$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/acf96eac-505d-42a3-ad3b-20402c0f43ed.roa File: acf96eac-505d-42a3-ad3b-20402c0f43ed.roa (raw, json) Hash identifier: jEYi4KiMel0/3OvpCKIYJcDVtfjgj6Y+kvb2kG9j9pk= Subject key identifier: 0F:72:80:DD:FE:43:6C:0D:78:D2:A7:2D:02:0F:59:A6:7F:42:7E:F6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 35957BC10F812347ABB5DE93E5151BE4DF3E396D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/acf96eac-505d-42a3-ad3b-20402c0f43ed.roa Signing time: Sat 01 Mar 2025 00:20:37 +0000 ROA not before: Sat 01 Mar 2025 00:20:37 +0000 ROA not after: Sat 05 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1d::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 16:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:95:7b:c1:0f:81:23:47:ab:b5:de:93:e5:15:1b:e4:df:3e:39:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Mar 1 00:20:37 2025 GMT Not After : Apr 5 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6c:8b:12:e2:e6:f1:10:2c:22:f3:db:46:f3: 68:89:a3:cc:4a:0e:f6:db:f9:0a:e0:52:68:fc:08: ab:3b:8c:94:4c:78:76:bc:e1:ce:85:56:bb:de:f2: 32:cb:f2:b2:94:e6:d0:56:ee:ac:b5:48:77:f2:e5: 4b:bc:94:43:13:cd:69:a8:ea:0b:b3:92:62:44:77: b1:31:e4:e5:23:74:4c:a9:02:f4:cb:53:45:45:9c: cd:f7:2d:12:d7:67:00:9c:ea:86:97:c3:da:42:a6: 71:c6:bb:75:cf:b3:68:c3:35:bd:8d:2b:08:fe:51: e0:cd:c4:11:61:40:25:ea:65:b2:19:fd:6c:27:c4: f5:99:8b:62:db:d7:5c:38:c1:88:06:08:dc:8d:3b: 81:99:8d:12:2c:ce:27:f6:af:94:a6:6d:d7:42:2e: 7f:03:ac:6f:99:ee:ee:84:85:12:53:08:f4:0c:fa: d3:d0:dd:27:9c:86:56:1e:5d:59:80:c6:0e:da:36: 69:7d:6d:88:67:bf:8e:a0:d4:12:53:60:21:8f:fa: f1:e1:6c:05:10:61:32:3a:03:50:75:01:1c:37:58: 79:9e:c7:c1:5e:dd:39:45:77:a9:f3:8c:e3:3c:a2: 55:64:6d:a9:05:08:97:e9:b3:e2:9c:77:5e:d5:7e: 10:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:72:80:DD:FE:43:6C:0D:78:D2:A7:2D:02:0F:59:A6:7F:42:7E:F6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/acf96eac-505d-42a3-ad3b-20402c0f43ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1d::/36 Signature Algorithm: sha256WithRSAEncryption 7a:c4:c7:38:a4:8d:83:ce:20:3c:5a:1f:c1:92:ff:98:db:4e: e7:8f:2e:3c:4d:08:82:79:9a:ca:70:ac:07:8d:7f:46:74:1d: f8:de:54:b2:ad:35:be:e3:bb:43:62:8c:ca:b2:22:c5:cd:02: b2:14:34:f4:3e:e2:74:98:8c:c8:44:ec:2f:0d:c0:5e:2d:7f: 1a:80:c3:4d:5d:b5:4f:71:12:26:02:04:98:66:bb:2c:0d:ae: c0:46:29:9e:8a:5c:19:2e:6e:af:eb:ec:3d:32:6a:b9:9d:c9: 0d:54:14:b6:a6:f9:08:a1:cf:b3:f0:31:b3:ae:d3:e0:1f:76: 0d:d9:82:09:34:0e:45:ba:bf:3c:74:da:d0:9c:0e:db:ff:8a: 0c:20:bc:6a:09:91:2f:0b:88:10:9c:14:8f:92:b9:4e:30:e3: 99:42:c7:aa:7b:95:b8:c9:a4:ce:9a:11:16:c1:5a:9d:aa:47: 84:9e:98:7b:e5:b1:e0:b6:70:e0:5f:b3:0f:42:b2:65:81:ec: 36:c0:ad:40:bc:5a:0b:a4:07:0a:2b:6b:59:76:a0:99:80:45: b6:3a:19:52:79:19:f3:6b:18:39:d6:b2:2b:62:6b:ed:28:06: 81:9c:f1:76:3e:e0:db:22:e6:ef:2e:83:b5:b0:f5:47:cb:8d: c7:5b:dd:c9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNZV7wQ+BI0ertd6T5RUb5N8+OW0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDMwMTAwMjAzN1oX DTI1MDQwNTIzNTk1OVowejFJMEcGA1UEBRNAOGVmNjllMTA5OGQzNzY1MGI5YzM3 NzA3ZmVkZjYzNzM0YWQ4ODJjMGZhZDZhNDAzMjZkMDhjMmFhZDZjODQ2YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGyLEuLm8RAsIvPbRvNoiaPMSg72 2/kK4FJo/AirO4yUTHh2vOHOhVa73vIyy/KylObQVu6stUh38uVLvJRDE81pqOoL s5JiRHexMeTlI3RMqQL0y1NFRZzN9y0S12cAnOqGl8PaQqZxxrt1z7NowzW9jSsI /lHgzcQRYUAl6mWyGf1sJ8T1mYti29dcOMGIBgjcjTuBmY0SLM4n9q+Upm3XQi5/ A6xvme7uhIUSUwj0DPrT0N0nnIZWHl1ZgMYO2jZpfW2IZ7+OoNQSU2Ahj/rx4WwF EGEyOgNQdQEcN1h5nsfBXt05RXep84zjPKJVZG2pBQiX6bPinHde1X4QpwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFA9ygN3+Q2wNeNKnLQIPWaZ/Qn72MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FjZjk2ZWFjLTUwNWQtNDJhMy1hZDNiLTIwNDAyYzBmNDNlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaHQAwDQYJKoZIhvcNAQELBQADggEBAHrExzikjYPOIDxaH8GS /5jbTuePLjxNCIJ5mspwrAeNf0Z0HfjeVLKtNb7ju0NijMqyIsXNArIUNPQ+4nSY jMhE7C8NwF4tfxqAw01dtU9xEiYCBJhmuywNrsBGKZ6KXBkubq/r7D0yarmdyQ1U FLam+Qihz7PwMbOu0+Afdg3Zggk0DkW6vzx02tCcDtv/igwgvGoJkS8LiBCcFI+S uU4w45lCx6p7lbjJpM6aERbBWp2qR4SemHvlseC2cOBfsw9CsmWB7DbArUC8Wguk Bwora1l2oJmARbY6GVJ5GfNrGDnWsitia+0oBoGc8XY+4Nsi5u8ug7Ww9UfLjcdb 3ck= -----END CERTIFICATE-----Generated at Thu Mar 13 23:44:48 2025 by rpki-client