$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ee15ce65-dc50-4412-8826-22842acc278a.roa File: ee15ce65-dc50-4412-8826-22842acc278a.roa (raw, json) Hash identifier: LYqJLwgYrvW5t3vbb3OhL3vLmk3Azelr+CLztZsCQ+k= Subject key identifier: 9A:91:EC:1F:98:63:B5:6A:D4:3F:34:EC:79:3B:82:4C:BA:0F:1B:8D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5B159D8B17BCB7BE9BA407993FBBC2EACDECB87A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ee15ce65-dc50-4412-8826-22842acc278a.roa Signing time: Tue 09 Jul 2024 00:00:00 +0000 ROA not before: Tue 09 Jul 2024 00:00:00 +0000 ROA not after: Tue 13 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:15:9d:8b:17:bc:b7:be:9b:a4:07:99:3f:bb:c2:ea:cd:ec:b8:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 9 00:00:00 2024 GMT Not After : Aug 13 23:59:59 2024 GMT Subject: serialNumber=d086941399d709a6f7cd35ce89b192d204e1a6d60a829a079cc9aeca78649f43, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b2:35:41:6e:75:17:b7:9f:ff:f2:b4:eb:fc: ff:88:c7:60:34:45:6d:8a:dc:be:1a:c5:c0:d3:f7: 17:05:92:3e:e1:30:5d:70:7d:8e:ce:64:58:c7:b0: c8:39:d2:47:e8:0e:a8:f2:0b:7e:57:b3:f4:10:ce: 40:a0:08:d6:12:41:a1:21:d0:78:db:3b:7c:57:33: 25:db:d3:b0:d6:13:03:1e:cb:11:17:2c:96:fe:f8: be:77:71:1c:22:55:fd:08:b7:92:b6:95:1a:5e:b1: bd:82:30:c8:7a:11:6a:c4:68:d9:f1:b6:e0:b3:a5: 07:47:8b:4b:de:70:40:e9:8e:b0:67:2a:5f:28:3a: 6b:45:7c:7f:23:43:f6:0a:10:10:8a:a1:82:1e:76: eb:08:3a:f5:37:35:d4:a7:c9:ef:59:4c:16:26:cd: 3a:3d:4c:d1:92:7b:ce:8e:ff:d2:b0:b8:ec:40:7c: 94:f9:cd:af:dc:d6:9d:3d:4e:83:49:ad:fb:7a:94: 3d:18:de:d3:ca:ed:c4:84:b7:e8:81:27:cf:71:41: 1e:27:be:28:9d:fa:ec:bd:16:50:fb:4c:a0:90:fb: 88:0c:1d:6e:83:76:f7:2c:72:ea:2b:50:76:fe:4d: 57:70:87:52:a4:a2:10:38:1e:eb:36:4e:a6:51:22: 55:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:91:EC:1F:98:63:B5:6A:D4:3F:34:EC:79:3B:82:4C:BA:0F:1B:8D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ee15ce65-dc50-4412-8826-22842acc278a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:f000::/40 Signature Algorithm: sha256WithRSAEncryption 76:25:b9:2d:11:df:75:4c:c5:0c:b8:94:57:09:f6:39:6e:81: 32:f2:74:b7:ce:5b:83:6a:c4:84:8c:99:a6:9c:6d:be:d5:d8: b1:05:7e:75:94:f5:0e:55:ee:4d:a9:90:8e:f5:7d:20:15:36: 9a:ca:79:72:50:e1:ae:35:3f:df:5c:2c:73:9d:be:a1:bc:ba: a4:17:bc:86:67:38:c0:06:7f:b3:e2:46:19:78:6b:20:85:fb: b8:bd:c7:9b:81:11:98:52:35:55:c6:e0:91:12:5c:81:d3:c3: a5:72:df:7d:1e:a7:38:ba:8e:71:e7:f8:c0:4e:ac:37:bd:eb: be:01:36:65:85:5d:9f:c4:e4:50:5b:6d:c0:cc:2c:b0:53:52: 2c:d0:c4:1a:38:92:b8:f1:35:15:26:f8:bc:61:b7:f6:37:1c: 99:0f:5f:32:e3:ab:0f:f6:3d:ef:3f:2b:2a:cd:94:98:0f:9c: 8c:92:fa:62:32:dd:c9:ad:8e:1a:05:96:57:07:36:50:da:30: 14:ef:c6:b6:ff:39:aa:66:0f:b2:f6:56:a9:6d:14:60:14:9a: 8a:39:30:3a:08:19:36:e9:5d:ac:b1:e6:c9:a4:a6:6e:2c:61: a3:f5:00:57:be:c9:42:85:43:be:39:a4:09:ed:c5:b7:48:11: 33:89:64:6a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWxWdixe8t76bpAeZP7vC6s3suHowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcwOTAwMDAwMFoX DTI0MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAZDA4Njk0MTM5OWQ3MDlhNmY3Y2Qz NWNlODliMTkyZDIwNGUxYTZkNjBhODI5YTA3OWNjOWFlY2E3ODY0OWY0MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6rI1QW51F7ef//K06/z/iMdgNEVt ity+GsXA0/cXBZI+4TBdcH2OzmRYx7DIOdJH6A6o8gt+V7P0EM5AoAjWEkGhIdB4 2zt8VzMl29Ow1hMDHssRFyyW/vi+d3EcIlX9CLeStpUaXrG9gjDIehFqxGjZ8bbg s6UHR4tL3nBA6Y6wZypfKDprRXx/I0P2ChAQiqGCHnbrCDr1NzXUp8nvWUwWJs06 PUzRknvOjv/SsLjsQHyU+c2v3NadPU6DSa37epQ9GN7Tyu3EhLfogSfPcUEeJ74o nfrsvRZQ+0ygkPuIDB1ug3b3LHLqK1B2/k1XcIdSpKIQOB7rNk6mUSJVDQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJqR7B+YY7Vq1D807Hk7gky6DxuNMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VlMTVjZTY1LWRjNTAtNDQxMi04ODI2LTIyODQyYWNjMjc4YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9fAwDQYJKoZIhvcNAQELBQADggEBAHYluS0R33VMxQy4lFcJ 9jlugTLydLfOW4NqxISMmaacbb7V2LEFfnWU9Q5V7k2pkI71fSAVNprKeXJQ4a41 P99cLHOdvqG8uqQXvIZnOMAGf7PiRhl4ayCF+7i9x5uBEZhSNVXG4JESXIHTw6Vy 330epzi6jnHn+MBOrDe9674BNmWFXZ/E5FBbbcDMLLBTUizQxBo4krjxNRUm+Lxh t/Y3HJkPXzLjqw/2Pe8/KyrNlJgPnIyS+mIy3cmtjhoFllcHNlDaMBTvxrb/Oapm D7L2VqltFGAUmoo5MDoIGTbpXayx5smkpm4sYaP1AFe+yUKFQ745pAntxbdIETOJ ZGo= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:41 2024 by rpki-client on console-ams.rpki-client.org