$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f4077791-add9-436b-8f2e-4a21cda9ff2b.roa File: f4077791-add9-436b-8f2e-4a21cda9ff2b.roa (raw, json) Hash identifier: Oexk41HmCdTpledVEmc8N1k8pPHdkaiQ1mHouBWxCj8= Subject key identifier: 52:E9:12:8D:CF:86:BD:36:52:6E:77:FB:EA:FD:4B:D3:E9:F9:A3:D4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1DEC8138797B82F8CEDF5C309E3F615BB04E9BEC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f4077791-add9-436b-8f2e-4a21cda9ff2b.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ec:81:38:79:7b:82:f8:ce:df:5c:30:9e:3f:61:5b:b0:4e:9b:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=331da6274c82eb1c867944aee9b2ded7499888cdb9a14742cce4f32d44993325, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a8:97:d0:b0:13:e5:1a:41:79:09:35:c0:e2: ef:f6:cb:9a:48:8f:82:d5:c7:0a:da:2d:e2:66:e7: 46:7a:26:6a:a7:9a:16:4a:68:70:8c:4c:ae:f9:81: 2c:3a:9f:54:a6:86:8b:de:bb:5a:de:0c:37:77:0f: 58:6c:4b:cf:c0:f5:00:1e:21:88:d7:db:d4:a9:bd: f9:de:e9:12:ef:84:9c:4d:8d:dd:f8:a6:43:99:a2: d5:17:f6:9e:28:d1:7f:8b:48:bb:ff:6b:68:7f:7b: d8:f9:7f:22:31:54:f3:09:30:7f:9e:83:3c:ba:1e: 6b:30:26:1a:9b:79:83:b0:c2:06:eb:a2:96:b6:1f: b0:81:11:70:cd:43:e8:a4:d7:6d:11:4d:57:e8:33: 8f:dd:34:dc:2c:ac:68:c3:36:fb:1d:03:81:08:76: 29:cb:7d:0e:66:f5:0f:36:f8:34:39:5c:6b:30:73: 67:0b:48:cc:d9:b0:94:98:33:8e:a1:5f:4b:ba:76: 6f:44:f6:a4:11:db:7a:3a:4a:ad:44:07:b1:32:2e: cc:9d:d8:75:d6:62:79:c8:38:ab:e6:c2:67:15:32: d1:0d:e0:71:bf:6d:a6:f2:3e:10:d1:02:77:10:f1: 8a:b9:82:0b:91:c7:26:08:99:ab:d4:20:3a:6a:89: a4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E9:12:8D:CF:86:BD:36:52:6E:77:FB:EA:FD:4B:D3:E9:F9:A3:D4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f4077791-add9-436b-8f2e-4a21cda9ff2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:4800::/40 Signature Algorithm: sha256WithRSAEncryption 26:dd:b9:5f:4b:0c:95:f4:ba:5d:21:5d:ae:30:6f:d4:98:17: bd:f5:82:81:f2:92:97:ea:2b:d9:5b:f9:16:74:37:59:51:17: 50:76:fd:ec:00:08:da:68:78:69:a9:49:c9:76:de:1a:0c:2a: 18:88:0a:3a:c7:8a:1a:1d:9d:9f:fe:12:f5:cc:46:ca:b7:28: fa:6c:94:e1:9a:e9:f2:d7:7f:a7:70:1d:d3:ec:b0:d3:ec:6e: c1:6d:39:48:1a:25:f9:57:a7:8a:c9:5c:21:20:43:02:f8:a2: 9d:e9:4d:d8:dc:9c:8a:03:75:58:4e:d3:d9:5f:4f:9d:a4:c6: a9:91:b5:ff:43:78:09:d0:d8:65:6d:15:09:1d:12:87:3b:0b: ab:e4:9e:95:89:21:b4:b4:a8:1e:c4:4c:e5:65:af:b5:61:da: 18:b2:5d:27:5b:3c:c8:d4:3a:86:e1:b3:b9:1d:65:5a:52:85: 8a:17:0e:5c:21:fa:20:6c:ce:39:8b:43:32:a0:33:04:1c:54: 17:eb:87:d1:26:38:19:37:57:78:63:92:0b:fe:2f:78:e3:f2: 8a:9e:1b:c1:21:f1:ba:e6:ff:0d:7a:94:ac:1e:a2:87:d7:82: 06:9a:1b:70:ae:47:58:7d:a7:94:8b:95:e4:ba:1a:ec:73:84: cf:38:fd:82 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUHeyBOHl7gvjO31wwnj9hW7BOm+wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNAMzMxZGE2Mjc0YzgyZWIxYzg2Nzk0 NGFlZTliMmRlZDc0OTk4ODhjZGI5YTE0NzQyY2NlNGYzMmQ0NDk5MzMyNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKiX0LAT5RpBeQk1wOLv9suaSI+C 1ccK2i3iZudGeiZqp5oWSmhwjEyu+YEsOp9UpoaL3rta3gw3dw9YbEvPwPUAHiGI 19vUqb353ukS74ScTY3d+KZDmaLVF/aeKNF/i0i7/2tof3vY+X8iMVTzCTB/noM8 uh5rMCYam3mDsMIG66KWth+wgRFwzUPopNdtEU1X6DOP3TTcLKxowzb7HQOBCHYp y30OZvUPNvg0OVxrMHNnC0jM2bCUmDOOoV9LunZvRPakEdt6OkqtRAexMi7Mndh1 1mJ5yDir5sJnFTLRDeBxv22m8j4Q0QJ3EPGKuYILkccmCJmr1CA6aomk8wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFLpEo3Phr02Um53++r9S9Pp+aPUMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y0MDc3NzkxLWFkZDktNDM2Yi04ZjJlLTRhMjFjZGE5ZmYyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauUgwDQYJKoZIhvcNAQELBQADggEBACbduV9LDJX0ul0hXa4w b9SYF731goHykpfqK9lb+RZ0N1lRF1B2/ewACNpoeGmpScl23hoMKhiICjrHihod nZ/+EvXMRsq3KPpslOGa6fLXf6dwHdPssNPsbsFtOUgaJflXp4rJXCEgQwL4op3p TdjcnIoDdVhO09lfT52kxqmRtf9DeAnQ2GVtFQkdEoc7C6vknpWJIbS0qB7ETOVl r7Vh2hiyXSdbPMjUOobhs7kdZVpShYoXDlwh+iBszjmLQzKgMwQcVBfrh9EmOBk3 V3hjkgv+L3jj8oqeG8Eh8brm/w16lKweoofXggaaG3CuR1h9p5SLleS6GuxzhM84 /YI= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:37 2024 by rpki-client on console-fra.rpki-client.org