$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5a857aa-37d3-4869-b408-3e0070960f71.roa File: f5a857aa-37d3-4869-b408-3e0070960f71.roa (raw, json) Hash identifier: 55OrEgQt50lOctjiQ6BzBKopw994jT24JqLJ4pAQm7g= Subject key identifier: 15:D3:16:EB:21:CE:3C:44:AA:31:EA:6F:10:1B:E9:6C:6E:BD:38:8C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 30C179809CCEDCFF73BD4524A9E1A6B2499EA381 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5a857aa-37d3-4869-b408-3e0070960f71.roa Signing time: Tue 01 Oct 2024 00:00:00 +0000 ROA not before: Tue 01 Oct 2024 00:00:00 +0000 ROA not after: Tue 05 Nov 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:c1:79:80:9c:ce:dc:ff:73:bd:45:24:a9:e1:a6:b2:49:9e:a3:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 1 00:00:00 2024 GMT Not After : Nov 5 23:59:59 2024 GMT Subject: serialNumber=a516dc09c33461d19b78e4be96ceceb022f266a14ceb42ad174f1fddf825ef63, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6d:a9:87:4e:e8:13:76:55:9b:be:0f:63:dc: 38:34:7a:2a:d8:04:ae:71:9e:6a:4b:00:0c:5c:1b: fe:f4:15:d3:64:d6:f1:9f:22:67:ce:58:74:1d:59: 07:08:63:88:d7:63:82:02:5d:65:d6:b5:24:e6:f0: 11:f7:7b:4d:9a:a6:b2:b0:f4:50:72:2a:42:7a:8c: 36:1e:9c:19:84:21:de:11:73:57:c3:65:39:98:e6: 76:31:64:ca:dc:2a:05:86:86:84:05:eb:4c:a8:8f: 36:15:7b:1f:37:d4:2a:1c:71:18:06:71:3b:1c:3d: 4d:3e:80:f7:31:df:9d:ac:ef:64:9d:4e:a2:94:5a: a2:57:3c:dd:87:28:21:9d:c1:d4:c6:a4:4b:32:aa: 3e:8c:7c:71:c0:83:d1:e2:c6:e2:ce:d5:55:9e:d1: 5a:c3:66:58:77:c6:61:d1:71:66:cd:36:bb:ce:6b: 90:db:72:b9:99:99:08:3a:60:5b:dc:25:45:44:9e: d9:0c:f9:e4:ab:be:88:83:14:cb:39:f9:43:de:10: d8:08:14:d8:c6:d3:41:e1:ac:d8:3c:cf:08:71:40: dd:06:89:e6:ef:77:78:13:13:eb:1c:c7:52:ae:05: 1c:e3:e4:23:2e:31:fa:2e:12:af:42:f8:4d:08:cf: 5d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D3:16:EB:21:CE:3C:44:AA:31:EA:6F:10:1B:E9:6C:6E:BD:38:8C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5a857aa-37d3-4869-b408-3e0070960f71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:c000::/40 Signature Algorithm: sha256WithRSAEncryption 50:30:6c:b1:9f:db:b9:4f:90:ad:84:24:4e:c9:e4:1a:57:bf: e0:1a:93:5b:fa:c0:15:48:72:5b:01:b7:a6:de:19:f8:f9:ea: 85:6b:32:be:ff:36:fc:46:01:75:f5:ca:b0:48:30:ca:88:ff: fd:cd:2e:45:7b:9d:50:fc:05:1e:5a:36:00:4d:2b:4c:f8:39: d1:a5:47:8b:71:9c:1d:21:2b:aa:29:20:15:72:33:5f:57:3a: eb:8b:b9:fd:cc:c7:bd:9f:f2:9f:fc:bf:ca:d1:ac:bd:1e:ac: ea:a7:f8:25:76:19:eb:f3:cf:5d:1e:e2:2b:38:b9:c2:7c:a1: 8c:a2:57:20:f0:27:39:0e:4f:10:40:22:41:1f:e0:8a:bc:d3: 1c:fe:a0:83:f6:1d:a3:91:c5:3c:00:ce:60:d4:37:33:51:d5: cb:9e:2e:bf:ca:f0:64:38:ed:61:39:fb:56:df:24:18:4b:98: e3:2f:78:85:66:40:00:f6:bc:36:41:bd:b6:0d:d4:14:65:56: 62:7f:a1:8b:ba:8a:32:d8:ef:65:a6:75:a0:a9:e2:94:c2:09: 13:15:6e:c4:0a:b5:11:34:a6:a8:20:c6:d6:25:fb:6b:cd:db: 3a:e0:5f:9a:da:d1:53:1a:61:59:6d:cc:cc:0c:45:3a:fa:9a: 5c:a0:73:e7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMMF5gJzO3P9zvUUkqeGmskmeo4EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTAwMTAwMDAwMFoX DTI0MTEwNTIzNTk1OVowejFJMEcGA1UEBRNAYTUxNmRjMDljMzM0NjFkMTliNzhl NGJlOTZjZWNlYjAyMmYyNjZhMTRjZWI0MmFkMTc0ZjFmZGRmODI1ZWY2MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuW2ph07oE3ZVm74PY9w4NHoq2ASu cZ5qSwAMXBv+9BXTZNbxnyJnzlh0HVkHCGOI12OCAl1l1rUk5vAR93tNmqaysPRQ cipCeow2HpwZhCHeEXNXw2U5mOZ2MWTK3CoFhoaEBetMqI82FXsfN9QqHHEYBnE7 HD1NPoD3Md+drO9knU6ilFqiVzzdhyghncHUxqRLMqo+jHxxwIPR4sbiztVVntFa w2ZYd8Zh0XFmzTa7zmuQ23K5mZkIOmBb3CVFRJ7ZDPnkq76IgxTLOflD3hDYCBTY xtNB4azYPM8IcUDdBonm73d4ExPrHMdSrgUc4+QjLjH6LhKvQvhNCM9daQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBXTFushzjxEqjHqbxAb6WxuvTiMMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y1YTg1N2FhLTM3ZDMtNDg2OS1iNDA4LTNlMDA3MDk2MGY3MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaacAwDQYJKoZIhvcNAQELBQADggEBAFAwbLGf27lPkK2EJE7J 5BpXv+Aak1v6wBVIclsBt6beGfj56oVrMr7/NvxGAXX1yrBIMMqI//3NLkV7nVD8 BR5aNgBNK0z4OdGlR4txnB0hK6opIBVyM19XOuuLuf3Mx72f8p/8v8rRrL0erOqn +CV2Gevzz10e4is4ucJ8oYyiVyDwJzkOTxBAIkEf4Iq80xz+oIP2HaORxTwAzmDU NzNR1cueLr/K8GQ47WE5+1bfJBhLmOMveIVmQAD2vDZBvbYN1BRlVmJ/oYu6ijLY 72WmdaCp4pTCCRMVbsQKtRE0pqggxtYl+2vN2zrgX5ra0VMaYVltzMwMRTr6mlyg c+c= -----END CERTIFICATE-----Generated at Fri Oct 25 17:02:36 2024 by rpki-client on console-fra.rpki-client.org