$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa File: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (raw, json) Hash identifier: ld/xwejo5QIlbwWVcRYSv7L4c6eHrdUNXALdj99UgE0= Subject key identifier: 0C:31:7B:CC:73:64:A5:B8:EE:E8:73:65:B8:43:36:3F:7E:8D:73:BD Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 704CBFAA136B8FE254DE7A39665A660C154A4E1B Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa Signing time: Fri 14 Feb 2025 00:00:08 +0000 ROA not before: Fri 14 Feb 2025 00:00:08 +0000 ROA not after: Fri 21 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:4c:bf:aa:13:6b:8f:e2:54:de:7a:39:66:5a:66:0c:15:4a:4e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001 Validity Not Before: Feb 14 00:00:08 2025 GMT Not After : Mar 21 23:59:59 2025 GMT Subject: CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:cb:9c:42:f6:79:3e:98:16:8d:5d:c9:36:19: d1:8b:aa:0c:29:63:c2:6f:28:ec:74:3d:4a:de:8d: fb:95:9f:d1:27:f6:68:ca:ef:e3:27:6a:65:4c:34: d7:28:2d:65:9e:ac:c8:46:e7:bc:74:05:13:41:a6: 93:ac:90:19:22:5b:b6:0e:9d:fb:70:36:09:30:5f: 6e:f2:c9:60:2e:a7:3a:1c:b3:55:fe:c8:cf:61:a0: 02:a6:7c:3c:46:46:e9:4b:cb:7a:07:6e:3f:4c:15: 62:2c:86:33:36:51:4e:9e:47:75:f2:1d:5a:df:0d: 34:b7:1b:7f:c1:44:d6:71:4f:1d:25:81:c6:e9:38: 3e:2b:fe:c0:54:5f:e5:20:0a:e8:f8:10:eb:96:4f: 29:8f:da:b9:d7:49:67:f9:2f:5d:1f:a0:65:0d:3f: 60:e7:1e:ca:fb:85:48:ce:a9:b9:a8:db:53:28:41: ef:cb:c6:b2:4b:61:76:d0:e3:77:1c:c4:6c:4b:47: bf:9a:b9:f0:13:d1:43:8c:69:79:26:ba:3f:f4:c4: af:17:92:59:6c:59:69:3d:99:d7:f9:7d:cd:f5:5c: c3:e5:46:ad:0c:6d:40:1d:81:19:3b:a3:b8:9f:57: 30:f3:91:9d:63:60:68:0a:48:cc:e3:d0:d5:eb:aa: 42:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:31:7B:CC:73:64:A5:B8:EE:E8:73:65:B8:43:36:3F:7E:8D:73:BD X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:ff00::/48 Signature Algorithm: sha256WithRSAEncryption b7:20:6d:77:98:e4:a4:b6:98:6a:2b:6a:17:cb:85:21:a9:a3: 48:d9:10:97:14:f4:d3:9b:b4:7a:f7:5b:ff:e3:73:4a:a7:f3: f4:65:17:73:13:45:3d:a3:c1:ab:be:24:8c:85:45:8f:38:c1: 9c:6e:10:e4:5e:c2:6b:db:28:c2:ce:8b:b0:ad:ef:74:25:0a: ae:f0:29:44:d4:df:1e:28:6d:90:95:e7:37:e5:c7:d0:9d:b5: 1f:aa:7d:91:2b:e1:94:c7:4f:08:5c:85:95:dc:ee:3d:cb:9e: 21:97:b2:9b:d3:46:44:ae:81:74:5e:7f:a5:4a:dc:64:65:70: 0a:1b:e6:20:42:33:62:ca:22:f5:44:bc:14:b3:b0:4a:f8:39: 28:65:0c:9d:e8:1e:6c:3c:a5:c7:60:39:58:40:a0:06:39:aa: 3f:a7:3b:ba:c2:22:40:13:84:0c:5a:60:58:23:89:8e:6c:bb: 89:61:cb:fb:21:9b:0e:12:3c:ea:57:f4:ff:b8:41:72:8d:dc: 29:ee:b0:b5:27:da:b1:04:59:04:c3:a9:7e:31:ce:0e:2f:e2: fd:d6:c1:3e:ca:37:07:9d:46:f4:c3:f9:01:80:5b:4f:c5:87: 23:21:9b:a3:f5:04:ce:84:83:43:3a:a4:54:ef:2a:45:e2:db: 50:7e:b9:47 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUcEy/qhNrj+JU3no5ZlpmDBVKThswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDIxNDAwMDAwOFoX DTI1MDMyMTIzNTk1OVowejFJMEcGA1UEBRNAZTVjNTU0NjQwNDM1ZmNjODEzYzlj MjgxZDRiYWFhZDE1M2I3MTM4ODEzNzljNTk1YWRmMzQyNDdjNWUzOTFjMjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48ucQvZ5PpgWjV3JNhnRi6oMKWPC byjsdD1K3o37lZ/RJ/Zoyu/jJ2plTDTXKC1lnqzIRue8dAUTQaaTrJAZIlu2Dp37 cDYJMF9u8slgLqc6HLNV/sjPYaACpnw8RkbpS8t6B24/TBViLIYzNlFOnkd18h1a 3w00txt/wUTWcU8dJYHG6Tg+K/7AVF/lIAro+BDrlk8pj9q510ln+S9dH6BlDT9g 5x7K+4VIzqm5qNtTKEHvy8ayS2F20ON3HMRsS0e/mrnwE9FDjGl5Jro/9MSvF5JZ bFlpPZnX+X3N9VzD5UatDG1AHYEZO6O4n1cw85GdY2BoCkjM49DV66pCjwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAwxe8xzZKW47uhzZbhDNj9+jXO9MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2ZjZDZhZGFiLTA2ZjAtNDY3Ni05NTY4LTZkNGQ0OGY3NjU4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQC3IG13mOSktphqK2oX y4UhqaNI2RCXFPTTm7R691v/43NKp/P0ZRdzE0U9o8GrviSMhUWPOMGcbhDkXsJr 2yjCzouwre90JQqu8ClE1N8eKG2Qlec35cfQnbUfqn2RK+GUx08IXIWV3O49y54h l7Kb00ZEroF0Xn+lStxkZXAKG+YgQjNiyiL1RLwUs7BK+DkoZQyd6B5sPKXHYDlY QKAGOao/pzu6wiJAE4QMWmBYI4mObLuJYcv7IZsOEjzqV/T/uEFyjdwp7rC1J9qx BFkEw6l+Mc4OL+L91sE+yjcHnUb0w/kBgFtPxYcjIZuj9QTOhINDOqRU7ypF4ttQ frlH -----END CERTIFICATE-----Generated at Sun Feb 16 15:41:42 2025 by rpki-client