$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f9bb6778-8bdb-45ac-b6df-27458ed8b836.roa File: f9bb6778-8bdb-45ac-b6df-27458ed8b836.roa (raw, json) Hash identifier: S1IW3n2QZyiwTaeCPy//ekUxsfJj+BtwJcH4kwT6YaM= Subject key identifier: 29:5A:47:BC:C9:A2:A5:FB:0B:74:9F:8D:D1:4E:BC:08:B0:24:6C:3C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 33670FA12544098F3AE8EC11A949B30198DCE3E1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f9bb6778-8bdb-45ac-b6df-27458ed8b836.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da60:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:67:0f:a1:25:44:09:8f:3a:e8:ec:11:a9:49:b3:01:98:dc:e3:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=744770dcac97dfa9fe909849fee32bd06c347e4d86901ba44a0f5eda42cdfbb1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:02:0c:5f:64:ce:d0:61:15:a0:e2:66:22:da: 78:9f:c8:80:98:20:22:64:15:07:fd:ce:27:a4:56: 5d:67:ff:af:29:b7:8e:99:4a:73:80:bd:49:f3:31: 4e:e8:ee:ff:24:20:b9:08:a0:a7:e1:c1:56:fd:7a: 97:8d:3f:21:9f:e0:91:a4:ca:4d:5c:69:cf:27:2a: 2e:d9:5e:57:64:82:9c:69:6c:7d:7d:ca:5f:1e:04: 94:c7:1a:74:c0:2c:07:ae:e4:a5:9c:5e:e5:be:02: 7e:ac:a0:b7:a9:bc:9f:6a:4d:77:4f:e7:68:e8:04: c3:58:d6:87:26:17:2b:d2:b5:70:f0:e6:a0:e3:56: d9:50:d6:fd:1e:b5:42:a3:75:cc:8f:f1:08:54:ce: 38:81:ea:9f:2c:64:9c:a2:ee:39:56:d2:0e:e9:1c: 55:3d:34:7a:87:9d:e4:9a:d0:e9:e1:16:24:74:28: 0b:d9:6c:9f:f3:48:45:81:7f:e4:ae:e3:46:c7:fe: 90:dd:bd:f3:2c:06:ab:0f:b0:55:b6:0c:b1:d0:1b: 7e:ec:5e:47:5a:86:72:ee:93:e9:0b:e1:35:c4:0e: d3:05:89:48:45:da:31:a2:c6:e2:45:e8:c8:a7:3b: cb:c1:a8:c7:6d:af:11:99:f9:48:95:cc:7e:9d:03: ad:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:5A:47:BC:C9:A2:A5:FB:0B:74:9F:8D:D1:4E:BC:08:B0:24:6C:3C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f9bb6778-8bdb-45ac-b6df-27458ed8b836.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da60:9000::/40 Signature Algorithm: sha256WithRSAEncryption 85:4d:93:25:80:9f:5f:3a:4f:56:b6:3d:ce:64:f1:a2:bb:8a: 40:4c:cc:be:7e:d7:01:a2:1b:52:1b:bd:c9:a9:30:d0:30:12: 60:72:dd:95:b9:d9:ba:65:43:01:7f:98:1c:d7:03:df:06:c5: ca:c0:ee:18:53:86:0e:a0:a3:df:90:ae:9f:0e:92:d9:1e:09: 3a:51:25:75:0d:4e:72:e0:6c:d2:8c:2d:cc:23:eb:c6:8f:71: 26:5a:86:a2:c9:c2:ed:1d:10:93:b2:6a:12:1c:2f:b2:39:5f: 13:06:5f:0f:87:a9:80:03:81:1a:f2:d3:6c:b8:75:89:16:25: b4:9c:83:1d:24:96:91:07:2f:66:e8:25:16:62:e9:c5:34:59: d1:f5:13:93:41:2b:ee:95:42:d7:9c:be:f0:39:4b:cb:b0:82: 5c:70:88:8c:1e:e5:85:21:6d:35:7b:aa:24:f0:6d:5c:e0:56: 85:45:8e:88:bc:dd:19:74:00:c0:5d:0c:cf:48:48:c6:0d:80: ad:5e:20:d7:d4:6d:4b:ba:83:96:7a:60:02:69:54:7b:9b:71: 08:bb:82:16:2f:7f:36:f1:29:15:c4:8d:e6:6d:0a:5b:b4:a8: 3e:9a:22:e8:6b:2b:56:e0:31:41:8f:f5:c4:05:6f:ef:b8:b8: 16:47:34:5c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUM2cPoSVECY866OwRqUmzAZjc4+EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MTExOTAwMDAwMFoX DTI0MTIyNDIzNTk1OVowejFJMEcGA1UEBRNANzQ0NzcwZGNhYzk3ZGZhOWZlOTA5 ODQ5ZmVlMzJiZDA2YzM0N2U0ZDg2OTAxYmE0NGEwZjVlZGE0MmNkZmJiMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQIMX2TO0GEVoOJmItp4n8iAmCAi ZBUH/c4npFZdZ/+vKbeOmUpzgL1J8zFO6O7/JCC5CKCn4cFW/XqXjT8hn+CRpMpN XGnPJyou2V5XZIKcaWx9fcpfHgSUxxp0wCwHruSlnF7lvgJ+rKC3qbyfak13T+do 6ATDWNaHJhcr0rVw8Oag41bZUNb9HrVCo3XMj/EIVM44geqfLGScou45VtIO6RxV PTR6h53kmtDp4RYkdCgL2Wyf80hFgX/kruNGx/6Q3b3zLAarD7BVtgyx0Bt+7F5H WoZy7pPpC+E1xA7TBYlIRdoxosbiRejIpzvLwajHba8RmflIlcx+nQOtNwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFClaR7zJoqX7C3SfjdFOvAiwJGw8MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y5YmI2Nzc4LThiZGItNDVhYy1iNmRmLTI3NDU4ZWQ4YjgzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYJAwDQYJKoZIhvcNAQELBQADggEBAIVNkyWAn186T1a2Pc5k 8aK7ikBMzL5+1wGiG1IbvcmpMNAwEmBy3ZW52bplQwF/mBzXA98GxcrA7hhThg6g o9+Qrp8OktkeCTpRJXUNTnLgbNKMLcwj68aPcSZahqLJwu0dEJOyahIcL7I5XxMG Xw+HqYADgRry02y4dYkWJbScgx0klpEHL2boJRZi6cU0WdH1E5NBK+6VQtecvvA5 S8uwglxwiIwe5YUhbTV7qiTwbVzgVoVFjoi83Rl0AMBdDM9ISMYNgK1eINfUbUu6 g5Z6YAJpVHubcQi7ghYvfzbxKRXEjeZtClu0qD6aIuhrK1bgMUGP9cQFb++4uBZH NFw= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:40 2024 by rpki-client on console-ams.rpki-client.org