$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa File: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (raw, json) Hash identifier: CL2uRnMV6eimM2PBmPt4n9j/eQ4oqAFXYZEH9YSQhOw= Subject key identifier: C8:B5:34:13:C8:27:F4:44:53:93:E1:6D:1A:67:04:1A:BA:43:51:80 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6890E7AFDCC50DC8908C40264BA6ADF47F1D9447 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fa:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 00:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:90:e7:af:dc:c5:0d:c8:90:8c:40:26:4b:a6:ad:f4:7f:1d:94:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f1:14:c6:71:ad:ba:8d:99:24:4f:8e:04:d2: 77:32:44:40:e0:cd:e1:32:8d:32:e0:4c:26:42:48: 95:0a:e3:b1:aa:4d:2d:c2:99:b1:0f:61:bb:97:e9: 95:29:4b:bf:0d:97:26:e2:bc:d0:9a:2f:71:47:2c: fc:d1:1c:57:b0:10:20:03:f0:10:dc:bc:5b:16:6c: 8e:35:9f:17:b1:c4:f1:7b:72:65:ed:0f:80:26:d8: d0:03:ef:15:f0:99:6c:7d:59:77:7b:d3:71:61:e1: 52:92:27:85:d0:26:2e:cd:87:09:78:45:28:6b:80: b5:62:c8:30:02:25:c8:a7:de:e6:0c:ed:25:d9:28: fd:63:03:38:dd:99:25:04:b4:7e:16:dc:b4:cd:4e: 20:24:1c:cc:86:e4:45:84:9a:49:0d:a4:90:7d:18: cf:d9:03:94:fe:38:42:a2:7f:0e:f1:dd:f7:8f:b2: 6f:68:12:6a:17:b9:f2:57:e0:07:eb:75:6a:d9:05: fe:2d:b7:a3:28:fa:0d:62:bf:df:39:9d:8c:e6:8c: 51:af:4c:90:1b:ee:87:e7:1b:51:d0:e1:a2:fe:ba: 17:99:5e:f0:aa:9b:30:ef:94:f0:18:a4:3f:c2:93: eb:04:46:d6:18:68:8c:d5:fd:d8:67:76:68:c3:81: df:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B5:34:13:C8:27:F4:44:53:93:E1:6D:1A:67:04:1A:BA:43:51:80 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fa:8000::/40 Signature Algorithm: sha256WithRSAEncryption 50:62:1e:8b:40:ea:7e:11:22:e0:0c:ea:4f:97:91:d4:95:25: 37:fa:4a:49:61:4d:d7:f3:f1:8c:dc:ae:a5:64:9d:40:3e:01: a2:a7:9d:fe:86:18:48:62:bc:6f:24:fd:29:50:cd:b4:f8:ce: d2:bc:f3:4c:b7:36:8b:cf:f3:d1:f7:14:c0:b4:ae:bd:f0:f0: e8:a8:58:0b:07:24:27:a9:3a:bb:2a:c4:b8:fe:4d:d9:7f:2e: db:1e:f0:20:c6:36:a0:40:b2:70:14:6d:55:8f:80:18:10:2d: b8:41:bd:1d:92:42:9d:02:28:d3:0b:6a:12:4d:a0:6e:51:0d: 72:41:68:6c:c4:d1:af:11:18:24:16:d6:f1:fd:a1:b9:e5:60: 82:8c:eb:56:07:9d:4d:24:13:81:7f:f4:e4:90:74:94:0d:f4: a0:d5:e6:9c:8e:5c:ee:0f:c0:88:4e:b4:05:ba:ff:e6:a8:55: 44:25:ae:b0:74:1d:f5:c9:54:cb:4b:d0:d5:ba:db:83:aa:f8: c1:31:da:a9:cc:a1:b8:99:50:ca:64:76:88:9e:92:18:00:b2: de:7b:72:e9:35:1c:97:01:23:d6:8a:94:dd:e5:10:ef:a3:de: 36:1d:cd:12:2f:af:e5:e9:0f:ce:3d:2d:68:5c:47:11:a5:eb: 8c:51:f3:9e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUaJDnr9zFDciQjEAmS6at9H8dlEcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDIwNDAwMDAwMFoX DTI1MDMxMTIzNTk1OVowejFJMEcGA1UEBRNAYTkyMmMwMDI5YmE4ZDFmNmQ3NDk1 OTUxMjZiM2E1ZjRmYjQyOWJhMWFiNjQ0YTQ0MTMxOTgwOWE1NDBjNDFhMTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPEUxnGtuo2ZJE+OBNJ3MkRA4M3h Mo0y4EwmQkiVCuOxqk0twpmxD2G7l+mVKUu/DZcm4rzQmi9xRyz80RxXsBAgA/AQ 3LxbFmyONZ8XscTxe3Jl7Q+AJtjQA+8V8JlsfVl3e9NxYeFSkieF0CYuzYcJeEUo a4C1YsgwAiXIp97mDO0l2Sj9YwM43ZklBLR+Fty0zU4gJBzMhuRFhJpJDaSQfRjP 2QOU/jhCon8O8d33j7JvaBJqF7nyV+AH63Vq2QX+LbejKPoNYr/fOZ2M5oxRr0yQ G+6H5xtR0OGi/roXmV7wqpsw75TwGKQ/wpPrBEbWGGiM1f3YZ3Zow4HfEQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMi1NBPIJ/REU5PhbRpnBBq6Q1GAMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzM1Mzc2OTFjLTFhMTAtNDY5OS1hOGEwLTRjZWM1MGEzNTUzNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+oAwDQYJKoZIhvcNAQELBQADggEBAFBiHotA6n4RIuAM6k+X kdSVJTf6SklhTdfz8YzcrqVknUA+AaKnnf6GGEhivG8k/SlQzbT4ztK880y3NovP 89H3FMC0rr3w8OioWAsHJCepOrsqxLj+Tdl/Ltse8CDGNqBAsnAUbVWPgBgQLbhB vR2SQp0CKNMLahJNoG5RDXJBaGzE0a8RGCQW1vH9obnlYIKM61YHnU0kE4F/9OSQ dJQN9KDV5pyOXO4PwIhOtAW6/+aoVUQlrrB0HfXJVMtL0NW624Oq+MEx2qnMobiZ UMpkdoiekhgAst57cuk1HJcBI9aKlN3lEO+j3jYdzRIvr+XpD849LWhcRxGl64xR 854= -----END CERTIFICATE-----Generated at Sun Feb 16 15:43:55 2025 by rpki-client