$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa File: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (raw, json) Hash identifier: fotfmYi0+iVak84BStDm3XoCrAFVUVBbtspx5JOeT+w= Subject key identifier: EF:CA:1E:54:31:AE:F9:73:09:4B:7E:97:90:20:C1:F6:51:B4:E6:4F Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 42ED9343CDEAA02D4B0F1B45E58D614FA3FB15C6 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa Signing time: Fri 14 Feb 2025 00:00:41 +0000 ROA not before: Fri 14 Feb 2025 00:00:41 +0000 ROA not after: Fri 21 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 00:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ed:93:43:cd:ea:a0:2d:4b:0f:1b:45:e5:8d:61:4f:a3:fb:15:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000 Validity Not Before: Feb 14 00:00:41 2025 GMT Not After : Mar 21 23:59:59 2025 GMT Subject: CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bc:0f:84:bc:21:be:e7:91:2b:9e:87:c5:68: 45:39:29:b0:34:66:30:52:fb:c7:8a:6e:83:20:86: 89:23:96:e4:7d:4f:bc:c0:06:4c:9b:8c:0e:5f:38: 47:1e:5a:74:83:76:2d:3f:91:a4:10:29:2f:72:ec: ee:4d:25:50:fa:25:0b:d4:ed:3b:21:37:ef:59:ea: 6e:ba:42:b7:25:b3:10:f4:f0:ff:ff:75:2c:59:d1: 7c:48:73:30:df:bf:a0:2d:de:26:9e:43:05:16:6a: 44:49:c3:32:f3:b0:52:e8:80:62:47:cc:7d:2d:b4: 06:61:44:62:73:bc:63:82:6c:b7:44:0c:78:bb:3b: 8d:ea:ef:fc:71:5f:52:fa:88:93:5a:70:2d:72:b9: 8f:f5:91:ec:cc:5a:32:5d:6c:87:e6:d8:22:78:0f: 27:40:7b:01:99:fd:fe:16:d9:42:8a:6d:47:22:89: 42:26:44:a5:7b:e7:ca:49:0a:31:f8:e6:c9:47:d9: b0:1c:bc:0c:a7:34:e8:af:43:f1:79:78:ea:9b:71: 57:27:5c:2b:47:af:42:12:ab:0a:83:65:94:84:e4: b6:29:f0:55:d3:80:44:4a:72:f7:bc:3f:08:b0:27: 84:61:a3:e5:8d:6b:24:62:66:d7:a9:b6:6e:14:8b: 04:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:CA:1E:54:31:AE:F9:73:09:4B:7E:97:90:20:C1:F6:51:B4:E6:4F X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 8e:2c:20:28:ac:3f:5a:27:2e:07:a8:d9:bb:29:82:ba:2a:80: 38:2d:2a:4d:cb:51:9a:6d:9f:99:ca:be:36:2a:96:b5:04:0f: c9:c9:64:40:0c:ea:fc:9e:fc:60:0b:ee:51:49:24:f7:3f:b4: f9:e8:ae:f8:06:cb:98:e6:39:2d:80:56:23:30:86:f1:3e:4b: a7:84:c8:1e:e9:9d:6a:3a:b2:11:44:90:11:eb:4b:f5:53:75: 98:b5:69:9a:e5:fa:b0:d6:a3:7a:d1:3e:ea:19:42:27:78:1a: 4c:3c:c1:45:6f:e8:b3:b1:b5:c1:3b:31:5b:0c:af:b8:9c:16: 60:3a:78:50:11:cf:ba:ec:d7:55:66:2b:fc:81:e9:19:67:57: 84:06:41:a1:72:33:1e:65:a4:ff:b1:9a:6f:71:30:43:a2:8a: 2b:b1:9b:4e:e3:f7:5c:d4:ce:30:5f:91:01:b6:c7:f2:91:dd: df:14:72:7c:b7:52:00:bc:76:07:9c:d1:c8:aa:2b:64:61:6c: 03:ba:57:67:1c:16:e8:f3:9a:4a:2f:5f:fc:59:35:34:0c:86: 43:c2:4d:e1:f0:16:30:5f:9b:85:2e:7b:c7:52:65:a5:9e:1d: 50:bc:29:84:ea:ae:69:f7:42:10:d4:f4:81:df:a5:80:85:86: 07:ef:c9:8f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUQu2TQ83qoC1LDxtF5Y1hT6P7FcYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDIxNDAwMDA0MVoX DTI1MDMyMTIzNTk1OVowejFJMEcGA1UEBRNANTBmNjlhMTM1YjVmY2U1OGY4ZDQ4 NjJlZGVmZDJiZGE0NGMxMGEzNzU4OWVlZTNhYzJlZGY5ZjUzNmRjYTAxZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7wPhLwhvueRK56HxWhFOSmwNGYw UvvHim6DIIaJI5bkfU+8wAZMm4wOXzhHHlp0g3YtP5GkECkvcuzuTSVQ+iUL1O07 ITfvWepuukK3JbMQ9PD//3UsWdF8SHMw37+gLd4mnkMFFmpEScMy87BS6IBiR8x9 LbQGYURic7xjgmy3RAx4uzuN6u/8cV9S+oiTWnAtcrmP9ZHszFoyXWyH5tgieA8n QHsBmf3+FtlCim1HIolCJkSle+fKSQox+ObJR9mwHLwMpzTor0PxeXjqm3FXJ1wr R69CEqsKg2WUhOS2KfBV04BESnL3vD8IsCeEYaPljWskYmbXqbZuFIsE2QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFO/KHlQxrvlzCUt+l5AgwfZRtOZPMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzU2NjNiZjM0LTEwZWQtNDMwOS1hMjM2LTc0NjZhZmQ2ZjAyZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQCOLCAorD9aJy4HqNm7 KYK6KoA4LSpNy1GabZ+Zyr42Kpa1BA/JyWRADOr8nvxgC+5RSST3P7T56K74BsuY 5jktgFYjMIbxPkunhMge6Z1qOrIRRJAR60v1U3WYtWma5fqw1qN60T7qGUIneBpM PMFFb+izsbXBOzFbDK+4nBZgOnhQEc+67NdVZiv8gekZZ1eEBkGhcjMeZaT/sZpv cTBDooorsZtO4/dc1M4wX5EBtsfykd3fFHJ8t1IAvHYHnNHIqitkYWwDuldnHBbo 85pKL1/8WTU0DIZDwk3h8BYwX5uFLnvHUmWlnh1QvCmE6q5p90IQ1PSB36WAhYYH 78mP -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:00 2025 by rpki-client