$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6018436a-9c1a-42cb-8584-15032be971bb.roa File: 6018436a-9c1a-42cb-8584-15032be971bb.roa (raw, json) Hash identifier: NaFTvyRJmkoIufqzMxn+pqtfgQHVZkcfHz+9zXUjLXs= Subject key identifier: B2:1A:62:F2:47:9A:C5:85:0E:A9:7A:37:67:1E:AD:00:A4:34:C0:9F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 79697BC085C4F458B43E672AAF29CD4EA2FFC702 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6018436a-9c1a-42cb-8584-15032be971bb.roa Signing time: Tue 18 Mar 2025 00:01:00 +0000 ROA not before: Tue 18 Mar 2025 00:01:00 +0000 ROA not after: Tue 22 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da24::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:69:7b:c0:85:c4:f4:58:b4:3e:67:2a:af:29:cd:4e:a2:ff:c7:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Mar 18 00:01:00 2025 GMT Not After : Apr 22 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:51:0a:61:17:d5:2d:0f:0d:fe:b4:6e:c2:39: ed:0b:60:35:dd:79:53:b2:af:ea:cf:10:eb:89:91: b0:2a:9b:90:43:38:ba:60:99:a8:c4:0d:11:07:a9: f6:1b:48:a0:2c:09:50:15:84:ab:6e:32:70:4e:3c: 8d:5f:ec:ae:9e:5a:d7:d9:46:91:cc:81:68:25:02: 17:56:8b:e2:a8:40:24:71:c1:bf:0f:73:91:6e:5f: f0:89:dd:e4:4a:49:e1:16:3f:a9:e1:cb:bf:ae:3a: 1a:5e:43:55:0c:c6:39:b3:81:2c:77:54:0c:66:12: 83:ea:32:59:ce:fd:a4:14:0e:7f:e9:e0:7e:ee:2c: 7b:5b:9c:ad:d4:7f:7d:19:6e:92:cd:9f:c4:42:52: 46:52:2b:b2:77:fc:de:d4:28:5b:57:b4:26:5c:f7: b7:07:8a:52:0b:c4:a2:67:c3:c8:54:24:9e:4f:8b: 6c:a8:25:e3:4e:1c:d9:73:cd:8b:73:a4:89:0a:cc: d3:42:ea:38:ce:4e:86:20:89:b6:cb:df:89:13:65: c7:83:3e:ea:38:1d:61:3f:9c:54:d5:0c:40:52:d9: 42:ee:e0:9e:51:08:3b:f1:cc:dd:14:f3:e8:1c:9d: f6:ea:45:58:c2:5c:88:3b:e3:5d:63:be:31:2b:22: ea:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1A:62:F2:47:9A:C5:85:0E:A9:7A:37:67:1E:AD:00:A4:34:C0:9F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6018436a-9c1a-42cb-8584-15032be971bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da24::/36 Signature Algorithm: sha256WithRSAEncryption 85:29:09:94:00:07:be:8a:6e:03:34:ae:50:52:33:99:a5:3f: 80:0d:70:54:89:8e:85:d2:58:07:db:80:f0:ee:37:45:fe:2f: ce:1c:e6:d4:55:91:4b:83:62:49:ee:86:f7:61:b6:a9:2c:f7: 66:29:34:61:3a:8e:ae:83:16:3b:ef:28:e9:d2:b0:dc:38:8a: 69:cd:6b:f5:0d:3f:53:af:65:f5:fd:a5:e7:b3:94:0e:e0:83: 58:82:b0:30:53:02:cf:ad:66:51:ed:67:45:e7:b6:a4:74:51: 38:89:c5:01:f7:76:28:dd:d9:22:19:44:5f:d1:c4:7f:8c:7d: ee:de:88:58:a8:6c:46:5a:11:79:0d:19:48:53:ea:0e:6f:c4: 86:c8:41:3c:ca:5a:72:2c:53:26:a9:17:14:61:95:5d:1f:bc: ee:3c:94:84:87:7e:49:02:8f:a7:2d:e6:6a:fc:01:c8:34:c6: 86:83:f6:c1:dc:56:2d:45:c2:ec:23:9f:15:7f:8d:11:b4:83: b8:c1:11:15:3d:01:11:d1:d8:45:11:9f:ea:79:75:9f:af:39: 46:74:65:27:12:b0:76:2a:f4:44:40:ce:8c:a4:18:3a:e7:a1: e2:16:4f:c4:7f:9f:7d:20:28:a7:81:4b:0e:fe:70:89:f9:41: e9:3f:fe:1d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUeWl7wIXE9Fi0PmcqrynNTqL/xwIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDMxODAwMDEwMFoX DTI1MDQyMjIzNTk1OVowejFJMEcGA1UEBRNAZmExYzRiZTAxODBiY2EzYjNkY2My MWU1NWEzOGZlNjNhNDA0NTA1YTQ5NmJmOWUxZTFiMzk3MDJmYzE3MTZiNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFEKYRfVLQ8N/rRuwjntC2A13XlT sq/qzxDriZGwKpuQQzi6YJmoxA0RB6n2G0igLAlQFYSrbjJwTjyNX+yunlrX2UaR zIFoJQIXVoviqEAkccG/D3ORbl/wid3kSknhFj+p4cu/rjoaXkNVDMY5s4Esd1QM ZhKD6jJZzv2kFA5/6eB+7ix7W5yt1H99GW6SzZ/EQlJGUiuyd/ze1ChbV7QmXPe3 B4pSC8SiZ8PIVCSeT4tsqCXjThzZc82Lc6SJCszTQuo4zk6GIIm2y9+JE2XHgz7q OB1hP5xU1QxAUtlC7uCeUQg78czdFPPoHJ326kVYwlyIO+NdY74xKyLqmwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLIaYvJHmsWFDql6N2cerQCkNMCfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYwMTg0MzZhLTljMWEtNDJjYi04NTg0LTE1MDMyYmU5NzFiYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaJAAwDQYJKoZIhvcNAQELBQADggEBAIUpCZQAB76KbgM0rlBS M5mlP4ANcFSJjoXSWAfbgPDuN0X+L84c5tRVkUuDYknuhvdhtqks92YpNGE6jq6D FjvvKOnSsNw4imnNa/UNP1OvZfX9peezlA7gg1iCsDBTAs+tZlHtZ0XntqR0UTiJ xQH3dijd2SIZRF/RxH+Mfe7eiFiobEZaEXkNGUhT6g5vxIbIQTzKWnIsUyapFxRh lV0fvO48lISHfkkCj6ct5mr8Acg0xoaD9sHcVi1FwuwjnxV/jRG0g7jBERU9ARHR 2EURn+p5dZ+vOUZ0ZScSsHYq9ERAzoykGDrnoeIWT8R/n30gKKeBSw7+cIn5Qek/ /h0= -----END CERTIFICATE-----Generated at Sat Apr 5 11:16:03 2025 by rpki-client