$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bc161549-58e9-4322-ac5f-3df66a9c6022.roa File: bc161549-58e9-4322-ac5f-3df66a9c6022.roa (raw, json) Hash identifier: fYBpDHLemtjFZEyylTJ1uP3GzaJWxUUPzzTtQpVOirA= Subject key identifier: 6F:BB:B1:54:7A:7A:E8:2A:93:83:33:DA:39:5E:67:4D:0B:04:EF:1F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 76302980487F24CD1F80FD2F4BED93662EE2ABC8 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bc161549-58e9-4322-ac5f-3df66a9c6022.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:40a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:30:29:80:48:7f:24:cd:1f:80:fd:2f:4b:ed:93:66:2e:e2:ab:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:63:3a:5d:31:ce:58:68:62:5c:23:e1:f1:c0: ed:78:77:0c:d7:74:e2:c2:59:e4:f4:22:64:96:c7: 5b:7f:1c:d7:fa:8b:89:5f:0a:3a:06:7b:33:0c:e6: 81:31:bf:9d:d1:4f:4d:12:61:bb:ef:bb:9a:04:86: 66:33:bf:4b:36:b2:a2:12:92:e4:2e:51:08:6e:bc: 01:b9:9d:81:39:be:0d:b9:99:2e:a0:95:0e:85:51: 90:9f:fa:e4:a2:b1:32:7c:34:3b:e3:d4:7a:77:28: 26:d8:52:c7:ae:97:e1:8c:c6:43:0c:46:49:bd:6f: 61:9d:ff:fc:f9:df:2f:8b:7d:f9:58:19:cf:8e:8f: b9:cf:9c:7a:85:11:ae:24:29:d7:9b:75:fd:ed:86: ce:e9:4c:1c:50:24:9c:e4:51:ca:17:dd:8b:19:dd: b4:5a:d2:4d:f4:6d:70:f3:dc:89:6e:5d:f6:c3:2a: 59:ce:2d:0a:d6:eb:b1:16:c0:7e:a1:23:c2:c5:e2: fc:12:a3:1f:d2:eb:4b:4d:c0:62:ae:b4:15:f5:3a: 9d:d8:1e:e3:2f:63:87:cd:61:55:73:1a:bd:8c:41: 8b:9f:96:e1:d2:33:82:50:4e:ea:dc:86:72:59:a2: 93:0e:b0:2c:c7:5b:7d:03:4c:77:a4:14:12:75:a2: fa:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:BB:B1:54:7A:7A:E8:2A:93:83:33:DA:39:5E:67:4D:0B:04:EF:1F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bc161549-58e9-4322-ac5f-3df66a9c6022.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:40a0::/48 Signature Algorithm: sha256WithRSAEncryption ac:fe:4c:aa:ce:4b:1b:75:93:4e:5c:70:d2:72:81:06:0b:de: 64:6e:0b:94:21:93:ca:58:4e:8c:c1:e8:f3:73:1c:ed:21:53: 3e:bf:00:d0:24:5a:60:49:d9:12:cd:05:49:73:d0:8e:87:75: e0:cb:c4:23:3a:00:2d:77:31:f1:41:a9:dd:fe:20:c9:0f:a3: cf:3f:4f:8a:e8:e4:fa:fd:76:7d:fc:7f:dc:2c:af:27:6e:b8: 0a:7e:78:0b:14:41:28:c4:06:c7:ae:b2:7b:f3:4c:3d:96:f4: 0a:e5:d6:21:78:1d:68:72:23:85:01:dc:de:e1:24:16:c7:1b: 52:b8:61:df:92:af:4d:db:77:3a:fb:89:f8:d0:07:10:28:15: 95:05:35:aa:aa:91:ac:8a:23:38:92:62:38:36:89:6f:49:58: 97:25:b0:76:ae:9a:5f:71:b3:7e:c5:6b:00:9b:d5:74:f5:75: e2:53:03:ca:bb:93:e4:57:31:e7:12:b1:25:cc:2a:49:43:26: 4e:b8:f1:43:9f:53:38:9b:ed:cf:34:cd:0f:be:b7:6a:c6:66: 4f:a4:7f:d5:5d:05:3f:1c:3b:08:16:ee:65:fc:d2:02:6a:87: b2:27:fa:ca:16:46:16:6c:49:04:b3:3b:d5:f8:e8:b5:e0:c7: 37:26:0a:71 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdjApgEh/JM0fgP0vS+2TZi7iq8gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMzAwMDAwMFoX DTI1MDMxMDIzNTk1OVowejFJMEcGA1UEBRNANmE2MzEyMzAxNTBhNWY1YmJjZmZm MzViZGQyNzgyYmExYmE5N2Q1OTc4NTg2ZGI4YzgzYmRmNjkxMGJmMTE5NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmM6XTHOWGhiXCPh8cDteHcM13Ti wlnk9CJklsdbfxzX+ouJXwo6BnszDOaBMb+d0U9NEmG777uaBIZmM79LNrKiEpLk LlEIbrwBuZ2BOb4NuZkuoJUOhVGQn/rkorEyfDQ749R6dygm2FLHrpfhjMZDDEZJ vW9hnf/8+d8vi335WBnPjo+5z5x6hRGuJCnXm3X97YbO6UwcUCSc5FHKF92LGd20 WtJN9G1w89yJbl32wypZzi0K1uuxFsB+oSPCxeL8EqMf0utLTcBirrQV9Tqd2B7j L2OHzWFVcxq9jEGLn5bh0jOCUE7q3IZyWaKTDrAsx1t9A0x3pBQSdaL69wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFG+7sVR6eugqk4Mz2jleZ00LBO8fMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2JjMTYxNTQ5LTU4ZTktNDMyMi1hYzVmLTNkZjY2YTljNjAyMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/0CgMA0GCSqGSIb3DQEBCwUAA4IBAQCs/kyqzksbdZNOXHDS coEGC95kbguUIZPKWE6MwejzcxztIVM+vwDQJFpgSdkSzQVJc9COh3Xgy8QjOgAt dzHxQand/iDJD6PPP0+K6OT6/XZ9/H/cLK8nbrgKfngLFEEoxAbHrrJ780w9lvQK 5dYheB1ociOFAdze4SQWxxtSuGHfkq9N23c6+4n40AcQKBWVBTWqqpGsiiM4kmI4 NolvSViXJbB2rppfcbN+xWsAm9V09XXiUwPKu5PkVzHnErElzCpJQyZOuPFDn1M4 m+3PNM0PvrdqxmZPpH/VXQU/HDsIFu5l/NICaoeyJ/rKFkYWbEkEszvV+Oi14Mc3 Jgpx -----END CERTIFICATE-----Generated at Wed Feb 5 03:58:21 2025 by rpki-client