$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb147b0a-93ac-4ab7-8c40-1df2c88725a7.roa File: eb147b0a-93ac-4ab7-8c40-1df2c88725a7.roa (raw, json) Hash identifier: OPG8Hk/6Kr5eVZIRVME0wZhr3F3+IR8cQ2mTAvhBk0g= Subject key identifier: 41:96:DD:68:44:DB:25:B6:11:7C:80:48:7A:DE:F2:B9:4D:FE:C7:7D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1500D6727ECCB8880F7DEF11A1E1F283EF736D3D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb147b0a-93ac-4ab7-8c40-1df2c88725a7.roa Signing time: Fri 28 Feb 2025 18:41:05 +0000 ROA not before: Fri 28 Feb 2025 18:41:05 +0000 ROA not after: Fri 04 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 16:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:00:d6:72:7e:cc:b8:88:0f:7d:ef:11:a1:e1:f2:83:ef:73:6d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 28 18:41:05 2025 GMT Not After : Apr 4 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:19:ae:d0:a2:6c:db:64:60:51:e7:a4:b4:28: 4d:36:42:cd:6a:a5:53:d2:38:e8:d9:8b:94:b7:28: d3:7c:ec:ed:cc:f5:41:41:73:50:08:f4:33:f4:db: c0:52:f0:e3:36:fe:75:63:0f:c1:de:ce:8e:e5:ca: 26:30:55:8c:d4:53:78:70:f2:fd:e5:16:d7:b2:84: ff:84:f3:82:f7:dd:40:14:4f:0d:81:9c:2b:db:e6: 44:00:9f:6c:6b:30:df:85:b6:ed:b6:fc:40:13:41: e2:93:05:dc:b2:8b:32:cc:74:e7:50:cf:f8:fb:06: 9a:03:36:2d:6a:89:ec:5d:76:b2:1b:51:2f:77:41: 2e:15:83:8b:3d:1d:d8:09:8a:a6:d6:fe:ac:18:a5: 25:c7:2e:ee:2e:5a:0c:fe:0e:b0:ee:de:ba:60:16: ca:5c:ea:7b:af:18:7a:77:4b:fc:95:51:c3:eb:9b: 15:05:61:db:db:08:b1:67:2d:1b:fb:a4:1b:1b:1e: 03:13:e0:c6:cc:01:e5:b1:e7:6d:be:37:60:90:53: f3:54:30:40:95:45:df:e1:a0:82:b2:74:8c:6c:0e: aa:0b:23:4e:e0:f8:9e:28:e6:e1:91:54:8c:24:f7: 0a:a1:fa:25:77:b5:5d:90:61:43:22:4a:ed:f5:c8: 62:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:96:DD:68:44:DB:25:B6:11:7C:80:48:7A:DE:F2:B9:4D:FE:C7:7D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb147b0a-93ac-4ab7-8c40-1df2c88725a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:4000::/40 Signature Algorithm: sha256WithRSAEncryption 97:1f:3a:64:0f:0b:01:3b:91:8b:9e:8e:a7:37:ae:a9:b7:18: a7:2c:2a:d9:45:7c:cb:77:8f:73:e4:5e:e6:df:f0:b3:25:a9: d1:2f:d1:db:06:af:24:b1:12:dc:e0:f2:e6:43:46:23:68:29: 2b:0a:5f:58:d4:c9:54:be:f3:ed:c6:54:bb:da:fb:a4:51:2b: 04:b0:a6:ae:c1:e1:5d:9a:37:68:ad:b2:05:4e:23:cc:2f:4d: ab:68:7d:de:f9:cd:15:2a:2e:45:13:49:66:3a:21:64:34:e9: 08:1d:70:b4:ed:0f:c1:bc:af:89:84:11:52:bb:f1:00:2b:57: f8:07:b8:c7:67:99:3e:93:e3:b8:43:2e:40:01:e6:af:40:77: 09:f0:fb:39:9d:6b:a8:ac:6d:e6:0c:38:55:56:64:0c:b9:99: 32:91:59:47:1d:37:21:aa:20:c9:0e:49:77:62:ef:f8:10:3b: bb:c7:eb:25:0d:18:a4:c2:84:19:42:4f:0e:51:93:92:b2:9a: 84:de:ab:f1:ab:da:41:1b:88:9d:51:0f:b4:a8:91:2d:99:2d: 69:98:6e:7e:24:9e:63:d0:00:ba:4b:78:ed:df:41:9e:9d:e8: 55:31:e1:91:9f:c9:1a:dc:5c:de:d6:0f:e8:9d:f7:f7:68:e0: ae:63:63:6a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFQDWcn7MuIgPfe8RoeHyg+9zbT0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIyODE4NDEwNVoX DTI1MDQwNDIzNTk1OVowejFJMEcGA1UEBRNANWJjMjJlZjU2YTI4ZGZiNTdkZWI2 NzMxMzVmN2FiNGJjMDVkZTAyYjZiZjQ2NDk0MTQ1YjkwYzU4MTM2YjMxNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhmu0KJs22RgUeektChNNkLNaqVT 0jjo2YuUtyjTfOztzPVBQXNQCPQz9NvAUvDjNv51Yw/B3s6O5comMFWM1FN4cPL9 5RbXsoT/hPOC991AFE8NgZwr2+ZEAJ9sazDfhbbttvxAE0HikwXcsosyzHTnUM/4 +waaAzYtaonsXXayG1Evd0EuFYOLPR3YCYqm1v6sGKUlxy7uLloM/g6w7t66YBbK XOp7rxh6d0v8lVHD65sVBWHb2wixZy0b+6QbGx4DE+DGzAHlsedtvjdgkFPzVDBA lUXf4aCCsnSMbA6qCyNO4PieKObhkVSMJPcKofold7VdkGFDIkrt9chiSQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEGW3WhE2yW2EXyASHre8rlN/sd9MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ViMTQ3YjBhLTkzYWMtNGFiNy04YzQwLTFkZjJjODg3MjVhNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8UAwDQYJKoZIhvcNAQELBQADggEBAJcfOmQPCwE7kYuejqc3 rqm3GKcsKtlFfMt3j3PkXubf8LMlqdEv0dsGrySxEtzg8uZDRiNoKSsKX1jUyVS+ 8+3GVLva+6RRKwSwpq7B4V2aN2itsgVOI8wvTatofd75zRUqLkUTSWY6IWQ06Qgd cLTtD8G8r4mEEVK78QArV/gHuMdnmT6T47hDLkAB5q9Adwnw+zmda6isbeYMOFVW ZAy5mTKRWUcdNyGqIMkOSXdi7/gQO7vH6yUNGKTChBlCTw5Rk5KymoTeq/Gr2kEb iJ1RD7SokS2ZLWmYbn4knmPQALpLeO3fQZ6d6FUx4ZGfyRrcXN7WD+id9/do4K5j Y2o= -----END CERTIFICATE-----Generated at Thu Mar 13 23:53:11 2025 by rpki-client