$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c27b2338-5ab9-4430-8cc1-8132801f76eb.roa File: c27b2338-5ab9-4430-8cc1-8132801f76eb.roa (raw, json) Hash identifier: wYtYK/FwcTUM+i5X4i+ANMHVoN6ibZkarwBFBqQPq4U= Subject key identifier: C3:88:AF:B7:3E:46:97:7C:D1:E1:C6:E3:B6:E9:CD:2F:8B:F4:77:0D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 16BFEA8201D82142DCFDCA192A226D82ACACD990 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c27b2338-5ab9-4430-8cc1-8132801f76eb.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2c::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 00:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:bf:ea:82:01:d8:21:42:dc:fd:ca:19:2a:22:6d:82:ac:ac:d9:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d0:8d:20:fb:3d:c0:9d:9a:af:07:d1:13:da: 18:72:d3:47:6d:42:92:6f:7d:f0:fa:4c:7a:b7:49: e1:fd:51:0b:d3:4e:fc:fa:68:10:d4:3d:d7:e8:a2: 03:8f:87:cc:24:0d:94:5d:a8:91:0b:57:2a:62:05: e5:39:2d:7d:fe:aa:4c:4e:19:51:d2:69:76:c3:95: d3:58:b2:1e:6f:e3:ed:7a:d5:0a:67:c0:f2:12:4c: 02:e1:92:ef:12:0c:1d:3b:1a:9f:ec:5f:98:3f:f0: e7:93:e0:5e:fd:37:b3:6a:e4:d6:c6:93:27:b0:53: b9:b0:dc:8a:d4:8f:92:5f:69:28:33:f5:9d:a1:a7: ff:a6:69:eb:05:69:c7:ab:f8:21:9b:fd:35:ea:b4: 4e:be:b7:e4:2e:bc:ca:4a:97:aa:31:bc:c8:0a:e5: 03:3c:23:1a:d7:71:c1:5c:9f:d7:3f:10:af:bd:47: 3b:0a:b4:5d:44:59:41:4a:7f:54:a3:b7:37:bd:ce: 7a:40:07:6a:99:89:43:5c:3b:d5:a3:f3:a2:dc:d9: 82:be:3a:c9:7c:28:7d:da:b9:cf:d8:7f:90:b9:7a: 4a:00:49:59:96:ad:6c:ad:a8:48:4c:23:5e:d1:0c: 2f:b0:da:1b:ce:3a:0c:4e:75:e2:6d:e1:6e:e9:2a: 3a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:88:AF:B7:3E:46:97:7C:D1:E1:C6:E3:B6:E9:CD:2F:8B:F4:77:0D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c27b2338-5ab9-4430-8cc1-8132801f76eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2c::/36 Signature Algorithm: sha256WithRSAEncryption 3b:fa:74:2f:9d:bf:b9:b8:63:37:8b:a1:0d:2a:46:6f:ce:47: bb:d4:0c:84:4e:9f:f3:00:6e:8b:3f:73:84:4a:08:29:f9:94: dd:23:7a:ff:69:61:04:54:c4:d6:d1:67:5f:a8:82:51:fe:a4: 9c:85:49:f7:19:5a:0a:a9:73:36:70:d3:bc:8d:3b:62:f9:e9: 24:ea:5f:0f:27:59:c3:0f:4c:81:e6:08:b0:29:20:4b:f6:5a: e3:31:cd:c8:e4:5c:24:68:d6:0c:ca:ff:db:a9:63:21:e7:2b: d3:2d:27:68:53:3e:a5:2f:3e:ee:11:cf:c1:8b:7e:e8:60:1c: 94:81:9f:b8:76:78:4d:46:46:bf:73:8a:10:3d:c4:83:25:9e: a5:78:35:e9:ab:9f:5d:bd:e0:1b:79:81:2d:ec:3f:43:2f:23: d7:d2:39:cf:6e:11:dd:7e:4f:d0:cb:9e:87:48:2c:04:55:c4: a8:cc:d3:e8:97:78:34:5c:ad:96:e8:10:40:9b:ce:8f:4d:32: ba:82:15:8d:21:78:5b:95:21:da:80:db:28:de:af:60:c6:f3: e7:16:6d:56:88:90:a8:ff:a6:32:67:d6:69:81:de:71:05:66: 6c:ea:21:46:2e:2e:c8:ce:d5:ff:57:4d:19:3e:68:c2:81:68: 6d:32:43:07 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFr/qggHYIULc/coZKiJtgqys2ZAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDEyNzAwMDAwMFoX DTI1MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAZTMyOWNkNDgwNmZhNDQ4OWU4OTIz YjIxOTljZGQ1NTkxMjUwOWZmOThkZWRmMDY2MWRhNjAzYTgwYWY0ZjJmYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAydCNIPs9wJ2arwfRE9oYctNHbUKS b33w+kx6t0nh/VEL0078+mgQ1D3X6KIDj4fMJA2UXaiRC1cqYgXlOS19/qpMThlR 0ml2w5XTWLIeb+PtetUKZ8DyEkwC4ZLvEgwdOxqf7F+YP/Dnk+Be/TezauTWxpMn sFO5sNyK1I+SX2koM/Wdoaf/pmnrBWnHq/ghm/016rROvrfkLrzKSpeqMbzICuUD PCMa13HBXJ/XPxCvvUc7CrRdRFlBSn9Uo7c3vc56QAdqmYlDXDvVo/Oi3NmCvjrJ fCh92rnP2H+QuXpKAElZlq1srahITCNe0QwvsNobzjoMTnXibeFu6So69wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMOIr7c+Rpd80eHG47bpzS+L9HcNMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2MyN2IyMzM4LTVhYjktNDQzMC04Y2MxLTgxMzI4MDFmNzZlYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaLAAwDQYJKoZIhvcNAQELBQADggEBADv6dC+dv7m4YzeLoQ0q Rm/OR7vUDIROn/MAbos/c4RKCCn5lN0jev9pYQRUxNbRZ1+oglH+pJyFSfcZWgqp czZw07yNO2L56STqXw8nWcMPTIHmCLApIEv2WuMxzcjkXCRo1gzK/9upYyHnK9Mt J2hTPqUvPu4Rz8GLfuhgHJSBn7h2eE1GRr9zihA9xIMlnqV4Nemrn1294Bt5gS3s P0MvI9fSOc9uEd1+T9DLnodILARVxKjM0+iXeDRcrZboEECbzo9NMrqCFY0heFuV IdqA2yjer2DG8+cWbVaIkKj/pjJn1mmB3nEFZmzqIUYuLsjO1f9XTRk+aMKBaG0y Qwc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:00 2025 by rpki-client