$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dadda27f-7691-4ec0-8708-24e30f7b49ad.roa File: dadda27f-7691-4ec0-8708-24e30f7b49ad.roa (raw, json) Hash identifier: 99PVDlXchk4uFJ05IPcfFm8NF5/aLF7twDXTEylsqXM= Subject key identifier: 39:FD:7F:95:F4:B9:6E:29:FF:6E:FB:91:80:E0:E9:CC:58:15:F0:5E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0AC475B5B998674C75D3EE6B6E9D8129B76209CE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dadda27f-7691-4ec0-8708-24e30f7b49ad.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da14::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c4:75:b5:b9:98:67:4c:75:d3:ee:6b:6e:9d:81:29:b7:62:09:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=3d91957ccf76be8a0e48ac74729d4b0b0c002d39c68a3f24469593455356c192, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ae:9d:96:24:ac:58:30:67:07:9d:0d:f7:3c: a1:0d:55:bd:fc:97:1a:a5:6a:6f:a3:a5:d5:ac:49: a8:53:ec:42:a8:ab:09:5a:28:c5:01:3a:a4:b3:de: 4f:a7:00:f4:f5:8b:78:12:6c:93:54:48:78:1f:25: 3d:94:af:29:72:09:fc:47:13:22:fa:c9:7e:ce:37: af:cb:44:ed:6d:68:01:3a:e4:f7:28:a8:44:ab:65: bc:fa:7d:c7:69:7e:4d:b0:73:50:4c:13:3a:80:bb: 5c:ca:e9:24:8f:ff:0c:d7:04:04:2f:d3:cd:55:d0: 9b:b4:0d:e7:75:a8:93:04:36:bf:bb:99:f1:75:c4: 7e:f2:90:f2:06:49:73:65:3d:53:cf:6f:05:ec:50: 22:59:e1:ed:c5:94:e9:a8:c8:b0:5e:f3:40:89:2e: 07:6e:6a:eb:bb:a5:a4:34:5b:13:d4:d9:ec:d7:de: 2f:96:ab:32:37:36:69:5c:00:7c:da:66:6f:50:b1: 81:be:44:7d:f3:61:b1:3c:bb:e2:10:d3:20:57:c7: 3d:b8:50:7a:3b:74:cf:e9:f5:46:25:06:39:2d:db: 37:c3:f9:b5:1a:49:41:a6:74:b7:1c:44:33:e3:4d: 87:4f:b8:8a:6a:d1:20:ac:cb:dd:38:a7:d2:58:7d: ad:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FD:7F:95:F4:B9:6E:29:FF:6E:FB:91:80:E0:E9:CC:58:15:F0:5E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dadda27f-7691-4ec0-8708-24e30f7b49ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da14::/36 Signature Algorithm: sha256WithRSAEncryption 8a:c6:e6:32:0d:34:be:13:03:d6:85:eb:3b:d1:3d:fe:8d:8b: 66:07:d8:e5:6b:3e:89:de:79:79:02:52:1f:68:02:81:1c:86: 68:82:f6:91:6f:62:b2:d9:e3:fb:c9:53:aa:bf:f1:1c:cd:9c: d3:9a:56:75:fc:12:2a:01:09:c7:7b:b5:87:3b:9e:d0:e0:62: 53:03:37:48:fd:4e:8c:c1:1f:4d:22:39:a2:77:d6:f8:47:f3: 96:5c:61:84:40:ed:0f:42:21:ce:10:fa:a7:04:25:bd:7b:44: e1:dd:83:6d:0d:f6:7b:65:0b:6a:fc:34:37:18:d6:d5:e1:d9: df:5c:0b:c1:e2:39:e2:49:48:c5:0d:ff:8c:cf:62:ab:be:5d: 9a:dc:e4:32:dc:05:40:46:aa:1f:a7:09:f8:6f:3c:5c:e7:7d: ed:b5:01:0a:e3:c3:a2:f3:f1:1c:72:a1:5d:24:ff:97:3c:ad: 22:d6:96:cf:41:f3:82:a6:87:bf:ec:8a:5f:2d:40:37:6f:b5: 3b:f3:c4:ec:55:8a:66:44:36:18:73:ba:4d:29:93:38:34:fa: 09:36:72:70:fb:76:a3:fc:e5:04:52:f2:05:a4:49:11:f4:e3: e8:d2:44:c4:0b:06:21:68:bc:8c:ac:d0:cc:19:14:0f:77:ed: dd:dc:75:f1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCsR1tbmYZ0x10+5rbp2BKbdiCc4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNAM2Q5MTk1N2NjZjc2YmU4YTBlNDhh Yzc0NzI5ZDRiMGIwYzAwMmQzOWM2OGEzZjI0NDY5NTkzNDU1MzU2YzE5MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4a6dliSsWDBnB50N9zyhDVW9/Jca pWpvo6XVrEmoU+xCqKsJWijFATqks95PpwD09Yt4EmyTVEh4HyU9lK8pcgn8RxMi +sl+zjevy0TtbWgBOuT3KKhEq2W8+n3HaX5NsHNQTBM6gLtcyukkj/8M1wQEL9PN VdCbtA3ndaiTBDa/u5nxdcR+8pDyBklzZT1Tz28F7FAiWeHtxZTpqMiwXvNAiS4H bmrru6WkNFsT1Nns194vlqsyNzZpXAB82mZvULGBvkR982GxPLviENMgV8c9uFB6 O3TP6fVGJQY5Lds3w/m1GklBpnS3HEQz402HT7iKatEgrMvdOKfSWH2tWQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDn9f5X0uW4p/277kYDg6cxYFfBeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RhZGRhMjdmLTc2OTEtNGVjMC04NzA4LTI0ZTMwZjdiNDlhZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaFAAwDQYJKoZIhvcNAQELBQADggEBAIrG5jINNL4TA9aF6zvR Pf6Ni2YH2OVrPoneeXkCUh9oAoEchmiC9pFvYrLZ4/vJU6q/8RzNnNOaVnX8EioB Ccd7tYc7ntDgYlMDN0j9TozBH00iOaJ31vhH85ZcYYRA7Q9CIc4Q+qcEJb17ROHd g20N9ntlC2r8NDcY1tXh2d9cC8HiOeJJSMUN/4zPYqu+XZrc5DLcBUBGqh+nCfhv PFznfe21AQrjw6Lz8RxyoV0k/5c8rSLWls9B84Kmh7/sil8tQDdvtTvzxOxVimZE Nhhzuk0pkzg0+gk2cnD7dqP85QRS8gWkSRH04+jSRMQLBiFovIys0MwZFA937d3c dfE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:37 2024 by rpki-client on console-fra.rpki-client.org