$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e02e531-f45f-49be-9529-f33d23fae32e.roa File: 6e02e531-f45f-49be-9529-f33d23fae32e.roa (raw, json) Hash identifier: 1Nk5xRkGxL8BO1+OweTECaFicCLjTon6gWoEmmj76dM= Subject key identifier: 9F:E2:27:A9:4F:2A:D5:B6:F4:86:1F:B1:52:25:66:53:C7:81:B9:3A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 47621F3A8328DA79710638E09C72A7C869E498F3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e02e531-f45f-49be-9529-f33d23fae32e.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf7:80c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:62:1f:3a:83:28:da:79:71:06:38:e0:9c:72:a7:c8:69:e4:98:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:08:ed:7a:71:ba:66:3c:bc:e7:34:14:3e:5e: de:52:51:2f:17:ce:86:0d:27:67:1c:ac:d2:38:27: ab:4d:c6:8b:fc:fe:83:75:53:cb:bc:69:a3:f4:fe: 56:80:0d:98:83:ec:ec:a0:d8:e3:d8:78:78:79:8c: b3:2d:be:97:cb:64:17:bb:80:48:b8:76:f3:c9:02: 2d:ff:49:46:d3:d1:3b:dc:bd:20:ee:99:4e:24:62: f9:b7:12:bc:ab:05:6a:e2:1a:56:54:79:1c:28:29: 1c:f2:1d:2a:6d:bb:a9:91:f0:d3:7b:c7:18:25:0c: 79:ef:af:7c:4f:25:40:97:67:3e:4f:00:f3:b6:df: f7:c9:16:67:b6:39:23:d0:35:19:3e:5b:40:01:a5: f0:6b:8d:0c:f1:8e:93:99:56:a2:af:46:7a:19:59: 8b:98:1b:88:f1:0f:b7:6e:0d:f1:06:f4:14:97:79: 08:ca:9b:79:dd:eb:b3:9a:82:94:ee:7c:ae:15:3d: 80:4e:c4:bf:15:ee:b3:8e:1b:ed:7b:41:15:28:c4: 10:38:9a:e3:c7:44:77:56:28:b7:cf:b4:68:4e:b9: 8d:2e:df:9a:ea:5f:5f:c2:a7:ab:fb:cb:85:e0:e6: 13:f0:0d:3f:14:4e:a0:60:40:a1:4a:12:a1:71:a7: e4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E2:27:A9:4F:2A:D5:B6:F4:86:1F:B1:52:25:66:53:C7:81:B9:3A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e02e531-f45f-49be-9529-f33d23fae32e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf7:80c0::/46 Signature Algorithm: sha256WithRSAEncryption a2:cb:9e:6f:1b:80:78:eb:08:0b:8f:c0:0e:ed:4b:49:07:ac: cd:c5:c8:32:bd:b6:47:f7:d7:6e:86:d5:ca:ec:bc:a7:f4:4c: 63:dd:4e:6e:b3:8d:98:bc:3e:ba:2b:d2:34:e8:ba:a2:57:2a: d5:23:91:8f:25:72:2e:d0:ec:11:71:0f:c0:ad:64:00:f2:9c: 0e:a6:e7:c3:51:06:e9:85:04:9f:be:49:4e:82:aa:54:e2:53: 15:36:8a:73:3d:44:bb:e6:d8:1f:b5:4c:7e:1d:c3:53:ca:bf: 3d:98:b9:ae:3e:79:3e:58:30:f7:a5:ba:c1:56:90:a3:42:19: 3b:93:01:47:fd:16:57:e7:2f:e7:9b:10:80:f3:2b:32:99:47: 7a:58:d7:bb:17:d4:12:61:04:96:30:0e:c2:c8:69:77:26:9c: b0:60:55:5c:79:1b:32:45:e6:07:8d:6a:21:ef:29:17:4d:b5: 3f:4d:98:4c:9a:cd:26:df:52:13:cb:b0:2e:38:e4:ed:f3:9a: de:be:06:20:fa:c9:a3:a5:8a:26:95:28:b5:9d:a8:2e:4d:79: 95:6d:77:55:65:13:e1:23:3d:d7:7a:40:89:bd:bc:3b:f6:fc: bc:11:53:d5:7f:28:08:52:7a:5e:0d:3f:47:36:4e:75:23:13: cc:bc:aa:35 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUR2IfOoMo2nlxBjjgnHKnyGnkmPMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMzAwMDAwMFoX DTI1MDMxMDIzNTk1OVowejFJMEcGA1UEBRNANzhkMTU0NTQwMDgwZDhhNjRhMjMw MWEwODJlYWE2NWJlYjAyYTdiZGFhNjg4YzZiNDAzYmM1YjEwZDE3MzcwOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgjtenG6Zjy85zQUPl7eUlEvF86G DSdnHKzSOCerTcaL/P6DdVPLvGmj9P5WgA2Yg+zsoNjj2Hh4eYyzLb6Xy2QXu4BI uHbzyQIt/0lG09E73L0g7plOJGL5txK8qwVq4hpWVHkcKCkc8h0qbbupkfDTe8cY JQx57698TyVAl2c+TwDztt/3yRZntjkj0DUZPltAAaXwa40M8Y6TmVair0Z6GVmL mBuI8Q+3bg3xBvQUl3kIypt53euzmoKU7nyuFT2ATsS/Fe6zjhvte0EVKMQQOJrj x0R3Vii3z7RoTrmNLt+a6l9fwqer+8uF4OYT8A0/FE6gYEChShKhcafk7wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJ/iJ6lPKtW29IYfsVIlZlPHgbk6MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZlMDJlNTMxLWY0NWYtNDliZS05NTI5LWYzM2QyM2ZhZTMyZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba94DAMA0GCSqGSIb3DQEBCwUAA4IBAQCiy55vG4B46wgLj8AO 7UtJB6zNxcgyvbZH99duhtXK7Lyn9Exj3U5us42YvD66K9I06LqiVyrVI5GPJXIu 0OwRcQ/ArWQA8pwOpufDUQbphQSfvklOgqpU4lMVNopzPUS75tgftUx+HcNTyr89 mLmuPnk+WDD3pbrBVpCjQhk7kwFH/RZX5y/nmxCA8ysymUd6WNe7F9QSYQSWMA7C yGl3JpywYFVceRsyReYHjWoh7ykXTbU/TZhMms0m31ITy7AuOOTt85revgYg+smj pYomlSi1naguTXmVbXdVZRPhIz3XekCJvbw79vy8EVPVfygIUnpeDT9HNk51IxPM vKo1 -----END CERTIFICATE-----Generated at Wed Feb 5 04:02:04 2025 by rpki-client