$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f4077791-add9-436b-8f2e-4a21cda9ff2b.roa File: f4077791-add9-436b-8f2e-4a21cda9ff2b.roa (raw, json) Hash identifier: vWMgT5YLwiGHq/78StRA1WjN/hM7HfIsakmyVJbQMPA= Subject key identifier: 14:70:A7:4C:BF:C4:27:28:E2:8B:3D:77:CF:51:D3:E8:57:6A:02:B0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 710477D038ED116294DEBF844A57787A7420E3DE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f4077791-add9-436b-8f2e-4a21cda9ff2b.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:04:77:d0:38:ed:11:62:94:de:bf:84:4a:57:78:7a:74:20:e3:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=3f32000d22ebc093fc4c91f5af655115eb0ea64081c008b1a0a3c32d51fb9a60, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6d:53:64:19:ba:ed:82:45:a7:ef:13:d9:e2: 46:5c:54:c4:e2:9a:bb:8d:f1:40:7f:0c:b9:9e:d9: 38:88:df:39:2b:79:91:30:60:de:93:dc:15:0b:2e: 80:de:ef:ea:2f:7a:bf:e8:71:7e:a7:70:e1:44:6d: 94:02:fb:e3:44:1a:20:74:7f:7c:d9:50:c7:fc:3e: a6:b2:1d:e4:8a:5c:08:de:65:62:b7:ed:35:6a:50: 90:69:d2:43:8b:09:8f:09:11:9f:d2:b9:a7:2e:71: 7a:80:fc:3a:37:36:6c:ae:2a:b9:fe:cf:c2:5b:28: 80:36:bd:38:42:2f:b4:e0:86:f8:ac:5a:9d:5e:31: 1e:a1:10:89:b4:c7:07:1e:cc:fe:7e:8f:18:f2:9f: 6f:88:d7:b7:8e:a8:9c:7c:8d:04:4d:b6:03:bd:f7: 46:93:14:78:84:c6:5a:f8:17:93:36:ab:4e:09:8d: 3c:5b:2e:5c:4d:36:a7:da:65:25:47:f5:b7:40:e4: 94:d4:2d:f8:72:73:1b:81:18:76:ce:c7:72:0e:02: fe:e4:fd:65:85:b5:d2:b4:66:34:a2:b1:48:49:92: 72:d3:a9:73:2a:87:4d:d4:f5:95:bc:a8:dc:78:d9: 26:13:b6:20:bb:61:7d:d6:26:5b:98:6d:bf:1d:a8: 6c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:70:A7:4C:BF:C4:27:28:E2:8B:3D:77:CF:51:D3:E8:57:6A:02:B0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f4077791-add9-436b-8f2e-4a21cda9ff2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:4800::/40 Signature Algorithm: sha256WithRSAEncryption 24:ac:b6:86:f4:21:b8:56:0d:7b:49:49:4f:3b:34:03:45:fd: 8d:bf:ff:16:67:8d:dd:23:d2:33:a5:f5:3c:af:bf:77:d0:a6: f7:8e:09:4d:bc:74:6a:5a:d2:02:05:e4:b1:d8:37:94:14:b2: aa:df:42:7a:4e:4a:83:1d:cb:ee:3d:c9:c6:a4:16:a7:08:14: 66:53:38:3b:d6:f4:41:e8:88:88:f9:5c:02:bb:8a:0d:fa:db: 43:c1:3f:46:60:fe:0d:c5:33:9d:54:03:5d:68:46:dc:16:96: ea:f3:aa:c9:7b:b3:91:98:1e:39:4a:86:a8:92:c7:19:93:32: 4d:47:2f:c1:98:21:d0:57:0a:d9:ca:53:b2:8c:6d:73:3e:6c: 7c:56:68:5e:47:83:cd:7e:fe:89:86:86:c4:9e:8b:e4:99:c7: 1f:dc:a1:4f:f0:5c:cd:bb:df:d4:02:ca:e2:fc:65:79:89:4d: dd:fd:74:9a:a4:a4:15:67:d2:63:d5:61:f3:e5:27:03:8b:71: fe:de:21:93:67:9f:77:e2:07:98:86:ef:74:18:6f:3d:30:f3: 54:5a:e6:55:d7:24:3f:b6:03:86:28:ad:5e:e8:15:34:ad:0c: 71:e2:f6:ff:00:7c:b0:62:db:98:4e:cb:b4:5b:9d:78:7d:6a: 3f:24:34:fd -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUcQR30DjtEWKU3r+ESld4enQg494wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAM2YzMjAwMGQyMmViYzA5M2ZjNGM5 MWY1YWY2NTUxMTVlYjBlYTY0MDgxYzAwOGIxYTBhM2MzMmQ1MWZiOWE2MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArm1TZBm67YJFp+8T2eJGXFTE4pq7 jfFAfwy5ntk4iN85K3mRMGDek9wVCy6A3u/qL3q/6HF+p3DhRG2UAvvjRBogdH98 2VDH/D6msh3kilwI3mVit+01alCQadJDiwmPCRGf0rmnLnF6gPw6NzZsriq5/s/C WyiANr04Qi+04Ib4rFqdXjEeoRCJtMcHHsz+fo8Y8p9viNe3jqicfI0ETbYDvfdG kxR4hMZa+BeTNqtOCY08Wy5cTTan2mUlR/W3QOSU1C34cnMbgRh2zsdyDgL+5P1l hbXStGY0orFISZJy06lzKodN1PWVvKjceNkmE7Ygu2F91iZbmG2/Hahs/QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBRwp0y/xCco4os9d89R0+hXagKwMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y0MDc3NzkxLWFkZDktNDM2Yi04ZjJlLTRhMjFjZGE5ZmYyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauUgwDQYJKoZIhvcNAQELBQADggEBACSstob0IbhWDXtJSU87 NANF/Y2//xZnjd0j0jOl9Tyvv3fQpveOCU28dGpa0gIF5LHYN5QUsqrfQnpOSoMd y+49ycakFqcIFGZTODvW9EHoiIj5XAK7ig3620PBP0Zg/g3FM51UA11oRtwWlurz qsl7s5GYHjlKhqiSxxmTMk1HL8GYIdBXCtnKU7KMbXM+bHxWaF5Hg81+/omGhsSe i+SZxx/coU/wXM2739QCyuL8ZXmJTd39dJqkpBVn0mPVYfPlJwOLcf7eIZNnn3fi B5iG73QYbz0w81Ra5lXXJD+2A4YorV7oFTStDHHi9v8AfLBi25hOy7RbnXh9aj8k NP0= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:17 2024 by rpki-client on console-fra.rpki-client.org