$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/cc7e3992-4619-412d-a3bd-6b6b0c457ed0.roa File: cc7e3992-4619-412d-a3bd-6b6b0c457ed0.roa (raw, json) Hash identifier: lqaayAoWELpbrAAKr5X+FaeE+n5+/9yuxQvVcLywaB0= Subject key identifier: 52:AE:E5:64:2D:76:67:A6:6E:B2:38:82:12:6C:4E:73:31:CB:4C:26 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 03F760E58D716AC1BFE9552782B031C5B66FD8F6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/cc7e3992-4619-412d-a3bd-6b6b0c457ed0.roa Signing time: Sat 01 Feb 2025 00:00:00 +0000 ROA not before: Sat 01 Feb 2025 00:00:00 +0000 ROA not after: Sat 08 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf4:8880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f7:60:e5:8d:71:6a:c1:bf:e9:55:27:82:b0:31:c5:b6:6f:d8:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 1 00:00:00 2025 GMT Not After : Mar 8 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:75:1a:58:35:22:a8:e9:0b:f2:1a:b8:a2:f9: 6f:35:f2:e7:a8:74:ca:4f:59:00:2e:23:74:8f:e6: 3d:7c:b9:22:99:47:f8:a1:4b:97:b8:67:76:cf:ae: ab:93:e3:1b:a6:57:19:cb:1a:0d:39:54:b7:b4:6b: f8:2a:7b:1b:22:fc:17:bb:b5:97:22:7a:82:5f:61: 59:da:9e:ad:b3:af:e2:8c:0f:43:87:58:26:81:db: c3:ee:22:2c:ee:b1:c8:f2:a9:87:66:ab:a6:16:72: 0a:85:9c:d7:6c:bc:88:50:d8:7b:24:f1:64:1c:9a: ab:6e:3d:19:3e:ef:4f:6b:fc:46:6c:ed:2f:f1:ae: 00:14:27:f2:c5:14:04:ce:85:01:22:62:a2:b8:0a: fb:43:41:e2:7c:ae:62:df:14:51:19:6a:ba:53:0c: 36:ea:a5:bf:b8:d3:99:6d:7b:19:b3:50:37:99:b4: 1f:2b:e1:2d:76:eb:b2:0c:80:30:e9:e6:6d:6d:05: 1d:2e:8e:f3:bc:93:f1:05:27:bb:50:00:f7:62:0e: 83:36:5d:a3:78:02:e5:3a:81:a4:96:0e:af:d7:50: 94:9f:d9:57:c7:75:58:76:f0:58:6c:56:38:02:c2: 4a:00:cb:ff:f7:a0:3a:51:85:6a:6d:5d:b2:a5:c9: 04:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AE:E5:64:2D:76:67:A6:6E:B2:38:82:12:6C:4E:73:31:CB:4C:26 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/cc7e3992-4619-412d-a3bd-6b6b0c457ed0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:8880::/48 Signature Algorithm: sha256WithRSAEncryption a7:03:17:e6:b1:23:f6:dc:3f:ad:23:86:b5:97:89:86:4e:99: 9e:9a:9b:28:2b:6f:4c:49:28:f8:55:29:a7:5b:95:b9:6c:60: 00:91:c0:0c:24:5b:d4:e0:a7:d1:06:a4:76:a4:21:5e:b2:d0: c9:23:0b:09:7f:d2:e9:61:cc:49:92:87:f6:e0:34:e9:d5:05: e2:0a:02:09:7f:ee:de:70:4b:4a:a0:7e:42:f5:d5:ea:51:8d: 63:77:87:99:54:4f:4e:16:df:81:99:84:da:8a:49:f7:2a:79: eb:68:b7:be:57:29:08:1c:73:45:3d:61:e2:ae:a8:f6:cc:d7: 22:ee:8d:16:7c:19:50:ad:2f:95:dd:3a:60:3f:6a:d1:f0:2a: f1:f9:ca:d5:a5:58:74:66:9c:df:ac:47:87:fb:2c:84:97:71: e4:66:10:d7:e9:56:99:3e:62:30:c9:0d:b8:93:69:be:80:cf: c1:cf:28:b8:6e:81:7e:a5:09:df:72:67:0c:c7:d8:b0:7c:b7: 9c:5f:04:89:03:d4:c6:5a:05:b0:0d:b1:56:01:0e:1c:67:ea: 28:39:6a:33:30:46:aa:b9:3a:bb:7b:33:7c:5d:6d:0f:d8:e3: dd:2b:41:11:99:78:f0:b0:88:ef:a2:51:28:2c:f4:44:b5:d6: 30:f9:de:9e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUA/dg5Y1xasG/6VUngrAxxbZv2PYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMTAwMDAwMFoX DTI1MDMwODIzNTk1OVowejFJMEcGA1UEBRNAODc4YWM4YmEwY2VkNDZiMjA5MGI1 NTEzNTg4ZmYyMjAwYTk3M2Q0ZDQyODIyMDM4YzRhNDgwYTg1ZWVlNzc4YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnUaWDUiqOkL8hq4ovlvNfLnqHTK T1kALiN0j+Y9fLkimUf4oUuXuGd2z66rk+MbplcZyxoNOVS3tGv4KnsbIvwXu7WX InqCX2FZ2p6ts6/ijA9Dh1gmgdvD7iIs7rHI8qmHZqumFnIKhZzXbLyIUNh7JPFk HJqrbj0ZPu9Pa/xGbO0v8a4AFCfyxRQEzoUBImKiuAr7Q0HifK5i3xRRGWq6Uww2 6qW/uNOZbXsZs1A3mbQfK+EtduuyDIAw6eZtbQUdLo7zvJPxBSe7UAD3Yg6DNl2j eALlOoGklg6v11CUn9lXx3VYdvBYbFY4AsJKAMv/96A6UYVqbV2ypckEcwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFKu5WQtdmembrI4ghJsTnMxy0wmMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2NjN2UzOTkyLTQ2MTktNDEyZC1hM2JkLTZiNmIwYzQ1N2VkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9IiAMA0GCSqGSIb3DQEBCwUAA4IBAQCnAxfmsSP23D+tI4a1 l4mGTpmempsoK29MSSj4VSmnW5W5bGAAkcAMJFvU4KfRBqR2pCFestDJIwsJf9Lp YcxJkof24DTp1QXiCgIJf+7ecEtKoH5C9dXqUY1jd4eZVE9OFt+BmYTaikn3Knnr aLe+VykIHHNFPWHirqj2zNci7o0WfBlQrS+V3TpgP2rR8Crx+crVpVh0ZpzfrEeH +yyEl3HkZhDX6VaZPmIwyQ24k2m+gM/Bzyi4boF+pQnfcmcMx9iwfLecXwSJA9TG WgWwDbFWAQ4cZ+ooOWozMEaquTq7ezN8XW0P2OPdK0ERmXjwsIjvolEoLPREtdYw +d6e -----END CERTIFICATE-----Generated at Wed Feb 5 03:55:50 2025 by rpki-client