$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fee398e5-86da-41a5-82fc-59abcaf6e855.roa File: fee398e5-86da-41a5-82fc-59abcaf6e855.roa (raw, json) Hash identifier: FV/g1wcYNh9JS7ZoalXaKXUNt9IsokCyMtVF0GjZKHg= Subject key identifier: 4F:5C:C8:38:86:FB:C0:F5:DA:7D:A0:90:4E:2A:6D:A9:DC:5E:3A:E2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 74A5A1C9371A0C544FF19552FA7A29CC38A63793 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fee398e5-86da-41a5-82fc-59abcaf6e855.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:840::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Feb 2025 00:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:a5:a1:c9:37:1a:0c:54:4f:f1:95:52:fa:7a:29:cc:38:a6:37:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b7:ee:63:8c:3d:b8:4b:89:a4:56:3c:69:59: be:43:32:bb:28:2b:c7:1e:41:83:8a:4c:0e:39:5c: ca:13:64:e3:6e:30:5f:44:38:55:8c:c1:16:b7:ae: cc:5a:fd:65:ff:22:e4:44:a6:9c:2c:6d:fa:ad:03: 01:b4:6e:cf:71:0f:90:3c:12:57:38:2d:e5:fd:46: 5d:44:70:b1:96:e5:9d:2a:7b:de:ee:db:4b:a2:25: de:a4:da:b0:3f:85:18:e9:fd:6f:2c:d7:58:f1:e9: dc:be:3d:d8:95:0b:e7:f1:d4:fd:a7:ce:55:78:4b: 23:20:d5:b5:85:ba:7b:92:62:78:51:cc:ac:00:6f: d6:6d:12:fc:a6:40:ae:47:74:61:85:3e:82:4c:e0: 74:bf:45:d6:e4:dd:74:0a:33:75:5d:b5:3e:c8:77: 49:15:e7:f5:e3:71:c1:19:0f:43:fc:1a:64:78:64: b6:b7:80:47:3a:0a:4b:20:88:2f:a0:e4:f4:a3:0d: 56:ec:95:e4:26:fd:5c:45:83:1c:0e:ac:b0:d4:04: 70:52:ab:44:3d:57:af:04:88:c7:9c:2f:c6:fd:8a: 38:5b:53:a5:4a:57:22:79:c1:09:e0:f5:c1:0a:ce: c1:3c:04:8b:a6:26:5f:36:bf:c4:11:0a:c1:b4:24: 9a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5C:C8:38:86:FB:C0:F5:DA:7D:A0:90:4E:2A:6D:A9:DC:5E:3A:E2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fee398e5-86da-41a5-82fc-59abcaf6e855.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:840::/46 Signature Algorithm: sha256WithRSAEncryption 2a:69:64:c5:3f:49:0f:93:31:79:d4:b5:e6:69:05:db:d3:9c: ea:a5:7d:9b:24:a8:53:59:a5:b4:41:c8:b4:12:03:96:c2:15: ed:02:5b:c6:2d:a1:ee:d0:94:11:70:8f:47:3f:ee:a6:c0:76: 9f:b2:a7:10:2b:9c:8e:a3:a4:70:5e:de:a9:ba:d7:a6:b4:3f: ba:b1:ae:19:9d:b9:06:75:4c:13:78:c1:ef:14:85:82:d9:f1: 44:00:26:1c:8d:6b:a5:5e:ba:bf:17:d9:57:8c:a8:58:7d:58: de:24:df:c5:d5:93:e8:bf:6c:83:aa:46:d4:50:2b:ea:65:a3: 5a:d4:41:6c:92:fb:10:05:10:6b:1d:bb:12:06:c5:97:3f:ef: db:2b:b6:1f:47:72:73:15:c3:a4:25:7b:c4:a4:2d:8b:72:ee: bf:4e:49:ce:ef:4b:10:b7:c3:08:bb:cb:0d:60:84:23:41:d8: fa:33:a9:3c:a5:00:7f:35:47:d4:f4:b3:26:e6:eb:4c:b6:28: d7:7c:7b:27:aa:ec:f9:92:cb:cc:4e:c6:6d:ed:c4:b6:9c:06: fe:63:46:19:79:f1:17:b6:4a:23:b6:ae:5a:e6:68:fa:fa:36: ef:6c:4c:08:05:cb:e8:6b:b6:4a:fc:6a:be:73:b0:3b:5f:b5: 58:4c:c0:04 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdKWhyTcaDFRP8ZVS+nopzDimN5MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDIwMzAwMDAwMFoX DTI1MDMxMDIzNTk1OVowejFJMEcGA1UEBRNAMGI4MmJiNWE1OTFjZTVmMWY1Yjdj ZGRkMDA2YzJkOWI2NjIwY2NjNmM4MDE4MjZmOTY3NDc3YTMxNzcxMDAzYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7fuY4w9uEuJpFY8aVm+QzK7KCvH HkGDikwOOVzKE2TjbjBfRDhVjMEWt67MWv1l/yLkRKacLG36rQMBtG7PcQ+QPBJX OC3l/UZdRHCxluWdKnve7ttLoiXepNqwP4UY6f1vLNdY8encvj3YlQvn8dT9p85V eEsjINW1hbp7kmJ4UcysAG/WbRL8pkCuR3RhhT6CTOB0v0XW5N10CjN1XbU+yHdJ Fef143HBGQ9D/BpkeGS2t4BHOgpLIIgvoOT0ow1W7JXkJv1cRYMcDqyw1ARwUqtE PVevBIjHnC/G/Yo4W1OlSlciecEJ4PXBCs7BPASLpiZfNr/EEQrBtCSasQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFE9cyDiG+8D12n2gkE4qbancXjriMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZlZTM5OGU1LTg2ZGEtNDFhNS04MmZjLTU5YWJjYWY2ZTg1NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAbaaQhAMA0GCSqGSIb3DQEBCwUAA4IBAQAqaWTFP0kPkzF51LXm aQXb05zqpX2bJKhTWaW0Qci0EgOWwhXtAlvGLaHu0JQRcI9HP+6mwHafsqcQK5yO o6RwXt6putemtD+6sa4ZnbkGdUwTeMHvFIWC2fFEACYcjWulXrq/F9lXjKhYfVje JN/F1ZPov2yDqkbUUCvqZaNa1EFskvsQBRBrHbsSBsWXP+/bK7YfR3JzFcOkJXvE pC2Lcu6/TknO70sQt8MIu8sNYIQjQdj6M6k8pQB/NUfU9LMm5utMtijXfHsnquz5 ksvMTsZt7cS2nAb+Y0YZefEXtkojtq5a5mj6+jbvbEwIBcvoa7ZK/Gq+c7A7X7VY TMAE -----END CERTIFICATE-----Generated at Wed Feb 5 04:03:49 2025 by rpki-client