$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f611f5b8-6400-4b10-bf6f-3c313ca38db5.roa File: f611f5b8-6400-4b10-bf6f-3c313ca38db5.roa (raw, json) Hash identifier: Ie8xvb2ol9yoJO2ZX+Owbyrn6/PNSYt1Tgv/0fKkXIw= Subject key identifier: 3F:56:94:E9:A8:28:38:F8:C0:22:ED:A5:9C:61:A9:59:A1:81:58:F9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1560D603F52ED3B26F0A1A29E98BBC3E318CD4C0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f611f5b8-6400-4b10-bf6f-3c313ca38db5.roa Signing time: Wed 02 Apr 2025 00:00:20 +0000 ROA not before: Wed 02 Apr 2025 00:00:20 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daef:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 00:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:60:d6:03:f5:2e:d3:b2:6f:0a:1a:29:e9:8b:bc:3e:31:8c:d4:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Apr 2 00:00:20 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5a:db:1e:7e:70:11:48:3c:d7:ff:83:64:7e: 16:a9:c9:42:da:fc:09:9b:c4:45:d0:6c:41:e8:1e: 77:23:52:a8:21:5d:5d:27:a0:6d:a8:75:72:f6:78: 4e:6d:f5:2e:b9:d9:66:cf:b0:5d:d2:f8:29:04:d1: 24:47:e2:56:4c:7f:80:c3:13:fd:96:b2:fa:cb:a0: c1:88:56:19:52:23:8e:7e:5e:f2:3d:30:fa:4c:8e: 42:22:4d:49:c4:a9:fb:f8:a4:24:3a:2d:f1:0d:2b: c7:47:ff:10:80:27:8c:6e:d2:2c:59:fd:44:b7:22: 0e:47:22:7d:0b:8f:21:5a:9d:ed:42:27:20:6b:48: f8:60:ea:92:a3:34:ee:33:1f:ef:79:e3:da:27:bc: 8a:11:2a:c3:aa:ff:d5:bb:9a:fe:54:e3:f6:15:4b: 07:66:01:8f:9d:91:c0:28:9e:03:fe:05:5c:27:c5: db:d3:61:42:ca:d9:48:30:fc:3f:8a:73:99:dd:97: 67:1d:54:df:ca:d1:53:80:1a:65:4a:a6:41:9d:32: 59:43:93:b1:02:d1:07:59:4c:86:41:4c:d8:0c:95: 7b:ea:7a:ed:b2:40:e9:6d:b9:de:34:65:3e:2a:db: 7f:b3:15:48:1e:15:81:2e:4d:9f:1c:b6:e4:89:2d: ee:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:56:94:E9:A8:28:38:F8:C0:22:ED:A5:9C:61:A9:59:A1:81:58:F9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f611f5b8-6400-4b10-bf6f-3c313ca38db5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daef:4000::/40 Signature Algorithm: sha256WithRSAEncryption 10:d2:12:9d:55:68:dc:d6:17:fa:7c:0a:c1:5f:4f:2b:ee:14: e8:67:37:bd:d8:9e:d7:81:66:3d:fb:8f:02:cb:19:ba:88:8a: 52:7f:dd:bd:16:76:0f:0d:2e:a2:f7:05:69:7a:90:83:7f:dc: 17:c8:ea:79:57:f4:93:51:66:c4:06:b9:5a:47:d1:85:b4:46: f2:b4:0c:31:dc:91:44:ba:ed:a3:52:32:16:9a:69:01:e6:74: 76:2b:2e:74:0b:a8:ed:27:91:ad:45:3c:40:b1:f5:c9:87:1e: b1:cd:38:24:63:45:b1:cd:01:dd:fd:62:97:d8:56:81:7c:11: 9e:c9:5d:8e:11:26:27:6b:13:0f:ef:90:2b:a9:94:d2:02:fb: e7:04:db:d6:e6:42:17:05:ab:23:d3:85:46:7c:91:1e:54:db: 7a:32:f6:61:d1:94:2a:f0:74:16:f8:6e:5a:f1:48:fe:49:39: 3a:41:35:40:3d:a8:19:7c:43:26:6e:25:a1:c6:0a:85:1c:58: 90:09:9b:f8:82:1b:33:b5:f3:d4:bf:2a:de:72:51:c3:6c:97: 8b:b5:d4:ed:0b:15:df:4b:cb:74:6e:3c:db:40:eb:e5:8a:99: 85:09:ef:e1:64:38:30:3b:26:38:39:a1:b6:e0:02:56:f3:b8: af:3f:1d:a7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFWDWA/Uu07JvChop6Yu8PjGM1MAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQwMjAwMDAyMFoX DTI1MDUwNzIzNTk1OVowejFJMEcGA1UEBRNANGJkYzczOTU0MDQyMzdjZTk2ZjM4 ZDRiY2M5NjgyZDNhZTlkNzIxNjk3YTdlNjkzY2Q3ZDQwZWQ2NmUxYTE1OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlrbHn5wEUg81/+DZH4WqclC2vwJ m8RF0GxB6B53I1KoIV1dJ6BtqHVy9nhObfUuudlmz7Bd0vgpBNEkR+JWTH+AwxP9 lrL6y6DBiFYZUiOOfl7yPTD6TI5CIk1JxKn7+KQkOi3xDSvHR/8QgCeMbtIsWf1E tyIORyJ9C48hWp3tQicga0j4YOqSozTuMx/veePaJ7yKESrDqv/Vu5r+VOP2FUsH ZgGPnZHAKJ4D/gVcJ8Xb02FCytlIMPw/inOZ3ZdnHVTfytFTgBplSqZBnTJZQ5Ox AtEHWUyGQUzYDJV76nrtskDpbbneNGU+Ktt/sxVIHhWBLk2fHLbkiS3ufQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFD9WlOmoKDj4wCLtpZxhqVmhgVj5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y2MTFmNWI4LTY0MDAtNGIxMC1iZjZmLTNjMzEzY2EzOGRiNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba70AwDQYJKoZIhvcNAQELBQADggEBABDSEp1VaNzWF/p8CsFf TyvuFOhnN73YnteBZj37jwLLGbqIilJ/3b0Wdg8NLqL3BWl6kIN/3BfI6nlX9JNR ZsQGuVpH0YW0RvK0DDHckUS67aNSMhaaaQHmdHYrLnQLqO0nka1FPECx9cmHHrHN OCRjRbHNAd39YpfYVoF8EZ7JXY4RJidrEw/vkCuplNIC++cE29bmQhcFqyPThUZ8 kR5U23oy9mHRlCrwdBb4blrxSP5JOTpBNUA9qBl8QyZuJaHGCoUcWJAJm/iCGzO1 89S/Kt5yUcNsl4u11O0LFd9Ly3RuPNtA6+WKmYUJ7+FkODA7Jjg5obbgAlbzuK8/ Hac= -----END CERTIFICATE-----Generated at Fri Apr 4 23:27:00 2025 by rpki-client