$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d514cc94-d81f-4850-9ca1-4bd4b7a4b0dc.roa File: d514cc94-d81f-4850-9ca1-4bd4b7a4b0dc.roa (raw, json) Hash identifier: FGbJrqhh2609ZYkINt/yQDiB7h0UfG1WKvfYZd5ojIw= Subject key identifier: 4E:E7:72:CF:E6:F8:2A:BD:04:37:FB:4C:07:6E:50:56:54:C6:64:86 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 14A8B4CBAFF55CE88C17E21D8E44F9A7B893AFAD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d514cc94-d81f-4850-9ca1-4bd4b7a4b0dc.roa Signing time: Mon 18 Sep 2023 00:00:00 +0000 ROA not before: Mon 18 Sep 2023 00:00:00 +0000 ROA not after: Mon 23 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Sep 2023 03:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a8:b4:cb:af:f5:5c:e8:8c:17:e2:1d:8e:44:f9:a7:b8:93:af:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Sep 18 00:00:00 2023 GMT Not After : Oct 23 23:59:59 2023 GMT Subject: serialNumber=9d0c5a31a34e5a11963860024665fcf0743d7c4375d1b6c0cade2379b32e2229, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5a:be:64:a3:5a:b1:5e:66:66:1d:d6:a3:63: 5a:0b:32:44:6f:f3:99:0a:08:81:49:1b:2b:86:19: 00:50:f9:0e:f1:c4:fd:57:8d:38:87:23:cd:c1:56: 6f:61:85:5c:65:90:2e:9b:0e:48:7d:09:d9:d4:c5: 8f:db:c0:01:8c:d0:b2:14:78:73:48:ca:9f:a2:b6: c6:62:28:78:3a:8c:f0:fa:eb:30:bb:ea:a1:36:33: 56:33:d5:c8:53:d0:37:ae:06:26:43:6e:49:72:bc: 91:c1:c0:e7:26:7a:0c:08:24:51:cd:1c:3b:76:af: 79:50:5d:30:a2:ed:4a:49:e7:61:6d:5e:ff:54:4d: ce:db:2f:17:bd:85:85:6a:0f:96:0c:3b:7b:f4:88: e3:7f:3b:cd:d2:c5:3d:cb:11:67:f1:bb:7e:0d:6f: b1:2f:7c:f7:f6:9d:c1:02:88:21:47:56:6b:63:2b: 7b:c4:7d:fc:e3:2b:0e:55:b7:5a:cd:43:e8:27:b9: 40:25:c3:06:24:43:73:bc:ba:86:41:71:06:3a:d8: 0e:76:33:8c:da:b2:92:7a:71:31:83:58:68:a3:b8: 64:d0:44:7d:6d:8b:09:be:d4:fc:4c:9f:c8:3d:76: d3:e1:ee:01:be:e2:2a:77:42:12:09:f5:ae:2b:af: 81:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E7:72:CF:E6:F8:2A:BD:04:37:FB:4C:07:6E:50:56:54:C6:64:86 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d514cc94-d81f-4850-9ca1-4bd4b7a4b0dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:8000::/40 Signature Algorithm: sha256WithRSAEncryption 88:8d:ae:70:32:3a:3e:68:8a:01:50:0d:81:d7:fd:90:63:5a: aa:51:96:82:ac:3f:60:78:d3:a1:2e:09:73:75:b1:98:b2:d9: c3:35:d8:fc:94:31:f0:44:e3:ec:38:58:e4:2f:5d:7c:43:91: e9:36:41:9e:8c:b9:06:22:46:2f:3a:a3:2a:1a:82:ca:77:7c: 15:81:0e:67:d8:9a:bc:2d:bd:6e:ef:34:dd:97:b6:1a:1f:78: dc:2a:76:90:e6:5a:cb:e7:de:af:a4:70:0d:97:2a:21:43:27: 04:66:a7:70:1b:38:1c:a2:62:b7:7b:0e:2c:f6:c7:e6:02:f0: 03:12:5e:c1:c9:09:b2:61:2e:21:8f:20:e5:4b:83:b9:99:49: 0f:95:85:49:dc:a5:df:81:7f:ae:24:cd:d7:9e:2e:a0:74:10: ef:28:26:01:50:cb:c4:10:e2:d1:7a:4b:c3:31:2c:cc:1a:16: d6:f3:13:ce:0d:78:71:2c:90:a2:37:d9:f8:eb:eb:53:b1:0d: c0:4a:4a:43:65:af:5a:ad:aa:0e:90:e3:31:b3:2e:59:13:7c: 6e:55:90:4f:f0:ab:35:e7:25:98:af:81:7c:36:27:d1:d2:15: e3:94:fd:7a:ee:2b:82:7b:2b:11:d0:7b:9e:22:87:3c:a2:a2: e8:b4:4c:6e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFKi0y6/1XOiMF+IdjkT5p7iTr60wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTIzMDkxODAwMDAwMFoX DTIzMTAyMzIzNTk1OVowejFJMEcGA1UEBRNAOWQwYzVhMzFhMzRlNWExMTk2Mzg2 MDAyNDY2NWZjZjA3NDNkN2M0Mzc1ZDFiNmMwY2FkZTIzNzliMzJlMjIyOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Fq+ZKNasV5mZh3Wo2NaCzJEb/OZ CgiBSRsrhhkAUPkO8cT9V404hyPNwVZvYYVcZZAumw5IfQnZ1MWP28ABjNCyFHhz SMqforbGYih4Oozw+uswu+qhNjNWM9XIU9A3rgYmQ25JcryRwcDnJnoMCCRRzRw7 dq95UF0wou1KSedhbV7/VE3O2y8XvYWFag+WDDt79IjjfzvN0sU9yxFn8bt+DW+x L3z39p3BAoghR1ZrYyt7xH384ysOVbdazUPoJ7lAJcMGJENzvLqGQXEGOtgOdjOM 2rKSenExg1hoo7hk0ER9bYsJvtT8TJ/IPXbT4e4BvuIqd0ISCfWuK6+BWwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFE7ncs/m+Cq9BDf7TAduUFZUxmSGMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q1MTRjYzk0LWQ4MWYtNDg1MC05Y2ExLTRiZDRiN2E0YjBkYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+4AwDQYJKoZIhvcNAQELBQADggEBAIiNrnAyOj5oigFQDYHX /ZBjWqpRloKsP2B406EuCXN1sZiy2cM12PyUMfBE4+w4WOQvXXxDkek2QZ6MuQYi Ri86oyoagsp3fBWBDmfYmrwtvW7vNN2XthofeNwqdpDmWsvn3q+kcA2XKiFDJwRm p3AbOByiYrd7Diz2x+YC8AMSXsHJCbJhLiGPIOVLg7mZSQ+VhUncpd+Bf64kzdee LqB0EO8oJgFQy8QQ4tF6S8MxLMwaFtbzE84NeHEskKI32fjr61OxDcBKSkNlr1qt qg6Q4zGzLlkTfG5VkE/wqzXnJZivgXw2J9HSFeOU/XruK4J7KxHQe54ihzyioui0 TG4= -----END CERTIFICATE-----Generated at Mon Sep 18 15:40:40 2023 by rpki-client on console-ams.rpki-client.org