$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ccec14-e28e-4293-bc2f-c216327b4af8.roa File: e5ccec14-e28e-4293-bc2f-c216327b4af8.roa (raw, json) Hash identifier: GuhDh5eQbNISseo05+m8lErPSDuSPyyoLLVFbxweeuI= Subject key identifier: 4A:EF:DF:CA:5C:E2:FF:16:44:1D:F2:A4:98:F6:1A:E8:9E:FA:FD:8D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 766893BEC3DB51C2A1145C6504D4C895CC87373C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ccec14-e28e-4293-bc2f-c216327b4af8.roa Signing time: Wed 20 Nov 2024 00:00:00 +0000 ROA not before: Wed 20 Nov 2024 00:00:00 +0000 ROA not after: Wed 25 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafc:ff80::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:68:93:be:c3:db:51:c2:a1:14:5c:65:04:d4:c8:95:cc:87:37:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 20 00:00:00 2024 GMT Not After : Dec 25 23:59:59 2024 GMT Subject: serialNumber=9f3f9dc403918ee353d905c5321d0c5e1cf3b0796f1924024d724a7e3ba420ce, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:11:7c:85:45:ee:d0:88:26:1a:ec:31:10:0d: 3f:fc:d5:51:9a:f2:b0:de:47:0f:1d:0d:34:73:5e: fe:c3:c4:3d:52:e2:aa:c7:57:87:6b:ca:11:89:17: 00:58:b0:5e:03:74:6e:30:56:26:ca:1e:e5:18:25: da:29:fb:33:8e:ba:7c:1e:e9:3e:08:c2:d6:9c:26: 81:5a:6e:fc:9a:dd:5a:2f:cc:a6:c1:20:66:d4:db: e5:96:7b:8d:20:56:60:1c:3f:01:cf:0e:b1:5c:59: ab:74:6b:7c:33:4a:c1:4e:5f:3f:fe:69:2d:de:11: a0:1d:84:1a:d2:f8:55:5c:01:a4:ae:ac:38:69:6c: d6:0d:f1:fb:83:9b:f7:fa:f5:af:8d:d5:f4:0f:1b: 02:df:18:d1:d0:c7:c2:77:87:37:34:af:5e:33:e1: 2c:9d:dd:8a:eb:7a:ed:d8:e7:3f:53:64:39:5d:ac: fc:93:ed:bf:46:2f:05:42:3c:48:d0:86:33:62:24: 39:63:aa:af:28:36:71:84:fb:7d:3f:79:8d:3c:29: ed:e2:27:70:8e:da:43:3e:ef:56:af:fb:39:c0:74: a6:ba:ee:0e:ac:e9:32:e2:b3:04:31:23:42:c0:2a: 7e:f1:86:04:68:ea:a4:00:3e:3d:aa:78:32:37:ef: 03:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:EF:DF:CA:5C:E2:FF:16:44:1D:F2:A4:98:F6:1A:E8:9E:FA:FD:8D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ccec14-e28e-4293-bc2f-c216327b4af8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafc:ff80::/46 Signature Algorithm: sha256WithRSAEncryption 06:bd:a0:9b:31:cd:6a:c6:d7:c1:6d:d9:86:47:75:31:74:4c: 07:b1:ac:4b:0d:63:a1:9d:fb:bc:b7:c2:23:81:9e:27:e1:e3: f9:6c:0e:8a:32:12:b6:44:72:cf:8f:03:11:0b:fd:6c:46:15: 81:5d:e3:13:f5:ea:3b:9b:1f:e4:ad:31:64:89:a7:62:67:34: 3f:50:c3:ab:26:60:a3:a4:4f:09:44:c2:3c:09:64:4f:57:b6: 90:00:3a:90:b7:33:02:4b:2a:1c:88:ba:76:df:87:06:69:fe: d0:96:17:eb:81:cf:e9:a0:26:70:e4:22:78:c7:4e:d0:d2:61: 85:87:b8:d0:11:92:2b:44:9e:a5:db:4e:05:8b:60:6c:6d:12: 24:fb:f6:f3:ad:97:5f:8e:54:1e:d6:f1:11:48:4b:7e:ae:03: b6:98:5d:4b:58:22:75:3b:00:80:7d:fb:e0:b7:e8:f1:17:36: c5:81:8a:56:49:02:3a:83:b7:aa:72:00:15:73:1a:59:7b:66: 0a:aa:db:77:ba:d1:1f:25:00:a5:14:b9:b0:ce:63:85:2e:5f: 6b:07:03:82:26:a1:2a:76:5e:0b:66:b6:63:4f:de:51:40:46: 83:0a:6b:fd:53:d7:ed:f5:e3:b1:37:11:30:64:14:c2:a7:fb: 86:1e:64:e2 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdmiTvsPbUcKhFFxlBNTIlcyHNzwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMDAwMDAwMFoX DTI0MTIyNTIzNTk1OVowejFJMEcGA1UEBRNAOWYzZjlkYzQwMzkxOGVlMzUzZDkw NWM1MzIxZDBjNWUxY2YzYjA3OTZmMTkyNDAyNGQ3MjRhN2UzYmE0MjBjZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6BF8hUXu0IgmGuwxEA0//NVRmvKw 3kcPHQ00c17+w8Q9UuKqx1eHa8oRiRcAWLBeA3RuMFYmyh7lGCXaKfszjrp8Huk+ CMLWnCaBWm78mt1aL8ymwSBm1NvllnuNIFZgHD8Bzw6xXFmrdGt8M0rBTl8//mkt 3hGgHYQa0vhVXAGkrqw4aWzWDfH7g5v3+vWvjdX0DxsC3xjR0MfCd4c3NK9eM+Es nd2K63rt2Oc/U2Q5Xaz8k+2/Ri8FQjxI0IYzYiQ5Y6qvKDZxhPt9P3mNPCnt4idw jtpDPu9Wr/s5wHSmuu4OrOky4rMEMSNCwCp+8YYEaOqkAD49qngyN+8DPQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFErv38pc4v8WRB3ypJj2Guie+v2NMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U1Y2NlYzE0LWUyOGUtNDI5My1iYzJmLWMyMTYzMjdiNGFmOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba/P+AMA0GCSqGSIb3DQEBCwUAA4IBAQAGvaCbMc1qxtfBbdmG R3UxdEwHsaxLDWOhnfu8t8IjgZ4n4eP5bA6KMhK2RHLPjwMRC/1sRhWBXeMT9eo7 mx/krTFkiadiZzQ/UMOrJmCjpE8JRMI8CWRPV7aQADqQtzMCSyociLp234cGaf7Q lhfrgc/poCZw5CJ4x07Q0mGFh7jQEZIrRJ6l204Fi2BsbRIk+/bzrZdfjlQe1vER SEt+rgO2mF1LWCJ1OwCAffvgt+jxFzbFgYpWSQI6g7eqcgAVcxpZe2YKqtt3utEf JQClFLmwzmOFLl9rBwOCJqEqdl4LZrZjT95RQEaDCmv9U9ft9eOxNxEwZBTCp/uG HmTi -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:37 2024 by rpki-client on console-fra.rpki-client.org