$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ea4aa742-f8b2-48b7-88b3-6ffe63189359.roa File: ea4aa742-f8b2-48b7-88b3-6ffe63189359.roa (raw, json) Hash identifier: AnyO6UxvSz00c/nyog7vl9mIo8XDAVQjAbsQTw8+d4M= Subject key identifier: F4:66:34:13:CF:F9:BA:AF:83:BD:D9:4E:0C:35:EC:3A:D4:9F:FC:55 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 25E48F207087CA1D6A1B71157977226DBAC892D8 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ea4aa742-f8b2-48b7-88b3-6ffe63189359.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da30:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e4:8f:20:70:87:ca:1d:6a:1b:71:15:79:77:22:6d:ba:c8:92:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=a82353a0511ecde5ddd49942925590ce247703709958b7d1c4c387db167f7a1c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a7:ea:37:69:6e:8a:c6:bf:d9:52:01:ce:7b: e7:14:8a:11:88:4e:a3:51:cf:91:e6:f3:5a:a0:26: a2:0e:21:d7:18:44:72:08:ba:09:89:5f:0b:2d:6a: f0:77:8f:98:92:51:1d:1d:92:84:81:0b:10:37:26: b4:19:6c:fe:86:90:34:4b:9e:8e:78:55:7e:10:40: 97:d8:39:1e:2c:a0:bf:a1:cb:8b:ba:64:c5:60:23: 04:27:9f:7f:91:08:d7:dc:7c:c9:98:45:60:9d:44: 79:ea:c8:ad:e6:f1:ce:c2:42:07:50:e6:c2:a5:b1: 3f:78:1e:dc:b1:af:06:ad:a1:58:c8:a4:b2:51:20: a8:9b:85:3d:af:ad:7e:39:39:bc:94:c1:ce:4b:42: 01:da:1e:49:cf:66:33:7e:cc:32:73:c7:35:15:ad: 8a:c5:2a:a4:a4:57:c8:58:eb:a3:b8:ce:2f:26:6a: e4:08:c4:be:fb:01:e8:f3:f8:f4:8a:a7:21:4d:b7: 75:56:fd:dd:00:0e:cf:e4:f6:f1:10:52:ac:6d:22: a1:2c:89:15:c9:bd:6f:d0:61:97:da:d7:0e:32:d0: 98:48:f9:18:36:e6:c4:d8:b4:2f:35:e0:54:6d:b1: 33:ac:58:26:34:16:e3:07:45:01:8d:99:19:20:4f: 23:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:66:34:13:CF:F9:BA:AF:83:BD:D9:4E:0C:35:EC:3A:D4:9F:FC:55 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ea4aa742-f8b2-48b7-88b3-6ffe63189359.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da30:9000::/40 Signature Algorithm: sha256WithRSAEncryption cb:3b:10:52:e1:37:cd:7e:33:82:6f:b9:c3:5e:eb:47:1a:4b: 4a:17:41:a4:73:32:2c:9e:d8:29:a8:ff:7a:cc:2a:4d:8a:5b: f8:76:33:8c:16:b7:50:d4:ef:6c:d7:84:f1:51:64:95:05:a6: 07:7d:38:65:9c:f8:e6:58:55:58:20:52:4f:23:e4:fc:1f:ca: fe:b8:40:5c:57:3e:3a:97:22:77:bc:53:a7:62:5d:3e:39:c2: 65:e3:46:fc:8c:bd:a9:52:00:f3:48:4f:9f:e9:07:85:95:f5: 8a:68:c9:d3:a7:ae:ef:35:b7:83:c5:85:63:aa:04:66:80:be: e1:c8:79:7b:44:cc:72:fb:fc:3e:56:5e:24:64:43:97:de:0d: a1:32:3f:6e:d8:c5:8e:9f:4c:3d:ad:d9:ea:2a:fc:a9:db:59: 6d:9b:77:12:72:eb:f1:68:6a:16:89:fd:e8:cb:31:f6:04:93: bf:db:9d:c6:73:0b:c8:1d:1c:8a:69:f6:34:7a:24:e1:2d:d5: 96:61:27:6a:75:44:71:ca:62:c1:c9:f8:4e:d6:ce:32:22:97: a6:b9:f7:4e:cf:51:97:68:4e:dc:e7:ae:b4:3a:90:99:4a:f6: b1:d1:3b:b5:7f:ae:1e:2d:ce:c9:a6:bc:b1:6b:a8:2c:e6:a8: bc:4c:bf:f2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJeSPIHCHyh1qG3EVeXcibbrIktgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAYTgyMzUzYTA1MTFlY2RlNWRkZDQ5 OTQyOTI1NTkwY2UyNDc3MDM3MDk5NThiN2QxYzRjMzg3ZGIxNjdmN2ExYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKfqN2luisa/2VIBznvnFIoRiE6j Uc+R5vNaoCaiDiHXGERyCLoJiV8LLWrwd4+YklEdHZKEgQsQNya0GWz+hpA0S56O eFV+EECX2DkeLKC/ocuLumTFYCMEJ59/kQjX3HzJmEVgnUR56sit5vHOwkIHUObC pbE/eB7csa8GraFYyKSyUSCom4U9r61+OTm8lMHOS0IB2h5Jz2Yzfswyc8c1Fa2K xSqkpFfIWOujuM4vJmrkCMS++wHo8/j0iqchTbd1Vv3dAA7P5PbxEFKsbSKhLIkV yb1v0GGX2tcOMtCYSPkYNubE2LQvNeBUbbEzrFgmNBbjB0UBjZkZIE8jCQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPRmNBPP+bqvg73ZTgw17DrUn/xVMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VhNGFhNzQyLWY4YjItNDhiNy04OGIzLTZmZmU2MzE4OTM1OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaMJAwDQYJKoZIhvcNAQELBQADggEBAMs7EFLhN81+M4JvucNe 60caS0oXQaRzMiye2Cmo/3rMKk2KW/h2M4wWt1DU72zXhPFRZJUFpgd9OGWc+OZY VVggUk8j5Pwfyv64QFxXPjqXIne8U6diXT45wmXjRvyMvalSAPNIT5/pB4WV9Ypo ydOnru81t4PFhWOqBGaAvuHIeXtEzHL7/D5WXiRkQ5feDaEyP27YxY6fTD2t2eoq /KnbWW2bdxJy6/FoahaJ/ejLMfYEk7/bncZzC8gdHIpp9jR6JOEt1ZZhJ2p1RHHK YsHJ+E7WzjIil6a5907PUZdoTtznrrQ6kJlK9rHRO7V/rh4tzsmmvLFrqCzmqLxM v/I= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org