$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bcb12c2c-c0ef-4571-926a-88ef42d9a233.roa File: bcb12c2c-c0ef-4571-926a-88ef42d9a233.roa (raw, json) Hash identifier: 0fz1se9QqP/HU8NP6uQpsS/VtvpXjJ2Pqd4In+JX8wY= Subject key identifier: 1C:43:48:02:82:3B:45:BA:FD:26:58:AE:71:92:34:3E:48:11:6D:66 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0C467E8D480069A91F98D389C5C363DCEDCE8AC5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bcb12c2c-c0ef-4571-926a-88ef42d9a233.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:46:7e:8d:48:00:69:a9:1f:98:d3:89:c5:c3:63:dc:ed:ce:8a:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=1c094425e23cd90eedb0f83b3da26309df29353e8adf2987d4f3e22cf4b90c2b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ac:51:fd:a7:33:e7:e2:7f:1b:5b:de:81:50: ff:88:4a:58:e6:40:80:83:8f:4e:34:65:25:31:51: cc:b9:31:33:ea:21:ad:a7:8f:ac:15:02:0f:75:1c: 33:b8:e2:b5:a8:3c:48:55:6a:ee:ac:4b:72:f7:19: 54:8e:1d:16:5a:21:b9:d1:c4:d8:7c:01:5a:74:e4: 2f:5d:ed:4d:ab:1b:a3:3c:4a:bf:96:8b:3b:f6:16: 1a:3b:ac:3c:99:8d:77:9e:f0:cf:b3:5e:7c:e2:cf: 92:fd:80:04:1a:f1:0f:5c:b0:91:26:5b:84:93:7d: d8:18:13:b4:94:a6:29:0a:46:ba:dd:27:ae:92:3e: dc:42:30:fd:5b:b2:52:5e:09:13:58:52:1b:f4:dc: bc:0c:6e:3d:b3:5a:6d:13:67:6a:3b:08:16:ce:0d: 95:0e:2e:92:1d:a8:12:f5:7c:2b:76:be:06:f6:1b: 86:56:eb:3d:73:e6:31:2c:c5:84:37:2a:3f:f3:d3: 3b:b4:53:f8:53:0a:c0:38:4e:f1:cd:5f:0f:1f:0f: 2c:7b:ef:7d:72:7a:c1:f6:31:bb:dd:32:fa:1e:9b: d3:19:1d:2d:34:11:ac:b6:da:d6:0a:a2:c5:b7:80: e0:82:f8:2f:43:04:a2:12:45:bc:b9:7e:6a:cd:c7: c9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:43:48:02:82:3B:45:BA:FD:26:58:AE:71:92:34:3E:48:11:6D:66 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bcb12c2c-c0ef-4571-926a-88ef42d9a233.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:7000::/40 Signature Algorithm: sha256WithRSAEncryption 64:e5:df:69:c0:2e:6a:d7:fe:e5:5a:b6:a3:07:cc:cd:57:c7: ae:48:91:ba:c2:97:5a:1a:0e:e3:6e:13:4e:da:74:78:90:46: 0b:21:2f:78:20:ef:d3:48:6f:77:d5:b6:67:d0:bf:62:53:a0: 71:a5:5e:2c:fc:a5:c7:09:42:28:63:83:6a:04:27:dc:cc:f3: 84:26:84:cb:b9:c7:70:e6:59:01:99:74:65:3a:db:98:24:81: e6:c0:2d:f0:5b:d7:7e:2b:8c:61:db:d4:20:f5:ef:a7:17:fa: 1d:da:13:9e:66:06:7a:f9:02:98:47:20:82:31:3a:70:ed:7f: 43:a0:44:f1:36:83:b7:6b:31:95:e7:01:28:29:fa:fb:2a:5d: 9d:be:82:4b:a8:45:36:c8:02:59:e8:8f:3d:d6:fb:33:bc:83: 10:88:26:21:e3:e9:5d:0c:02:ed:af:c1:9a:f4:d7:b9:18:35: f4:b6:df:2c:70:a1:44:09:a2:76:fc:c5:fe:98:57:a6:a0:89: 0a:8d:01:30:cb:48:7f:34:15:36:ce:86:63:9d:ee:8c:ac:c5: e0:2f:ae:a0:45:f2:74:37:f8:75:19:d2:ec:33:b7:be:46:92: fb:5c:6c:45:40:71:40:a2:c3:3b:7e:03:89:30:b1:15:6b:9c: d3:0a:0c:82 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDEZ+jUgAaakfmNOJxcNj3O3OisUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAMWMwOTQ0MjVlMjNjZDkwZWVkYjBm ODNiM2RhMjYzMDlkZjI5MzUzZThhZGYyOTg3ZDRmM2UyMmNmNGI5MGMyYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaxR/acz5+J/G1vegVD/iEpY5kCA g49ONGUlMVHMuTEz6iGtp4+sFQIPdRwzuOK1qDxIVWrurEty9xlUjh0WWiG50cTY fAFadOQvXe1NqxujPEq/los79hYaO6w8mY13nvDPs1584s+S/YAEGvEPXLCRJluE k33YGBO0lKYpCka63Seukj7cQjD9W7JSXgkTWFIb9Ny8DG49s1ptE2dqOwgWzg2V Di6SHagS9Xwrdr4G9huGVus9c+YxLMWENyo/89M7tFP4UwrAOE7xzV8PHw8se+99 cnrB9jG73TL6HpvTGR0tNBGsttrWCqLFt4DggvgvQwSiEkW8uX5qzcfJowIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBxDSAKCO0W6/SZYrnGSND5IEW1mMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2JjYjEyYzJjLWMwZWYtNDU3MS05MjZhLTg4ZWY0MmQ5YTIzMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8nAwDQYJKoZIhvcNAQELBQADggEBAGTl32nALmrX/uVatqMH zM1Xx65IkbrCl1oaDuNuE07adHiQRgshL3gg79NIb3fVtmfQv2JToHGlXiz8pccJ Qihjg2oEJ9zM84QmhMu5x3DmWQGZdGU625gkgebALfBb134rjGHb1CD176cX+h3a E55mBnr5AphHIIIxOnDtf0OgRPE2g7drMZXnASgp+vsqXZ2+gkuoRTbIAlnojz3W +zO8gxCIJiHj6V0MAu2vwZr017kYNfS23yxwoUQJonb8xf6YV6agiQqNATDLSH80 FTbOhmOd7oysxeAvrqBF8nQ3+HUZ0uwzt75GkvtcbEVAcUCiwzt+A4kwsRVrnNMK DII= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org