$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f02c5e6-ffee-4777-b0fd-d0651418af2b.roa File: 5f02c5e6-ffee-4777-b0fd-d0651418af2b.roa (raw, json) Hash identifier: /LX7DJg8zpgrQbNNbQ53H200gL1gIjx1cEoCsmwxnq4= Subject key identifier: F6:6E:AE:1B:54:68:EF:E2:08:C5:F7:D2:90:B7:72:47:7E:65:1D:05 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 14E49DEB5C1796DA95111ADFEBF5751C0FB54655 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f02c5e6-ffee-4777-b0fd-d0651418af2b.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:2020::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e4:9d:eb:5c:17:96:da:95:11:1a:df:eb:f5:75:1c:0f:b5:46:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:08:2e:da:0b:90:2f:2f:ed:2a:a8:56:27:2f: 28:4c:d3:c7:a0:2c:79:d2:4b:10:b0:a8:5d:28:20: 9d:8d:3d:1e:6f:57:05:fd:81:1f:70:a3:94:06:b0: 05:0b:63:a7:a4:63:aa:fb:fe:9f:ff:63:0d:42:c7: d7:71:1f:18:c1:b5:ca:4f:ad:e4:f1:4a:5d:c3:e8: dc:5d:8c:6b:41:1a:92:d3:6d:c8:6c:80:04:f5:e0: 1d:8b:ae:c8:3c:93:97:36:77:7c:23:43:1e:7a:0d: b0:30:55:5d:f4:98:14:fe:7f:a9:ba:25:7c:62:21: 3f:33:5c:9d:5f:9b:62:c4:13:f5:9b:10:01:e7:ad: bc:e0:f3:ac:ba:9b:80:3f:df:e3:f8:f0:91:14:e4: fc:c0:b3:05:c7:8f:fc:c8:cd:a4:55:66:26:2b:af: f3:c3:04:e5:16:42:af:7b:5e:a9:61:a0:f3:e0:79: a2:3b:0f:ef:24:d1:48:55:c9:16:9c:84:3d:44:8c: 98:06:bb:23:8d:d2:0e:39:ff:83:b1:e1:d8:ec:b7: cc:d5:6d:3b:53:20:5f:39:9d:d9:cc:a9:eb:5f:61: e7:b4:ed:70:90:ec:2c:a5:1e:c1:7f:0b:09:24:b4: 8a:3b:ec:7e:7c:6d:12:a0:70:da:19:a4:07:0b:87: e0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6E:AE:1B:54:68:EF:E2:08:C5:F7:D2:90:B7:72:47:7E:65:1D:05 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f02c5e6-ffee-4777-b0fd-d0651418af2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:2020::/46 Signature Algorithm: sha256WithRSAEncryption 8b:5a:86:a4:fc:c9:78:36:9f:09:8e:4e:7f:30:71:4f:5e:c4: 0b:57:36:b5:86:6e:47:58:2d:f2:a0:80:4a:36:cd:c7:26:d1: 1d:cc:67:26:74:d7:b2:0a:9b:ee:88:fa:43:a0:30:e6:ba:05: 91:f8:65:ea:62:f7:ef:0a:8e:7c:b1:d3:66:c8:83:93:bf:6e: 30:07:0d:d6:7f:da:22:a4:84:cc:dc:d1:20:cb:5b:26:fc:c9: 7d:e5:40:d4:26:7a:89:47:b8:17:95:2f:b6:81:df:35:91:c1: 1b:ae:1d:1c:63:96:d6:01:46:d7:ac:f9:3a:11:a2:25:1d:a9: 6d:00:85:d2:f5:55:b4:db:7c:42:ff:12:8a:c5:d7:6b:1e:a1: ef:37:88:07:2e:91:c5:fd:4b:8c:4f:da:fb:60:f8:b0:12:b7: 0b:c9:03:2c:a2:9b:56:60:26:32:17:fc:63:b1:af:a5:47:fe: c4:5a:25:b7:ad:1f:e0:2e:c4:74:f2:80:01:14:d7:e9:3f:20: fb:f3:e4:5d:e1:c1:15:2e:ef:39:60:19:1e:a4:7a:6c:ad:65: 86:66:07:79:77:07:1e:78:6e:36:5b:53:22:c6:4b:02:b0:fa: 73:63:97:8e:5c:e1:2b:eb:6e:b5:45:a2:37:4d:be:d4:cb:8b: 0e:6c:18:28 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUFOSd61wXltqVERrf6/V1HA+1RlUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMzAwMDAwMFoX DTI1MDMxMDIzNTk1OVowejFJMEcGA1UEBRNAMDA2NGQ5MTY0YTYzOGJhMDViNWQ3 ZmNkY2YxYzI0OWU1MmQ3MmNiNjY3MmM0YzQxY2NlNmYzOWU4Mjg3YjNkYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwgu2guQLy/tKqhWJy8oTNPHoCx5 0ksQsKhdKCCdjT0eb1cF/YEfcKOUBrAFC2OnpGOq+/6f/2MNQsfXcR8YwbXKT63k 8Updw+jcXYxrQRqS023IbIAE9eAdi67IPJOXNnd8I0Meeg2wMFVd9JgU/n+puiV8 YiE/M1ydX5tixBP1mxAB56284POsupuAP9/j+PCRFOT8wLMFx4/8yM2kVWYmK6/z wwTlFkKve16pYaDz4HmiOw/vJNFIVckWnIQ9RIyYBrsjjdIOOf+DseHY7LfM1W07 UyBfOZ3ZzKnrX2HntO1wkOwspR7BfwsJJLSKO+x+fG0SoHDaGaQHC4fg+wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPZurhtUaO/iCMX30pC3ckd+ZR0FMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVmMDJjNWU2LWZmZWUtNDc3Ny1iMGZkLWQwNjUxNDE4YWYyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba+yAgMA0GCSqGSIb3DQEBCwUAA4IBAQCLWoak/Ml4Np8Jjk5/ MHFPXsQLVza1hm5HWC3yoIBKNs3HJtEdzGcmdNeyCpvuiPpDoDDmugWR+GXqYvfv Co58sdNmyIOTv24wBw3Wf9oipITM3NEgy1sm/Ml95UDUJnqJR7gXlS+2gd81kcEb rh0cY5bWAUbXrPk6EaIlHaltAIXS9VW023xC/xKKxddrHqHvN4gHLpHF/UuMT9r7 YPiwErcLyQMsoptWYCYyF/xjsa+lR/7EWiW3rR/gLsR08oABFNfpPyD78+Rd4cEV Lu85YBkepHpsrWWGZgd5dwceeG42W1MixksCsPpzY5eOXOEr6261RaI3Tb7Uy4sO bBgo -----END CERTIFICATE-----Generated at Wed Feb 5 03:47:03 2025 by rpki-client