$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa File: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (raw, json) Hash identifier: 2agZgq7DgnhaNAF7H2lFmqYj4FWOcONG7sBUkQmuSLs= Subject key identifier: 2C:9C:1D:8B:03:FE:88:14:31:92:77:0A:C8:34:7A:0A:51:44:DB:ED Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 05DFCA354E2A825BF454179CE7074F805A450329 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 00:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:df:ca:35:4e:2a:82:5b:f4:54:17:9c:e7:07:4f:80:5a:45:03:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:97:b2:2c:e4:f7:04:ed:24:ef:b8:2d:d7:1d: 99:75:df:0f:81:df:e6:de:f5:bd:ea:ec:8f:68:15: bb:93:00:d5:01:c0:4a:f2:e0:5c:85:9e:f5:a2:1e: 20:0a:c6:6a:6c:72:9b:ce:c1:5d:b1:f9:2c:c5:04: 9d:e2:3c:7f:29:15:a4:af:a4:bb:24:ba:b5:ed:7b: f8:dc:85:d9:9d:83:33:f4:f1:5e:38:5a:c6:5f:2a: 8c:d9:48:1c:6b:42:1a:a8:a7:a3:34:c0:1b:4d:8d: ea:61:ce:58:ac:df:1d:b7:05:0b:7b:0d:ad:96:7a: 1b:b1:dd:0f:28:2f:0e:a9:04:0b:1b:f6:71:de:5b: ea:6b:e5:64:08:75:7c:fa:2e:ee:dd:cd:8e:66:1b: e4:ba:17:ef:3c:76:cf:9b:03:e8:b7:e0:45:03:22: b6:6f:ea:ba:65:c9:2b:48:56:19:3e:1f:41:f4:00: 6f:8f:28:94:96:c8:3b:71:70:82:11:2c:84:0a:0b: 1f:ec:03:56:fb:1e:8b:f8:36:96:bb:4d:52:da:d5: 7f:a1:3e:b6:4d:c5:94:80:38:5c:39:7f:d3:a9:55: f7:4f:f8:28:da:2e:0c:7d:e8:b9:49:e9:d4:ca:db: 9a:ab:5b:1a:9e:ed:80:f9:bc:bd:23:50:62:04:9f: 41:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9C:1D:8B:03:FE:88:14:31:92:77:0A:C8:34:7A:0A:51:44:DB:ED X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:4000::/40 Signature Algorithm: sha256WithRSAEncryption 58:5b:8a:bf:05:00:f3:b8:f4:95:80:f4:c1:85:81:06:d6:3f: 77:68:b6:1b:f9:58:fc:7c:45:0f:a4:26:b5:33:1d:de:62:6a: 39:76:17:c9:10:e0:92:df:b9:ee:4e:0c:b3:b2:ee:f0:4a:04: 8d:d7:d9:86:d5:a1:9f:55:83:8e:e1:84:06:82:f6:bc:d8:e9: af:51:51:6c:b2:c7:b3:4f:31:8a:50:d9:c3:aa:27:ed:60:d7: ec:2b:c5:59:72:8e:2d:a4:df:9b:dd:6a:0c:b7:91:1a:85:7a: d8:c0:de:a0:90:87:c9:ec:50:bd:0e:fe:af:61:aa:d0:da:5e: 27:f5:43:e8:b1:5a:e4:23:64:de:34:23:14:d2:3a:52:46:60: 41:bb:b5:e6:2b:d2:3a:e7:c9:95:87:ab:be:fd:6d:dc:e6:a3: d4:82:6b:42:b2:88:39:e8:dd:0b:72:93:82:e8:a9:b9:de:c5: 17:cf:da:25:b1:0f:84:4b:36:e2:c7:e0:28:d3:6f:0b:85:20: 8a:85:d2:9a:f7:07:2a:1c:a6:85:27:7a:4d:63:aa:b3:c2:d8: b1:97:a1:0d:55:66:64:b0:69:3c:83:20:85:be:aa:dc:55:b4: 01:0e:44:1c:52:38:87:06:53:d1:77:37:38:21:3a:98:79:af: 88:e1:35:f1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUBd/KNU4qglv0VBec5wdPgFpFAykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDIwNDAwMDAwMFoX DTI1MDMxMTIzNTk1OVowejFJMEcGA1UEBRNAMzNlZWJjZWUzMzM1NjY3OTk4Zjgy ZDQyMGQ4NzExMzNiOWY4ZjExNTAwYzA3YzlmYTY0Y2NhNjU2OTIwY2QxNTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JeyLOT3BO0k77gt1x2Zdd8Pgd/m 3vW96uyPaBW7kwDVAcBK8uBchZ71oh4gCsZqbHKbzsFdsfksxQSd4jx/KRWkr6S7 JLq17Xv43IXZnYMz9PFeOFrGXyqM2Ugca0IaqKejNMAbTY3qYc5YrN8dtwULew2t lnobsd0PKC8OqQQLG/Zx3lvqa+VkCHV8+i7u3c2OZhvkuhfvPHbPmwPot+BFAyK2 b+q6ZckrSFYZPh9B9ABvjyiUlsg7cXCCESyECgsf7ANW+x6L+DaWu01S2tV/oT62 TcWUgDhcOX/TqVX3T/go2i4Mfei5SenUytuaq1sanu2A+by9I1BiBJ9BYQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCycHYsD/ogUMZJ3Csg0egpRRNvtMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBhZTA1ODg5LWViNmQtNDE0Yy04OGU5LWJjMjkzMTcxZjUzMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+UAwDQYJKoZIhvcNAQELBQADggEBAFhbir8FAPO49JWA9MGF gQbWP3dothv5WPx8RQ+kJrUzHd5iajl2F8kQ4JLfue5ODLOy7vBKBI3X2YbVoZ9V g47hhAaC9rzY6a9RUWyyx7NPMYpQ2cOqJ+1g1+wrxVlyji2k35vdagy3kRqFetjA 3qCQh8nsUL0O/q9hqtDaXif1Q+ixWuQjZN40IxTSOlJGYEG7teYr0jrnyZWHq779 bdzmo9SCa0KyiDno3Qtyk4LoqbnexRfP2iWxD4RLNuLH4CjTbwuFIIqF0pr3Byoc poUnek1jqrPC2LGXoQ1VZmSwaTyDIIW+qtxVtAEORBxSOIcGU9F3NzghOph5r4jh NfE= -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:35 2025 by rpki-client