$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c27b2338-5ab9-4430-8cc1-8132801f76eb.roa File: c27b2338-5ab9-4430-8cc1-8132801f76eb.roa (raw, json) Hash identifier: uyK1jM1JyrZPhmUdlOwgpEG46ETiscg0gXQ3JucgKg8= Subject key identifier: 32:B4:6C:99:ED:54:F4:3E:1F:37:1B:80:DF:BF:96:4A:A8:82:E2:35 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 61ADC7AE4B813CF7B1318C1C7B38E1A4DCBE0456 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c27b2338-5ab9-4430-8cc1-8132801f76eb.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2c::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 00:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ad:c7:ae:4b:81:3c:f7:b1:31:8c:1c:7b:38:e1:a4:dc:be:04:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=227bd50454ac3c4fd2d3a50c9f3d80a99de5abe945b9aa00ce58dd835abc0ca4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7f:9e:45:9a:62:4a:ec:ea:f2:fc:39:05:dc: 66:b8:9f:56:85:3d:ce:92:88:91:1e:50:e3:bb:43: 0b:97:28:ae:b7:f0:fc:de:2e:3d:f0:04:78:2c:2d: a0:a5:ca:68:ce:a5:4b:69:00:12:9d:0a:ab:11:dc: 79:77:e4:43:05:d1:9e:1c:26:6a:51:9c:80:26:82: a6:74:1c:31:2c:35:39:2b:9e:f7:04:7e:d7:61:8a: 95:29:b5:66:86:ef:75:f8:c7:76:8e:46:c1:57:07: ef:4f:1a:91:a6:ab:ae:df:e6:ab:df:b8:9d:9f:ab: 92:9f:cb:da:10:66:5f:80:4f:e2:46:12:59:56:7b: e8:fe:72:69:4a:03:48:c5:c4:75:22:b4:8e:66:d2: 4c:c5:45:3c:28:0d:97:4e:23:1b:cc:98:82:51:24: a5:62:f2:63:34:d6:dd:15:13:7a:e9:60:aa:0a:dd: de:31:eb:32:c3:b0:e6:25:34:30:03:84:3e:62:0c: 16:31:b8:5d:5c:b5:e8:60:a2:6f:e9:23:63:a4:0b: 6a:73:d6:77:d9:13:ff:59:be:c2:bb:da:82:30:54: 48:a2:30:82:7f:1d:30:36:ec:67:f9:38:56:c0:3c: b2:ff:dd:d4:ad:a7:21:81:fa:e6:cf:03:07:0b:88: 6f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B4:6C:99:ED:54:F4:3E:1F:37:1B:80:DF:BF:96:4A:A8:82:E2:35 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c27b2338-5ab9-4430-8cc1-8132801f76eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2c::/36 Signature Algorithm: sha256WithRSAEncryption a6:86:8b:97:3f:90:64:68:ac:2c:ae:06:eb:de:f8:e7:bd:2c: 2e:2f:1a:86:de:e0:2e:38:38:d6:73:d6:50:96:10:1b:ee:23: bc:e4:c1:74:12:0a:ba:af:bb:a1:0f:45:8a:04:40:29:56:87: 5a:12:bc:a4:89:cb:2e:fe:d0:01:66:c0:db:3a:84:e6:82:09: 9d:2c:3b:b2:5e:51:f3:79:db:be:51:a0:d1:23:68:72:89:2d: 5e:31:31:34:51:29:1c:4d:54:b1:05:97:5a:09:61:7f:cf:7a: f1:a2:9e:14:e3:85:ff:49:d7:e5:86:0b:d1:7c:ab:e3:6f:5d: f4:f1:11:d0:09:96:84:f9:a2:e4:a3:a0:97:8d:83:ff:77:c0: b1:03:b3:5b:b7:ed:ed:06:1e:87:09:9c:c8:58:ee:62:4a:03: 76:47:eb:48:5a:54:e7:75:19:81:d1:1f:14:a1:7d:da:d3:af: e6:12:a6:0f:7e:7e:be:98:f9:77:8c:aa:4e:70:00:9e:6a:8c: f2:26:bf:48:53:10:81:dd:04:52:4f:38:b9:e4:28:ff:bc:ea: 73:b6:cb:b5:d8:c6:07:3e:75:7b:03:f5:c8:77:6e:16:d3:03: e5:a2:0d:4f:17:2d:ca:b4:f9:6c:2d:7f:0d:e7:7f:bf:2b:ab: 22:61:d9:47 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYa3HrkuBPPexMYwcezjhpNy+BFYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQyNDAwMDAwMFoX DTI0MDUyOTIzNTk1OVowejFJMEcGA1UEBRNAMjI3YmQ1MDQ1NGFjM2M0ZmQyZDNh NTBjOWYzZDgwYTk5ZGU1YWJlOTQ1YjlhYTAwY2U1OGRkODM1YWJjMGNhNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqH+eRZpiSuzq8vw5BdxmuJ9WhT3O koiRHlDju0MLlyiut/D83i498AR4LC2gpcpozqVLaQASnQqrEdx5d+RDBdGeHCZq UZyAJoKmdBwxLDU5K573BH7XYYqVKbVmhu91+Md2jkbBVwfvTxqRpquu3+ar37id n6uSn8vaEGZfgE/iRhJZVnvo/nJpSgNIxcR1IrSOZtJMxUU8KA2XTiMbzJiCUSSl YvJjNNbdFRN66WCqCt3eMesyw7DmJTQwA4Q+YgwWMbhdXLXoYKJv6SNjpAtqc9Z3 2RP/Wb7Cu9qCMFRIojCCfx0wNuxn+ThWwDyy/93UrachgfrmzwMHC4hvkwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDK0bJntVPQ+HzcbgN+/lkqoguI1MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2MyN2IyMzM4LTVhYjktNDQzMC04Y2MxLTgxMzI4MDFmNzZlYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaLAAwDQYJKoZIhvcNAQELBQADggEBAKaGi5c/kGRorCyuBuve +Oe9LC4vGobe4C44ONZz1lCWEBvuI7zkwXQSCrqvu6EPRYoEQClWh1oSvKSJyy7+ 0AFmwNs6hOaCCZ0sO7JeUfN5275RoNEjaHKJLV4xMTRRKRxNVLEFl1oJYX/PevGi nhTjhf9J1+WGC9F8q+NvXfTxEdAJloT5ouSjoJeNg/93wLEDs1u37e0GHocJnMhY 7mJKA3ZH60haVOd1GYHRHxShfdrTr+YSpg9+fr6Y+XeMqk5wAJ5qjPImv0hTEIHd BFJPOLnkKP+86nO2y7XYxgc+dXsD9ch3bhbTA+WiDU8XLcq0+Wwtfw3nf78rqyJh 2Uc= -----END CERTIFICATE-----Generated at Thu Apr 25 00:30:40 2024 by rpki-client on console-fra.rpki-client.org