$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd0ac6ba-e775-4f86-853e-f467879f4e6c.roa File: fd0ac6ba-e775-4f86-853e-f467879f4e6c.roa (raw, json) Hash identifier: kTEADUh6tVoEvcUia0QCTFfVkW6kNH0HC9/rRvmF0k0= Subject key identifier: 12:71:23:30:4C:AE:C6:12:F6:0D:16:25:AB:7C:FA:AC:46:BD:08:2A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 38C325777880BD24A31EE798AE96D48FF7887EC1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd0ac6ba-e775-4f86-853e-f467879f4e6c.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab8:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 00:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c3:25:77:78:80:bd:24:a3:1e:e7:98:ae:96:d4:8f:f7:88:7e:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=7de82325230ef4b09283ed5718b5ed029fed42fa11f22478802ad8df666ddae4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a2:6a:d5:77:52:87:2e:9e:51:43:67:02:1b: 9f:3c:9c:c2:dc:51:96:ff:8e:8f:7f:2c:82:3e:a2: fb:4c:de:e4:8d:2b:c9:9f:b5:89:79:18:34:bf:2f: c4:e4:06:27:ec:c1:99:8d:61:02:a0:a4:89:a7:3f: 66:83:31:5c:5b:6a:1b:e1:9e:39:e1:12:30:4f:c4: dd:1c:01:de:f9:ec:16:29:38:28:f2:f3:13:99:53: 4a:29:5d:c7:9f:54:d9:16:a5:06:a2:fa:05:62:c5: 26:02:55:0e:62:83:af:73:2e:a1:86:96:30:85:6e: 03:da:08:bb:d2:91:2b:56:de:ab:f2:00:fe:9b:29: d1:22:92:57:02:87:7d:66:2c:1f:f5:c5:1e:d2:cc: d4:2b:83:81:65:e4:3b:a5:bf:2a:d3:41:1d:9f:e4: 3d:5e:3e:7c:7a:a3:27:3c:4d:64:32:dc:7b:6e:76: 97:7b:d5:3a:12:75:4f:c8:38:b5:91:2d:ac:86:b1: b0:cb:00:88:cc:56:84:63:42:0e:b9:9e:f7:4e:e5: 20:67:d3:7d:ff:78:8c:94:ca:06:a1:d4:18:d4:be: 05:2f:9c:56:54:14:91:c8:81:07:60:4f:99:54:3f: f7:b2:16:a2:ab:5a:9a:16:11:67:dd:24:60:01:57: f3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:71:23:30:4C:AE:C6:12:F6:0D:16:25:AB:7C:FA:AC:46:BD:08:2A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd0ac6ba-e775-4f86-853e-f467879f4e6c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab8:9000::/40 Signature Algorithm: sha256WithRSAEncryption 22:5e:ce:99:cd:4c:94:af:fd:4a:82:9b:ac:4b:75:af:45:03: 64:a8:cd:45:8a:d3:e6:bc:c0:b5:33:af:75:98:00:4f:76:8a: 83:15:6c:06:18:79:c1:24:ff:ef:8c:02:d1:c6:e1:fc:7e:4a: d0:30:4a:d4:64:e1:b1:e6:9d:1b:c1:54:e5:46:37:34:85:44: d1:62:80:80:00:81:e9:f4:cf:b8:d6:6d:0b:cd:9b:a8:4d:24: e5:e9:a9:98:bc:2f:ca:96:73:0a:1b:70:79:9b:70:0f:81:19: 10:56:81:64:5c:6f:91:25:61:e9:7c:7a:a3:fb:4b:e4:94:ca: be:41:ba:1a:bc:2b:fb:d9:3c:e6:62:b2:19:e3:a9:d3:d1:ba: b3:7e:14:af:d4:51:40:bb:90:30:aa:01:f5:f7:66:7d:a4:c1: 89:e0:96:64:ba:eb:9b:8b:4b:4a:94:06:88:d3:12:64:07:78: a2:24:37:0a:53:52:2d:2f:55:22:b1:c3:db:38:63:b1:8c:d9: 21:b1:1c:38:08:98:0b:62:b8:01:4e:eb:03:4f:c3:db:9a:da: fb:66:34:52:a8:ab:d8:a9:81:c2:d1:62:15:51:ff:c9:68:6c: 16:fc:81:35:fc:07:ea:d8:a0:09:35:c7:27:7e:05:38:1d:9d: c9:b4:7d:b7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUOMMld3iAvSSjHueYrpbUj/eIfsEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDQyMzAwMDAwMFoX DTI0MDUyODIzNTk1OVowejFJMEcGA1UEBRNAN2RlODIzMjUyMzBlZjRiMDkyODNl ZDU3MThiNWVkMDI5ZmVkNDJmYTExZjIyNDc4ODAyYWQ4ZGY2NjZkZGFlNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qJq1XdShy6eUUNnAhufPJzC3FGW /46PfyyCPqL7TN7kjSvJn7WJeRg0vy/E5AYn7MGZjWECoKSJpz9mgzFcW2ob4Z45 4RIwT8TdHAHe+ewWKTgo8vMTmVNKKV3Hn1TZFqUGovoFYsUmAlUOYoOvcy6hhpYw hW4D2gi70pErVt6r8gD+mynRIpJXAod9Ziwf9cUe0szUK4OBZeQ7pb8q00Edn+Q9 Xj58eqMnPE1kMtx7bnaXe9U6EnVPyDi1kS2shrGwywCIzFaEY0IOuZ73TuUgZ9N9 /3iMlMoGodQY1L4FL5xWVBSRyIEHYE+ZVD/3shaiq1qaFhFn3SRgAVfz5wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBJxIzBMrsYS9g0WJat8+qxGvQgqMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZkMGFjNmJhLWU3NzUtNGY4Ni04NTNlLWY0Njc4NzlmNGU2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauJAwDQYJKoZIhvcNAQELBQADggEBACJezpnNTJSv/UqCm6xL da9FA2SozUWK0+a8wLUzr3WYAE92ioMVbAYYecEk/++MAtHG4fx+StAwStRk4bHm nRvBVOVGNzSFRNFigIAAgen0z7jWbQvNm6hNJOXpqZi8L8qWcwobcHmbcA+BGRBW gWRcb5ElYel8eqP7S+SUyr5Buhq8K/vZPOZishnjqdPRurN+FK/UUUC7kDCqAfX3 Zn2kwYnglmS665uLS0qUBojTEmQHeKIkNwpTUi0vVSKxw9s4Y7GM2SGxHDgImAti uAFO6wNPw9ua2vtmNFKoq9ipgcLRYhVR/8lobBb8gTX8B+rYoAk1xyd+BTgdncm0 fbc= -----END CERTIFICATE-----Generated at Fri May 3 01:27:45 2024 by rpki-client on console-fra.rpki-client.org