$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aba2318c-e96a-4058-8e0c-5aca2b56aad9.roa File: aba2318c-e96a-4058-8e0c-5aca2b56aad9.roa (raw, json) Hash identifier: ZVMCFE2lFYjMMu4DN2Zj7vo7AQ8wucSZrfnhiorf6sE= Subject key identifier: 3E:E5:E1:27:A0:47:ED:70:35:97:6C:99:98:C4:86:CA:C9:B8:A0:59 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 730FA68B27F2820FEB7EB82002736DCCE61C7A9B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aba2318c-e96a-4058-8e0c-5aca2b56aad9.roa Signing time: Sat 15 Mar 2025 00:00:07 +0000 ROA not before: Sat 15 Mar 2025 00:00:07 +0000 ROA not after: Sat 19 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da32:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:0f:a6:8b:27:f2:82:0f:eb:7e:b8:20:02:73:6d:cc:e6:1c:7a:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Mar 15 00:00:07 2025 GMT Not After : Apr 19 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:0c:a8:93:7e:77:4e:30:aa:e7:60:b6:ec:46: 6a:ba:93:b4:93:7d:a7:07:69:81:b9:66:d0:fc:ff: 11:75:6b:38:5e:d8:d8:bc:7f:af:83:f7:bc:58:3a: 62:9a:a1:29:02:28:86:ec:43:fa:ad:9e:3f:3b:7d: 2b:13:f7:f6:0b:6b:ef:dd:8b:2f:b5:14:08:83:20: 12:29:0c:25:7a:f7:27:81:f4:2a:f9:07:fb:dd:e6: 51:89:a3:e0:64:56:93:be:2f:63:97:2a:fb:6b:36: ee:a5:31:c5:2d:54:5a:2f:e8:60:3d:cf:48:70:d2: f6:30:9e:e5:b0:31:b4:df:41:31:91:d6:24:8f:c6: 14:7a:3c:70:5b:1a:91:86:88:67:aa:02:05:ae:df: 58:20:ea:ae:58:24:8c:5a:7a:ac:e3:80:93:b0:71: 66:43:dc:03:5d:44:b5:4f:64:86:84:2a:f4:01:63: 5a:a7:9d:1c:ff:08:04:83:15:f0:fd:e2:d9:cf:f2: 3c:09:71:06:b8:01:e1:c9:76:1a:f0:86:61:23:d3: a3:0f:43:e3:b5:89:4b:0c:cf:6e:98:ed:62:bb:86: e7:e9:c2:74:a6:aa:00:0c:35:0d:2b:e1:79:a9:94: 56:d8:e7:ad:52:0d:ae:d4:da:ad:0d:21:e2:7a:b3: 8c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E5:E1:27:A0:47:ED:70:35:97:6C:99:98:C4:86:CA:C9:B8:A0:59 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aba2318c-e96a-4058-8e0c-5aca2b56aad9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da32:a000::/40 Signature Algorithm: sha256WithRSAEncryption ad:8b:59:47:15:df:73:b9:cc:c3:09:f9:71:b0:86:26:bf:ea: ef:b1:7d:d2:8d:7a:a1:27:04:f1:36:ac:7c:72:08:68:51:2f: b2:76:47:f7:3b:f0:c2:aa:df:c5:b3:0f:5a:7a:3c:2c:b9:74: 82:4f:cf:16:a1:13:b0:22:38:4d:da:3e:c8:e8:9d:f5:47:44: 61:08:7f:af:b1:c7:ab:22:ab:26:ff:9e:18:f8:26:57:30:13: 43:30:10:50:45:3b:cc:5b:8a:52:b1:22:9c:64:55:b0:34:b0: f5:c3:01:ee:55:ef:26:9f:ef:09:13:83:79:9b:40:58:d6:81: b0:dc:9f:7c:e4:8c:82:a6:c8:c6:c8:fe:a9:a5:8a:72:28:81: fb:c3:5c:3d:13:16:b3:45:49:02:95:b5:c2:a7:c4:66:82:6a: e0:ed:b9:34:58:17:ca:df:bd:3c:3c:89:f2:43:ad:4a:9d:e7: 50:4a:3a:4f:ee:2a:79:96:c9:ed:1b:d1:b7:37:0b:47:5d:9f: 87:5e:43:d2:92:a0:09:a8:40:c8:0f:c0:89:77:60:dd:81:59: 7b:45:41:fd:e5:39:b3:b3:0e:8c:31:1c:27:5a:05:9c:2c:f9: 76:2b:d3:ca:01:83:39:a4:41:33:17:4e:58:ca:da:78:1a:96: 62:6e:6a:a7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUcw+miyfygg/rfrggAnNtzOYcepswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDMxNTAwMDAwN1oX DTI1MDQxOTIzNTk1OVowejFJMEcGA1UEBRNAZGFlNzYzYTc5OGJjYzM3ZTE1ZjI5 NmJhNWI1YTY5ZDk1NGM1ZmE5NzdjNTA0MTMzOWU0NjVhOWU4MGUyZGU2MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgyok353TjCq52C27EZqupO0k32n B2mBuWbQ/P8RdWs4XtjYvH+vg/e8WDpimqEpAiiG7EP6rZ4/O30rE/f2C2vv3Ysv tRQIgyASKQwlevcngfQq+Qf73eZRiaPgZFaTvi9jlyr7azbupTHFLVRaL+hgPc9I cNL2MJ7lsDG030ExkdYkj8YUejxwWxqRhohnqgIFrt9YIOquWCSMWnqs44CTsHFm Q9wDXUS1T2SGhCr0AWNap50c/wgEgxXw/eLZz/I8CXEGuAHhyXYa8IZhI9OjD0Pj tYlLDM9umO1iu4bn6cJ0pqoADDUNK+F5qZRW2OetUg2u1NqtDSHierOMQQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFD7l4SegR+1wNZdsmZjEhsrJuKBZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FiYTIzMThjLWU5NmEtNDA1OC04ZTBjLTVhY2EyYjU2YWFkOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaMqAwDQYJKoZIhvcNAQELBQADggEBAK2LWUcV33O5zMMJ+XGw hia/6u+xfdKNeqEnBPE2rHxyCGhRL7J2R/c78MKq38WzD1p6PCy5dIJPzxahE7Ai OE3aPsjonfVHRGEIf6+xx6siqyb/nhj4JlcwE0MwEFBFO8xbilKxIpxkVbA0sPXD Ae5V7yaf7wkTg3mbQFjWgbDcn3zkjIKmyMbI/qmlinIogfvDXD0TFrNFSQKVtcKn xGaCauDtuTRYF8rfvTw8ifJDrUqd51BKOk/uKnmWye0b0bc3C0ddn4deQ9KSoAmo QMgPwIl3YN2BWXtFQf3lObOzDowxHCdaBZws+XYr08oBgzmkQTMXTljK2ngalmJu aqc= -----END CERTIFICATE-----Generated at Sat Apr 5 10:51:07 2025 by rpki-client