$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b63666b7-cc9f-4e5f-956b-3488abc9c500.roa File: b63666b7-cc9f-4e5f-956b-3488abc9c500.roa (raw, json) Hash identifier: q+sQy1VkjeAPz2yqrNQU1LBanyS7gp3gz0v/jDdwrbs= Subject key identifier: CB:AD:4A:47:3F:D6:0F:B7:3C:B6:8B:F7:05:05:22:BD:07:A1:C7:6D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3918399D50B48DC54166E664762B5933A2D98CD6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b63666b7-cc9f-4e5f-956b-3488abc9c500.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da32:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:18:39:9d:50:b4:8d:c5:41:66:e6:64:76:2b:59:33:a2:d9:8c:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=6835e5abf213145ed2ad18851c77ae75803257f83117a5ff21b3bb8e52ad9a23, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0e:5d:84:71:73:e7:ae:a6:67:50:bf:31:0e: d5:22:32:10:c9:ff:78:b0:da:2c:b5:7e:ff:de:62: 84:20:78:49:8e:bd:68:89:d2:6d:ca:4b:84:63:b9: a2:5d:1e:9c:a1:82:ff:de:2a:77:a5:87:c9:d4:f8: 58:59:a2:45:4d:36:f5:32:36:0b:03:7d:d4:39:7d: 5b:14:f2:1d:8e:6c:4b:a6:42:a4:d4:cf:81:96:d5: 4e:a9:39:c9:82:df:38:6f:46:10:4b:28:44:76:16: ff:56:29:05:62:f9:57:52:49:0b:57:f7:7e:1e:f3: 83:6f:34:ca:f3:4e:27:9a:8f:9e:87:4b:5d:94:ce: 16:96:86:f7:c7:3d:d9:28:b4:25:f4:15:2e:95:f6: 9f:22:9d:b5:5f:db:3f:c9:5e:4f:d1:5a:6f:6c:2b: 8f:bc:30:55:4f:a0:ac:95:82:7d:36:7a:94:1b:e3: 49:cf:c7:97:51:b1:70:30:64:4c:5a:53:67:ac:9d: e5:0c:e2:28:87:ae:2e:58:a7:61:c3:42:12:db:6f: 76:cb:ea:f3:ed:82:26:48:ba:06:0f:8e:8b:54:f0: 75:1c:ce:04:7c:c6:62:99:c2:9a:28:d6:d0:e6:ec: 6c:f7:c8:90:22:e3:a8:fa:27:24:57:d9:72:7c:16: 75:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AD:4A:47:3F:D6:0F:B7:3C:B6:8B:F7:05:05:22:BD:07:A1:C7:6D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b63666b7-cc9f-4e5f-956b-3488abc9c500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da32:f000::/40 Signature Algorithm: sha256WithRSAEncryption 35:13:b7:e8:a3:aa:2e:39:2e:73:cc:41:e5:31:81:05:64:ee: 4d:7d:c0:da:b0:00:bd:31:fb:2b:98:a8:c1:28:4e:c5:e9:4d: 5e:a2:a6:37:9c:ab:e3:bd:7a:a8:14:40:ad:cb:e5:a9:35:bb: 70:4e:1f:db:7e:b9:26:64:2d:ea:f3:c3:3c:11:66:6f:65:89: 55:4d:44:e0:f6:e8:f5:a8:dc:68:24:25:6a:ac:d3:02:e9:dc: 9c:b5:46:03:2b:a1:e1:21:ca:32:1e:74:52:27:24:13:a4:2e: aa:c0:b1:20:4e:62:52:d7:2e:1f:2d:61:93:44:6c:b6:03:c1: 4e:68:cc:04:64:ea:fc:eb:8e:a7:cc:7e:ad:0d:66:e3:da:bf: 50:50:c6:f9:af:39:c0:78:af:0d:32:1e:ef:ac:af:0c:27:1e: b6:b8:6b:c5:06:89:5e:a7:6c:43:97:d0:e6:5f:07:b6:0d:54: 15:6c:2d:8e:c9:a3:bd:d3:8c:6f:3a:7d:7f:cb:41:2e:72:82: 45:64:13:e4:60:69:45:4c:ae:ae:15:52:62:47:5c:a2:77:3e: c8:ad:fe:c1:57:73:81:06:71:22:5a:55:e0:84:13:6a:ff:a9: 94:70:4e:b4:51:33:1d:04:13:32:21:6a:7a:1f:29:17:c3:26: d3:ff:41:6f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUORg5nVC0jcVBZuZkditZM6LZjNYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExMTAwMDAwMFoX DTI0MTIxNjIzNTk1OVowejFJMEcGA1UEBRNANjgzNWU1YWJmMjEzMTQ1ZWQyYWQx ODg1MWM3N2FlNzU4MDMyNTdmODMxMTdhNWZmMjFiM2JiOGU1MmFkOWEyMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0w5dhHFz566mZ1C/MQ7VIjIQyf94 sNostX7/3mKEIHhJjr1oidJtykuEY7miXR6coYL/3ip3pYfJ1PhYWaJFTTb1MjYL A33UOX1bFPIdjmxLpkKk1M+BltVOqTnJgt84b0YQSyhEdhb/VikFYvlXUkkLV/d+ HvODbzTK804nmo+eh0tdlM4Wlob3xz3ZKLQl9BUulfafIp21X9s/yV5P0VpvbCuP vDBVT6CslYJ9NnqUG+NJz8eXUbFwMGRMWlNnrJ3lDOIoh64uWKdhw0IS2292y+rz 7YImSLoGD46LVPB1HM4EfMZimcKaKNbQ5uxs98iQIuOo+ickV9lyfBZ1dQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMutSkc/1g+3PLaL9wUFIr0HocdtMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I2MzY2NmI3LWNjOWYtNGU1Zi05NTZiLTM0ODhhYmM5YzUwMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaMvAwDQYJKoZIhvcNAQELBQADggEBADUTt+ijqi45LnPMQeUx gQVk7k19wNqwAL0x+yuYqMEoTsXpTV6ipjecq+O9eqgUQK3L5ak1u3BOH9t+uSZk LerzwzwRZm9liVVNROD26PWo3GgkJWqs0wLp3Jy1RgMroeEhyjIedFInJBOkLqrA sSBOYlLXLh8tYZNEbLYDwU5ozARk6vzrjqfMfq0NZuPav1BQxvmvOcB4rw0yHu+s rwwnHra4a8UGiV6nbEOX0OZfB7YNVBVsLY7Jo73TjG86fX/LQS5ygkVkE+RgaUVM rq4VUmJHXKJ3Psit/sFXc4EGcSJaVeCEE2r/qZRwTrRRMx0EEzIhanofKRfDJtP/ QW8= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:36 2024 by rpki-client on console-fra.rpki-client.org