$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f1263cb7-868b-454e-9249-688018baa633.roa File: f1263cb7-868b-454e-9249-688018baa633.roa (raw, json) Hash identifier: cLrdJ4hdxucqmCsUUaNGrpAHI55vicaDQYMTmhexhwE= Subject key identifier: 2F:92:58:F9:62:5C:9C:52:99:92:86:92:82:9E:E8:97:F7:D3:C3:54 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 144F71F520EB28FCE11471E9327A5F56396D6DE5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f1263cb7-868b-454e-9249-688018baa633.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da16::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 00:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4f:71:f5:20:eb:28:fc:e1:14:71:e9:32:7a:5f:56:39:6d:6d:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=f998c25a063dad8abcff4f5141316aca78471a203ae32ba7e93279973ed2bcc3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4a:51:c4:d0:52:db:30:c7:dc:d1:5a:c9:c8: e2:c2:1b:82:f3:96:67:ab:5d:70:94:41:ab:d4:ea: 8a:52:27:d1:4e:36:45:8c:53:4a:4b:e5:94:75:5c: 0a:46:6f:6c:20:2c:df:08:ba:c8:46:be:6c:cf:10: 07:34:46:49:05:76:9b:42:79:f4:8e:77:32:f8:3b: 0d:80:e4:68:e5:c6:a9:16:c8:bf:c2:33:e2:86:09: aa:d0:00:8a:46:9c:6c:f0:01:8d:8e:f0:6b:5d:24: 0e:66:f0:9e:e1:f2:39:60:66:be:60:fd:aa:88:fb: 1a:bf:9f:b7:3e:0f:b2:af:b8:7d:77:25:0e:73:1f: 32:75:47:71:91:c6:84:e7:cb:87:73:80:26:f8:04: bc:b2:1d:2a:5b:b9:a4:93:61:6d:3a:84:5d:d0:7a: 1e:b7:63:47:39:29:3e:74:41:1e:20:7d:9b:79:29: 0d:8e:c8:19:bc:ee:f7:05:09:b1:ed:9c:d2:85:88: 65:65:ce:03:02:b6:e2:d8:68:8f:f7:60:5c:68:83: d3:e6:c6:37:7c:b5:6e:18:58:4d:59:08:56:c5:4f: 11:f7:d7:62:6a:d2:66:c7:05:41:c4:35:16:dc:6a: 63:3b:3e:92:3b:84:8a:7f:f1:fa:a1:22:5f:0f:fb: 95:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:92:58:F9:62:5C:9C:52:99:92:86:92:82:9E:E8:97:F7:D3:C3:54 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f1263cb7-868b-454e-9249-688018baa633.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da16::/36 Signature Algorithm: sha256WithRSAEncryption 81:bb:72:08:ff:89:73:1b:24:f7:cd:ba:bb:f2:c1:71:6b:7e: e6:50:43:97:79:d1:6f:59:ea:d9:1b:9b:6f:40:38:8c:63:ca: 81:f9:9b:3a:62:6f:a0:b3:06:0f:cb:cc:6f:37:e5:09:bf:88: 4b:94:21:35:cf:41:d4:61:79:dd:65:4e:39:ba:d7:45:53:63: f4:cf:8a:30:28:a5:6f:ea:93:2e:2b:72:ec:91:e7:9b:9d:4d: c9:ad:2d:fa:2d:8f:54:bc:11:d8:44:df:f5:dd:91:6b:b8:b4: 81:a2:73:f2:6c:5e:a5:d9:de:15:7b:b7:16:9a:6e:a0:26:f1: cb:ec:10:54:b3:7a:db:1e:61:87:e3:82:a3:55:3d:77:5f:a8: 2e:52:86:9c:ff:bf:73:94:22:6e:a2:c0:28:ba:f3:85:22:ee: 57:58:33:72:ce:d1:28:52:9b:48:3d:4d:8c:28:e9:62:29:c4: 86:41:db:61:79:28:82:95:c8:09:d4:1a:73:63:02:96:11:29: 09:c6:71:1a:08:6c:89:77:53:ea:00:98:0d:f3:c9:a1:86:aa: 99:cc:48:5f:a1:c9:13:5d:86:47:56:86:dd:b1:c3:8c:7a:3b: f2:67:ca:8a:3b:56:cb:57:12:cb:6d:e3:5c:d8:40:15:43:25: b7:7e:a0:32 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFE9x9SDrKPzhFHHpMnpfVjltbeUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQxMDAwMDAwMFoX DTI0MDUxNTIzNTk1OVowejFJMEcGA1UEBRNAZjk5OGMyNWEwNjNkYWQ4YWJjZmY0 ZjUxNDEzMTZhY2E3ODQ3MWEyMDNhZTMyYmE3ZTkzMjc5OTczZWQyYmNjMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukpRxNBS2zDH3NFaycjiwhuC85Zn q11wlEGr1OqKUifRTjZFjFNKS+WUdVwKRm9sICzfCLrIRr5szxAHNEZJBXabQnn0 jncy+DsNgORo5capFsi/wjPihgmq0ACKRpxs8AGNjvBrXSQOZvCe4fI5YGa+YP2q iPsav5+3Pg+yr7h9dyUOcx8ydUdxkcaE58uHc4Am+AS8sh0qW7mkk2FtOoRd0Hoe t2NHOSk+dEEeIH2beSkNjsgZvO73BQmx7ZzShYhlZc4DArbi2GiP92BcaIPT5sY3 fLVuGFhNWQhWxU8R99diatJmxwVBxDUW3GpjOz6SO4SKf/H6oSJfD/uVIQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFC+SWPliXJxSmZKGkoKe6Jf308NUMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2YxMjYzY2I3LTg2OGItNDU0ZS05MjQ5LTY4ODAxOGJhYTYzMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaFgAwDQYJKoZIhvcNAQELBQADggEBAIG7cgj/iXMbJPfNurvy wXFrfuZQQ5d50W9Z6tkbm29AOIxjyoH5mzpib6CzBg/LzG835Qm/iEuUITXPQdRh ed1lTjm610VTY/TPijAopW/qky4rcuyR55udTcmtLfotj1S8EdhE3/XdkWu4tIGi c/JsXqXZ3hV7txaabqAm8cvsEFSzetseYYfjgqNVPXdfqC5Shpz/v3OUIm6iwCi6 84Ui7ldYM3LO0ShSm0g9TYwo6WIpxIZB22F5KIKVyAnUGnNjApYRKQnGcRoIbIl3 U+oAmA3zyaGGqpnMSF+hyRNdhkdWht2xw4x6O/Jnyoo7VstXEstt41zYQBVDJbd+ oDI= -----END CERTIFICATE-----Generated at Fri Apr 26 06:07:25 2024 by rpki-client on console-ams.rpki-client.org