$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d70054d0-4c79-4b58-875d-4ba2fb635687.roa File: d70054d0-4c79-4b58-875d-4ba2fb635687.roa (raw, json) Hash identifier: RTgFvM7wGfXxlZSl78Rzj4/trGRwR3PV4E6RlRaaU1g= Subject key identifier: 67:F8:31:6B:FE:C5:F9:A3:51:FB:27:0A:82:53:9C:54:4C:A2:65:05 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 485F1B718620DBF15023EFAD05E0AECC4AAEAEDD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d70054d0-4c79-4b58-875d-4ba2fb635687.roa Signing time: Fri 19 Jul 2024 00:00:00 +0000 ROA not before: Fri 19 Jul 2024 00:00:00 +0000 ROA not after: Fri 23 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da14::/35 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:5f:1b:71:86:20:db:f1:50:23:ef:ad:05:e0:ae:cc:4a:ae:ae:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 19 00:00:00 2024 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: serialNumber=f8891c695c62c12d818fafc08c2a97be36daca12f56910c96ac5791b72a4888b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:0d:9c:1d:1d:fb:f8:6c:41:83:c1:f4:6d:c8: f0:b7:1b:ac:c6:92:60:10:3d:c3:57:b7:62:e3:6e: a5:7b:46:aa:1b:e8:47:43:2a:4a:f6:6b:26:d3:87: 96:a9:f8:36:17:54:a2:14:99:00:84:8c:ae:93:c1: df:94:62:1a:a0:9a:17:08:f5:96:46:fd:38:fc:c5: c8:5a:ab:44:e4:f3:a9:38:46:0e:bc:5f:72:4f:80: d0:f6:dd:75:9f:08:20:b8:38:3f:da:f9:36:62:55: a9:26:27:49:30:ba:e4:af:3a:fd:91:0f:86:da:a5: 72:ad:40:d9:1d:9a:6d:b1:c5:b8:f4:07:bf:5c:87: 23:8f:96:d0:16:bf:7d:35:81:47:65:60:27:05:be: 16:0c:3e:db:81:c9:1f:9e:ac:d0:eb:77:34:d6:1f: 88:5c:ca:5d:33:95:e3:03:02:6f:66:12:a9:08:83: 16:c7:de:81:4f:d2:8f:6d:b0:9d:55:ff:d7:eb:56: 1e:f6:bc:9b:bf:4a:1b:c2:d7:d7:d2:5b:f2:c1:e2: 4e:4c:2e:a8:3b:52:19:1f:16:8e:77:8d:cd:51:a0: bc:a6:f6:df:7c:6d:f1:f4:27:b1:51:24:d7:57:f9: 5b:89:30:76:c0:e4:aa:f6:bc:82:9b:af:2c:45:19: 4e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F8:31:6B:FE:C5:F9:A3:51:FB:27:0A:82:53:9C:54:4C:A2:65:05 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d70054d0-4c79-4b58-875d-4ba2fb635687.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da14::/35 Signature Algorithm: sha256WithRSAEncryption 35:99:4a:42:96:d3:38:34:b0:f3:04:dc:73:88:ff:0f:ea:73: db:5f:ad:f9:a3:fb:75:4d:16:7a:57:f6:05:6a:d2:dc:ef:70: 79:74:91:4d:8b:35:0d:87:ed:71:2f:e1:6d:0a:6e:18:df:63: 11:05:f7:66:c0:2a:93:d6:86:9b:d9:0b:49:ed:8e:8e:bd:4e: d4:5a:f7:0e:96:bf:f8:ca:37:bb:ef:bf:e0:3d:87:8c:a2:4e: 41:f8:67:39:90:0a:d0:44:e4:75:ee:88:9f:a0:3e:32:dc:bd: a9:9a:bd:27:ff:21:8b:1f:15:fd:91:03:56:7f:0b:92:94:04: 0b:ad:4f:93:98:2d:d7:49:8b:b4:b1:38:18:0d:74:8c:2b:ed: ab:d0:4b:7f:d4:7f:13:98:48:c0:c2:93:08:44:da:51:14:f4: 9e:40:df:ea:33:d4:2d:f7:51:2b:c0:fc:34:6d:92:6a:bf:da: 7f:8b:de:68:8a:61:a1:58:11:43:df:fb:60:77:99:37:1f:63: 3d:fa:9c:1e:ed:85:b9:37:3b:e8:19:4a:5e:1c:20:05:bc:d8: ad:07:c1:6b:97:e3:c9:2c:c6:07:2a:ff:43:21:8d:27:7f:fc: 46:d5:72:2d:8c:e8:11:5f:74:57:ef:37:a4:b9:d4:52:4e:32: 50:61:fd:e3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUSF8bcYYg2/FQI++tBeCuzEqurt0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxOTAwMDAwMFoX DTI0MDgyMzIzNTk1OVowejFJMEcGA1UEBRNAZjg4OTFjNjk1YzYyYzEyZDgxOGZh ZmMwOGMyYTk3YmUzNmRhY2ExMmY1NjkxMGM5NmFjNTc5MWI3MmE0ODg4YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkA2cHR37+GxBg8H0bcjwtxusxpJg ED3DV7di426le0aqG+hHQypK9msm04eWqfg2F1SiFJkAhIyuk8HflGIaoJoXCPWW Rv04/MXIWqtE5POpOEYOvF9yT4DQ9t11nwgguDg/2vk2YlWpJidJMLrkrzr9kQ+G 2qVyrUDZHZptscW49Ae/XIcjj5bQFr99NYFHZWAnBb4WDD7bgckfnqzQ63c01h+I XMpdM5XjAwJvZhKpCIMWx96BT9KPbbCdVf/X61Ye9rybv0obwtfX0lvyweJOTC6o O1IZHxaOd43NUaC8pvbffG3x9CexUSTXV/lbiTB2wOSq9ryCm68sRRlOaQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGf4MWv+xfmjUfsnCoJTnFRMomUFMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q3MDA1NGQwLTRjNzktNGI1OC04NzVkLTRiYTJmYjYzNTY4Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYFJAbaFAAwDQYJKoZIhvcNAQELBQADggEBADWZSkKW0zg0sPME3HOI /w/qc9tfrfmj+3VNFnpX9gVq0tzvcHl0kU2LNQ2H7XEv4W0KbhjfYxEF92bAKpPW hpvZC0ntjo69TtRa9w6Wv/jKN7vvv+A9h4yiTkH4ZzmQCtBE5HXuiJ+gPjLcvama vSf/IYsfFf2RA1Z/C5KUBAutT5OYLddJi7SxOBgNdIwr7avQS3/UfxOYSMDCkwhE 2lEU9J5A3+oz1C33USvA/DRtkmq/2n+L3miKYaFYEUPf+2B3mTcfYz36nB7thbk3 O+gZSl4cIAW82K0HwWuX48ksxgcq/0MhjSd//EbVci2M6BFfdFfvN6S51FJOMlBh /eM= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:17 2024 by rpki-client on console-fra.rpki-client.org