$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fef3abf6-f2e0-44e8-a7b3-1c87c9c1d26f.roa File: fef3abf6-f2e0-44e8-a7b3-1c87c9c1d26f.roa (raw, json) Hash identifier: adDsmoYx+ZqNDP0i0P7EcgkaTzZ3WDB62hlUU47WHDM= Subject key identifier: D5:B1:89:0E:3B:77:74:73:1C:33:02:F7:5A:92:6A:E1:BE:3F:A1:5C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 42A6AC209A14B5991316BF82BFE65A3825AEE83B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fef3abf6-f2e0-44e8-a7b3-1c87c9c1d26f.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a6:ac:20:9a:14:b5:99:13:16:bf:82:bf:e6:5a:38:25:ae:e8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=196ff5d209d18b367a46626a65cbb1adbbc96591879fa7a9118490a2cea9d22c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:99:72:f1:5e:cc:d6:c4:c4:aa:25:23:fb:48: ac:57:6c:9c:cf:15:22:2c:bc:17:bf:66:c4:53:a5: b5:37:c2:e7:12:dd:0e:69:99:64:35:9d:b6:2c:fd: b9:fe:ff:b7:fb:43:f3:7d:ba:70:3e:6b:53:df:ce: c4:ac:ec:dd:c4:00:32:c8:b8:74:a5:0a:b2:6d:a2: a2:e3:59:f6:70:9e:74:33:94:1f:9a:74:ff:33:16: eb:b8:b5:f6:4e:3b:0e:5f:4a:6f:8f:4b:8b:ce:42: 2a:c5:ff:e7:7e:8d:6f:97:ae:78:a7:dd:7e:26:e7: a4:75:dc:dc:e7:7d:aa:17:17:84:ce:07:04:de:a4: d7:44:7d:d4:3d:fb:68:3a:36:98:a7:c0:b5:37:5c: 3a:c3:22:5e:e7:45:66:7c:cf:28:b6:3b:e8:8e:82: 1c:31:ee:4b:7e:43:f1:76:d5:6e:04:fb:2b:22:f8: 9b:c3:be:eb:8a:ec:68:f6:85:d8:0a:cd:be:e2:1b: 2f:af:66:34:4c:6c:7f:69:58:ec:da:50:90:e6:8e: f2:5a:da:d5:a6:89:a2:51:a4:f8:35:62:2d:b9:c3: 0c:fe:da:15:69:c0:05:83:7f:9d:64:cc:7d:0b:c8: 3e:a6:03:97:6b:9f:0e:af:32:cf:85:b5:6d:b7:9a: b8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B1:89:0E:3B:77:74:73:1C:33:02:F7:5A:92:6A:E1:BE:3F:A1:5C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fef3abf6-f2e0-44e8-a7b3-1c87c9c1d26f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:f000::/40 Signature Algorithm: sha256WithRSAEncryption 57:54:ee:a8:ec:a9:cf:32:81:74:a0:3e:5a:a5:5f:d6:98:a5: 4d:bf:8a:33:65:0d:23:b1:34:de:49:55:56:e7:a8:e6:62:26: ca:0a:c4:26:8f:07:d8:26:e4:85:d5:bb:4f:d7:36:a2:de:5c: 1b:93:be:30:54:d8:75:b2:06:37:9b:15:76:7d:0d:ce:10:bf: 27:6b:e3:f4:ed:64:3f:27:41:c3:95:a9:b8:2b:c3:97:5f:43: 18:06:ff:40:90:f8:ab:f5:cb:3c:5b:3e:7f:5d:11:24:36:6d: 4b:ef:09:81:d9:d4:79:fb:e0:bf:41:74:7e:e7:a7:46:21:ff: dc:23:c7:0c:3c:66:38:27:c3:8b:c8:8c:c0:bf:06:a1:97:cc: 2c:a6:be:70:6e:f3:f0:64:7e:f2:61:b2:d9:2f:54:bf:46:a3: 4b:af:87:a2:8a:18:43:67:69:b9:f5:b7:d3:49:3e:99:d2:11: 86:50:08:84:d5:eb:d5:26:50:dc:f5:a3:cd:a1:67:e5:44:6e: 00:8c:9f:eb:e5:87:c0:13:fd:df:43:0f:ea:bc:bc:5e:27:79: ab:93:a3:7d:9f:e7:59:e0:5c:89:23:19:c6:ba:7a:fe:95:e3: 74:bc:a0:3d:bf:cd:9a:28:35:c7:61:d0:80:4b:67:65:f3:f3: c9:81:81:7a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQqasIJoUtZkTFr+Cv+ZaOCWu6DswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI0MDcxNjAwMDAwMFoX DTI0MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAMTk2ZmY1ZDIwOWQxOGIzNjdhNDY2 MjZhNjVjYmIxYWRiYmM5NjU5MTg3OWZhN2E5MTE4NDkwYTJjZWE5ZDIyYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Zly8V7M1sTEqiUj+0isV2yczxUi LLwXv2bEU6W1N8LnEt0OaZlkNZ22LP25/v+3+0PzfbpwPmtT387ErOzdxAAyyLh0 pQqybaKi41n2cJ50M5QfmnT/MxbruLX2TjsOX0pvj0uLzkIqxf/nfo1vl654p91+ Juekddzc532qFxeEzgcE3qTXRH3UPftoOjaYp8C1N1w6wyJe50VmfM8otjvojoIc Me5LfkPxdtVuBPsrIvibw77riuxo9oXYCs2+4hsvr2Y0TGx/aVjs2lCQ5o7yWtrV pomiUaT4NWItucMM/toVacAFg3+dZMx9C8g+pgOXa58OrzLPhbVtt5q4OQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNWxiQ47d3RzHDMC91qSauG+P6FcMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZlZjNhYmY2LWYyZTAtNDRlOC1hN2IzLTFjODdjOWMxZDI2Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOPAwDQYJKoZIhvcNAQELBQADggEBAFdU7qjsqc8ygXSgPlql X9aYpU2/ijNlDSOxNN5JVVbnqOZiJsoKxCaPB9gm5IXVu0/XNqLeXBuTvjBU2HWy BjebFXZ9Dc4Qvydr4/TtZD8nQcOVqbgrw5dfQxgG/0CQ+Kv1yzxbPn9dESQ2bUvv CYHZ1Hn74L9BdH7np0Yh/9wjxww8Zjgnw4vIjMC/BqGXzCymvnBu8/BkfvJhstkv VL9Go0uvh6KKGENnabn1t9NJPpnSEYZQCITV69UmUNz1o82hZ+VEbgCMn+vlh8AT /d9DD+q8vF4neauTo32f51ngXIkjGca6ev6V43S8oD2/zZooNcdh0IBLZ2Xz88mB gXo= -----END CERTIFICATE-----Generated at Fri Jul 26 02:06:17 2024 by rpki-client on console-fra.rpki-client.org