$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6847be47-f4ca-4d44-9aa3-778c0a0660b3.roa File: 6847be47-f4ca-4d44-9aa3-778c0a0660b3.roa (raw, json) Hash identifier: 4EbiDBvPTsUFb/sb59PTRabXD+v1Q5uqsYTcwPwVuB8= Subject key identifier: 3E:69:C9:7B:8B:5F:23:AC:87:4B:33:F9:69:BE:5B:7C:F0:2A:31:D7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4392087391FFDD65F9522B72D7C7866569E25E92 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6847be47-f4ca-4d44-9aa3-778c0a0660b3.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:92:08:73:91:ff:dd:65:f9:52:2b:72:d7:c7:86:65:69:e2:5e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e9:40:59:63:da:33:1c:4c:b7:51:1b:01:e1: 09:46:63:78:4d:46:5d:0c:2b:27:7b:14:91:ad:f7: 00:9d:d6:0d:0b:22:fb:9e:d3:56:0e:75:80:37:88: a2:bd:d0:01:4c:4d:66:8d:e2:6e:19:62:2a:36:7c: df:24:26:f3:96:fd:d2:b8:23:b9:30:2f:3d:42:ea: 4f:27:64:93:12:60:dc:12:b3:8e:9c:a1:aa:1d:ad: de:26:e3:4c:42:34:82:08:49:cb:58:6c:f4:ea:68: dd:d4:d3:19:8f:0d:39:40:ff:6f:8b:ba:80:b2:2a: 45:b0:32:37:ab:0e:02:e7:1f:17:ca:2f:a2:1c:3b: a4:81:ef:46:15:51:9b:a3:ac:38:96:d7:7b:1d:46: da:5c:2e:58:91:89:df:13:6f:9d:af:e1:3e:36:a9: 5f:6c:be:53:79:cc:f2:cf:e4:ef:f7:4f:e7:a2:7f: 1f:38:9d:93:3d:a7:32:65:ed:a7:c7:cf:6d:1b:45: 57:77:94:fb:d5:07:bb:98:36:bd:6c:3d:b6:6f:cc: ed:cf:08:a7:87:e6:2b:fb:46:3f:9e:91:95:31:d0: db:dd:e0:0a:dd:a5:84:44:74:1c:61:6d:d1:55:0d: 0c:47:3c:a3:b3:60:f5:6c:2e:11:df:d7:da:74:06: a1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:69:C9:7B:8B:5F:23:AC:87:4B:33:F9:69:BE:5B:7C:F0:2A:31:D7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6847be47-f4ca-4d44-9aa3-778c0a0660b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:840::/48 Signature Algorithm: sha256WithRSAEncryption c5:a7:56:8f:24:7d:db:02:fc:37:2a:84:98:0f:66:25:85:d3: 57:0e:90:22:7f:5b:83:3e:d9:d5:8d:03:13:a7:22:1f:e6:32: 59:ec:e5:b1:78:a8:9e:70:70:ef:ac:ef:00:d2:c8:ed:e2:78: ac:08:fe:ce:c7:4b:3d:1d:92:c8:ad:50:00:a8:96:f7:ae:19: fa:24:4b:e5:88:a4:5a:16:f2:9b:ce:55:95:45:71:d2:4f:f0: 4d:cb:72:17:f6:f3:ca:ae:37:2b:dc:b2:32:d4:65:7b:6a:43: 47:df:7a:31:6d:44:9a:80:16:54:c5:98:3f:45:d1:40:d6:e5: c3:2a:09:27:42:f8:c7:66:7a:5e:76:cd:ad:2a:39:c7:55:8c: bc:0c:5d:a0:fe:8b:6f:63:5d:c5:2f:84:c7:85:35:83:79:86: 74:c4:26:b6:38:92:34:ca:fa:8f:2e:19:dc:7c:ca:6f:d5:73: 2e:2b:fb:93:b5:84:8e:42:29:ee:34:00:01:af:f6:91:dc:e9: a6:76:50:cf:59:84:79:1c:14:61:78:fd:20:3c:ea:5b:e9:09: 3b:a7:c6:46:fc:9e:6b:34:fc:d2:7a:c5:93:db:d0:34:ce:90: d2:a9:86:e0:54:27:b8:3d:dc:09:e8:d8:33:4f:28:10:33:9f: 2f:67:e4:d7 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUQ5IIc5H/3WX5Uity18eGZWniXpIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMzAwMDAwMFoX DTI1MDMxMDIzNTk1OVowejFJMEcGA1UEBRNANjRkNjk4MmQ5OTY3MmQzYzhjZTYz MWU4YjI1ZjgwODU5MTA2NDNmOGQ1YjM0NWVmODg2MjA2NDkwYmM1MzM5ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ulAWWPaMxxMt1EbAeEJRmN4TUZd DCsnexSRrfcAndYNCyL7ntNWDnWAN4iivdABTE1mjeJuGWIqNnzfJCbzlv3SuCO5 MC89QupPJ2STEmDcErOOnKGqHa3eJuNMQjSCCEnLWGz06mjd1NMZjw05QP9vi7qA sipFsDI3qw4C5x8Xyi+iHDukge9GFVGbo6w4ltd7HUbaXC5YkYnfE2+dr+E+Nqlf bL5Teczyz+Tv90/non8fOJ2TPacyZe2nx89tG0VXd5T71Qe7mDa9bD22b8ztzwin h+Yr+0Y/npGVMdDb3eAK3aWERHQcYW3RVQ0MRzyjs2D1bC4R39fadAahiQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFD5pyXuLXyOsh0sz+Wm+W3zwKjHXMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzY4NDdiZTQ3LWY0Y2EtNGQ0NC05YWEzLTc3OGMwYTA2NjBiMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYQhAMA0GCSqGSIb3DQEBCwUAA4IBAQDFp1aPJH3bAvw3KoSY D2YlhdNXDpAif1uDPtnVjQMTpyIf5jJZ7OWxeKiecHDvrO8A0sjt4nisCP7Ox0s9 HZLIrVAAqJb3rhn6JEvliKRaFvKbzlWVRXHST/BNy3IX9vPKrjcr3LIy1GV7akNH 33oxbUSagBZUxZg/RdFA1uXDKgknQvjHZnpeds2tKjnHVYy8DF2g/otvY13FL4TH hTWDeYZ0xCa2OJI0yvqPLhncfMpv1XMuK/uTtYSOQinuNAABr/aR3OmmdlDPWYR5 HBRheP0gPOpb6Qk7p8ZG/J5rNPzSesWT29A0zpDSqYbgVCe4PdwJ6NgzTygQM58v Z+TX -----END CERTIFICATE-----Generated at Wed Feb 5 03:59:40 2025 by rpki-client