$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ccec14-e28e-4293-bc2f-c216327b4af8.roa File: e5ccec14-e28e-4293-bc2f-c216327b4af8.roa (raw, json) Hash identifier: t+bTeQ176qwMU2wS0f7NQyyjQg7ij/LxXBRBHyP82xA= Subject key identifier: 76:FA:A1:C8:46:32:51:1D:9B:D8:BB:B4:2C:12:7F:44:95:E2:AB:8C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 047D7450101807F7154C7DAFF106D125568569C7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ccec14-e28e-4293-bc2f-c216327b4af8.roa Signing time: Tue 01 Oct 2024 00:00:00 +0000 ROA not before: Tue 01 Oct 2024 00:00:00 +0000 ROA not after: Tue 05 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafc:ff80::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:7d:74:50:10:18:07:f7:15:4c:7d:af:f1:06:d1:25:56:85:69:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 1 00:00:00 2024 GMT Not After : Nov 5 23:59:59 2024 GMT Subject: serialNumber=80f8f6469577b7e9bdf7f238d88a37422392b1f58ce87b5de8f0d58191f051eb, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:92:6a:67:1a:89:83:a9:c8:9a:d8:45:97:3d: 1f:5d:16:49:b1:33:fc:5f:0a:51:42:19:6b:08:12: 87:aa:bb:8c:23:b6:bf:4d:27:54:b5:a4:87:63:34: 60:f3:da:5b:e2:d6:d6:93:f5:bb:f1:b7:40:7d:c0: bb:7d:bd:e7:89:54:bb:67:ab:42:fb:d0:4c:ea:77: 33:ea:e9:17:00:16:72:60:5d:7e:d8:02:3b:80:1c: 21:a8:f8:e0:4a:1c:58:45:83:24:6d:21:b8:04:e7: a1:eb:0d:cb:62:43:5d:57:00:1a:1d:40:64:c3:6c: 97:c4:5f:e8:4a:d4:29:2c:b2:73:ff:32:71:76:a4: 2b:33:96:fa:69:3d:df:5a:bd:d0:03:58:5b:03:ac: 58:21:93:e0:2d:41:a0:00:cd:a8:da:d9:12:b8:ca: c3:a5:12:10:bf:b0:0a:e6:0f:56:ff:32:40:1c:7c: 12:c6:fa:3a:ce:2c:3a:cd:38:64:a1:e0:75:9e:8d: 1f:3b:c1:09:e6:a3:85:42:38:76:cb:3f:9c:2d:26: 30:5e:46:73:e4:4d:dd:23:1f:59:cb:e3:cd:ce:49: 18:3a:3f:4a:0e:5b:07:33:0c:61:6e:89:23:0a:da: 8a:22:9a:c3:47:c3:88:7a:4b:6c:3d:c1:45:01:ba: f9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:FA:A1:C8:46:32:51:1D:9B:D8:BB:B4:2C:12:7F:44:95:E2:AB:8C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ccec14-e28e-4293-bc2f-c216327b4af8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafc:ff80::/46 Signature Algorithm: sha256WithRSAEncryption 4f:03:cc:d9:68:85:72:c7:44:46:6e:4f:ed:a7:c7:16:d7:19: 79:33:04:4a:8c:cc:d1:e7:61:a0:0c:6e:a1:80:d2:90:48:ba: 40:34:65:6a:ca:f9:d8:b7:f9:b0:20:9c:c6:81:ce:cd:92:7d: dd:ab:92:f3:33:30:5e:1a:5c:77:ee:e6:03:bb:c5:55:ba:0f: 4f:0c:ff:8d:f7:da:1c:d8:48:ed:1c:10:61:a6:41:1b:b0:d8: 9c:64:a5:52:06:ff:27:e6:71:ce:a1:76:3a:d2:83:2b:2e:c0: b7:b4:5b:31:01:ea:fa:8a:c4:fc:5b:5b:25:4d:60:59:91:2a: f7:6f:7f:91:b7:75:45:b9:61:2e:7e:4b:7b:47:ca:f0:4b:64: c6:54:fb:a2:1a:7f:41:46:dd:c1:ba:08:b7:5b:71:85:a3:42: 1d:20:ce:e1:ea:0b:1b:5c:bc:bf:21:27:8f:39:dc:c7:e5:37: 9f:95:18:3d:e6:0c:ef:a9:a6:e9:f1:0b:11:86:b6:cd:7c:e7: eb:f3:f7:72:c1:bb:93:1f:74:48:28:c3:6a:91:3f:3b:9d:89: fd:7f:47:9f:aa:2b:46:fc:4a:66:d2:17:bb:f0:33:6e:36:81: a4:e0:91:ec:7d:9a:fa:38:45:32:1c:48:39:3c:2c:4a:44:d4: 51:4f:8b:22 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUBH10UBAYB/cVTH2v8QbRJVaFaccwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAwMTAwMDAwMFoX DTI0MTEwNTIzNTk1OVowejFJMEcGA1UEBRNAODBmOGY2NDY5NTc3YjdlOWJkZjdm MjM4ZDg4YTM3NDIyMzkyYjFmNThjZTg3YjVkZThmMGQ1ODE5MWYwNTFlYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpJqZxqJg6nImthFlz0fXRZJsTP8 XwpRQhlrCBKHqruMI7a/TSdUtaSHYzRg89pb4tbWk/W78bdAfcC7fb3niVS7Z6tC +9BM6ncz6ukXABZyYF1+2AI7gBwhqPjgShxYRYMkbSG4BOeh6w3LYkNdVwAaHUBk w2yXxF/oStQpLLJz/zJxdqQrM5b6aT3fWr3QA1hbA6xYIZPgLUGgAM2o2tkSuMrD pRIQv7AK5g9W/zJAHHwSxvo6ziw6zThkoeB1no0fO8EJ5qOFQjh2yz+cLSYwXkZz 5E3dIx9Zy+PNzkkYOj9KDlsHMwxhbokjCtqKIprDR8OIektsPcFFAbr5rQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHb6ochGMlEdm9i7tCwSf0SV4quMMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U1Y2NlYzE0LWUyOGUtNDI5My1iYzJmLWMyMTYzMjdiNGFmOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba/P+AMA0GCSqGSIb3DQEBCwUAA4IBAQBPA8zZaIVyx0RGbk/t p8cW1xl5MwRKjMzR52GgDG6hgNKQSLpANGVqyvnYt/mwIJzGgc7Nkn3dq5LzMzBe Glx37uYDu8VVug9PDP+N99oc2EjtHBBhpkEbsNicZKVSBv8n5nHOoXY60oMrLsC3 tFsxAer6isT8W1slTWBZkSr3b3+Rt3VFuWEufkt7R8rwS2TGVPuiGn9BRt3Bugi3 W3GFo0IdIM7h6gsbXLy/ISePOdzH5TeflRg95gzvqabp8QsRhrbNfOfr8/dywbuT H3RIKMNqkT87nYn9f0efqitG/Epm0he78DNuNoGk4JHsfZr6OEUyHEg5PCxKRNRR T4si -----END CERTIFICATE-----Generated at Fri Oct 25 17:02:35 2024 by rpki-client on console-fra.rpki-client.org