$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa File: 245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa (raw, json) Hash identifier: JtzBBDnHfbvuG0ACkrXYgq2wi42pX7WzGKOYFTZF7vA= Subject key identifier: 70:86:84:8D:C0:58:1C:A6:1D:91:70:5C:88:EE:7B:7F:BE:AB:25:E1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4239D06A521DA1145FC875C533127E243F9AB0DF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa Signing time: Wed 26 Mar 2025 00:10:18 +0000 ROA not before: Wed 26 Mar 2025 00:10:18 +0000 ROA not after: Wed 30 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 43.249.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:39:d0:6a:52:1d:a1:14:5f:c8:75:c5:33:12:7e:24:3f:9a:b0:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Mar 26 00:10:18 2025 GMT Not After : Apr 30 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5f:51:ea:fc:c6:0c:f4:e6:0f:ca:92:ca:6d: 9b:23:2b:df:a3:33:ca:ff:22:7f:cc:2d:69:1d:95: 87:b1:c8:da:ca:d7:3c:a4:ac:97:3e:5b:a7:2b:1d: b6:4b:d4:b1:2d:e5:52:1c:7a:b8:45:5e:b4:3b:0d: af:02:ec:2f:3d:77:bd:75:2e:23:a4:c7:db:1a:b0: e7:d4:6d:17:65:8e:27:8e:d3:26:f3:f0:46:9c:04: ad:a3:f3:e9:8e:99:df:c7:90:e0:a2:60:f7:af:2d: 0e:76:db:d9:87:b5:99:8a:b1:6e:b6:7f:48:8e:ba: 0d:28:10:6c:06:cd:88:f1:55:11:03:d4:18:14:91: 37:d5:b5:b2:52:5b:be:f4:f5:35:73:cc:c3:c7:eb: 5a:3d:75:59:13:00:6a:fd:c8:55:59:e6:4e:8f:57: df:88:d8:31:59:b0:76:23:59:cc:d9:d3:cd:92:bd: cb:e2:c1:ce:f6:08:83:6f:4f:ad:7d:30:fd:d0:1f: a4:00:74:80:ff:36:b3:e2:2a:59:37:85:bf:31:60: bf:1c:01:ef:2f:a1:13:bb:4c:9d:af:14:c5:f8:16: 7f:6e:5d:f3:16:da:3f:1f:4b:2d:72:37:5f:98:52: 1a:63:e3:77:66:98:d1:65:22:02:97:d1:01:13:3b: 7d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:86:84:8D:C0:58:1C:A6:1D:91:70:5C:88:EE:7B:7F:BE:AB:25:E1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/245a65bb-591c-47bc-8a8c-6c86b093fd8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.44.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:84:e6:c3:3d:5f:d1:2d:dc:63:3a:98:dd:e1:c5:1a:f1:85: 1b:f3:2a:0a:8a:c0:ac:9e:7b:39:b7:1c:c8:a7:8f:00:15:88: ae:b4:4e:25:c1:3c:26:58:e5:d7:40:09:2e:10:49:ab:e4:56: 7c:20:63:cc:49:77:42:21:1b:08:05:07:cb:e9:af:f9:88:f4: 05:2e:02:d1:8c:b2:c0:4f:c2:8e:2e:48:d3:eb:fe:21:d0:11: 79:a8:1d:c0:d7:db:1d:6e:30:f7:89:6a:2f:25:34:4b:15:82: a3:fd:56:c7:82:44:3e:b3:e5:64:b6:88:8f:67:d6:3e:5b:86: 2e:0d:75:a7:13:6f:14:8f:95:e3:89:b9:75:bb:ef:96:c2:d1: 59:e4:c2:a6:0d:80:e7:7e:3a:0e:91:90:e0:69:e0:e3:aa:ee: 36:73:c4:4c:ed:c0:2b:b6:71:c0:1d:b7:ae:c8:74:b9:12:51: 9a:c8:17:ca:06:9d:14:11:70:af:65:85:d5:ba:96:37:26:9d: 8d:28:85:e2:eb:f5:63:01:8b:6b:13:23:d4:74:39:1a:c7:a2: 03:6f:38:f9:6e:dc:da:c7:f1:1b:54:1b:ce:a3:e5:32:e6:c7: 59:44:8a:63:6e:d4:de:3e:68:e1:54:3f:8f:54:4f:48:e9:e4: 78:6f:37:59 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUQjnQalIdoRRfyHXFMxJ+JD+asN8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDMyNjAwMTAxOFoX DTI1MDQzMDIzNTk1OVowejFJMEcGA1UEBRNAMTBiZTY5NjA0ODFmZDIyZTVlMTYx MDE4Mzc1MjI1MjBmYTQxYzIwODZmNDNiNWI3Nzk3ZjlmN2MyYmQ2YWFkMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAml9R6vzGDPTmD8qSym2bIyvfozPK /yJ/zC1pHZWHscjaytc8pKyXPlunKx22S9SxLeVSHHq4RV60Ow2vAuwvPXe9dS4j pMfbGrDn1G0XZY4njtMm8/BGnASto/Ppjpnfx5DgomD3ry0OdtvZh7WZirFutn9I jroNKBBsBs2I8VURA9QYFJE31bWyUlu+9PU1c8zDx+taPXVZEwBq/chVWeZOj1ff iNgxWbB2I1nM2dPNkr3L4sHO9giDb0+tfTD90B+kAHSA/zaz4ipZN4W/MWC/HAHv L6ETu0ydrxTF+BZ/bl3zFto/H0stcjdfmFIaY+N3ZpjRZSICl9EBEzt9vQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHCGhI3AWBymHZFwXIjue3++qyXhMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzI0NWE2NWJiLTU5MWMtNDdiYy04YThjLTZjODZiMDkzZmQ4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/ksMA0GCSqGSIb3DQEBCwUAA4IBAQBLhObDPV/RLdxjOpjd4cUa 8YUb8yoKisCsnns5txzIp48AFYiutE4lwTwmWOXXQAkuEEmr5FZ8IGPMSXdCIRsI BQfL6a/5iPQFLgLRjLLAT8KOLkjT6/4h0BF5qB3A19sdbjD3iWovJTRLFYKj/VbH gkQ+s+VktoiPZ9Y+W4YuDXWnE28Uj5Xjibl1u++WwtFZ5MKmDYDnfjoOkZDgaeDj qu42c8RM7cArtnHAHbeuyHS5ElGayBfKBp0UEXCvZYXVupY3Jp2NKIXi6/VjAYtr EyPUdDkax6IDbzj5btzax/EbVBvOo+Uy5sdZRIpjbtTePmjhVD+PVE9I6eR4bzdZ -----END CERTIFICATE-----Generated at Sat Apr 5 10:55:07 2025 by rpki-client