$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9a84c5fb-d075-40ae-afad-ad59b3e2ebf0.roa File: 9a84c5fb-d075-40ae-afad-ad59b3e2ebf0.roa (raw, json) Hash identifier: o6vLqLt77i6CNdDKzSSCNXZUD8F63MiKt+RQ4vUi54Q= Subject key identifier: FD:73:A3:92:0B:5D:59:CE:86:36:7A:DE:EF:AA:C2:AA:D3:94:7E:F7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5B90649C7E98890F33D9429DAB30E6F19AEB89EF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9a84c5fb-d075-40ae-afad-ad59b3e2ebf0.roa Signing time: Thu 16 Jan 2025 00:00:00 +0000 ROA not before: Thu 16 Jan 2025 00:00:00 +0000 ROA not after: Thu 20 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 43.210.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:90:64:9c:7e:98:89:0f:33:d9:42:9d:ab:30:e6:f1:9a:eb:89:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Jan 16 00:00:00 2025 GMT Not After : Feb 20 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:18:30:08:1d:7c:35:a2:e8:14:3c:3e:9b:07: e7:22:97:b4:30:48:99:69:b6:8c:bb:f4:52:70:d3: 5a:f3:f7:be:8c:81:18:a6:5c:43:9d:e1:1f:89:85: a7:e7:61:5c:96:43:98:f5:b2:d0:d4:e2:4f:57:32: 1f:a6:31:7d:16:93:a6:d3:b3:95:10:bb:f1:91:6c: ee:f1:58:31:fd:5f:37:40:f3:81:c6:95:b7:8e:04: cd:db:93:63:36:2b:a6:ef:a6:d6:07:69:7f:1c:71: c9:0c:ba:8b:48:d0:49:88:e6:d1:f1:40:36:66:de: 59:1e:e1:af:b8:23:38:20:bf:82:ac:55:7d:7f:db: 03:7c:45:ad:d1:d5:d7:ae:dd:a1:d0:ec:98:5e:91: f9:4e:d9:ce:81:6d:e3:c7:a8:90:80:dd:07:88:16: 5b:62:75:03:0f:eb:de:7b:55:c0:32:a3:f3:05:0b: 57:f2:c9:16:4b:3a:2c:43:ee:be:81:f8:4f:9a:f2: b9:89:42:27:ec:cf:ee:66:6c:dd:66:f1:34:31:04: 7b:b0:f6:0e:e7:37:af:e4:f2:37:4d:42:05:4b:29: ec:6b:48:7f:92:46:e1:b9:09:86:17:37:20:03:fa: a2:64:b0:c3:3e:6c:91:93:a4:fd:4e:34:b7:e0:df: 7c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:73:A3:92:0B:5D:59:CE:86:36:7A:DE:EF:AA:C2:AA:D3:94:7E:F7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9a84c5fb-d075-40ae-afad-ad59b3e2ebf0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.210.0.0/15 Signature Algorithm: sha256WithRSAEncryption 80:57:67:64:b8:8e:ef:a4:93:56:43:1c:2b:a4:62:2c:b0:e2: ca:a2:f5:83:0b:1b:46:4d:63:3f:98:f6:eb:f2:36:16:31:b5: b1:b0:bd:55:80:9a:9c:5b:67:b3:14:5f:3e:94:ef:cb:f9:4d: 7c:e8:69:3f:36:95:12:e7:50:7a:03:b0:bf:27:a0:44:d1:d4: c1:1f:aa:68:63:b2:85:8b:3b:9f:d9:f1:36:ba:2e:13:c8:66: 37:d5:0b:a5:7c:f8:e4:55:57:da:17:c7:7d:b4:17:5f:a9:ee: 40:13:2d:ea:3f:d6:7c:b4:b1:03:8a:67:60:87:7e:1b:6b:c4: bd:ae:04:58:82:6f:8a:e7:25:27:86:f4:f5:e2:9b:80:46:6a: 15:32:e5:5d:72:35:99:a2:31:7d:ae:cf:86:ab:00:67:26:c9: ac:bf:d3:14:ff:d7:48:e3:28:69:1b:af:e5:94:ae:aa:ad:36: 98:8f:30:41:c5:48:16:aa:d6:ff:dc:f9:05:d2:7a:60:18:92: bf:33:a5:60:77:d3:b0:91:41:55:c1:a3:28:12:5c:2b:c5:8d: f5:48:b1:93:3a:d8:a1:60:30:aa:12:71:62:a6:58:78:bc:c3: 58:8c:f3:47:16:c7:c4:24:8e:c9:ba:a4:29:c0:d3:60:e6:2f: b7:69:87:b3 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUW5BknH6YiQ8z2UKdqzDm8Zrrie8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDExNjAwMDAwMFoX DTI1MDIyMDIzNTk1OVowejFJMEcGA1UEBRNAZjYxMzFiOTRmMzY5MGFjZDhjNTlk MWU0YzY4MmFjNjc2MzIyOGIwMmJlOGZmYTVkNTI0ZDIzODcwOTc3OTM3NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyRgwCB18NaLoFDw+mwfnIpe0MEiZ abaMu/RScNNa8/e+jIEYplxDneEfiYWn52FclkOY9bLQ1OJPVzIfpjF9FpOm07OV ELvxkWzu8Vgx/V83QPOBxpW3jgTN25NjNium76bWB2l/HHHJDLqLSNBJiObR8UA2 Zt5ZHuGvuCM4IL+CrFV9f9sDfEWt0dXXrt2h0OyYXpH5TtnOgW3jx6iQgN0HiBZb YnUDD+vee1XAMqPzBQtX8skWSzosQ+6+gfhPmvK5iUIn7M/uZmzdZvE0MQR7sPYO 5zev5PI3TUIFSynsa0h/kkbhuQmGFzcgA/qiZLDDPmyRk6T9TjS34N98HQIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFP1zo5ILXVnOhjZ63u+qwqrTlH73MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhODRjNWZiLWQwNzUtNDBhZS1hZmFkLWFkNTliM2UyZWJmMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMBK9IwDQYJKoZIhvcNAQELBQADggEBAIBXZ2S4ju+kk1ZDHCukYiyw 4sqi9YMLG0ZNYz+Y9uvyNhYxtbGwvVWAmpxbZ7MUXz6U78v5TXzoaT82lRLnUHoD sL8noETR1MEfqmhjsoWLO5/Z8Ta6LhPIZjfVC6V8+ORVV9oXx320F1+p7kATLeo/ 1ny0sQOKZ2CHfhtrxL2uBFiCb4rnJSeG9PXim4BGahUy5V1yNZmiMX2uz4arAGcm yay/0xT/10jjKGkbr+WUrqqtNpiPMEHFSBaq1v/c+QXSemAYkr8zpWB307CRQVXB oygSXCvFjfVIsZM62KFgMKoScWKmWHi8w1iM80cWx8Qkjsm6pCnA02DmL7dph7M= -----END CERTIFICATE-----Generated at Wed Feb 5 03:53:25 2025 by rpki-client