$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d70054d0-4c79-4b58-875d-4ba2fb635687.roa File: d70054d0-4c79-4b58-875d-4ba2fb635687.roa (raw, json) Hash identifier: Y4FkQESoe+gzV053nZLFZIjbHH0u/Z/Kviz/dFb6DPA= Subject key identifier: A9:1C:98:41:41:10:34:E7:DD:B1:7E:C0:51:BA:7F:99:FB:0E:5B:CB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 51AC13C2050B2F38249B20A4CEC0F3764EF6E840 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d70054d0-4c79-4b58-875d-4ba2fb635687.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da14::/35 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ac:13:c2:05:0b:2f:38:24:9b:20:a4:ce:c0:f3:76:4e:f6:e8:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=b1b56717cbf9ff66b43ad65cfb6add25189acf57273f2708e7ed0eb8e7c11fff, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dd:fd:fc:50:5e:0f:35:0f:ed:0c:3b:99:13: 49:a2:a7:53:84:5b:b4:ff:49:b3:58:0a:af:c5:7f: 52:41:b4:ad:6b:b8:66:03:f6:24:9f:1d:b6:68:16: 4f:3e:f6:17:dc:cc:36:4d:48:d4:24:39:55:37:69: b7:95:8c:0e:9d:d7:89:82:99:38:71:e2:46:ac:22: 16:40:b3:5d:f1:13:53:94:83:6d:6d:5a:78:62:ed: 51:68:7b:26:93:bf:8b:43:ac:9e:16:01:2c:7b:40: bb:c7:e6:5f:32:52:a9:e4:bb:63:26:10:25:18:83: 7e:10:ca:e6:1e:a1:b4:06:51:96:0e:57:7b:31:35: e9:f0:65:63:81:ed:da:a5:de:4b:44:df:f6:1e:ec: 4f:c2:cd:14:ce:a7:2c:cd:ff:3a:0d:d2:eb:56:5d: 6b:fb:e3:ae:83:bd:69:b5:60:d4:c3:20:c8:91:f2: e0:19:15:03:db:8b:2d:b0:17:68:42:5e:7a:0e:12: b1:6d:f1:1b:ba:43:74:35:94:87:a4:fa:92:63:08: b1:45:ce:c3:30:34:ec:cf:72:18:08:a1:f6:b6:76: a3:3e:4f:f9:c5:e3:d9:f7:dc:f3:e7:12:d0:8c:b0: 3f:4a:3b:f0:c7:93:a0:77:d7:6b:6c:83:e5:30:9d: e2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:1C:98:41:41:10:34:E7:DD:B1:7E:C0:51:BA:7F:99:FB:0E:5B:CB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d70054d0-4c79-4b58-875d-4ba2fb635687.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da14::/35 Signature Algorithm: sha256WithRSAEncryption 00:7d:f2:9f:3e:59:3b:af:6f:19:b6:fe:21:e4:74:28:15:4a: 21:7f:18:21:9f:d9:13:a0:93:4e:ff:43:0e:11:4a:ca:24:7e: 64:42:86:aa:65:2d:35:c8:c8:7b:e4:49:9b:ee:8c:a8:e0:a8: 90:42:eb:ea:0b:33:0e:f0:66:f3:f4:0c:cf:98:38:17:0e:0b: 29:94:69:7a:44:51:f4:48:d4:00:7d:e0:8e:3f:1f:03:1f:75: 5d:68:3f:20:4a:b9:ec:7e:3b:ad:b2:8f:f2:dd:d5:cf:3c:eb: bb:2a:fa:0a:f9:bc:41:76:53:bc:5b:14:44:06:09:0c:ed:99: ed:62:0f:c5:4e:ca:24:0b:3f:6a:5f:ef:c2:94:26:e3:a3:ae: ce:73:65:2c:ae:fc:0a:b8:ae:1e:32:4e:92:65:73:bc:df:b5: 22:77:69:4a:16:bb:51:8b:4f:d8:f1:49:89:d2:f8:68:20:6c: d6:46:88:f8:c1:ed:90:17:19:50:8c:d8:dc:b8:52:1c:51:1c: 10:95:0e:f6:e2:0a:36:36:81:86:58:9c:e0:25:72:ab:40:de: 32:c1:b7:c5:7a:fd:b8:3b:9a:bb:9a:21:38:ee:b9:4e:a7:4b: a2:e5:af:c4:de:80:50:3d:0d:02:29:ec:02:8a:f6:10:e8:00: d0:88:54:1e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUawTwgULLzgkmyCkzsDzdk726EAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNAYjFiNTY3MTdjYmY5ZmY2NmI0M2Fk NjVjZmI2YWRkMjUxODlhY2Y1NzI3M2YyNzA4ZTdlZDBlYjhlN2MxMWZmZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0d39/FBeDzUP7Qw7mRNJoqdThFu0 /0mzWAqvxX9SQbSta7hmA/Yknx22aBZPPvYX3Mw2TUjUJDlVN2m3lYwOndeJgpk4 ceJGrCIWQLNd8RNTlINtbVp4Yu1RaHsmk7+LQ6yeFgEse0C7x+ZfMlKp5LtjJhAl GIN+EMrmHqG0BlGWDld7MTXp8GVjge3apd5LRN/2HuxPws0Uzqcszf86DdLrVl1r ++Oug71ptWDUwyDIkfLgGRUD24stsBdoQl56DhKxbfEbukN0NZSHpPqSYwixRc7D MDTsz3IYCKH2tnajPk/5xePZ99zz5xLQjLA/Sjvwx5Ogd9drbIPlMJ3iKwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKkcmEFBEDTn3bF+wFG6f5n7DlvLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q3MDA1NGQwLTRjNzktNGI1OC04NzVkLTRiYTJmYjYzNTY4Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYFJAbaFAAwDQYJKoZIhvcNAQELBQADggEBAAB98p8+WTuvbxm2/iHk dCgVSiF/GCGf2ROgk07/Qw4RSsokfmRChqplLTXIyHvkSZvujKjgqJBC6+oLMw7w ZvP0DM+YOBcOCymUaXpEUfRI1AB94I4/HwMfdV1oPyBKuex+O62yj/Ld1c8867sq +gr5vEF2U7xbFEQGCQztme1iD8VOyiQLP2pf78KUJuOjrs5zZSyu/Aq4rh4yTpJl c7zftSJ3aUoWu1GLT9jxSYnS+GggbNZGiPjB7ZAXGVCM2Ny4UhxRHBCVDvbiCjY2 gYZYnOAlcqtA3jLBt8V6/bg7mruaITjuuU6nS6Llr8TegFA9DQIp7AKK9hDoANCI VB4= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:37 2024 by rpki-client on console-fra.rpki-client.org