrRt4jU5Tz3w3MqyIOAKOvBtC5aP+pgw= Subject key identifier: CA:53:FE:F9:33:E6:4D:52:43:55:81:D6:5E:BF:45:69:B3:C5:88:53 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 69C4D5F9F955B5AB9441FB6A489778E6842625FE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b62cc556-cef5-487f-bfb5-dff3bf516a3a.roa Signing time: Mon 18 Sep 2023 00:00:00 +0000 ROA not before: Mon 18 Sep 2023 00:00:00 +0000 ROA not after: Mon 23 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1f::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Sep 2023 03:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c4:d5:f9:f9:55:b5:ab:94:41:fb:6a:48:97:78:e6:84:26:25:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Sep 18 00:00:00 2023 GMT Not After : Oct 23 23:59:59 2023 GMT Subject: serialNumber=696c733a2f15e6e104e0ee2677eccc6bb41a69a895008f9ced3a726f6ae40937, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1b:4e:c7:af:14:6b:7e:2e:86:9b:d4:56:06: a9:8d:d1:51:59:88:30:ab:c7:92:48:69:93:8e:fc: 30:51:9b:43:bd:c6:cf:7a:c3:b6:5e:25:5f:2d:3c: e2:b8:67:28:86:3f:5b:64:b8:52:2a:0d:fc:1b:fb: 94:10:02:00:6c:a1:35:22:41:41:b3:4e:30:bc:07: 3a:0d:9c:4e:4d:9e:44:f6:37:cf:c1:a3:13:3a:ff: f9:21:49:13:ca:50:40:52:a8:82:ce:84:e6:24:33: 58:0a:b4:7d:16:5c:2a:91:d2:e4:86:20:f4:ab:90: af:4b:82:a4:27:c8:52:fe:c7:2b:4e:a5:a5:1d:9a: 91:28:18:60:28:82:8f:bf:87:3e:bd:99:52:bb:71: 4b:b2:4c:68:a6:f7:55:09:07:2c:0b:11:65:e3:50: 64:0d:8d:9e:13:a1:08:34:e7:e4:ca:ef:27:ee:ec: 81:ce:bf:81:db:b1:43:c6:f7:95:c2:a4:b4:07:f1: 3c:3f:45:f9:c9:4d:c5:4d:3d:2b:86:d6:a2:5d:da: 7e:c6:c2:64:0e:36:90:d0:a3:e0:73:a5:ca:17:1d: 98:73:cd:76:44:28:c4:70:a0:cd:c5:28:af:f1:ba: b0:67:c9:5b:9c:f4:53:5b:e4:75:6b:ee:61:f3:fe: 92:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:53:FE:F9:33:E6:4D:52:43:55:81:D6:5E:BF:45:69:B3:C5:88:53 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b62cc556-cef5-487f-bfb5-dff3bf516a3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1f::/36 Signature Algorithm: sha256WithRSAEncryption 04:f5:cc:d1:e3:47:83:97:f3:ae:37:fa:5f:17:6d:b3:4f:bf: 38:53:cf:bd:b4:21:78:97:06:6b:13:6a:a8:bd:b7:12:28:20: cb:7e:b5:8c:5d:99:e0:03:90:09:ad:46:0b:35:b1:db:53:82: 0b:6e:1a:b2:2b:b4:b2:eb:a3:2d:56:13:dc:fe:e4:cc:cf:ce: 45:35:56:31:97:ee:be:77:17:a2:7d:b9:23:93:b8:a5:21:a1: 23:34:d2:b7:f6:aa:3a:83:21:07:6f:c0:c7:f8:58:b8:f3:9a: 40:6b:c4:17:a4:13:0f:ee:e1:81:8f:54:e6:78:65:03:3c:6c: 18:65:b7:2e:f8:39:bb:c0:32:8b:41:70:85:03:44:b0:07:06: 33:93:b7:fb:08:df:14:95:b9:6c:c6:70:53:46:8b:f6:2b:45: 36:aa:5b:8d:d0:50:5a:09:a3:4c:f1:82:f4:14:b6:34:5e:21: fd:90:f0:e2:46:07:c0:2b:c3:86:f0:e4:ab:9e:3d:1e:9a:6d: 73:54:98:67:de:49:44:d5:13:44:95:08:fd:ea:35:17:a6:a3: 07:ed:fe:a0:86:c8:dc:02:4e:b6:f3:3b:0e:28:1b:c6:a5:eb: e9:56:7a:c4:9c:47:36:09:6e:b5:1e:e7:a1:4d:48:1e:ff:61: 75:d6:aa:0c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUacTV+flVtauUQftqSJd45oQmJf4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTIzMDkxODAwMDAwMFoX DTIzMTAyMzIzNTk1OVowejFJMEcGA1UEBRNANjk2YzczM2EyZjE1ZTZlMTA0ZTBl ZTI2NzdlY2NjNmJiNDFhNjlhODk1MDA4ZjljZWQzYTcyNmY2YWU0MDkzNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2RtOx68Ua34uhpvUVgapjdFRWYgw q8eSSGmTjvwwUZtDvcbPesO2XiVfLTziuGcohj9bZLhSKg38G/uUEAIAbKE1IkFB s04wvAc6DZxOTZ5E9jfPwaMTOv/5IUkTylBAUqiCzoTmJDNYCrR9FlwqkdLkhiD0 q5CvS4KkJ8hS/scrTqWlHZqRKBhgKIKPv4c+vZlSu3FLskxopvdVCQcsCxFl41Bk DY2eE6EINOfkyu8n7uyBzr+B27FDxveVwqS0B/E8P0X5yU3FTT0rhtaiXdp+xsJk DjaQ0KPgc6XKFx2Yc812RCjEcKDNxSiv8bqwZ8lbnPRTW+R1a+5h8/6SmwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMpT/vkz5k1SQ1WB1l6/RWmzxYhTMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I2MmNjNTU2LWNlZjUtNDg3Zi1iZmI1LWRmZjNiZjUxNmEzYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaHwAwDQYJKoZIhvcNAQELBQADggEBAAT1zNHjR4OX8643+l8X bbNPvzhTz720IXiXBmsTaqi9txIoIMt+tYxdmeADkAmtRgs1sdtTggtuGrIrtLLr oy1WE9z+5MzPzkU1VjGX7r53F6J9uSOTuKUhoSM00rf2qjqDIQdvwMf4WLjzmkBr xBekEw/u4YGPVOZ4ZQM8bBhlty74ObvAMotBcIUDRLAHBjOTt/sI3xSVuWzGcFNG i/YrRTaqW43QUFoJo0zxgvQUtjReIf2Q8OJGB8Arw4bw5KuePR6abXNUmGfeSUTV E0SVCP3qNRemowft/qCGyNwCTrbzOw4oG8al6+lWesScRzYJbrUe56FNSB7/YXXW qgw= -----END CERTIFICATE-----Generated at Mon Sep 18 15:40:40 2023 by rpki-client on console-ams.rpki-client.org