$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e80997c7-fc55-4344-b2e2-40a9dbd2cc34.roa File: e80997c7-fc55-4344-b2e2-40a9dbd2cc34.roa (raw, json) Hash identifier: 0CjbwoogRHUo6kPP63EtbdBhoyXrsecVj12GSStTp2U= Subject key identifier: 98:E5:83:CD:40:D1:69:7B:AA:89:90:10:87:FD:A6:8F:2D:91:37:8B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0A14805A39060F3ACEC3CCA8F190904A0D3C97CF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e80997c7-fc55-4344-b2e2-40a9dbd2cc34.roa Signing time: Sat 23 Nov 2024 00:00:00 +0000 ROA not before: Sat 23 Nov 2024 00:00:00 +0000 ROA not after: Sat 28 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:14:80:5a:39:06:0f:3a:ce:c3:cc:a8:f1:90:90:4a:0d:3c:97:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:00:00 2024 GMT Not After : Dec 28 23:59:59 2024 GMT Subject: serialNumber=c6dc2dc8ea6881863dbc18b3284944f6f2df17dd72e737b9500d421c26415715, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ba:fe:f8:6b:e5:e8:3a:da:5a:8b:c3:6c:24: c0:06:9f:ea:b3:0c:1b:c2:ad:56:9a:2f:ba:dc:61: 44:78:86:79:89:19:d8:88:bc:13:39:13:3f:2e:65: 87:d4:c9:04:8d:10:d3:0f:f6:b9:ee:d2:89:81:79: cb:57:4b:9e:ca:21:d3:ab:94:c0:c6:fd:ce:7c:9d: 42:76:5a:b9:fb:1f:9a:f3:e6:d5:54:eb:45:d1:ef: 25:67:10:39:a8:0c:e4:9b:8c:88:8c:1b:0a:51:e3: 42:70:04:c1:21:03:77:2f:48:55:aa:d5:94:6f:30: bd:8f:c2:cd:db:2e:35:da:9c:2c:a6:b1:d5:ee:66: 01:d0:07:93:6b:3d:65:04:72:0a:36:0d:2c:74:40: 8d:04:6f:1d:98:b6:9d:27:e4:bd:ff:24:ae:bf:e2: 58:13:32:dc:b1:6e:36:ec:78:b4:dc:6f:37:2b:2d: 45:97:88:d4:6b:df:0a:f1:fe:43:bb:19:5c:ae:5e: 61:d9:68:91:76:f5:2d:af:65:3a:b7:09:03:1e:9c: 7b:87:10:75:1b:41:8a:59:4f:ec:b7:3f:68:14:a8: a5:a8:e1:d6:55:83:c9:3e:16:19:45:85:00:a6:0d: 8a:39:3a:58:77:2e:27:7f:fd:b6:bf:15:6c:a4:fc: 81:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E5:83:CD:40:D1:69:7B:AA:89:90:10:87:FD:A6:8F:2D:91:37:8B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e80997c7-fc55-4344-b2e2-40a9dbd2cc34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:c000::/40 Signature Algorithm: sha256WithRSAEncryption 4c:25:22:b7:fb:15:70:ea:11:73:f1:37:0c:11:78:31:05:c9: 25:e3:61:16:29:31:cf:18:de:cc:be:e6:d4:2b:3d:b2:17:93: 81:b1:0a:5a:48:ce:03:b8:fd:27:ab:97:92:a4:16:cc:4d:09: 49:63:4c:84:19:ff:c8:ec:1b:5e:1e:23:45:7c:9e:1b:7c:2d: e4:0a:cf:76:5b:52:69:78:35:ad:a7:49:f4:65:c3:ce:60:91: a8:1e:fe:c8:c5:fa:2c:76:41:a9:5a:31:4b:b2:53:a2:68:f8: 29:2d:02:48:22:2d:23:aa:35:66:cb:fd:b9:a5:35:de:4a:59: 7d:16:57:6d:a4:40:5a:0a:0d:74:7a:33:a8:27:de:58:f2:77: 48:90:62:01:ad:74:34:04:64:eb:84:13:db:a7:ca:7c:2e:f5: 65:6c:31:91:c9:f1:b6:2c:d1:c7:01:1e:b3:0b:4a:e3:90:f5: 37:74:af:52:85:c9:1b:51:ed:1d:5f:b4:ef:33:71:0d:07:ec: 29:0b:e9:f0:dd:2f:2a:be:51:f4:78:df:c6:1d:51:72:5a:3b: 01:77:91:71:07:f2:61:c5:5e:67:95:56:e2:6f:e2:7c:2a:a9: f5:e3:b8:1c:50:ac:f9:45:37:8b:2c:33:b2:b4:97:37:83:b9: 1c:0e:85:f6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUChSAWjkGDzrOw8yo8ZCQSg08l88wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTEyMzAwMDAwMFoX DTI0MTIyODIzNTk1OVowejFJMEcGA1UEBRNAYzZkYzJkYzhlYTY4ODE4NjNkYmMx OGIzMjg0OTQ0ZjZmMmRmMTdkZDcyZTczN2I5NTAwZDQyMWMyNjQxNTcxNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbr++Gvl6DraWovDbCTABp/qswwb wq1Wmi+63GFEeIZ5iRnYiLwTORM/LmWH1MkEjRDTD/a57tKJgXnLV0ueyiHTq5TA xv3OfJ1Cdlq5+x+a8+bVVOtF0e8lZxA5qAzkm4yIjBsKUeNCcATBIQN3L0hVqtWU bzC9j8LN2y412pwsprHV7mYB0AeTaz1lBHIKNg0sdECNBG8dmLadJ+S9/ySuv+JY EzLcsW427Hi03G83Ky1Fl4jUa98K8f5Duxlcrl5h2WiRdvUtr2U6twkDHpx7hxB1 G0GKWU/stz9oFKilqOHWVYPJPhYZRYUApg2KOTpYdy4nf/22vxVspPyB9QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJjlg81A0Wl7qomQEIf9po8tkTeLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U4MDk5N2M3LWZjNTUtNDM0NC1iMmUyLTQwYTlkYmQyY2MzNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacMAwDQYJKoZIhvcNAQELBQADggEBAEwlIrf7FXDqEXPxNwwR eDEFySXjYRYpMc8Y3sy+5tQrPbIXk4GxClpIzgO4/Serl5KkFsxNCUljTIQZ/8js G14eI0V8nht8LeQKz3ZbUml4Na2nSfRlw85gkage/sjF+ix2QalaMUuyU6Jo+Ckt AkgiLSOqNWbL/bmlNd5KWX0WV22kQFoKDXR6M6gn3ljyd0iQYgGtdDQEZOuEE9un ynwu9WVsMZHJ8bYs0ccBHrMLSuOQ9Td0r1KFyRtR7R1ftO8zcQ0H7CkL6fDdLyq+ UfR438YdUXJaOwF3kXEH8mHFXmeVVuJv4nwqqfXjuBxQrPlFN4ssM7K0lzeDuRwO hfY= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:17 2024 by rpki-client on console-fra.rpki-client.org