$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa File: 7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa (raw, json) Hash identifier: kRTZNDdjnUEILRKZCONc6gvWpYhp2pWl5sb1cgNHPLE= Subject key identifier: A7:49:A7:93:67:97:03:AA:81:D7:24:82:8A:D8:36:AE:58:43:BD:EE Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6940FADBB13D48BBD0E33E173DB5588473FD1B86 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2400:6500::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:40:fa:db:b1:3d:48:bb:d0:e3:3e:17:3d:b5:58:84:73:fd:1b:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=85adc22ce73e53a3e253561cbce82055c39e144d398971be2a9afdfda5f2f093, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5c:54:5a:a9:7b:3b:98:39:c5:25:c6:cb:1e: 93:0e:a3:55:35:39:e6:86:ba:92:a7:5a:43:06:7a: 8e:60:9d:c9:8a:25:d8:c4:58:38:62:c4:8f:d2:13: 48:02:82:79:ef:db:d7:92:cf:a4:2f:f6:ec:ba:e7: 64:48:fc:34:b3:37:3b:fe:2c:27:97:5c:29:74:18: 34:59:18:7a:81:5d:51:fe:a1:72:f0:81:45:a3:f7: 26:07:d8:d8:4c:db:a5:33:b8:12:d7:b7:c8:76:e6: d8:6a:d7:ea:cf:64:eb:6e:61:6e:29:0b:8d:96:ac: 8a:f6:42:21:e0:25:d4:f5:76:1e:14:f0:b3:a6:54: 32:59:dd:a8:0f:06:fb:19:18:5c:bd:4e:b9:c6:9c: 27:4c:df:96:e6:ae:86:e5:c1:63:1b:88:9c:97:ef: f9:85:a1:69:81:2f:0c:88:72:3c:e5:53:da:4d:7e: d6:f4:a3:ec:ff:c0:71:6f:23:b4:b0:28:da:8e:4e: ac:2a:41:93:25:f5:7f:35:67:fc:59:cf:6d:5d:98: 0f:ee:55:50:a8:1c:8c:23:86:e2:bb:fd:6b:b4:3a: 06:ca:82:c8:37:7a:5e:5e:5e:34:ff:8a:77:e6:18: c8:59:55:47:3c:a0:36:ba:99:90:67:3d:b4:44:4b: 57:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:49:A7:93:67:97:03:AA:81:D7:24:82:8A:D8:36:AE:58:43:BD:EE X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500::/32 Signature Algorithm: sha256WithRSAEncryption 8a:73:9b:8b:e1:05:e3:a9:cd:5a:fe:89:6a:0e:a2:fe:71:0c: 95:e4:12:5b:ab:79:18:87:d6:8c:31:72:db:21:ee:00:0b:8e: 0f:ac:c0:b0:74:90:2a:07:01:20:92:fc:c1:b2:6f:9f:11:2d: d3:bb:30:ad:88:5b:62:94:ef:b9:0e:af:0d:4c:f0:c9:33:61: 7a:bb:ab:7c:28:30:2f:f2:91:37:ff:25:9f:1c:c9:a1:dc:8a: 65:bf:a3:cb:9a:b1:22:50:b7:d5:7f:73:2e:d7:cf:a8:46:83: 72:d8:32:97:90:16:9c:69:10:2f:cc:a1:0f:a9:74:3c:c0:59: 5d:9c:fd:ab:75:98:c5:58:a5:5a:94:8d:8b:b7:d0:40:94:de: 43:8f:a2:60:73:48:6b:6e:c5:b8:b7:01:c4:9e:6f:59:1d:11: b4:bc:dd:fa:6c:1c:13:43:92:b0:dc:10:d0:c8:45:2e:ef:10: 06:2f:79:81:fd:89:73:38:02:f8:2b:16:e1:48:00:d9:f0:3b: 23:9c:fd:6c:a3:c3:99:14:3b:02:a9:4e:e3:24:22:ad:c9:89: 17:99:50:02:bb:2c:3d:9d:b4:c6:be:1a:cf:38:0d:12:ca:71: 33:af:75:56:56:8a:0e:fe:de:79:13:16:04:e6:15:c4:dd:b9: 41:c7:bf:cf -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUaUD627E9SLvQ4z4XPbVYhHP9G4YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MTEwNTAwMDAwMFoX DTI0MTIxMDIzNTk1OVowejFJMEcGA1UEBRNAODVhZGMyMmNlNzNlNTNhM2UyNTM1 NjFjYmNlODIwNTVjMzllMTQ0ZDM5ODk3MWJlMmE5YWZkZmRhNWYyZjA5MzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqlxUWql7O5g5xSXGyx6TDqNVNTnm hrqSp1pDBnqOYJ3JiiXYxFg4YsSP0hNIAoJ579vXks+kL/bsuudkSPw0szc7/iwn l1wpdBg0WRh6gV1R/qFy8IFFo/cmB9jYTNulM7gS17fIdubYatfqz2TrbmFuKQuN lqyK9kIh4CXU9XYeFPCzplQyWd2oDwb7GRhcvU65xpwnTN+W5q6G5cFjG4icl+/5 haFpgS8MiHI85VPaTX7W9KPs/8BxbyO0sCjajk6sKkGTJfV/NWf8Wc9tXZgP7lVQ qByMI4biu/1rtDoGyoLIN3peXl40/4p35hjIWVVHPKA2upmQZz20REtXvQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFKdJp5NnlwOqgdckgorYNq5YQ73uMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdhNDZkODE4LWNiMWUtNDVhYi04NmM3LTFhOWEzN2MxYTk1MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABlADANBgkqhkiG9w0BAQsFAAOCAQEAinObi+EF46nNWv6Jag6i /nEMleQSW6t5GIfWjDFy2yHuAAuOD6zAsHSQKgcBIJL8wbJvnxEt07swrYhbYpTv uQ6vDUzwyTNherurfCgwL/KRN/8lnxzJodyKZb+jy5qxIlC31X9zLtfPqEaDctgy l5AWnGkQL8yhD6l0PMBZXZz9q3WYxVilWpSNi7fQQJTeQ4+iYHNIa27FuLcBxJ5v WR0RtLzd+mwcE0OSsNwQ0MhFLu8QBi95gf2JczgC+CsW4UgA2fA7I5z9bKPDmRQ7 AqlO4yQircmJF5lQArssPZ20xr4azzgNEspxM691VlaKDv7eeRMWBOYVxN25Qce/ zw== -----END CERTIFICATE-----Generated at Thu Nov 21 17:28:40 2024 by rpki-client on console-fra.rpki-client.org