$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/797893b8-c104-4c3c-a4c9-4fe82cad340d.roa File: 797893b8-c104-4c3c-a4c9-4fe82cad340d.roa (raw, json) Hash identifier: 1eEQnZa3JFOVziFP76fvwDTAuZRDuvZuilmeiCmYUFI= Subject key identifier: 55:71:60:5F:DD:30:70:B5:D7:DF:41:22:4D:ED:31:03:F5:3D:8B:7C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 773D9A2CE9C0A4205C2D86DEAF6E98D4737FF9DC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/797893b8-c104-4c3c-a4c9-4fe82cad340d.roa Signing time: Sat 01 Feb 2025 00:00:00 +0000 ROA not before: Sat 01 Feb 2025 00:00:00 +0000 ROA not after: Sat 08 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:8840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3d:9a:2c:e9:c0:a4:20:5c:2d:86:de:af:6e:98:d4:73:7f:f9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 1 00:00:00 2025 GMT Not After : Mar 8 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:79:94:15:41:2a:cc:a5:31:45:46:46:da:36: 9a:95:b9:8d:60:2e:f8:cd:26:c3:32:01:bf:6c:9a: 2a:28:ec:0b:09:5b:5f:72:df:fb:7c:bf:fe:b5:00: 46:93:64:85:98:c0:63:f4:51:6c:51:f2:62:2c:e1: 65:18:79:e4:58:12:3a:f9:30:56:32:da:a8:bf:78: 15:15:2e:36:b1:b7:82:d8:9e:55:bc:78:11:77:14: 3e:d5:b8:e2:85:bb:b8:64:36:e8:4a:f6:af:06:10: 93:44:23:59:30:71:77:44:2f:0c:96:c5:74:6a:40: 1e:70:70:12:ff:0e:5d:c9:8f:d5:25:ac:d1:dd:c4: ed:96:5f:6d:86:84:09:64:60:ec:b4:08:8f:0a:0f: e7:03:fd:bd:92:39:e7:3a:cc:53:e6:63:80:93:6c: b0:06:32:dd:97:c9:17:35:a9:34:13:a6:aa:c1:37: b7:c3:70:ca:25:8f:f0:8c:c5:e8:39:39:10:7a:76: ce:70:89:c8:be:18:7d:13:30:da:90:cc:f4:a2:66: ad:b1:e7:aa:51:53:39:69:25:58:4d:70:38:97:52: 4d:3a:af:23:54:97:d6:63:72:4c:9d:70:12:83:dc: ff:79:e7:0d:04:5a:9f:e9:b6:47:7e:05:93:20:ea: fd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:71:60:5F:DD:30:70:B5:D7:DF:41:22:4D:ED:31:03:F5:3D:8B:7C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/797893b8-c104-4c3c-a4c9-4fe82cad340d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:8840::/48 Signature Algorithm: sha256WithRSAEncryption 1e:12:05:97:6e:cf:44:07:b1:0e:9e:bd:cb:b1:a2:40:a0:d5: 6e:94:df:e2:70:23:f3:f2:49:50:73:c9:0b:32:f6:2f:75:06: 6a:e0:6f:e2:92:ef:55:25:22:19:b8:d7:c3:01:4c:bc:2a:47: fc:28:21:65:8a:70:59:52:09:08:ea:2c:01:44:b0:e1:21:09: fc:61:35:96:40:99:62:20:a5:4e:6c:38:98:e5:09:bf:77:3d: 03:b2:fa:bd:4c:5a:35:c8:ac:dc:08:25:a4:c0:fd:cb:cf:3c: d6:29:c5:b5:5c:5d:2d:0a:f4:9c:60:90:eb:8c:23:82:7a:f3: 7e:f7:82:60:5a:04:8f:28:98:12:be:2f:11:b6:58:f2:4b:ce: 4a:3c:66:82:a5:3e:e3:38:4e:97:38:36:08:b1:60:b2:f1:04: 58:0b:01:a2:e5:2a:18:c9:2b:e5:05:4d:76:bf:9c:13:cf:d9: 60:a5:86:47:40:91:58:fd:da:98:f2:95:11:9c:22:db:fe:e9: 81:e3:ce:8f:6e:c2:80:91:5e:c8:5c:aa:64:80:d0:73:31:e3: d0:24:cc:b2:9d:1d:ef:f9:7c:15:10:be:7a:f5:2d:cc:74:4f: bb:4e:6f:ca:19:ad:8c:17:dd:a6:58:19:7f:48:67:3b:fe:2b: 7d:fd:80:04 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdz2aLOnApCBcLYber26Y1HN/+dwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMTAwMDAwMFoX DTI1MDMwODIzNTk1OVowejFJMEcGA1UEBRNAODE2MWMwMTliNzUyOGFjOTRmZGU5 YzIwNDM4ODIzNGE1MmIzN2Y3ZDMwYTI3ZjhkYmU0YjNiZjUyZTdhYjZhOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnmUFUEqzKUxRUZG2jaalbmNYC74 zSbDMgG/bJoqKOwLCVtfct/7fL/+tQBGk2SFmMBj9FFsUfJiLOFlGHnkWBI6+TBW Mtqov3gVFS42sbeC2J5VvHgRdxQ+1bjihbu4ZDboSvavBhCTRCNZMHF3RC8MlsV0 akAecHAS/w5dyY/VJazR3cTtll9thoQJZGDstAiPCg/nA/29kjnnOsxT5mOAk2yw BjLdl8kXNak0E6aqwTe3w3DKJY/wjMXoOTkQenbOcInIvhh9EzDakMz0omatseeq UVM5aSVYTXA4l1JNOq8jVJfWY3JMnXASg9z/eecNBFqf6bZHfgWTIOr98QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFVxYF/dMHC1199BIk3tMQP1PYt8MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc5Nzg5M2I4LWMxMDQtNGMzYy1hNGM5LTRmZTgyY2FkMzQwZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYYhAMA0GCSqGSIb3DQEBCwUAA4IBAQAeEgWXbs9EB7EOnr3L saJAoNVulN/icCPz8klQc8kLMvYvdQZq4G/iku9VJSIZuNfDAUy8Kkf8KCFlinBZ UgkI6iwBRLDhIQn8YTWWQJliIKVObDiY5Qm/dz0Dsvq9TFo1yKzcCCWkwP3LzzzW KcW1XF0tCvScYJDrjCOCevN+94JgWgSPKJgSvi8RtljyS85KPGaCpT7jOE6XODYI sWCy8QRYCwGi5SoYySvlBU12v5wTz9lgpYZHQJFY/dqY8pURnCLb/umB486PbsKA kV7IXKpkgNBzMePQJMyynR3v+XwVEL569S3MdE+7Tm/KGa2MF92mWBl/SGc7/it9 /YAE -----END CERTIFICATE-----Generated at Wed Feb 5 04:02:01 2025 by rpki-client