$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e4664211-6230-459e-9eaf-340bafb7f5d0.roa File: e4664211-6230-459e-9eaf-340bafb7f5d0.roa (raw, json) Hash identifier: dxkJggU7shcGxyfBTKVGrN1VYIQKX6RsZGTFNip4s5U= Subject key identifier: 75:87:4C:4B:02:34:1A:23:81:9B:46:6B:EB:AB:75:5A:0A:5D:D7:39 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3B721463C14760A82B1B6D0E92307ABFE68C18A2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e4664211-6230-459e-9eaf-340bafb7f5d0.roa Signing time: Sat 06 Apr 2024 00:00:00 +0000 ROA not before: Sat 06 Apr 2024 00:00:00 +0000 ROA not after: Sat 11 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da17::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 00:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:72:14:63:c1:47:60:a8:2b:1b:6d:0e:92:30:7a:bf:e6:8c:18:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 6 00:00:00 2024 GMT Not After : May 11 23:59:59 2024 GMT Subject: serialNumber=cc478afb35323bc7532a7bda96c23f25769c14859474ac75871c8b8da45796d7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:44:12:db:78:49:1f:9a:24:49:40:4f:e3:3e: d8:b9:91:59:f0:6e:2a:d1:04:47:a3:91:42:72:4a: b6:a8:22:63:45:af:13:79:f6:12:2d:82:93:2e:47: 69:86:09:db:3f:f6:79:8e:07:cf:0a:75:aa:73:fa: d6:9d:7e:ba:89:a1:01:6a:8f:fb:4a:03:54:5e:26: da:62:2f:54:7b:b1:3f:41:18:fb:03:c6:7e:f2:0e: c3:c7:a0:84:9a:ac:68:fb:5f:fc:80:db:83:79:ba: 25:7e:1d:8c:e6:f4:72:60:8c:d6:fc:ec:42:5d:b1: d8:75:9a:63:9a:0e:7b:2d:ec:13:bc:d4:19:6e:21: bf:66:14:30:f9:8f:07:39:72:2a:a0:4e:0f:1d:ec: c9:9f:fc:27:70:a5:65:dd:2e:7a:7e:0c:3a:50:26: 60:ad:f6:69:85:c2:e6:f7:6b:df:58:e2:ed:60:8f: 73:c6:74:8b:60:f7:3d:b6:d4:a4:bd:e9:e7:97:8f: f4:5f:ed:3a:5d:83:83:38:a7:58:19:03:9a:2f:d1: 51:37:f0:7d:45:05:cf:a7:2f:d9:9f:b4:b7:a8:32: 04:f2:13:f8:03:5c:ac:ba:fd:78:e5:1f:8f:99:bf: 59:6e:87:8f:83:b5:f6:64:89:8e:62:78:ca:19:ed: ca:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:87:4C:4B:02:34:1A:23:81:9B:46:6B:EB:AB:75:5A:0A:5D:D7:39 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e4664211-6230-459e-9eaf-340bafb7f5d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da17::/36 Signature Algorithm: sha256WithRSAEncryption 63:fb:fc:43:57:88:72:fe:b3:a7:40:b9:65:72:4f:1e:62:84: 5d:1d:90:cf:d7:8c:97:28:8f:a1:59:8d:54:3d:3b:c5:83:30: 5a:9b:cb:1d:6f:27:55:06:bf:46:d1:ec:21:1e:ae:d9:b7:c4: 80:d8:d6:f3:7a:0b:73:21:4f:04:d2:16:4a:2f:b1:1b:c1:5b: ea:ed:b7:a2:6c:01:ac:3b:cb:39:42:28:84:ab:71:10:1e:bf: dd:1e:b6:fe:f9:e9:1a:0b:fb:73:4f:f5:c6:45:c5:fb:e5:3b: 13:39:bd:12:3d:ae:b5:6c:54:cf:2b:f0:aa:2c:c0:14:fd:90: 7b:dd:07:98:b2:4f:c6:f1:2c:2b:a5:63:77:0c:12:a8:b0:ae: 21:9d:40:ac:6e:9d:5c:59:d9:5a:2e:a2:54:6c:03:ac:33:f8: ac:cf:5e:cc:dc:00:c8:cc:ad:e9:71:dc:db:61:8a:01:05:6c: b1:f2:0a:fd:09:9e:1d:65:29:75:d0:b5:90:ef:b0:06:2d:b8: d9:ff:f9:db:37:bc:e0:b2:cc:02:bf:76:b3:97:d7:f0:ac:14: cf:b8:fd:e0:8f:23:e8:28:2d:94:83:ea:0e:d2:be:b9:38:1c: 14:76:58:5e:e5:9d:e1:e6:11:f9:e4:fb:c1:0c:b9:f0:3f:42: 94:5e:5d:28 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUO3IUY8FHYKgrG20OkjB6v+aMGKIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQwNjAwMDAwMFoX DTI0MDUxMTIzNTk1OVowejFJMEcGA1UEBRNAY2M0NzhhZmIzNTMyM2JjNzUzMmE3 YmRhOTZjMjNmMjU3NjljMTQ4NTk0NzRhYzc1ODcxYzhiOGRhNDU3OTZkNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EQS23hJH5okSUBP4z7YuZFZ8G4q 0QRHo5FCckq2qCJjRa8TefYSLYKTLkdphgnbP/Z5jgfPCnWqc/rWnX66iaEBao/7 SgNUXibaYi9Ue7E/QRj7A8Z+8g7Dx6CEmqxo+1/8gNuDebolfh2M5vRyYIzW/OxC XbHYdZpjmg57LewTvNQZbiG/ZhQw+Y8HOXIqoE4PHezJn/wncKVl3S56fgw6UCZg rfZphcLm92vfWOLtYI9zxnSLYPc9ttSkvennl4/0X+06XYODOKdYGQOaL9FRN/B9 RQXPpy/Zn7S3qDIE8hP4A1ysuv145R+Pmb9ZboePg7X2ZImOYnjKGe3KFQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHWHTEsCNBojgZtGa+urdVoKXdc5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U0NjY0MjExLTYyMzAtNDU5ZS05ZWFmLTM0MGJhZmI3ZjVkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaFwAwDQYJKoZIhvcNAQELBQADggEBAGP7/ENXiHL+s6dAuWVy Tx5ihF0dkM/XjJcoj6FZjVQ9O8WDMFqbyx1vJ1UGv0bR7CEertm3xIDY1vN6C3Mh TwTSFkovsRvBW+rtt6JsAaw7yzlCKISrcRAev90etv756RoL+3NP9cZFxfvlOxM5 vRI9rrVsVM8r8KoswBT9kHvdB5iyT8bxLCulY3cMEqiwriGdQKxunVxZ2VouolRs A6wz+KzPXszcAMjMrelx3NthigEFbLHyCv0Jnh1lKXXQtZDvsAYtuNn/+ds3vOCy zAK/drOX1/CsFM+4/eCPI+goLZSD6g7Svrk4HBR2WF7lneHmEfnk+8EMufA/QpRe XSg= -----END CERTIFICATE-----Generated at Fri Apr 26 06:07:25 2024 by rpki-client on console-ams.rpki-client.org