$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/7cf17e61-b049-438c-8aaf-2d4714b51857.roa File: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (raw, json) Hash identifier: Y9dWUysrSBgOoNGEkgnTE8YAoU8Sq1lmaGhwRviK25M= Subject key identifier: 99:FA:5D:3E:94:EF:2B:45:65:12:08:80:94:10:FB:EB:E4:4A:69:CF Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 63C14D36B0AEC24FF036324912751BE51D8CEEF9 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/7cf17e61-b049-438c-8aaf-2d4714b51857.roa Signing time: Wed 05 Feb 2025 00:00:00 +0000 ROA not before: Wed 05 Feb 2025 00:00:00 +0000 ROA not after: Wed 12 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fa:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 00:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c1:4d:36:b0:ae:c2:4f:f0:36:32:49:12:75:1b:e5:1d:8c:ee:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000 Validity Not Before: Feb 5 00:00:00 2025 GMT Not After : Mar 12 23:59:59 2025 GMT Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:45:37:30:96:3a:2e:b2:2e:a9:2d:75:87:87: f8:88:8d:60:4e:5d:72:92:67:bc:a5:53:9f:bd:0b: 9d:e8:b0:f8:3e:9a:91:96:92:83:f2:c9:55:74:67: 58:f2:66:8a:2d:12:6d:8a:ee:9b:c3:6e:bb:05:ae: bd:2a:bb:1c:bf:e3:e9:12:92:55:f0:10:d0:4b:fe: 1b:72:ff:ea:7a:b6:8c:10:3c:10:76:71:42:2c:0c: 82:5a:30:1a:07:66:94:c0:c5:e2:23:78:9e:4d:da: 03:a0:37:9b:d3:e4:92:c7:1e:18:9d:70:35:24:fd: e8:5e:88:21:8d:d7:8b:49:f3:9d:22:73:54:7b:c3: bd:0f:df:d3:ea:cb:fc:d7:99:94:61:1f:f9:07:81: d6:21:23:4b:3d:c4:ae:9c:5c:f9:5c:39:75:eb:f7: c5:2b:67:36:72:81:6e:f7:f9:b2:9d:3b:91:cc:9f: 10:a2:b8:ea:0f:4d:09:35:70:c0:19:6b:c7:d2:53: 72:14:e4:f4:0d:10:9c:b2:f4:30:14:83:e7:4a:5c: 5d:51:d6:3c:c4:da:cd:46:2a:8e:ee:6d:ff:7f:85: 24:70:83:77:a0:b3:82:51:52:0d:58:d6:44:98:00: 5d:a2:07:95:60:81:21:52:92:48:51:e9:3c:2a:f0: d4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:FA:5D:3E:94:EF:2B:45:65:12:08:80:94:10:FB:EB:E4:4A:69:CF X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/7cf17e61-b049-438c-8aaf-2d4714b51857.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fa:4000::/40 Signature Algorithm: sha256WithRSAEncryption 13:9a:20:34:1f:1d:f8:7e:2b:c6:07:b8:c2:ba:6c:3e:24:d1: cf:e9:2b:6e:93:83:9c:95:fa:4e:87:75:a7:21:b3:64:a3:2a: f7:e0:67:3e:7e:24:85:bd:f4:63:20:5f:ea:c5:f8:88:11:42: c7:6c:a0:83:0f:30:3f:0a:8f:cc:88:36:65:9d:40:c7:26:5a: 85:41:b3:ac:fa:9b:12:db:ea:51:40:dc:75:bc:7f:c3:34:20: c9:dc:3a:f9:4e:ec:45:4d:e4:9d:87:24:4f:45:c3:1b:53:c2: 3e:6f:55:61:6c:40:73:c1:d0:f8:7d:c3:08:e3:b3:c8:41:75: 3a:5e:a8:30:4d:0b:81:8b:05:3b:a8:c7:64:44:13:d5:e9:ec: 8d:7f:74:f3:cb:30:b3:b2:40:63:f5:a2:1d:27:e1:24:19:2e: cd:6f:0a:d6:ce:de:10:6e:2d:a5:83:49:90:b2:51:97:c8:b7: d7:e2:25:40:a2:b9:34:a7:70:ef:f7:fc:3a:4e:de:ae:59:fb: 08:b2:ce:8a:22:b7:9c:93:f5:d3:cb:3d:60:aa:99:a9:d5:ff: 99:66:9f:8e:80:bd:ff:b9:6d:6e:ff:33:dd:da:ba:a5:7a:c9: 56:ab:da:8e:ae:7e:11:2a:fa:f5:e4:0e:86:24:42:05:77:93: aa:2d:1f:2f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUY8FNNrCuwk/wNjJJEnUb5R2M7vkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDIwNTAwMDAwMFoX DTI1MDMxMjIzNTk1OVowejFJMEcGA1UEBRNAMWM4NjM0NGI4NDc4MDA3OWY5MzFi OTYxNDY2OTYyNjM5ZGUyMjMyOTcwNWY0NjAzZGIwMmJiZTJhZDFlZDc0OTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkU3MJY6LrIuqS11h4f4iI1gTl1y kme8pVOfvQud6LD4PpqRlpKD8slVdGdY8maKLRJtiu6bw267Ba69Krscv+PpEpJV 8BDQS/4bcv/qeraMEDwQdnFCLAyCWjAaB2aUwMXiI3ieTdoDoDeb0+SSxx4YnXA1 JP3oXoghjdeLSfOdInNUe8O9D9/T6sv815mUYR/5B4HWISNLPcSunFz5XDl16/fF K2c2coFu9/mynTuRzJ8QorjqD00JNXDAGWvH0lNyFOT0DRCcsvQwFIPnSlxdUdY8 xNrNRiqO7m3/f4UkcIN3oLOCUVINWNZEmABdogeVYIEhUpJIUek8KvDUUQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJn6XT6U7ytFZRIIgJQQ++vkSmnPMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzdjZjE3ZTYxLWIwNDktNDM4Yy04YWFmLTJkNDcxNGI1MTg1Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+kAwDQYJKoZIhvcNAQELBQADggEBABOaIDQfHfh+K8YHuMK6 bD4k0c/pK26Tg5yV+k6Hdachs2SjKvfgZz5+JIW99GMgX+rF+IgRQsdsoIMPMD8K j8yINmWdQMcmWoVBs6z6mxLb6lFA3HW8f8M0IMncOvlO7EVN5J2HJE9FwxtTwj5v VWFsQHPB0Ph9wwjjs8hBdTpeqDBNC4GLBTuox2REE9Xp7I1/dPPLMLOyQGP1oh0n 4SQZLs1vCtbO3hBuLaWDSZCyUZfIt9fiJUCiuTSncO/3/DpO3q5Z+wiyzooit5yT 9dPLPWCqmanV/5lmn46Avf+5bW7/M93auqV6yVar2o6ufhEq+vXkDoYkQgV3k6ot Hy8= -----END CERTIFICATE-----Generated at Sun Feb 16 15:18:48 2025 by rpki-client