$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa File: dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa (raw, json) Hash identifier: gaIDKD5XYqfXNXhXWgGLua1eX/14yqO4KncEMBNvjJM= Subject key identifier: B5:F2:F4:7A:52:BC:92:0D:C5:B1:1E:FE:50:C5:35:C2:B8:E2:FB:A2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1B5ECECE47807D0E162034D476D33E43DFCAA9D3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa Signing time: Mon 08 Jul 2024 00:00:00 +0000 ROA not before: Mon 08 Jul 2024 00:00:00 +0000 ROA not after: Mon 12 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:5e:ce:ce:47:80:7d:0e:16:20:34:d4:76:d3:3e:43:df:ca:a9:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 8 00:00:00 2024 GMT Not After : Aug 12 23:59:59 2024 GMT Subject: serialNumber=ad3b8da25796baa5b5c94038caaa4dc2513c947e6a3633a7d843a2d6b031ce74, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2f:ff:1a:20:23:ae:71:72:d0:e5:fc:5e:8b: 17:09:00:70:03:1e:2c:d4:00:91:55:8f:c8:53:d4: ac:3a:c6:39:87:1b:a9:9e:c5:c5:4e:94:97:64:31: 21:6c:f7:8b:b5:4b:29:46:74:20:0d:8a:e9:8d:a3: b1:42:b5:e3:62:6d:61:60:41:a5:a8:ef:c3:3f:19: 28:af:cd:5c:58:c3:a6:29:40:06:d7:86:da:d1:34: ca:a3:94:24:33:ce:1f:cb:2d:53:2b:d0:e7:18:d0: 49:50:bb:e5:62:dc:e3:9b:f0:fd:50:b2:3b:37:9e: 20:26:c3:c9:8f:e2:0e:be:38:d6:d3:ce:6c:10:05: ab:fd:42:51:38:84:7d:30:bf:a3:b5:e2:cb:91:30: a2:b5:ca:71:eb:0a:cc:f6:65:4d:f8:b7:2b:98:09: 7c:52:ac:50:30:ff:d4:ce:f6:a5:65:f7:84:ae:11: 52:1a:98:5f:cb:7b:44:0e:17:43:7d:7b:8a:5d:9b: 39:58:6e:53:82:93:37:7b:ee:4f:88:e5:bc:c6:9e: 4f:84:78:f3:ef:22:72:c4:87:1c:ca:24:d9:39:6b: cc:c8:68:48:51:51:29:34:10:7b:66:72:55:33:82: 43:59:39:26:a2:c0:64:5e:ad:fd:04:59:ea:46:be: 2d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F2:F4:7A:52:BC:92:0D:C5:B1:1E:FE:50:C5:35:C2:B8:E2:FB:A2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:2000::/40 Signature Algorithm: sha256WithRSAEncryption 48:5a:40:c4:b8:4f:9a:69:d2:c9:e7:53:ce:d0:98:ad:51:5f: b1:a7:b8:ec:e7:d3:b0:71:c6:cd:da:32:f7:99:fe:45:84:22: f9:b0:2d:09:c9:1e:0c:5f:8a:1e:6c:9f:37:02:57:55:95:dd: 15:4e:6b:4e:1c:9f:9b:cd:f2:6f:c0:0b:f8:56:ff:2d:51:b9: 4f:0d:14:29:96:ab:dd:cd:2f:6b:5c:f2:25:f5:de:68:52:c5: 83:05:81:a8:d1:cf:94:56:e0:04:7c:94:cf:21:5e:a6:d0:aa: af:43:eb:3a:cd:1e:ae:17:08:77:8d:49:c7:37:b1:c4:43:e8: e3:4e:42:35:cc:b3:dc:f7:78:b7:72:57:19:b5:2e:6a:13:e4: b7:86:7f:bb:15:42:51:fb:b2:56:e5:d0:7a:85:d3:0b:a2:af: 13:0e:20:52:8d:77:91:9a:39:2c:a7:03:c2:74:c9:95:f3:6e: 12:2c:36:2b:ac:37:6b:f0:1a:65:0d:0a:16:74:49:8e:46:04: 65:a9:c3:51:02:7a:c5:11:f2:05:3e:47:d6:c4:26:dc:57:00: ed:73:af:6a:0d:39:31:ba:2f:9b:f7:3a:85:8e:cf:cd:a3:f9: f8:27:5f:e2:ab:d4:4c:1e:21:0c:e6:6c:ed:4c:eb:d1:46:95: 39:a7:fb:c9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUG17OzkeAfQ4WIDTUdtM+Q9/KqdMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcwODAwMDAwMFoX DTI0MDgxMjIzNTk1OVowejFJMEcGA1UEBRNAYWQzYjhkYTI1Nzk2YmFhNWI1Yzk0 MDM4Y2FhYTRkYzI1MTNjOTQ3ZTZhMzYzM2E3ZDg0M2EyZDZiMDMxY2U3NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8C//GiAjrnFy0OX8XosXCQBwAx4s 1ACRVY/IU9SsOsY5hxupnsXFTpSXZDEhbPeLtUspRnQgDYrpjaOxQrXjYm1hYEGl qO/DPxkor81cWMOmKUAG14ba0TTKo5QkM84fyy1TK9DnGNBJULvlYtzjm/D9ULI7 N54gJsPJj+IOvjjW085sEAWr/UJROIR9ML+jteLLkTCitcpx6wrM9mVN+LcrmAl8 UqxQMP/UzvalZfeErhFSGphfy3tEDhdDfXuKXZs5WG5TgpM3e+5PiOW8xp5PhHjz 7yJyxIccyiTZOWvMyGhIUVEpNBB7ZnJVM4JDWTkmosBkXq39BFnqRr4t4wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLXy9HpSvJINxbEe/lDFNcK44vuiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RkM2Q2MDIwLWJlNzgtNDZjYS05YjhhLTYzZmRiZmM5ZGE5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9SAwDQYJKoZIhvcNAQELBQADggEBAEhaQMS4T5pp0snnU87Q mK1RX7GnuOzn07Bxxs3aMveZ/kWEIvmwLQnJHgxfih5snzcCV1WV3RVOa04cn5vN 8m/AC/hW/y1RuU8NFCmWq93NL2tc8iX13mhSxYMFgajRz5RW4AR8lM8hXqbQqq9D 6zrNHq4XCHeNScc3scRD6ONOQjXMs9z3eLdyVxm1LmoT5LeGf7sVQlH7slbl0HqF 0wuirxMOIFKNd5GaOSynA8J0yZXzbhIsNiusN2vwGmUNChZ0SY5GBGWpw1ECesUR 8gU+R9bEJtxXAO1zr2oNOTG6L5v3OoWOz82j+fgnX+Kr1EweIQzmbO1M69FGlTmn +8k= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org