$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d4145b8f-bc52-42a6-9bcc-1fee81cd4b0b.roa File: d4145b8f-bc52-42a6-9bcc-1fee81cd4b0b.roa (raw, json) Hash identifier: b790TMF2uYF/YddYkLvAEMKQ7Nn9zfgIjtqiN1TBMFY= Subject key identifier: BD:29:18:FD:46:F4:62:87:10:CA:4E:DE:C6:BC:78:8B:37:6B:A6:AA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7346671E191FD56AFCE4C80CEFFBBDDC70017AD2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d4145b8f-bc52-42a6-9bcc-1fee81cd4b0b.roa Signing time: Sat 06 Jul 2024 00:00:00 +0000 ROA not before: Sat 06 Jul 2024 00:00:00 +0000 ROA not after: Sat 10 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:46:67:1e:19:1f:d5:6a:fc:e4:c8:0c:ef:fb:bd:dc:70:01:7a:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 6 00:00:00 2024 GMT Not After : Aug 10 23:59:59 2024 GMT Subject: serialNumber=684f1910e052fb67f09101cdf342839ba018ace68408e424059129d8f5d49c04, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6a:a5:96:ae:03:94:4e:95:f8:51:54:6b:11: 32:20:87:b7:ae:1f:39:72:c8:b6:5a:50:4e:b4:8c: 3c:42:b3:9e:8f:d9:4d:c9:54:2a:dd:31:1e:49:64: 98:5e:1f:37:2c:fd:cd:23:13:2b:a5:b6:01:7f:83: 33:75:4e:0a:c8:c9:91:bd:10:d0:24:91:a6:a8:45: e2:ce:a1:1a:84:2f:81:5c:c0:6b:7f:6f:17:01:55: 46:63:fa:ee:b3:fe:01:21:67:e8:45:7b:86:d8:bd: d1:85:7f:ce:2d:4d:5c:83:6b:ef:15:e8:6d:9b:cc: 62:d0:ae:31:c2:c7:34:d0:26:8b:56:9f:07:9e:34: 0c:69:67:ff:9a:67:97:8a:d3:8b:d2:51:7f:71:89: 93:56:bf:29:14:18:3c:a1:2e:2c:cb:9f:2f:b4:9c: 7a:b4:94:bb:f7:51:2b:5e:b6:83:a4:d3:23:6b:c1: 33:8a:52:34:ad:04:4e:dc:21:46:ec:e0:cb:1b:1e: 79:46:bc:90:e7:50:e3:a8:3f:2f:31:7d:11:94:15: b1:4b:76:bf:d3:3c:4b:0f:01:18:92:89:e3:16:b4: 15:ac:8f:5f:0e:79:bc:fc:5a:35:fe:7c:21:56:8e: 20:49:38:cd:f4:93:8b:69:2b:93:12:d3:d8:93:08: 72:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:29:18:FD:46:F4:62:87:10:CA:4E:DE:C6:BC:78:8B:37:6B:A6:AA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d4145b8f-bc52-42a6-9bcc-1fee81cd4b0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:8800::/40 Signature Algorithm: sha256WithRSAEncryption 7b:c2:f2:90:ec:1c:a1:3c:de:34:75:c9:60:2b:09:42:25:bf: 48:da:b7:91:f4:f8:c3:4e:97:9c:8e:fd:9a:5b:74:0d:7c:8d: d0:50:97:85:f0:d9:6c:54:77:45:78:9a:21:ec:6e:7f:c4:72: 2f:15:f0:6a:1b:98:4d:f8:74:e2:fd:8e:a7:ee:4c:2b:52:f2: d3:c0:15:a0:db:eb:74:5f:0f:0c:d2:38:85:55:e6:e1:44:30: e3:cd:f4:be:10:e8:c2:e4:2b:04:2f:97:eb:f4:d5:3c:96:a3: 0c:5a:88:d3:8d:cd:c7:6c:dc:8f:84:49:4d:bb:5b:63:3c:75: e7:75:8e:82:a8:82:c2:19:74:e4:a6:de:ed:7d:e5:2c:41:b3: c7:19:5b:43:7f:4e:71:e0:da:1c:cd:d3:1f:60:1b:7a:15:6d: cc:50:26:86:09:65:ff:a7:e7:b1:f5:67:48:97:99:47:c6:70: 8b:5f:46:6d:d4:2c:68:a7:e9:e4:89:58:6c:83:c0:41:04:a2: 1c:2a:b2:35:c5:39:d3:e6:a0:7b:87:9d:0e:dc:97:d7:07:94: cf:35:13:79:8d:ef:a0:2b:67:ff:fb:9f:7e:07:97:82:19:24: 7a:cc:37:63:cb:5f:d2:ce:b5:ef:d7:c2:b1:68:01:7e:d1:63: bf:20:e9:b1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUc0ZnHhkf1Wr85MgM7/u93HABetIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcwNjAwMDAwMFoX DTI0MDgxMDIzNTk1OVowejFJMEcGA1UEBRNANjg0ZjE5MTBlMDUyZmI2N2YwOTEw MWNkZjM0MjgzOWJhMDE4YWNlNjg0MDhlNDI0MDU5MTI5ZDhmNWQ0OWMwNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWqllq4DlE6V+FFUaxEyIIe3rh85 csi2WlBOtIw8QrOej9lNyVQq3TEeSWSYXh83LP3NIxMrpbYBf4MzdU4KyMmRvRDQ JJGmqEXizqEahC+BXMBrf28XAVVGY/rus/4BIWfoRXuG2L3RhX/OLU1cg2vvFeht m8xi0K4xwsc00CaLVp8HnjQMaWf/mmeXitOL0lF/cYmTVr8pFBg8oS4sy58vtJx6 tJS791ErXraDpNMja8EzilI0rQRO3CFG7ODLGx55RryQ51DjqD8vMX0RlBWxS3a/ 0zxLDwEYkonjFrQVrI9fDnm8/Fo1/nwhVo4gSTjN9JOLaSuTEtPYkwhyhwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFL0pGP1G9GKHEMpO3sa8eIs3a6aqMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q0MTQ1YjhmLWJjNTItNDJhNi05YmNjLTFmZWU4MWNkNGIwYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/4gwDQYJKoZIhvcNAQELBQADggEBAHvC8pDsHKE83jR1yWAr CUIlv0jat5H0+MNOl5yO/ZpbdA18jdBQl4Xw2WxUd0V4miHsbn/Eci8V8GobmE34 dOL9jqfuTCtS8tPAFaDb63RfDwzSOIVV5uFEMOPN9L4Q6MLkKwQvl+v01TyWowxa iNONzcds3I+ESU27W2M8ded1joKogsIZdOSm3u195SxBs8cZW0N/TnHg2hzN0x9g G3oVbcxQJoYJZf+n57H1Z0iXmUfGcItfRm3ULGin6eSJWGyDwEEEohwqsjXFOdPm oHuHnQ7cl9cHlM81E3mN76ArZ//7n34Hl4IZJHrMN2PLX9LOte/XwrFoAX7RY78g 6bE= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org