$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d6fe0f1-724c-4c3e-89cd-47a1c9a0efcf.roa File: 7d6fe0f1-724c-4c3e-89cd-47a1c9a0efcf.roa (raw, json) Hash identifier: ykkgHF+MTzNbxuA7eVIbMx/mvVgRKy8ovhNFcB/MhNA= Subject key identifier: 25:EE:9D:F1:C4:8B:CA:C8:D5:C5:5C:3C:79:7E:37:74:E1:44:3A:01 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 51137BD3D1E4B3A187F9775057CACFB5EE2E7C0E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d6fe0f1-724c-4c3e-89cd-47a1c9a0efcf.roa Signing time: Sat 22 Mar 2025 00:00:57 +0000 ROA not before: Sat 22 Mar 2025 00:00:57 +0000 ROA not after: Sat 26 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:13:7b:d3:d1:e4:b3:a1:87:f9:77:50:57:ca:cf:b5:ee:2e:7c:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Mar 22 00:00:57 2025 GMT Not After : Apr 26 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:33:6c:a4:ff:40:be:7a:23:6d:70:ec:f9:b0: c0:fb:9d:41:17:e2:dd:7f:8d:e1:6f:23:91:7f:e5: 7c:3d:cd:0b:66:da:95:8a:70:61:c0:0c:1c:b6:38: fc:ec:09:62:90:3f:00:93:4e:6c:35:14:5f:4a:06: 48:07:fd:e9:fa:35:24:50:98:0d:c6:b5:b2:3d:7e: ce:b9:10:2d:6d:f9:92:52:f2:97:ea:3e:ae:3e:8b: e3:85:6f:9b:9a:f0:71:62:cc:a7:af:5a:e0:5c:02: 36:df:1f:78:bd:b9:1d:c9:07:82:4b:10:c1:5c:f6: db:20:e8:76:05:17:c0:32:a5:8c:45:42:92:67:7c: 1a:1e:85:d5:e9:d9:09:04:5b:d8:8a:dd:9c:7c:9f: 6f:1e:f6:bb:aa:7b:f9:15:dc:c1:bc:2c:63:51:f5: a6:a0:d2:40:7b:5c:7e:8b:cc:79:a4:35:21:a5:15: 73:41:d2:cf:5b:a8:e6:bc:5d:50:af:e3:2c:ef:37: 24:4f:7e:01:62:8d:99:31:dc:22:bf:4c:56:33:f5: c1:d0:9b:15:e6:44:ff:5b:65:39:6b:12:e6:fe:de: 72:5a:14:cf:b3:ec:dc:b1:7c:37:e5:7c:d6:b7:be: fc:40:07:94:8c:25:b2:90:6d:8f:8f:4a:f8:67:8f: 1d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:EE:9D:F1:C4:8B:CA:C8:D5:C5:5C:3C:79:7E:37:74:E1:44:3A:01 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d6fe0f1-724c-4c3e-89cd-47a1c9a0efcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:6000::/48 Signature Algorithm: sha256WithRSAEncryption 80:9f:9f:c6:f6:82:80:64:47:6d:25:21:da:9a:e1:28:13:64: 27:14:32:e9:49:6b:c8:ab:da:52:3f:93:57:6a:de:71:ae:17: cc:03:78:88:0d:13:a9:b9:ff:f3:87:6e:6c:e1:c4:80:e8:15: 1c:ec:1c:b3:11:1f:88:ec:96:c0:f6:f1:fb:03:d1:29:29:60: 1f:53:fd:b6:fc:e2:83:b9:d9:cf:ec:ee:d4:35:30:f0:e4:ce: e6:35:2a:6b:c4:77:df:a4:fa:13:06:5e:04:eb:e8:3f:84:59: 4b:0a:43:3d:14:ff:72:eb:3c:b0:07:f2:06:1d:03:26:d8:90: 59:b2:ed:01:56:c5:80:52:d2:ab:f8:09:bf:ca:d4:c9:08:11: 5c:34:94:36:16:76:30:58:8d:fd:d5:72:5d:fb:e6:ee:b7:71: 1c:df:e2:62:68:cc:84:21:5f:a8:49:b4:f5:c7:e3:41:bf:21: 91:3a:e4:04:97:99:40:57:c5:44:57:f1:82:62:dc:20:6a:e0: 23:7c:ae:c8:40:f8:c5:12:e3:e6:3a:a6:26:49:82:84:5e:f5: 92:49:be:34:c8:08:1a:60:f0:83:98:da:01:d6:c7:20:bd:b6: 18:a9:05:1c:ec:4d:c1:7e:11:84:45:83:3d:35:d5:f7:56:d8: 4e:db:24:f3 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUURN709Hks6GH+XdQV8rPte4ufA4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDMyMjAwMDA1N1oX DTI1MDQyNjIzNTk1OVowejFJMEcGA1UEBRNAZTQ4Yjk5YTdlYzY1MWE5MGVjMmY3 ZjFiZWE1ODM0NzkzNGJlYzhkZTcyYThkNTQyOWUzYTVhNWY5MmFjZDBkMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszNspP9AvnojbXDs+bDA+51BF+Ld f43hbyORf+V8Pc0LZtqVinBhwAwctjj87AlikD8Ak05sNRRfSgZIB/3p+jUkUJgN xrWyPX7OuRAtbfmSUvKX6j6uPovjhW+bmvBxYsynr1rgXAI23x94vbkdyQeCSxDB XPbbIOh2BRfAMqWMRUKSZ3waHoXV6dkJBFvYit2cfJ9vHva7qnv5FdzBvCxjUfWm oNJAe1x+i8x5pDUhpRVzQdLPW6jmvF1Qr+Ms7zckT34BYo2ZMdwiv0xWM/XB0JsV 5kT/W2U5axLm/t5yWhTPs+zcsXw35XzWt778QAeUjCWykG2Pj0r4Z48d6QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCXunfHEi8rI1cVcPHl+N3ThRDoBMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdkNmZlMGYxLTcyNGMtNGMzZS04OWNkLTQ3YTFjOWEwZWZjZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9mAAMA0GCSqGSIb3DQEBCwUAA4IBAQCAn5/G9oKAZEdtJSHa muEoE2QnFDLpSWvIq9pSP5NXat5xrhfMA3iIDROpuf/zh25s4cSA6BUc7ByzER+I 7JbA9vH7A9EpKWAfU/22/OKDudnP7O7UNTDw5M7mNSprxHffpPoTBl4E6+g/hFlL CkM9FP9y6zywB/IGHQMm2JBZsu0BVsWAUtKr+Am/ytTJCBFcNJQ2FnYwWI391XJd ++but3Ec3+JiaMyEIV+oSbT1x+NBvyGROuQEl5lAV8VEV/GCYtwgauAjfK7IQPjF EuPmOqYmSYKEXvWSSb40yAgaYPCDmNoB1scgvbYYqQUc7E3BfhGERYM9NdX3VthO 2yTz -----END CERTIFICATE-----Generated at Sat Apr 5 10:51:02 2025 by rpki-client