$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d74980db-a60d-487c-9253-3e131534d8d4.roa File: d74980db-a60d-487c-9253-3e131534d8d4.roa (raw, json) Hash identifier: 3op2hsGyaqt9AXiRm1503GyyfgUHsilMaaGl7SSH3QI= Subject key identifier: 3F:74:36:77:DB:36:8B:9F:FB:96:4E:FB:2C:CB:64:79:11:5E:AE:10 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 07F0435730DD703183CEE32E8F54EFD7C868F0F0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d74980db-a60d-487c-9253-3e131534d8d4.roa Signing time: Wed 20 Nov 2024 00:00:00 +0000 ROA not before: Wed 20 Nov 2024 00:00:00 +0000 ROA not after: Wed 25 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:f0:43:57:30:dd:70:31:83:ce:e3:2e:8f:54:ef:d7:c8:68:f0:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 20 00:00:00 2024 GMT Not After : Dec 25 23:59:59 2024 GMT Subject: serialNumber=bd062e8db2dbf7cc039d2cf2f9e1f7b692fa6e9ca68011163e6ea3854955bf92, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2e:5c:3b:49:26:ec:64:a6:cc:6d:b6:03:b3: 04:d6:4c:b3:37:7d:83:79:3f:ef:62:65:04:ae:f5: 25:70:71:f2:65:fe:6a:6d:da:93:8b:22:b9:f7:63: 71:58:f1:17:24:23:47:f9:db:bb:1e:2c:e9:8a:e3: f9:d4:12:90:9e:29:85:4a:9f:59:06:f5:bb:bf:3d: 2e:68:47:03:60:4e:d7:2d:c3:a3:90:76:a1:e2:b2: ab:fc:54:b1:d7:4f:15:57:c2:de:4e:56:b0:1b:cf: be:b7:f0:57:93:d1:ca:f1:0a:ee:a2:5e:fb:a3:5e: 65:da:69:57:99:9c:6f:76:94:2f:6f:9f:2c:90:dd: 10:d9:1e:1b:06:07:c4:96:67:85:27:d6:47:e5:e6: c0:cc:1f:89:77:ff:43:aa:c1:ce:c6:c7:02:55:39: e7:b9:5c:cd:13:dd:54:9b:42:6f:69:63:9c:2a:19: d0:df:b5:6b:db:c4:0f:95:03:1f:c1:7e:a3:16:fb: ec:11:be:41:c9:ed:2f:ea:42:1c:25:93:d1:24:3a: b8:7f:c2:46:26:b8:15:0f:92:73:55:78:28:5d:67: ca:09:80:c3:2a:dd:67:1b:62:c6:8e:03:0b:29:a5: eb:76:6c:db:21:e4:ff:5b:a7:f4:85:b9:40:2c:12: 5a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:74:36:77:DB:36:8B:9F:FB:96:4E:FB:2C:CB:64:79:11:5E:AE:10 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d74980db-a60d-487c-9253-3e131534d8d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:f000::/40 Signature Algorithm: sha256WithRSAEncryption ca:53:3b:5b:9d:40:f8:ff:bd:90:b1:0a:3f:87:5d:ab:7c:71: e9:ec:19:7f:06:d3:dd:e1:18:35:6d:a4:cb:e6:7d:a3:4a:65: c7:98:c7:06:12:52:97:0a:3c:b5:3c:d8:15:76:d0:ff:77:6d: df:01:8f:43:bf:17:14:c3:b6:2d:b9:19:26:dd:97:ae:37:69: 61:ea:2d:d7:c6:7d:62:cf:5e:bb:fd:ce:32:b7:17:1b:12:d4: 94:f1:a4:c2:f2:99:ab:ee:4c:d7:6d:c1:8b:bf:a2:0e:c8:1f: 9c:9e:2a:bf:42:b1:b1:64:95:2a:28:b1:2b:17:35:01:01:d3: a0:a8:bb:51:00:d9:f3:29:5e:4d:4c:5c:2e:29:89:de:8f:1a: f0:0b:6e:ee:10:65:ea:91:38:41:6a:0a:ca:ac:cc:4d:5e:95: 24:54:09:55:a9:11:11:f4:5c:36:b4:cd:04:86:9e:e0:d1:c0: 89:62:f1:db:e8:89:a4:4b:ed:14:9e:28:99:81:91:cb:8c:24: 36:c0:c2:c9:b1:df:6f:7f:ed:e8:d9:0f:e5:2c:2b:e1:da:39: 58:e3:dd:cd:53:da:ad:30:40:b4:bd:96:18:90:68:77:3d:6c: f3:4e:c6:4f:48:bc:7e:fb:ff:ce:83:6e:3c:b0:47:00:43:03: 5a:7a:fb:7a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUB/BDVzDdcDGDzuMuj1Tv18ho8PAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMDAwMDAwMFoX DTI0MTIyNTIzNTk1OVowejFJMEcGA1UEBRNAYmQwNjJlOGRiMmRiZjdjYzAzOWQy Y2YyZjllMWY3YjY5MmZhNmU5Y2E2ODAxMTE2M2U2ZWEzODU0OTU1YmY5MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7i5cO0km7GSmzG22A7ME1kyzN32D eT/vYmUErvUlcHHyZf5qbdqTiyK592NxWPEXJCNH+du7HizpiuP51BKQnimFSp9Z BvW7vz0uaEcDYE7XLcOjkHah4rKr/FSx108VV8LeTlawG8++t/BXk9HK8Qruol77 o15l2mlXmZxvdpQvb58skN0Q2R4bBgfElmeFJ9ZH5ebAzB+Jd/9DqsHOxscCVTnn uVzNE91Um0JvaWOcKhnQ37Vr28QPlQMfwX6jFvvsEb5Bye0v6kIcJZPRJDq4f8JG JrgVD5JzVXgoXWfKCYDDKt1nG2LGjgMLKaXrdmzbIeT/W6f0hblALBJauQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFD90NnfbNouf+5ZO+yzLZHkRXq4QMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q3NDk4MGRiLWE2MGQtNDg3Yy05MjUzLTNlMTMxNTM0ZDhkNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaufAwDQYJKoZIhvcNAQELBQADggEBAMpTO1udQPj/vZCxCj+H Xat8censGX8G093hGDVtpMvmfaNKZceYxwYSUpcKPLU82BV20P93bd8Bj0O/FxTD ti25GSbdl643aWHqLdfGfWLPXrv9zjK3FxsS1JTxpMLymavuTNdtwYu/og7IH5ye Kr9CsbFklSoosSsXNQEB06Cou1EA2fMpXk1MXC4pid6PGvALbu4QZeqROEFqCsqs zE1elSRUCVWpERH0XDa0zQSGnuDRwIli8dvoiaRL7RSeKJmBkcuMJDbAwsmx329/ 7ejZD+UsK+HaOVjj3c1T2q0wQLS9lhiQaHc9bPNOxk9IvH77/86DbjywRwBDA1p6 +3o= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:37 2024 by rpki-client on console-fra.rpki-client.org