$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/56aba584-e6fd-42ac-9d3c-f747713e6c50.roa File: 56aba584-e6fd-42ac-9d3c-f747713e6c50.roa (raw, json) Hash identifier: napBf8wLHuoXr3ZFHT9dZKLEtUO+1ZOvaGb1ZbI322E= Subject key identifier: CE:08:46:3A:AA:2C:71:20:C7:ED:C9:F3:7D:68:0E:C8:7D:B5:22:9C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 14B206F1DBF49D8347156800A505D141885EB81D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/56aba584-e6fd-42ac-9d3c-f747713e6c50.roa Signing time: Sat 01 Feb 2025 00:00:00 +0000 ROA not before: Sat 01 Feb 2025 00:00:00 +0000 ROA not after: Sat 08 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:c840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b2:06:f1:db:f4:9d:83:47:15:68:00:a5:05:d1:41:88:5e:b8:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 1 00:00:00 2025 GMT Not After : Mar 8 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:22:d5:40:13:55:7b:ea:08:2e:89:5c:d9: 52:db:0b:74:a7:9d:0b:54:a8:7b:ba:19:52:44:bb: 9d:24:2e:11:86:54:c2:50:e8:2d:06:0a:c0:ae:ec: b3:09:ff:82:94:65:6b:40:83:f5:94:b9:6d:29:6b: 34:ba:91:f9:64:14:dd:c8:90:d8:60:cb:4c:90:49: 29:a7:78:f9:79:93:38:0e:df:8f:66:54:51:e2:30: 51:e5:14:3e:bf:71:a0:78:ee:d9:ca:a6:4b:6d:cd: 17:82:8f:fe:64:a4:29:87:3e:eb:8a:f2:f8:a4:29: d4:05:6b:a7:16:06:b5:5c:41:bb:a5:17:fb:c6:47: d2:ea:11:74:f6:61:52:cd:c6:61:d7:be:fc:1d:26: 34:bf:6e:3a:1f:c0:78:e9:91:73:e9:3d:15:06:6e: 1c:7e:fb:63:fd:d3:8c:a5:23:25:87:53:ed:e3:d7: 66:be:5e:11:b5:3c:93:95:8d:fa:7b:9a:65:74:8b: ec:f2:8a:eb:b6:a9:68:40:4b:bd:f9:b0:20:b2:b1: b1:2a:89:7c:13:6b:b5:2b:70:dc:b3:76:da:a2:5a: c0:fc:c2:66:b0:8f:be:d9:4b:49:01:1e:fa:8e:61: 68:35:a3:c3:9c:35:97:06:28:34:49:f4:00:5e:cd: a2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:08:46:3A:AA:2C:71:20:C7:ED:C9:F3:7D:68:0E:C8:7D:B5:22:9C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/56aba584-e6fd-42ac-9d3c-f747713e6c50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:c840::/48 Signature Algorithm: sha256WithRSAEncryption 94:c5:4d:ed:ad:e1:06:8b:63:90:d2:38:d7:53:3b:8c:98:f0: 93:0d:1a:46:c6:b4:22:0f:f4:aa:96:f5:0b:a4:1c:cb:4a:9e: 5b:8a:3f:e6:d3:07:58:53:fd:a4:e9:fc:11:73:ae:e9:fa:1c: 7d:53:10:b5:c0:36:a3:e4:d5:93:a0:8f:a3:5c:6d:48:18:1a: 5b:dd:15:f1:61:35:2e:7a:5d:40:d2:6e:4e:49:14:a2:1d:40: 93:3d:d9:ae:30:27:19:fb:3e:14:56:1f:10:7d:c6:24:8e:6c: 29:eb:64:9a:1c:e6:ee:57:c2:02:34:dd:50:f2:ea:db:bd:10: 48:00:fd:3d:bc:0f:b4:f2:3d:e1:8b:9e:41:cf:41:5d:d6:cc: 6d:d8:ab:71:7e:b5:08:75:e6:93:5f:01:8f:fb:74:79:14:72: a1:d2:69:3c:2a:16:5d:84:bd:1c:6f:91:e4:da:20:d8:43:3f: 95:23:7f:d0:de:39:62:03:52:df:71:bf:23:ab:aa:d2:c9:1d: 19:d0:7c:57:50:81:ec:7f:93:2d:25:bb:f9:27:42:ac:76:e4: 61:75:06:87:4b:39:f1:7b:a4:dc:77:04:8d:f6:3a:c9:68:92: 49:c2:48:3b:9d:16:d1:04:7a:57:17:03:de:b4:c3:72:4a:3e: 5f:49:67:d8 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUFLIG8dv0nYNHFWgApQXRQYheuB0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMTAwMDAwMFoX DTI1MDMwODIzNTk1OVowejFJMEcGA1UEBRNANDhkMzM4ZjU1MGJiMDNjZjRmMzlk OTdiM2JlZWUzNzE3ZDVjNGVhODVkZTU4ZGIzMDg5YmZhZmQzMTRjMjc5ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL8i1UATVXvqCC6JXNlS2wt0p50L VKh7uhlSRLudJC4RhlTCUOgtBgrAruyzCf+ClGVrQIP1lLltKWs0upH5ZBTdyJDY YMtMkEkpp3j5eZM4Dt+PZlRR4jBR5RQ+v3GgeO7ZyqZLbc0Xgo/+ZKQphz7rivL4 pCnUBWunFga1XEG7pRf7xkfS6hF09mFSzcZh1778HSY0v246H8B46ZFz6T0VBm4c fvtj/dOMpSMlh1Pt49dmvl4RtTyTlY36e5pldIvs8orrtqloQEu9+bAgsrGxKol8 E2u1K3Dcs3baolrA/MJmsI++2UtJAR76jmFoNaPDnDWXBig0SfQAXs2iywIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFM4IRjqqLHEgx+3J831oDsh9tSKcMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU2YWJhNTg0LWU2ZmQtNDJhYy05ZDNjLWY3NDc3MTNlNmM1MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAMhAMA0GCSqGSIb3DQEBCwUAA4IBAQCUxU3treEGi2OQ0jjX UzuMmPCTDRpGxrQiD/SqlvULpBzLSp5bij/m0wdYU/2k6fwRc67p+hx9UxC1wDaj 5NWToI+jXG1IGBpb3RXxYTUuel1A0m5OSRSiHUCTPdmuMCcZ+z4UVh8QfcYkjmwp 62SaHObuV8ICNN1Q8urbvRBIAP09vA+08j3hi55Bz0Fd1sxt2KtxfrUIdeaTXwGP +3R5FHKh0mk8KhZdhL0cb5Hk2iDYQz+VI3/Q3jliA1Lfcb8jq6rSyR0Z0HxXUIHs f5MtJbv5J0KsduRhdQaHSznxe6TcdwSN9jrJaJJJwkg7nRbRBHpXFwPetMNySj5f SWfY -----END CERTIFICATE-----Generated at Wed Feb 5 03:56:13 2025 by rpki-client