$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa File: a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa (raw, json) Hash identifier: Fs2Je8Tocqw3kz8/SFMbqENqeilzuQx28U1e/LApMNM= Subject key identifier: 15:50:FD:01:4B:D0:10:7E:69:30:E8:95:11:3A:50:DE:E3:78:58:FB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2DF5329DCA01DB7AE1E141EF990A9F32CD1EAB81 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da21::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 00:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:f5:32:9d:ca:01:db:7a:e1:e1:41:ef:99:0a:9f:32:cd:1e:ab:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b2:68:ca:06:f5:b1:32:b9:59:dd:67:a3:17: a7:33:bf:54:6b:50:5b:dd:c8:1b:86:a6:68:37:9e: 16:7c:06:41:16:ca:3f:fd:41:20:39:1a:a1:d6:17: c0:9b:0f:8b:10:68:09:a7:f0:5f:66:b8:2d:fd:49: 2f:8f:4b:84:a3:12:37:e2:c7:24:43:d6:f1:8b:4a: cb:e4:60:d6:ac:b3:f0:f9:de:5c:23:2b:85:83:89: b6:0a:3e:bc:a4:75:e0:91:64:b5:9d:1f:b2:3f:87: 68:90:44:c4:3f:1f:8e:f6:2f:24:fc:36:c5:30:ee: e5:5c:ba:fa:4b:fe:51:52:3d:69:a4:46:d4:c3:9e: 4b:58:63:75:2b:29:81:6c:de:88:f3:f0:47:94:e7: 79:22:58:79:91:17:d5:96:2d:70:20:23:9b:8d:e9: 3f:20:0f:00:7b:bb:f7:68:1d:4c:82:9e:a0:9a:21: f5:8a:f2:d0:ac:3d:b9:fc:99:cb:8e:ed:c9:e7:02: 54:f9:bf:ff:92:cd:6c:df:53:ee:96:bd:a7:80:94: 05:8f:4a:1c:79:17:51:39:ed:8b:16:d6:ac:0c:00: 61:77:4b:80:fd:5c:be:fc:8c:b3:f0:b1:67:d2:be: 97:62:c4:29:d1:ed:73:a3:0b:2d:4d:c2:87:06:4e: ba:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:50:FD:01:4B:D0:10:7E:69:30:E8:95:11:3A:50:DE:E3:78:58:FB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da21::/36 Signature Algorithm: sha256WithRSAEncryption 2f:70:d7:38:ec:7e:33:6f:f8:1d:55:a5:c6:09:e8:3a:15:04: 57:0d:70:e1:71:8d:57:9e:a8:11:0f:23:ca:1b:e5:39:43:cc: d4:21:a1:c9:3b:c9:58:e0:d5:0c:30:de:dd:0d:1a:c7:9d:39: f1:8c:60:07:d5:dc:70:3a:68:9b:39:ff:9a:25:6d:59:0d:e7: 7f:13:2f:6c:d5:21:35:95:8a:78:a3:83:ab:14:97:ff:e1:96: 61:91:e3:a8:26:64:7b:9a:9f:ce:60:6c:ec:14:c6:49:38:83: 1e:13:b9:b3:26:97:3a:0d:fb:45:00:08:cc:75:3e:bc:0c:c5: d4:9e:1f:90:3a:e2:ca:ec:d7:6f:e4:b7:83:ce:8f:04:53:56: 1f:b5:76:0f:d5:5d:e3:ea:f6:ee:ca:dc:61:0f:cf:68:32:00: 4d:f0:7d:2c:97:7e:b0:74:dc:e3:dd:e5:c8:82:5a:8d:dd:fe: 75:37:57:fa:0e:cb:d2:ec:88:71:c2:09:63:fe:7d:62:fd:b8: c7:b6:fb:17:92:7b:36:a4:73:d9:6d:19:f0:ba:c7:82:6e:a8: 8c:7f:0a:d8:cf:9b:3f:38:6e:98:ba:3e:b6:72:ce:0b:e8:09: 25:2b:fa:eb:71:13:53:39:40:71:7b:43:36:ea:e9:f6:44:65: d5:e0:d6:97 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIULfUyncoB23rh4UHvmQqfMs0eq4EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDEyNzAwMDAwMFoX DTI1MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAZTA4Nzk2N2M4ZDkzZTc0YjI0ZTFm ZGQwYjc4NDNmMjcxOGJmODNhNDE0MWY3ZTFmYjRhZmM0N2RjZjc4NDYwMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbJoygb1sTK5Wd1noxenM79Ua1Bb 3cgbhqZoN54WfAZBFso//UEgORqh1hfAmw+LEGgJp/BfZrgt/Ukvj0uEoxI34sck Q9bxi0rL5GDWrLPw+d5cIyuFg4m2Cj68pHXgkWS1nR+yP4dokETEPx+O9i8k/DbF MO7lXLr6S/5RUj1ppEbUw55LWGN1KymBbN6I8/BHlOd5Ilh5kRfVli1wICObjek/ IA8Ae7v3aB1Mgp6gmiH1ivLQrD25/JnLju3J5wJU+b//ks1s31Pulr2ngJQFj0oc eRdROe2LFtasDABhd0uA/Vy+/Iyz8LFn0r6XYsQp0e1zowstTcKHBk66awIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBVQ/QFL0BB+aTDolRE6UN7jeFj7MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EyNTE0ZmUzLTU3NzktNDE3NC1iYTYyLTJhMTllMGM3ZGRmOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIQAwDQYJKoZIhvcNAQELBQADggEBAC9w1zjsfjNv+B1VpcYJ 6DoVBFcNcOFxjVeeqBEPI8ob5TlDzNQhock7yVjg1Qww3t0NGsedOfGMYAfV3HA6 aJs5/5olbVkN538TL2zVITWVinijg6sUl//hlmGR46gmZHuan85gbOwUxkk4gx4T ubMmlzoN+0UACMx1PrwMxdSeH5A64srs12/kt4POjwRTVh+1dg/VXePq9u7K3GEP z2gyAE3wfSyXfrB03OPd5ciCWo3d/nU3V/oOy9LsiHHCCWP+fWL9uMe2+xeSezak c9ltGfC6x4JuqIx/CtjPmz84bpi6PrZyzgvoCSUr+utxE1M5QHF7Qzbq6fZEZdXg 1pc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:15:25 2025 by rpki-client