$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9771a9b1-0ca1-4d5c-aabf-23e3c1aeecb3.roa File: 9771a9b1-0ca1-4d5c-aabf-23e3c1aeecb3.roa (raw, json) Hash identifier: v79sZvLToyZGvClEnlhTIGyHTECtKgDWKYN5yEpmxsE= Subject key identifier: 26:67:70:8C:65:A9:3D:F2:02:9C:DE:0E:22:57:9D:34:53:54:A2:34 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 737805C2B6A9E02EB916E70A721F41217A03DBB2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9771a9b1-0ca1-4d5c-aabf-23e3c1aeecb3.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1a:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:78:05:c2:b6:a9:e0:2e:b9:16:e7:0a:72:1f:41:21:7a:03:db:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4f:27:82:da:11:0d:c7:af:0b:5a:ad:f4:0f: da:6d:6f:63:66:b4:99:61:e8:ab:64:f4:0d:66:fd: e3:37:08:c0:23:53:a6:b8:f6:8c:e8:8a:46:45:ec: 9c:29:dc:b3:27:3f:41:81:3e:a2:90:58:36:dc:82: 0e:ad:1b:9d:8f:b8:b9:69:22:c4:b5:66:80:35:0a: f2:5d:15:6c:a8:ab:fa:3a:ef:51:fd:29:60:53:44: f4:7e:42:45:cc:6b:6d:64:c2:e4:f0:ec:85:b5:87: cb:b2:91:a9:42:ab:c3:a0:93:a7:db:c3:de:ef:be: 0e:78:63:ae:40:30:00:90:4c:fe:6f:f6:0a:23:f6: a2:84:ba:1e:93:fa:40:34:dd:56:91:0a:ed:ba:cc: 50:64:c1:04:cb:a3:4b:f6:c7:e1:37:e3:73:81:9c: 5d:39:5f:eb:60:2b:9f:f6:2e:2e:81:dc:f0:24:7a: d0:cb:3f:17:ae:43:fb:89:7c:c6:22:e2:0c:f0:d1: bb:8e:be:b5:e2:7b:1b:d9:01:7c:f9:a5:11:4d:61: ae:3d:b7:22:02:d8:1e:4c:2e:73:08:96:8e:3c:bd: 5d:88:8f:69:ff:f0:24:d2:8b:2f:48:17:20:ab:a8: e4:0c:78:ce:5d:46:dd:e4:74:93:c5:b6:15:a8:e3: fc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:67:70:8C:65:A9:3D:F2:02:9C:DE:0E:22:57:9D:34:53:54:A2:34 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9771a9b1-0ca1-4d5c-aabf-23e3c1aeecb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1a:800::/38 Signature Algorithm: sha256WithRSAEncryption 25:e1:0f:f9:5c:74:04:99:21:b1:1e:17:68:22:e8:3b:29:8a: 3d:69:3a:ba:21:84:55:25:56:99:2e:9e:50:73:73:f7:04:5a: c8:e7:08:b4:34:a7:a2:98:c2:50:88:7f:57:96:62:1b:60:92: ae:ad:02:eb:87:26:13:28:0c:b4:a4:b1:54:cc:a7:c8:ea:49: ee:e8:f7:cf:27:2f:76:5e:d5:34:96:e0:0a:20:0c:cd:a2:70: 8a:dc:dd:03:a0:11:7f:17:76:47:35:61:01:82:38:c4:80:14: 48:6e:c0:fa:78:3e:e6:63:bd:ce:5a:60:b2:f5:b9:a9:d3:55: 5a:99:a6:1d:cb:3c:5f:72:25:62:a2:47:13:24:0a:5a:3b:d2: e6:74:b2:e9:c8:d1:86:2b:6a:05:53:43:e4:7e:6a:b2:c5:4d: da:f1:f9:cc:9d:0b:16:11:bf:d8:82:30:56:4f:fa:40:49:67: 90:73:12:54:da:3d:f8:12:a9:d9:b0:e8:b8:da:8c:00:65:11: fd:57:a6:97:98:92:11:e5:22:2f:b4:47:02:14:df:8c:a4:57: a8:fe:24:ad:33:39:00:13:9d:0d:d1:eb:c4:b4:ba:e0:80:0f: 7b:c9:21:56:0a:58:0f:9c:74:db:33:ef:ef:25:c3:70:93:36: e9:77:b5:b9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUc3gFwrap4C65FucKch9BIXoD27IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMzAwMDAwMFoX DTI1MDMxMDIzNTk1OVowejFJMEcGA1UEBRNAZjYxYzk2MWU3YzcxYjk1MTEyYzlk YTMzZjE2NDE0ZTZlZjI5ZjgzZGNlMjkwNDVjMDIzYWU3MmIyNmY4YzdmZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqE8ngtoRDcevC1qt9A/abW9jZrSZ YeirZPQNZv3jNwjAI1OmuPaM6IpGReycKdyzJz9BgT6ikFg23IIOrRudj7i5aSLE tWaANQryXRVsqKv6Ou9R/SlgU0T0fkJFzGttZMLk8OyFtYfLspGpQqvDoJOn28Pe 774OeGOuQDAAkEz+b/YKI/aihLoek/pANN1WkQrtusxQZMEEy6NL9sfhN+NzgZxd OV/rYCuf9i4ugdzwJHrQyz8XrkP7iXzGIuIM8NG7jr614nsb2QF8+aURTWGuPbci AtgeTC5zCJaOPL1diI9p//Ak0osvSBcgq6jkDHjOXUbd5HSTxbYVqOP8nwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCZncIxlqT3yApzeDiJXnTRTVKI0MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3NzFhOWIxLTBjYTEtNGQ1Yy1hYWJmLTIzZTNjMWFlZWNiMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaGggwDQYJKoZIhvcNAQELBQADggEBACXhD/lcdASZIbEeF2gi 6Dspij1pOrohhFUlVpkunlBzc/cEWsjnCLQ0p6KYwlCIf1eWYhtgkq6tAuuHJhMo DLSksVTMp8jqSe7o988nL3Ze1TSW4AogDM2icIrc3QOgEX8Xdkc1YQGCOMSAFEhu wPp4PuZjvc5aYLL1uanTVVqZph3LPF9yJWKiRxMkClo70uZ0sunI0YYragVTQ+R+ arLFTdrx+cydCxYRv9iCMFZP+kBJZ5BzElTaPfgSqdmw6LjajABlEf1XppeYkhHl Ii+0RwIU34ykV6j+JK0zOQATnQ3R68S0uuCAD3vJIVYKWA+cdNsz7+8lw3CTNul3 tbk= -----END CERTIFICATE-----Generated at Wed Feb 5 04:06:37 2025 by rpki-client