$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9b072caa-75fc-4171-a003-7c2d34288af7.roa File: 9b072caa-75fc-4171-a003-7c2d34288af7.roa (raw, json) Hash identifier: rqJmHc4p/K5Aw8ePshhwtrWYbzo1dXEQmrf1t2ykXkg= Subject key identifier: 7C:AF:E3:4C:BC:FE:EF:1A:FD:0F:2B:C9:8C:1E:23:BB:04:D5:2D:FA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 479733F6B3BD7B0481558264F360D22ABD723F27 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9b072caa-75fc-4171-a003-7c2d34288af7.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da18::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:97:33:f6:b3:bd:7b:04:81:55:82:64:f3:60:d2:2a:bd:72:3f:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:08:c2:fa:c0:e7:65:87:c1:90:71:36:4d:21: f5:88:d7:ca:7a:1a:72:50:af:c2:e8:c7:a0:6f:2c: 28:d8:bc:e2:30:6c:ff:e0:ff:d9:6f:00:21:e6:ac: 87:9b:5b:c2:83:6c:d3:d9:9f:8f:07:77:86:4b:21: ad:98:d8:cd:15:04:25:e6:c9:05:69:d9:8d:9c:ec: 13:14:3a:a8:79:63:42:5b:9a:d0:25:3b:b8:26:98: 66:a4:3a:28:4a:1f:d3:2c:69:22:10:60:aa:34:cb: 85:3e:87:16:c6:c8:20:fd:72:e4:da:ce:11:6e:58: 9b:50:ca:a5:57:1c:06:84:5b:0e:9e:dd:40:e4:eb: 10:87:7c:41:1d:6e:52:d6:94:35:e5:3c:79:99:39: ca:75:af:66:9d:21:71:3e:96:ea:b5:c2:54:17:6a: ec:fc:4d:d5:7f:42:0f:ad:1c:9b:41:ea:2b:2a:f2: df:c8:d1:64:6d:3e:9c:3d:65:44:10:1b:78:a5:31: 5d:69:57:6b:61:fd:69:61:81:29:08:4e:72:25:c7: 9d:8b:ed:99:e0:5e:ec:1e:ec:a6:da:a6:bd:98:be: d1:69:97:f7:95:e3:a3:81:f5:88:df:6e:92:a6:d7: e5:c0:68:d1:5e:9c:bf:4f:20:86:6c:98:96:0d:02: 63:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AF:E3:4C:BC:FE:EF:1A:FD:0F:2B:C9:8C:1E:23:BB:04:D5:2D:FA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9b072caa-75fc-4171-a003-7c2d34288af7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da18::/38 Signature Algorithm: sha256WithRSAEncryption 5a:c2:87:84:20:02:78:b2:0e:39:b4:42:01:b0:b1:44:65:07: 42:10:53:06:5c:0f:a6:2d:da:68:40:97:4f:b8:60:80:30:26: 27:6b:80:ad:72:ff:f9:00:78:54:08:1b:49:1c:bd:3b:69:a9: 87:9f:b7:05:46:da:02:96:b1:b4:20:9f:78:3f:38:26:f5:8e: 1a:00:c7:de:d4:d5:85:b1:cc:5c:06:10:9f:a6:36:e3:34:e6: 89:45:23:5d:6f:1d:47:5c:bf:4a:1d:4d:99:aa:d2:a4:51:f3: 2e:fe:6b:03:7e:a3:7a:d7:d5:f8:69:ff:6a:b5:7e:dd:61:bd: 7b:67:25:d0:0f:f4:93:66:ba:53:92:5c:1f:02:89:fd:3f:e5: d5:2a:bc:0a:17:a2:22:8b:65:67:f8:14:a1:96:b1:5d:cf:2f: 50:c2:fd:2c:a2:bd:17:83:e2:74:ea:c6:f2:cb:c1:2c:bf:aa: ae:01:14:4a:53:8d:4b:85:47:96:35:99:4b:2e:56:53:94:b9: 1e:1a:17:7f:28:9c:08:84:d4:88:a0:2e:dd:2f:c0:7a:27:96: 98:b3:e2:58:a2:e0:be:86:15:c8:be:9d:61:4a:58:d6:52:58: 40:01:2f:97:95:f0:77:b0:ac:a3:de:66:62:5d:47:05:67:6f: a6:c4:80:f8 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUR5cz9rO9ewSBVYJk82DSKr1yPycwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMzAwMDAwMFoX DTI1MDMxMDIzNTk1OVowejFJMEcGA1UEBRNAMGMxYTY2Njc4YjgwNjUzZmNkOTM1 NGViYjhhZmE5YWRkY2RjOTM5NGNjOTNkNGE1ZjgyYzg5MDgyOTU5ZDc0YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4QjC+sDnZYfBkHE2TSH1iNfKehpy UK/C6Megbywo2LziMGz/4P/ZbwAh5qyHm1vCg2zT2Z+PB3eGSyGtmNjNFQQl5skF admNnOwTFDqoeWNCW5rQJTu4JphmpDooSh/TLGkiEGCqNMuFPocWxsgg/XLk2s4R blibUMqlVxwGhFsOnt1A5OsQh3xBHW5S1pQ15Tx5mTnKda9mnSFxPpbqtcJUF2rs /E3Vf0IPrRybQeorKvLfyNFkbT6cPWVEEBt4pTFdaVdrYf1pYYEpCE5yJcedi+2Z 4F7sHuym2qa9mL7RaZf3leOjgfWI326SptflwGjRXpy/TyCGbJiWDQJjWwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHyv40y8/u8a/Q8ryYweI7sE1S36MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzliMDcyY2FhLTc1ZmMtNDE3MS1hMDAzLTdjMmQzNDI4OGFmNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaGAAwDQYJKoZIhvcNAQELBQADggEBAFrCh4QgAniyDjm0QgGw sURlB0IQUwZcD6Yt2mhAl0+4YIAwJidrgK1y//kAeFQIG0kcvTtpqYeftwVG2gKW sbQgn3g/OCb1jhoAx97U1YWxzFwGEJ+mNuM05olFI11vHUdcv0odTZmq0qRR8y7+ awN+o3rX1fhp/2q1ft1hvXtnJdAP9JNmulOSXB8Cif0/5dUqvAoXoiKLZWf4FKGW sV3PL1DC/SyivReD4nTqxvLLwSy/qq4BFEpTjUuFR5Y1mUsuVlOUuR4aF38onAiE 1IigLt0vwHonlpiz4lii4L6GFci+nWFKWNZSWEABL5eV8HewrKPeZmJdRwVnb6bE gPg= -----END CERTIFICATE-----Generated at Wed Feb 5 04:10:56 2025 by rpki-client