$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/562ea526-d7fd-4f54-a7f1-2891e7003176.roa File: 562ea526-d7fd-4f54-a7f1-2891e7003176.roa (raw, json) Hash identifier: wQy9CGPxtdKjFZMq4wgmdSA3Ke2DVqxdn9QGTlPcAaA= Subject key identifier: B4:38:73:D3:EF:28:76:86:59:A8:DC:42:AF:ED:1F:A4:40:E1:D8:98 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 11FB13C305A2FC0D5384800FD7C583A0407930FA Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/562ea526-d7fd-4f54-a7f1-2891e7003176.roa Signing time: Sat 01 Feb 2025 00:00:00 +0000 ROA not before: Sat 01 Feb 2025 00:00:00 +0000 ROA not after: Sat 08 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:60a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:fb:13:c3:05:a2:fc:0d:53:84:80:0f:d7:c5:83:a0:40:79:30:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 1 00:00:00 2025 GMT Not After : Mar 8 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:13:ac:e2:cc:a0:b8:bb:4c:85:bc:0e:bc:ba: 70:07:88:b3:71:26:5e:b8:d8:a0:24:53:04:8b:46: df:d9:00:8b:21:89:72:f7:cc:fb:ff:94:79:dd:67: f7:c5:f5:90:48:59:a3:64:85:ce:f8:fd:b6:3b:6a: 3b:5e:2f:9f:d5:88:be:68:1f:67:f7:6e:3a:2e:b2: b8:e1:3a:2b:a5:74:ec:ae:cb:23:98:07:89:fe:9a: 50:d2:dd:e9:01:5f:04:02:1c:e2:ed:9d:aa:b4:c0: 3b:b7:07:1b:36:4a:ae:3f:e7:09:f8:ec:d8:f6:d4: 2e:78:d6:5f:c1:77:1b:9d:a4:66:b6:6b:d2:e2:0e: 3d:79:4c:ee:d5:69:19:19:8c:05:67:da:8d:29:19: 47:04:c2:68:aa:41:10:f1:72:f4:12:88:25:df:52: 5a:94:41:20:56:28:6c:99:d8:1a:0a:9b:d1:5a:1f: 4f:7b:59:28:79:07:f8:93:23:1b:b2:9a:f2:a6:a3: f8:09:e3:87:4d:49:b2:3e:5c:85:71:39:12:d6:c2: 29:82:09:dc:19:6e:6b:6c:3c:a0:9c:f9:f0:4c:03: 44:ca:79:a8:40:f3:ce:f4:5d:b2:72:68:de:3f:19: 27:47:fb:5c:30:db:44:0c:cb:6e:d0:82:be:6c:f3: b8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:38:73:D3:EF:28:76:86:59:A8:DC:42:AF:ED:1F:A4:40:E1:D8:98 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/562ea526-d7fd-4f54-a7f1-2891e7003176.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:60a0::/48 Signature Algorithm: sha256WithRSAEncryption b2:5a:72:73:c0:0f:a6:de:60:03:bc:c8:14:00:b5:d4:68:05: fa:40:a7:7c:f2:90:1d:6f:9e:63:5b:31:73:c1:57:8b:d2:86: 88:3f:3e:ba:ec:64:76:b4:05:ab:17:36:0b:86:ab:94:3a:7d: 04:6b:3b:b9:84:d3:0e:e9:f0:f1:28:55:68:5a:a9:85:60:84: 46:1c:c1:18:51:b2:6f:44:b4:0a:db:d2:56:45:bf:79:02:f5: 8f:60:1c:71:f8:0d:16:ab:a2:42:21:99:56:69:c6:6f:6e:71: 2b:f5:5e:67:a6:97:8c:05:c8:1b:c2:32:3c:46:ac:3b:7c:8f: 15:44:b6:48:62:ac:a0:4f:65:be:dd:94:6d:d2:d0:7e:54:c8: 13:a7:58:5f:88:d6:a2:bd:b3:81:1b:10:67:26:f1:5a:df:1d: 45:c6:8a:25:27:8f:0e:99:8f:f6:dd:b8:88:a0:31:7e:d4:aa: 49:b9:85:a0:7a:e9:c7:ac:7c:39:7f:a3:53:62:7d:39:d7:47: 2a:83:96:53:53:5d:a7:c8:ca:32:d4:33:51:a2:1c:02:03:d8: a8:d1:3b:0c:27:56:8b:a8:1b:37:96:d0:63:48:3c:22:63:bd: bb:80:8e:4e:1a:67:1b:d8:6f:2c:8c:18:a4:06:29:e0:07:4c: 2a:60:8a:61 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUEfsTwwWi/A1ThIAP18WDoEB5MPowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMTAwMDAwMFoX DTI1MDMwODIzNTk1OVowejFJMEcGA1UEBRNAOWZlM2I3YjIwMmIwZTgxMmQ4ZDhk N2VmM2RkZjFjNzZkMGQ5MDEwM2ZiOWUxMDc5MjY2ZTQyZTkzOTNiMWUzYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ROs4syguLtMhbwOvLpwB4izcSZe uNigJFMEi0bf2QCLIYly98z7/5R53Wf3xfWQSFmjZIXO+P22O2o7Xi+f1Yi+aB9n 9246LrK44TorpXTsrssjmAeJ/ppQ0t3pAV8EAhzi7Z2qtMA7twcbNkquP+cJ+OzY 9tQueNZfwXcbnaRmtmvS4g49eUzu1WkZGYwFZ9qNKRlHBMJoqkEQ8XL0Eogl31Ja lEEgVihsmdgaCpvRWh9Pe1koeQf4kyMbsprypqP4CeOHTUmyPlyFcTkS1sIpggnc GW5rbDygnPnwTANEynmoQPPO9F2ycmjePxknR/tcMNtEDMtu0IK+bPO42QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLQ4c9PvKHaGWajcQq/tH6RA4diYMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU2MmVhNTI2LWQ3ZmQtNGY1NC1hN2YxLTI4OTFlNzAwMzE3Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAGCgMA0GCSqGSIb3DQEBCwUAA4IBAQCyWnJzwA+m3mADvMgU ALXUaAX6QKd88pAdb55jWzFzwVeL0oaIPz667GR2tAWrFzYLhquUOn0Eazu5hNMO 6fDxKFVoWqmFYIRGHMEYUbJvRLQK29JWRb95AvWPYBxx+A0Wq6JCIZlWacZvbnEr 9V5nppeMBcgbwjI8Rqw7fI8VRLZIYqygT2W+3ZRt0tB+VMgTp1hfiNaivbOBGxBn JvFa3x1FxoolJ48OmY/23biIoDF+1KpJuYWgeunHrHw5f6NTYn0510cqg5ZTU12n yMoy1DNRohwCA9io0TsMJ1aLqBs3ltBjSDwiY727gI5OGmcb2G8sjBikBingB0wq YIph -----END CERTIFICATE-----Generated at Wed Feb 5 03:59:36 2025 by rpki-client