$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb147b0a-93ac-4ab7-8c40-1df2c88725a7.roa File: eb147b0a-93ac-4ab7-8c40-1df2c88725a7.roa (raw, json) Hash identifier: 5ie34z5765papVgA4OfwXrMUoXLq+Kg6GDtysz+enrw= Subject key identifier: 92:E8:4F:AE:5B:84:D8:B5:1A:43:2B:B3:EA:88:16:EF:D3:60:72:A4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 08D5A5A63B596B511F84F0A1D84E8DA467B19E29 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb147b0a-93ac-4ab7-8c40-1df2c88725a7.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:d5:a5:a6:3b:59:6b:51:1f:84:f0:a1:d8:4e:8d:a4:67:b1:9e:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=d0d76b77566e8c9503794af1e7c8b8e70d91988b10b09c4fbf99be8719458aee, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:9c:06:aa:ce:07:56:08:f5:25:44:a4:ba:40: d7:97:ef:36:17:b4:24:4f:db:cf:a6:33:bd:74:80: a8:e1:79:c3:25:c7:73:25:02:30:c1:39:d1:dc:6d: 5f:b5:a1:ee:67:39:51:d9:28:b8:67:8f:2c:82:16: 33:16:1f:bb:47:4c:f6:7f:02:12:7f:db:89:0c:2d: f6:26:8b:6a:22:81:1b:4c:3f:63:7b:3a:d4:7f:70: 16:ea:0c:66:b6:98:ac:cf:5d:9e:42:b4:f4:45:5f: b1:db:15:7f:00:ea:e4:54:c6:5e:7c:a0:1d:ce:3b: c4:12:cd:ca:14:02:93:13:27:c0:92:ad:67:75:bb: 71:19:cd:df:22:dc:4f:c8:b6:a0:72:32:ba:7b:f9: c1:01:9f:42:51:bb:9d:aa:64:74:aa:47:ab:d8:17: 07:a5:7c:ef:e2:f9:0a:1b:6c:ae:c6:c6:4d:1c:f0: f3:f7:54:ae:2d:1c:75:b0:cf:ac:e5:3e:be:90:e9: b1:b6:d4:b1:54:6f:68:a4:40:14:88:84:18:34:a0: cd:81:81:12:4f:6b:f9:eb:91:41:de:96:7b:4e:a7: 5c:a8:26:1d:73:73:c1:40:dc:04:e2:07:1b:66:a6: b0:cc:e2:db:99:ce:10:97:62:9f:ef:ee:28:88:81: 1f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E8:4F:AE:5B:84:D8:B5:1A:43:2B:B3:EA:88:16:EF:D3:60:72:A4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb147b0a-93ac-4ab7-8c40-1df2c88725a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:4000::/40 Signature Algorithm: sha256WithRSAEncryption 85:a9:aa:48:2f:4b:ff:3f:0c:15:66:ba:df:a2:f9:2d:be:b5: 49:a2:f1:fd:6f:0d:bf:90:42:0c:66:59:ad:ad:cd:56:7f:2b: 86:6a:22:5e:60:9b:a0:eb:12:63:5f:8d:9d:cf:67:48:4f:9a: e0:66:df:be:42:ae:50:78:a4:1a:02:ba:c8:26:07:f5:34:55: 2f:a3:05:bb:88:17:1f:19:04:24:d9:5a:2f:0f:7b:cb:19:a1: 7c:fa:26:bd:bb:0b:ba:20:5c:24:40:43:3e:6a:3a:9c:50:a3: fe:47:26:b3:cb:ee:6a:d3:d5:89:bc:94:21:90:cb:6a:44:c9: 58:b6:66:02:83:4a:00:2e:c9:ad:c8:5f:86:26:97:cb:c0:78: 41:ed:97:4a:1a:78:53:44:2e:aa:8d:16:79:e0:f7:81:d7:5a: a4:51:53:1d:9d:54:ce:5c:b1:0e:ae:b6:0a:f8:be:85:08:b3: 2b:34:44:d4:33:d3:d1:df:83:ac:6d:9f:6d:97:37:c7:30:52: 6a:06:07:e0:ef:59:1a:7d:04:22:4a:c8:98:c9:c8:54:be:7b: 0a:a2:67:32:66:a7:5b:71:f2:b4:02:14:6f:30:78:b3:17:27: 89:5e:de:5e:99:76:f0:34:8c:31:a2:a4:31:21:e5:f7:48:a3: 16:b3:8b:39 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCNWlpjtZa1EfhPCh2E6NpGexnikwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAZDBkNzZiNzc1NjZlOGM5NTAzNzk0 YWYxZTdjOGI4ZTcwZDkxOTg4YjEwYjA5YzRmYmY5OWJlODcxOTQ1OGFlZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh5wGqs4HVgj1JUSkukDXl+82F7Qk T9vPpjO9dICo4XnDJcdzJQIwwTnR3G1ftaHuZzlR2Si4Z48sghYzFh+7R0z2fwIS f9uJDC32JotqIoEbTD9jezrUf3AW6gxmtpisz12eQrT0RV+x2xV/AOrkVMZefKAd zjvEEs3KFAKTEyfAkq1ndbtxGc3fItxPyLagcjK6e/nBAZ9CUbudqmR0qker2BcH pXzv4vkKG2yuxsZNHPDz91SuLRx1sM+s5T6+kOmxttSxVG9opEAUiIQYNKDNgYES T2v565FB3pZ7TqdcqCYdc3PBQNwE4gcbZqawzOLbmc4Ql2Kf7+4oiIEfiQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJLoT65bhNi1GkMrs+qIFu/TYHKkMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ViMTQ3YjBhLTkzYWMtNGFiNy04YzQwLTFkZjJjODg3MjVhNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8UAwDQYJKoZIhvcNAQELBQADggEBAIWpqkgvS/8/DBVmut+i +S2+tUmi8f1vDb+QQgxmWa2tzVZ/K4ZqIl5gm6DrEmNfjZ3PZ0hPmuBm375CrlB4 pBoCusgmB/U0VS+jBbuIFx8ZBCTZWi8Pe8sZoXz6Jr27C7ogXCRAQz5qOpxQo/5H JrPL7mrT1Ym8lCGQy2pEyVi2ZgKDSgAuya3IX4Yml8vAeEHtl0oaeFNELqqNFnng 94HXWqRRUx2dVM5csQ6utgr4voUIsys0RNQz09Hfg6xtn22XN8cwUmoGB+DvWRp9 BCJKyJjJyFS+ewqiZzJmp1tx8rQCFG8weLMXJ4le3l6ZdvA0jDGipDEh5fdIoxaz izk= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org