$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2d82d68c-b660-4018-9fb1-a96c9fdd7793.roa File: 2d82d68c-b660-4018-9fb1-a96c9fdd7793.roa (raw, json) Hash identifier: FJEZiWguQYLXGF2x3E4VOsJNMrXVbSlCz4SamWsvmQI= Subject key identifier: C0:71:D9:B1:67:9D:F0:4B:DF:92:E2:B3:EE:01:60:E3:24:20:7D:58 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1A98D80A37F22B5FC1EF1763F68B776C214AEC3C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2d82d68c-b660-4018-9fb1-a96c9fdd7793.roa Signing time: Wed 19 Mar 2025 00:00:11 +0000 ROA not before: Wed 19 Mar 2025 00:00:11 +0000 ROA not after: Wed 23 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf9::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:98:d8:0a:37:f2:2b:5f:c1:ef:17:63:f6:8b:77:6c:21:4a:ec:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Mar 19 00:00:11 2025 GMT Not After : Apr 23 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ea:34:f5:ae:c2:5b:71:94:0d:68:e2:db:2f: 13:60:cc:57:13:67:80:c2:ef:a2:02:b8:03:7a:db: 8f:f5:ef:29:e9:42:dd:a5:c7:a9:aa:c3:dd:71:c3: 18:db:6d:9c:72:63:af:45:7f:38:c7:b7:62:10:8d: 2c:f9:c8:88:fb:be:ee:86:cb:ab:f3:dd:ca:d4:79: 88:a4:fe:30:bd:09:d9:51:e2:36:3a:14:a2:26:30: 0d:fe:ac:10:2e:ba:c1:e9:8c:8e:6e:82:fc:eb:82: 30:6c:cd:39:d5:f4:4a:69:f0:11:3c:20:f2:88:f6: 38:d7:bc:cd:0e:fe:d7:4c:0c:9f:2f:ac:a6:f0:8c: 59:fd:6a:b9:3c:55:63:0a:a7:a5:af:82:62:ee:c9: 1b:84:19:3f:67:67:21:4c:b2:11:9a:2d:88:dd:d4: 55:10:c7:a1:ab:94:9f:43:90:3e:fe:6d:6e:43:b8: 0b:7e:d1:7f:6b:57:c3:e0:40:86:57:81:c1:81:35: ae:6d:65:c2:14:f5:bb:26:5d:d5:28:ce:91:82:93: e7:e6:8a:52:4f:a0:4a:b5:0d:18:c4:ea:ee:9d:39: f2:a4:81:dc:06:f5:9c:12:0d:0d:03:74:a6:cd:58: a5:50:0d:ba:8a:ed:c1:7a:84:fc:c4:d1:ec:4c:04: 3a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:71:D9:B1:67:9D:F0:4B:DF:92:E2:B3:EE:01:60:E3:24:20:7D:58 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2d82d68c-b660-4018-9fb1-a96c9fdd7793.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf9::/32 Signature Algorithm: sha256WithRSAEncryption 66:8f:23:04:b7:33:0f:76:c6:1b:d9:81:a2:5e:d8:08:35:6c: 48:07:85:2d:04:00:0a:ff:13:28:bd:33:21:d2:a5:f0:6f:0d: 04:62:55:22:8a:d2:60:36:1b:30:71:c1:f1:69:12:81:25:44: fd:61:e1:5d:f5:bd:74:a9:86:ee:8b:89:5a:3b:2f:9b:cc:b1: f5:f6:1b:46:75:a0:cc:ab:84:45:3e:d1:16:10:79:7c:5a:0b: 1e:73:8f:bd:3f:28:9b:a7:3a:2b:18:fe:4e:4e:05:67:51:12: 33:0d:43:b2:a5:37:b8:0a:80:dd:96:a8:db:3b:6f:bb:76:e3: e8:e6:6c:df:6b:7c:d9:17:ca:0a:43:2c:d1:63:0e:21:d2:5c: 44:76:0f:b5:9e:5d:36:ab:4d:e2:4b:52:69:68:71:8d:c0:94: 9f:98:1a:11:e4:32:69:e3:be:92:4a:a5:31:ae:5d:35:b9:8c: cf:a8:a2:d0:77:53:2e:0e:d1:52:45:9c:8f:37:b8:43:d4:eb: c9:62:ad:3b:14:fa:10:13:93:57:dd:99:c2:2f:04:f6:0c:86: 4f:e1:a0:2f:ce:57:25:7a:0f:e9:8d:f3:18:31:0d:af:cc:e1: cf:10:5d:81:4f:5f:3b:65:6c:9d:1f:9a:c4:0f:92:b7:4e:a4: 4f:bc:1b:ab -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUGpjYCjfyK1/B7xdj9ot3bCFK7DwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDMxOTAwMDAxMVoX DTI1MDQyMzIzNTk1OVowejFJMEcGA1UEBRNAZDIwYzYzYjJkMTE4NTE4NDg4OTZk ZTdlMTM0NjAzOWQ3ZTRjYmRjMzZmNDE3OWMwMmM2NTMxMDdhMGU5ZDI2ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOo09a7CW3GUDWji2y8TYMxXE2eA wu+iArgDetuP9e8p6ULdpcepqsPdccMY222ccmOvRX84x7diEI0s+ciI+77uhsur 893K1HmIpP4wvQnZUeI2OhSiJjAN/qwQLrrB6YyOboL864IwbM051fRKafARPCDy iPY417zNDv7XTAyfL6ym8IxZ/Wq5PFVjCqelr4Ji7skbhBk/Z2chTLIRmi2I3dRV EMehq5SfQ5A+/m1uQ7gLftF/a1fD4ECGV4HBgTWubWXCFPW7Jl3VKM6RgpPn5opS T6BKtQ0YxOrunTnypIHcBvWcEg0NA3SmzVilUA26iu3BeoT8xNHsTAQ6TQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFMBx2bFnnfBL35Lis+4BYOMkIH1YMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJkODJkNjhjLWI2NjAtNDAxOC05ZmIxLWE5NmM5ZmRkNzc5My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAba+TANBgkqhkiG9w0BAQsFAAOCAQEAZo8jBLczD3bGG9mBol7Y CDVsSAeFLQQACv8TKL0zIdKl8G8NBGJVIorSYDYbMHHB8WkSgSVE/WHhXfW9dKmG 7ouJWjsvm8yx9fYbRnWgzKuERT7RFhB5fFoLHnOPvT8om6c6Kxj+Tk4FZ1ESMw1D sqU3uAqA3Zao2ztvu3bj6OZs32t82RfKCkMs0WMOIdJcRHYPtZ5dNqtN4ktSaWhx jcCUn5gaEeQyaeO+kkqlMa5dNbmMz6ii0HdTLg7RUkWcjze4Q9TryWKtOxT6EBOT V92Zwi8E9gyGT+GgL85XJXoP6Y3zGDENr8zhzxBdgU9fO2VsnR+axA+St06kT7wb qw== -----END CERTIFICATE-----Generated at Sat Apr 5 10:51:05 2025 by rpki-client