$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa File: dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa (raw, json) Hash identifier: 1073YKEtTO4AaN1gex4nfros389Kggl5Sunu3A1FQ7s= Subject key identifier: 39:7D:32:42:3B:A5:D2:09:68:6A:46:62:90:C9:A1:87:4D:18:78:10 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 24A776476779C3DE44F59D367EADA4ED8821EA56 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa Signing time: Mon 17 Mar 2025 15:00:25 +0000 ROA not before: Mon 17 Mar 2025 15:00:25 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a7:76:47:67:79:c3:de:44:f5:9d:36:7e:ad:a4:ed:88:21:ea:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Mar 17 15:00:25 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c6:f4:92:1e:3d:68:5d:d1:be:ba:26:4d:81: a6:39:03:60:15:24:55:b1:36:35:39:cb:a5:01:68: 82:8b:d0:11:38:02:fb:57:7d:95:72:22:25:ac:e0: 9b:01:c3:b8:e2:75:e2:dd:b1:71:f5:3d:cc:2b:71: c6:3e:dd:21:74:7e:3f:e2:8a:14:9a:67:a2:9b:b7: 3d:57:56:37:51:b3:bb:9b:a6:c6:09:af:11:30:c5: 6d:50:20:83:97:1a:d7:87:ce:5d:4d:a6:f0:84:bd: 8d:52:a0:91:df:fc:3f:0b:3c:3d:ea:2f:d5:23:7c: 68:1c:e0:e2:85:9a:90:87:80:ec:2a:18:ec:fc:ef: e8:02:6b:3c:62:20:fb:a0:f1:9f:03:04:33:b1:d9: 1a:c8:66:86:39:a6:5a:bc:0a:27:34:61:e3:53:7c: bd:fd:1a:3f:cc:4c:3c:6e:f1:90:4b:d1:dc:c3:ff: af:31:8f:b4:10:ee:5b:8b:b8:fb:e2:96:a4:bc:36: c6:f7:8d:29:cc:53:83:67:ef:8e:08:9a:cc:68:9f: 6d:d3:5c:ce:63:c2:d5:94:10:65:f3:5f:7d:48:7b: 49:a0:8f:c8:71:95:b8:af:40:c9:19:94:42:7f:a4: cf:df:05:a2:ea:3d:4b:e5:f0:01:11:1f:e5:00:e0: fc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7D:32:42:3B:A5:D2:09:68:6A:46:62:90:C9:A1:87:4D:18:78:10 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:2000::/40 Signature Algorithm: sha256WithRSAEncryption 39:35:8e:a7:14:b3:d7:61:78:18:56:30:e1:fb:01:6f:d1:52: 2b:f4:68:ad:da:f5:32:14:02:1b:3a:94:14:e8:f5:d7:0c:e5: e0:2b:1e:17:cd:ed:a8:3c:8f:3e:fa:40:8c:3d:11:4f:4e:40: b0:de:36:06:96:d2:45:ce:b6:b2:24:03:96:7f:eb:8e:bc:95: a2:f8:5a:ad:fa:14:49:d2:8b:6b:e6:e6:4b:5b:38:98:fb:b2: b3:34:6e:52:96:e1:01:30:df:e4:bc:ee:22:71:7d:2d:3d:fb: 93:64:50:0c:3e:68:3d:13:9d:77:7b:47:93:ee:31:d9:c9:3a: 9a:80:49:04:42:df:e1:5e:97:5d:a1:61:d4:69:bb:9e:c4:32: 99:0f:1f:01:d0:61:6e:7b:c5:9f:61:75:a5:24:05:88:cb:9f: 55:41:c0:f5:84:23:a3:bc:54:15:5a:cc:a3:22:59:bd:43:93: a8:1b:40:9d:29:db:df:96:3e:da:ed:bd:8f:81:b5:9e:e5:f0: 9f:b9:db:9b:24:05:d9:1a:6c:ab:eb:ee:c4:7d:58:f3:a5:cd: 64:e6:ae:12:fd:28:79:4f:3b:b9:9a:47:e5:7e:1a:a9:da:62: ab:68:fb:03:20:4e:e4:64:cf:54:ff:53:28:a2:96:7d:e8:2e: 8a:24:60:4b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJKd2R2d5w95E9Z02fq2k7Ygh6lYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDMxNzE1MDAyNVoX DTI1MDQyMTIzNTk1OVowejFJMEcGA1UEBRNAOGU0ZWRkYTg5NWVmNGE0NDk2NzQy YjEwYjBkOTY4ZmJlMDQxOWJlMTQwOGFiODNlNWNhZTc5MmYzZmQ0NTc2ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18b0kh49aF3RvromTYGmOQNgFSRV sTY1OculAWiCi9AROAL7V32VciIlrOCbAcO44nXi3bFx9T3MK3HGPt0hdH4/4ooU mmeim7c9V1Y3UbO7m6bGCa8RMMVtUCCDlxrXh85dTabwhL2NUqCR3/w/Czw96i/V I3xoHODihZqQh4DsKhjs/O/oAms8YiD7oPGfAwQzsdkayGaGOaZavAonNGHjU3y9 /Ro/zEw8bvGQS9Hcw/+vMY+0EO5bi7j74pakvDbG940pzFODZ++OCJrMaJ9t01zO Y8LVlBBl8199SHtJoI/IcZW4r0DJGZRCf6TP3wWi6j1L5fABER/lAOD8zwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDl9MkI7pdIJaGpGYpDJoYdNGHgQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RkM2Q2MDIwLWJlNzgtNDZjYS05YjhhLTYzZmRiZmM5ZGE5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9SAwDQYJKoZIhvcNAQELBQADggEBADk1jqcUs9dheBhWMOH7 AW/RUiv0aK3a9TIUAhs6lBTo9dcM5eArHhfN7ag8jz76QIw9EU9OQLDeNgaW0kXO trIkA5Z/6468laL4Wq36FEnSi2vm5ktbOJj7srM0blKW4QEw3+S87iJxfS09+5Nk UAw+aD0TnXd7R5PuMdnJOpqASQRC3+Fel12hYdRpu57EMpkPHwHQYW57xZ9hdaUk BYjLn1VBwPWEI6O8VBVazKMiWb1Dk6gbQJ0p29+WPtrtvY+BtZ7l8J+525skBdka bKvr7sR9WPOlzWTmrhL9KHlPO7maR+V+GqnaYqto+wMgTuRkz1T/Uyiiln3oLook YEs= -----END CERTIFICATE-----Generated at Sat Apr 5 12:23:31 2025 by rpki-client