$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6ac1a0f-d49c-46c6-8787-267094ee9f47.roa File: c6ac1a0f-d49c-46c6-8787-267094ee9f47.roa (raw, json) Hash identifier: +MtmPwwTe5K4IeAJZdxPL2A7I58TGEOuw/vrOLx/q1g= Subject key identifier: 76:8B:A4:C2:8D:E7:02:F2:FD:D1:59:7B:63:B1:F2:AB:03:B5:AC:B3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 06FAA2860D07657E869EDA7E39C31F04E5301B82 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6ac1a0f-d49c-46c6-8787-267094ee9f47.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 00:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:fa:a2:86:0d:07:65:7e:86:9e:da:7e:39:c3:1f:04:e5:30:1b:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=13a0efc6b23994bac8b0a3d72faa4505f862c1d17291c683ff6cff74c543ba3c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:97:97:3f:20:36:c3:18:7b:d9:d5:e7:59:96: 94:5d:56:22:6d:a6:1c:52:99:23:ae:1d:21:39:4a: 4a:ea:5d:65:ee:b6:64:ca:83:4a:66:a9:5b:dc:f3: 91:13:8b:0c:75:3c:b7:56:2b:e2:81:5f:87:3e:10: a7:2d:0c:5d:63:cf:dd:2b:1a:be:64:72:b5:eb:5e: 4f:a1:ec:ec:3e:87:45:6b:29:f6:ff:19:0d:b6:7f: 72:ab:93:8e:9e:41:6c:46:1b:f5:19:b9:9a:3c:3f: 0c:3f:cc:90:3e:5a:a7:6a:4a:c8:97:6d:20:21:12: 28:98:62:35:e0:69:f7:7f:d7:02:f4:d5:67:fc:38: 7b:ee:bf:78:6b:92:f7:6b:96:26:53:0e:86:ed:72: a7:2a:a4:bd:18:68:8e:26:77:e0:4b:fa:a9:d3:22: 6d:ce:f4:c4:03:35:cb:d1:67:7d:41:a3:91:2f:4a: 35:c9:2c:6c:05:11:db:9b:69:af:3c:ef:93:c9:06: 7c:e4:ca:0f:2e:5c:6a:be:24:c3:f7:6c:05:97:48: e8:da:c2:52:74:31:ef:3f:ff:78:e6:fe:ae:b9:9f: 84:5b:0b:22:63:22:7f:d3:d0:ef:e6:37:15:bd:9e: 55:d0:f9:d8:c8:92:62:a4:fe:59:82:3b:94:db:78: 4a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:8B:A4:C2:8D:E7:02:F2:FD:D1:59:7B:63:B1:F2:AB:03:B5:AC:B3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6ac1a0f-d49c-46c6-8787-267094ee9f47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:6000::/40 Signature Algorithm: sha256WithRSAEncryption 87:4d:33:93:08:b8:bc:5b:93:ad:bd:ca:66:cb:29:0a:3c:a7: cd:b7:2c:39:11:9b:10:1a:05:47:74:17:13:9e:25:eb:f3:50: d8:53:14:b0:54:74:19:f5:9b:d2:4a:e6:f6:a1:36:2d:25:8b: b9:f5:06:fd:ea:07:16:54:91:c6:44:f7:ee:c7:23:c0:f1:48: b7:11:5c:40:05:0a:31:6f:74:4b:03:2d:d7:be:cd:24:0c:73: b9:5d:c3:a0:76:94:1a:80:58:ff:e6:89:8b:b6:35:a0:bf:f2: 3e:ac:d7:db:9f:6e:1c:57:28:b7:e6:78:fe:ff:79:1a:c2:25: cf:11:9d:5e:a5:63:7e:58:e6:d8:e9:ee:0c:5a:ad:c3:a6:4b: 3e:1d:2b:bb:91:30:27:d0:c1:01:04:f5:94:d8:a8:09:24:9c: f0:68:0c:12:81:5c:39:25:4b:8f:d6:7d:54:02:2b:83:a0:94: 60:78:33:bd:25:be:2f:08:d1:dc:3d:3c:33:82:a3:88:88:3f: d1:24:59:12:79:17:a8:21:5d:0c:19:84:ae:31:45:66:70:fd: 81:46:5a:24:8b:7f:55:0c:6c:c4:cc:8d:1b:5c:8c:fc:80:e7: ca:53:ff:8a:a0:8b:8b:f9:4a:27:56:17:c2:c6:81:2c:53:e4: 5a:c1:f8:9a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUBvqihg0HZX6Gntp+OcMfBOUwG4IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNAMTNhMGVmYzZiMjM5OTRiYWM4YjBh M2Q3MmZhYTQ1MDVmODYyYzFkMTcyOTFjNjgzZmY2Y2ZmNzRjNTQzYmEzYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJeXPyA2wxh72dXnWZaUXVYibaYc Upkjrh0hOUpK6l1l7rZkyoNKZqlb3PORE4sMdTy3VivigV+HPhCnLQxdY8/dKxq+ ZHK1615PoezsPodFayn2/xkNtn9yq5OOnkFsRhv1GbmaPD8MP8yQPlqnakrIl20g IRIomGI14Gn3f9cC9NVn/Dh77r94a5L3a5YmUw6G7XKnKqS9GGiOJnfgS/qp0yJt zvTEAzXL0Wd9QaORL0o1ySxsBRHbm2mvPO+TyQZ85MoPLlxqviTD92wFl0jo2sJS dDHvP/945v6uuZ+EWwsiYyJ/09Dv5jcVvZ5V0PnYyJJipP5ZgjuU23hKcQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHaLpMKN5wLy/dFZe2Ox8qsDtayzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M2YWMxYTBmLWQ0OWMtNDZjNi04Nzg3LTI2NzA5NGVlOWY0Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOGAwDQYJKoZIhvcNAQELBQADggEBAIdNM5MIuLxbk629ymbL KQo8p823LDkRmxAaBUd0FxOeJevzUNhTFLBUdBn1m9JK5vahNi0li7n1Bv3qBxZU kcZE9+7HI8DxSLcRXEAFCjFvdEsDLde+zSQMc7ldw6B2lBqAWP/miYu2NaC/8j6s 19ufbhxXKLfmeP7/eRrCJc8RnV6lY35Y5tjp7gxarcOmSz4dK7uRMCfQwQEE9ZTY qAkknPBoDBKBXDklS4/WfVQCK4OglGB4M70lvi8I0dw9PDOCo4iIP9EkWRJ5F6gh XQwZhK4xRWZw/YFGWiSLf1UMbMTMjRtcjPyA58pT/4qgi4v5SidWF8LGgSxT5FrB +Jo= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:15 2024 by rpki-client on console-ams.rpki-client.org