$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/befec666-436f-4e82-8b41-4bd8d82646ff.roa File: befec666-436f-4e82-8b41-4bd8d82646ff.roa (raw, json) Hash identifier: TpjbwagrQJZ7bd2/z3jbLe01GQButlIwxS6F6/ItwUY= Subject key identifier: FB:7C:D2:79:5C:A7:CD:10:A3:D8:6B:E1:7D:27:BE:4D:7A:D2:7F:1D Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 59648C4277B6882B6F1B4F9D1CB2EEE57CA24C25 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/befec666-436f-4e82-8b41-4bd8d82646ff.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2400:6700::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:64:8c:42:77:b6:88:2b:6f:1b:4f:9d:1c:b2:ee:e5:7c:a2:4c:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=efa054fc9721f82e96db379ed898151116470ec2b2769fa329d59449be67f1a8, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:29:55:28:1d:ec:af:5b:5a:46:7f:c4:c0: 84:6f:d8:83:33:af:44:7d:20:2a:e5:08:58:22:f2: d3:fd:92:96:cc:cb:06:ab:b2:ef:1b:b0:11:1e:d0: 5d:fc:ad:ba:af:a1:8b:9d:c7:2c:ec:14:ad:6c:6f: 0a:b1:a9:24:ed:83:eb:7d:b5:6a:e5:04:57:98:d4: 3c:03:b2:c1:9f:bc:24:7b:ba:4d:b7:46:c0:0d:5e: 4a:7e:8e:55:aa:ce:e4:07:7b:0f:16:e6:b6:46:b4: c8:4e:2a:14:e1:e0:dd:dc:a6:5f:ee:d6:a6:71:eb: c3:8a:91:1a:90:1b:7e:41:05:f3:e5:c3:1d:3c:6c: 9b:2b:18:2d:05:5f:52:33:ac:bc:1f:df:76:7a:49: 27:50:4c:d3:c0:b0:de:ad:40:16:f6:a8:9c:24:fd: b2:4c:93:ee:6c:99:c9:ba:5a:98:93:43:ce:36:b4: a8:05:40:f8:15:b7:d7:9e:dd:8e:5b:69:db:4d:65: b5:2f:6d:ad:c6:40:a0:db:4c:e7:13:89:2c:0e:d7: dd:1a:9d:aa:e8:0b:00:b8:62:f8:a1:8b:e6:1e:f1: ac:8a:44:72:27:eb:79:2e:ce:cc:03:7c:39:c4:31: 43:d5:7a:31:f9:12:93:22:b6:c2:e2:3e:53:94:38: 7c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:7C:D2:79:5C:A7:CD:10:A3:D8:6B:E1:7D:27:BE:4D:7A:D2:7F:1D X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/befec666-436f-4e82-8b41-4bd8d82646ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700::/32 Signature Algorithm: sha256WithRSAEncryption 98:bf:82:51:5d:c6:aa:a5:3f:f9:a7:d8:7f:77:25:35:13:b4: a2:32:8b:8c:2a:43:16:3b:28:1b:ae:59:21:8a:4b:a3:34:ba: 30:47:2e:8d:f3:6a:ce:5f:b1:03:c1:3b:73:dd:9d:b6:0e:27: fb:62:34:5c:42:5f:1d:b7:93:99:9a:bc:be:54:27:79:32:ee: 64:be:33:0a:56:f4:1d:86:99:17:22:aa:4b:6c:1a:ed:03:53: 7b:8e:05:f5:94:0b:9a:2a:db:ae:77:1b:d8:a8:7b:51:2f:9d: 03:1a:fe:41:eb:a0:33:f5:5b:d2:d7:d7:5c:4a:60:36:44:7c: d9:62:22:73:67:a5:c8:bc:ce:40:cd:ae:91:08:36:c7:7f:ed: 23:a7:c0:48:2c:af:9e:8e:a7:00:45:d5:25:25:08:cc:7f:2a: 23:17:12:72:e9:24:01:49:ef:6b:71:03:fd:2f:e9:08:8b:4b: 29:ab:30:d2:30:ec:e6:4c:2c:99:cf:f1:cf:2a:6d:09:28:ed: f4:60:f8:62:f7:b7:aa:1c:a8:a8:11:f3:98:01:30:99:eb:dd: 8c:65:5b:aa:31:9c:87:50:99:59:a4:5d:ae:26:49:b6:8f:0e: 22:c0:57:38:c7:8e:92:d7:c6:85:1a:5c:9f:2d:8e:ec:72:9d: c1:37:32:ef -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUWWSMQne2iCtvG0+dHLLu5XyiTCUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MTEwNTAwMDAwMFoX DTI0MTIxMDIzNTk1OVowejFJMEcGA1UEBRNAZWZhMDU0ZmM5NzIxZjgyZTk2ZGIz NzllZDg5ODE1MTExNjQ3MGVjMmIyNzY5ZmEzMjlkNTk0NDliZTY3ZjFhODEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHQpVSgd7K9bWkZ/xMCEb9iDM69E fSAq5QhYIvLT/ZKWzMsGq7LvG7ARHtBd/K26r6GLnccs7BStbG8Ksakk7YPrfbVq 5QRXmNQ8A7LBn7wke7pNt0bADV5Kfo5Vqs7kB3sPFua2RrTITioU4eDd3KZf7tam cevDipEakBt+QQXz5cMdPGybKxgtBV9SM6y8H992ekknUEzTwLDerUAW9qicJP2y TJPubJnJulqYk0PONrSoBUD4FbfXnt2OW2nbTWW1L22txkCg20znE4ksDtfdGp2q 6AsAuGL4oYvmHvGsikRyJ+t5Ls7MA3w5xDFD1Xox+RKTIrbC4j5TlDh8IwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFPt80nlcp80Qo9hr4X0nvk160n8dMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2JlZmVjNjY2LTQzNmYtNGU4Mi04YjQxLTRiZDhkODI2NDZmZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABnADANBgkqhkiG9w0BAQsFAAOCAQEAmL+CUV3GqqU/+afYf3cl NRO0ojKLjCpDFjsoG65ZIYpLozS6MEcujfNqzl+xA8E7c92dtg4n+2I0XEJfHbeT mZq8vlQneTLuZL4zClb0HYaZFyKqS2wa7QNTe44F9ZQLmirbrncb2Kh7US+dAxr+ QeugM/Vb0tfXXEpgNkR82WIic2elyLzOQM2ukQg2x3/tI6fASCyvno6nAEXVJSUI zH8qIxcScukkAUnva3ED/S/pCItLKasw0jDs5kwsmc/xzyptCSjt9GD4Yve3qhyo qBHzmAEwmevdjGVbqjGch1CZWaRdriZJto8OIsBXOMeOktfGhRpcny2O7HKdwTcy 7w== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:50 2024 by rpki-client on console-ams.rpki-client.org