$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd0ac6ba-e775-4f86-853e-f467879f4e6c.roa File: fd0ac6ba-e775-4f86-853e-f467879f4e6c.roa (raw, json) Hash identifier: Wtc1La3SHmLtM8H6yF0jSods1xiwaR/zfs6Y4TWjUe8= Subject key identifier: F1:FB:92:CA:37:55:96:B6:53:6E:F9:03:5B:50:46:9D:25:72:E2:9E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6FB075861980970B253AFA57B4F58978A2ECD500 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd0ac6ba-e775-4f86-853e-f467879f4e6c.roa Signing time: Mon 08 Jul 2024 00:00:00 +0000 ROA not before: Mon 08 Jul 2024 00:00:00 +0000 ROA not after: Mon 12 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab8:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b0:75:86:19:80:97:0b:25:3a:fa:57:b4:f5:89:78:a2:ec:d5:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 8 00:00:00 2024 GMT Not After : Aug 12 23:59:59 2024 GMT Subject: serialNumber=56bbc933ccf5f80d6366f8dd2fda12fb06d328da6e3a36076e90aed1c58f1c85, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c8:95:8a:93:2f:42:e8:50:2f:f5:5e:a7:c8: f5:23:c8:84:85:6e:f6:22:ee:3f:9c:8d:f2:1c:fe: d9:c2:9e:6b:c0:1e:63:6a:72:62:74:cd:58:a9:c5: c0:4e:0d:da:1c:21:52:25:80:12:5e:3f:f5:c8:d8: d3:b8:13:22:d6:aa:94:81:48:98:1f:38:f9:a3:eb: bb:f4:3b:f3:b7:61:e2:24:44:85:03:12:b1:cf:26: 3e:fb:87:97:0e:fc:19:e6:b4:43:46:bb:3f:91:62: 0b:6f:de:41:37:7a:fb:dc:38:86:5e:91:e6:5f:88: f0:bd:3d:ed:8f:5b:68:9a:e1:c6:3f:93:64:c8:0d: 67:c7:fe:6f:46:e7:7e:e9:c6:cb:81:4f:13:2f:73: 1d:83:9c:04:d1:18:ef:61:e9:9a:83:12:d6:78:6d: 88:79:34:46:81:95:49:c7:81:6c:05:4b:99:46:8f: 4d:a0:9a:1a:99:2b:2b:05:f3:97:3b:d0:03:88:dd: c6:9e:37:cf:d0:ea:38:cf:bf:6e:7a:38:a2:da:7c: 61:ef:11:69:a1:05:44:c6:ce:e1:b0:b2:c1:2c:af: e5:4c:44:d4:2d:05:f2:7b:f0:e1:5b:d0:8e:3d:ba: f6:b8:c9:8d:6d:c3:51:96:c4:e9:46:60:cf:32:1d: e2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FB:92:CA:37:55:96:B6:53:6E:F9:03:5B:50:46:9D:25:72:E2:9E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd0ac6ba-e775-4f86-853e-f467879f4e6c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab8:9000::/40 Signature Algorithm: sha256WithRSAEncryption 23:76:74:cd:c8:07:85:4f:6e:4a:ab:61:4e:f6:bf:75:a4:09: a4:fa:e0:70:1e:a1:09:0f:28:fb:36:64:a8:e5:9a:14:1c:d0: 55:a7:f9:fc:7f:14:16:d5:9f:3a:cf:0d:f3:c9:ba:c1:d0:3a: 13:4f:8d:a8:6b:b4:5b:fe:e8:8f:19:c9:b1:8c:c6:cf:06:af: 0f:e5:9c:86:6a:a8:68:1d:e5:db:62:5d:6e:e8:92:25:55:5b: ff:04:a3:01:7e:64:7e:2d:72:e2:83:37:f8:db:d9:47:b4:15: fe:7e:d4:f8:e3:4d:73:a8:24:11:3f:f7:c4:88:09:0b:94:74: 5a:11:37:41:24:bd:9a:fa:2f:41:7a:d5:1c:36:a9:16:89:97: e2:42:99:97:de:fd:5d:d3:29:50:b0:58:84:88:5c:70:5e:0e: 81:ea:b5:da:18:43:ea:40:c9:83:b3:87:4a:9e:62:bf:87:f9: e9:09:11:2c:cb:96:70:d1:54:95:e4:06:6c:78:1d:14:a0:92: 15:c2:5d:1a:80:c0:28:40:d6:ae:1c:d4:30:56:53:ee:09:01: 1e:f2:32:f6:b3:f8:c7:85:a5:88:90:fb:aa:f3:32:ad:01:8f: 21:45:14:62:43:9f:d7:68:1a:fb:3a:7c:13:77:58:8c:b3:b7: 82:51:95:2e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUb7B1hhmAlwslOvpXtPWJeKLs1QAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcwODAwMDAwMFoX DTI0MDgxMjIzNTk1OVowejFJMEcGA1UEBRNANTZiYmM5MzNjY2Y1ZjgwZDYzNjZm OGRkMmZkYTEyZmIwNmQzMjhkYTZlM2EzNjA3NmU5MGFlZDFjNThmMWM4NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkciVipMvQuhQL/Vep8j1I8iEhW72 Iu4/nI3yHP7Zwp5rwB5janJidM1YqcXATg3aHCFSJYASXj/1yNjTuBMi1qqUgUiY Hzj5o+u79Dvzt2HiJESFAxKxzyY++4eXDvwZ5rRDRrs/kWILb95BN3r73DiGXpHm X4jwvT3tj1tomuHGP5NkyA1nx/5vRud+6cbLgU8TL3Mdg5wE0RjvYemagxLWeG2I eTRGgZVJx4FsBUuZRo9NoJoamSsrBfOXO9ADiN3GnjfP0Oo4z79uejii2nxh7xFp oQVExs7hsLLBLK/lTETULQXye/DhW9COPbr2uMmNbcNRlsTpRmDPMh3itQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPH7kso3VZa2U275A1tQRp0lcuKeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZkMGFjNmJhLWU3NzUtNGY4Ni04NTNlLWY0Njc4NzlmNGU2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauJAwDQYJKoZIhvcNAQELBQADggEBACN2dM3IB4VPbkqrYU72 v3WkCaT64HAeoQkPKPs2ZKjlmhQc0FWn+fx/FBbVnzrPDfPJusHQOhNPjahrtFv+ 6I8ZybGMxs8Grw/lnIZqqGgd5dtiXW7okiVVW/8EowF+ZH4tcuKDN/jb2Ue0Ff5+ 1PjjTXOoJBE/98SICQuUdFoRN0EkvZr6L0F61Rw2qRaJl+JCmZfe/V3TKVCwWISI XHBeDoHqtdoYQ+pAyYOzh0qeYr+H+ekJESzLlnDRVJXkBmx4HRSgkhXCXRqAwChA 1q4c1DBWU+4JAR7yMvaz+MeFpYiQ+6rzMq0BjyFFFGJDn9doGvs6fBN3WIyzt4JR lS4= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:17 2024 by rpki-client on console-fra.rpki-client.org