$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa File: efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa (raw, json) Hash identifier: Gs9mPHtlKyq9jxP7Ip2Gzrd2QeaA7zy8WEDDHJzNVGw= Subject key identifier: 74:75:DE:52:23:C2:61:80:4E:08:7C:FC:CE:94:42:F3:51:AD:5E:CD Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 424099558F8D3C08D3242C6D5638065D9609A593 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa Signing time: Sat 01 Mar 2025 00:00:39 +0000 ROA not before: Sat 01 Mar 2025 00:00:39 +0000 ROA not after: Sat 05 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.83.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 16:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:40:99:55:8f:8d:3c:08:d3:24:2c:6d:56:38:06:5d:96:09:a5:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Mar 1 00:00:39 2025 GMT Not After : Apr 5 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5e:da:92:01:8d:4f:6f:4f:1a:b8:36:ea:75: 47:96:08:72:37:36:7e:d4:c3:07:f6:6f:ac:88:2e: 53:1f:c7:d2:81:fd:87:b3:59:e2:de:30:6a:c7:bd: 4b:97:22:71:bc:56:38:88:cc:4d:b7:ab:52:ff:bd: 8a:65:97:d9:b0:4d:01:78:8f:7d:a5:bf:91:37:61: b7:d7:30:55:8a:a8:c3:84:07:43:b2:06:9f:7f:a1: 19:b7:df:6a:10:27:0b:41:c5:45:90:8c:e9:48:68: bc:9c:fa:b6:98:88:2e:dc:6a:67:d9:74:82:65:90: 35:c2:1b:9e:e2:47:f9:97:eb:1f:f7:b2:33:65:3f: 78:59:c2:37:aa:0e:da:cf:07:45:7b:14:87:9f:08: f7:6d:da:06:39:4a:ad:16:50:81:b3:b5:f6:87:95: b1:66:ae:13:84:39:7d:5b:d9:1c:55:cd:f8:fd:ef: ba:dc:6a:e7:c8:df:58:54:1f:b6:96:c2:5d:a9:22: 8b:87:aa:2d:f4:0f:34:f4:b6:26:10:5f:2a:0a:dd: 7f:88:af:17:0d:c9:e8:b2:14:35:ca:37:73:17:ff: dc:dc:45:2b:06:50:e6:65:d8:da:49:63:d6:15:37: ca:66:36:14:b3:ed:df:4f:02:e8:13:34:5d:4c:ed: 36:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:75:DE:52:23:C2:61:80:4E:08:7C:FC:CE:94:42:F3:51:AD:5E:CD X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.83.220.0/22 Signature Algorithm: sha256WithRSAEncryption 25:b4:14:d3:ce:3f:20:6d:78:d4:60:9c:cd:e5:a1:1c:0c:12: a5:3e:f9:f6:31:4b:b4:04:41:53:c5:ea:94:d3:e7:a6:33:a6: cd:49:42:bf:e7:05:d0:b4:ce:17:6e:c4:77:43:ca:f5:21:42: 4b:74:60:0f:83:fb:de:d0:a4:6d:c5:76:f2:58:f5:25:40:1b: 1c:b9:a7:04:24:5e:cd:19:7e:10:c0:90:80:92:86:cb:ac:3f: 54:d2:50:cc:0a:18:a0:2d:47:a8:64:d6:e7:4e:00:e0:3b:4c: f6:77:be:db:df:a0:38:4b:0d:1b:a9:7a:27:12:39:53:6b:d1: e4:df:7c:b5:ca:a8:e7:1e:a2:4e:ad:65:ef:40:60:19:fb:3b: 64:02:8a:1c:ef:a5:11:f9:a7:ef:ea:e5:79:b1:c2:c7:4b:53: 84:58:ce:49:e2:fc:1b:4a:80:4f:bf:70:5c:69:b3:ab:9f:ac: 52:bc:95:d2:49:e5:80:8c:1b:3e:8d:e8:3b:ab:e6:15:23:b5: 34:59:24:f0:fc:2c:4d:eb:f8:9b:0c:2b:b9:82:37:cc:95:4a: ab:96:ac:09:73:41:93:e9:37:6e:bd:a2:77:5a:3b:ae:59:e7: 9d:bb:19:05:cb:a9:3d:05:41:6d:6d:d7:51:3e:bc:83:71:4d: b7:e0:5d:98 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUQkCZVY+NPAjTJCxtVjgGXZYJpZMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDMwMTAwMDAzOVoX DTI1MDQwNTIzNTk1OVowejFJMEcGA1UEBRNANmNmMmI3ZDczOTIxYmZiOTQ1NTQ1 MTM3MmZkMGY4ZjlmMDhiZjU2NWZhNDNkMDBiOTQ0ODNiMTkwZTg2YjBlZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5l7akgGNT29PGrg26nVHlghyNzZ+ 1MMH9m+siC5TH8fSgf2Hs1ni3jBqx71LlyJxvFY4iMxNt6tS/72KZZfZsE0BeI99 pb+RN2G31zBViqjDhAdDsgaff6EZt99qECcLQcVFkIzpSGi8nPq2mIgu3Gpn2XSC ZZA1whue4kf5l+sf97IzZT94WcI3qg7azwdFexSHnwj3bdoGOUqtFlCBs7X2h5Wx Zq4ThDl9W9kcVc34/e+63GrnyN9YVB+2lsJdqSKLh6ot9A809LYmEF8qCt1/iK8X DcnoshQ1yjdzF//c3EUrBlDmZdjaSWPWFTfKZjYUs+3fTwLoEzRdTO028wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHR13lIjwmGATgh8/M6UQvNRrV7NMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VmZDJhYzNkLWRjMzgtNGQ5My1hYWFjLTRjYmQ2Y2M5MTFjNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy1PcMA0GCSqGSIb3DQEBCwUAA4IBAQAltBTTzj8gbXjUYJzN5aEc DBKlPvn2MUu0BEFTxeqU0+emM6bNSUK/5wXQtM4XbsR3Q8r1IUJLdGAPg/ve0KRt xXbyWPUlQBscuacEJF7NGX4QwJCAkobLrD9U0lDMChigLUeoZNbnTgDgO0z2d77b 36A4Sw0bqXonEjlTa9Hk33y1yqjnHqJOrWXvQGAZ+ztkAooc76UR+afv6uV5scLH S1OEWM5J4vwbSoBPv3BcabOrn6xSvJXSSeWAjBs+jeg7q+YVI7U0WSTw/CxN6/ib DCu5gjfMlUqrlqwJc0GT6TduvaJ3WjuuWeeduxkFy6k9BUFtbddRPryDcU234F2Y -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:30 2025 by rpki-client