$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa File: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (raw, json) Hash identifier: nRQR7sEQDdYN4kq6ozsl31N9KdyXrOmOaU7CyV40u9w= Subject key identifier: E4:94:FA:C5:41:94:8D:EF:36:11:7C:96:21:AC:E9:B1:17:38:80:02 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 728F53ADA632F5325DCD5CDF9A1EE0E0A292E055 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa Signing time: Fri 28 Feb 2025 20:20:04 +0000 ROA not before: Fri 28 Feb 2025 20:20:04 +0000 ROA not after: Fri 04 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80a0:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:8f:53:ad:a6:32:f5:32:5d:cd:5c:df:9a:1e:e0:e0:a2:92:e0:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000 Validity Not Before: Feb 28 20:20:04 2025 GMT Not After : Apr 4 23:59:59 2025 GMT Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:71:06:e7:6c:3a:72:b0:21:c8:e7:6c:d9:68: 27:56:94:24:68:9c:cf:15:58:64:f6:32:c1:fd:68: 8c:b3:5f:6c:aa:37:a8:f4:bc:b1:4f:b5:ec:ef:e2: 66:72:08:9a:67:43:c4:cf:9f:10:a1:51:55:34:03: 6a:8c:89:6d:f7:4a:20:61:63:62:48:62:49:04:71: 3d:3e:8c:60:36:c4:e4:3d:44:d0:cb:fa:7a:84:c5: b3:84:85:e2:ba:73:3b:76:19:20:71:46:ea:b5:43: ed:55:91:74:d8:ea:09:4c:b4:af:c4:a5:d4:8c:94: f0:8e:f7:c5:7f:44:d3:2f:9d:5c:4a:96:62:92:28: 74:96:33:95:f8:77:ab:03:d9:7e:a0:e4:e6:a9:0d: 2a:1a:c4:07:1a:0c:cf:8e:50:bf:cf:11:90:66:8f: fc:3b:41:06:9f:f4:d8:37:b1:82:53:76:a5:e7:a9: b0:09:50:de:25:b7:82:63:88:58:c3:e0:bf:c6:79: 19:a9:4d:2a:db:e2:d9:ad:e2:15:ef:56:70:67:41: 0a:0e:f8:f4:58:29:de:3d:84:2d:de:2f:35:23:63: f6:45:bc:fe:53:56:9c:64:cf:75:c3:45:1b:9c:d4: 24:b8:7c:ca:d6:40:db:af:60:07:b4:8d:b3:02:da: 99:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:94:FA:C5:41:94:8D:EF:36:11:7C:96:21:AC:E9:B1:17:38:80:02 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80a0:4000::/40 Signature Algorithm: sha256WithRSAEncryption 7e:e2:c7:ee:93:3d:aa:80:60:17:38:7b:da:9d:7c:10:55:3d: 9e:93:58:8a:a0:5f:f6:77:32:27:8c:df:3a:3a:28:1e:8e:61: 79:ed:c7:2d:2f:e8:a5:3e:57:f5:77:cc:c0:2a:0d:a6:4b:0e: b0:b6:15:71:d9:40:95:c1:8c:74:81:7a:53:11:62:b9:4f:37: 3a:1f:87:52:7b:12:21:de:0c:b6:71:42:5f:95:a4:f1:eb:4c: 7e:01:31:e0:07:7c:c9:a7:10:73:23:15:0b:d1:4f:de:56:b9: 39:6e:a8:77:85:e7:64:04:61:a2:1e:0c:85:5a:2c:45:ac:5b: cb:de:6f:80:2d:24:86:e3:3f:4e:d2:5e:85:c0:34:da:3f:36: 97:08:c9:57:3e:e1:72:b7:23:b2:39:e4:2a:96:b1:3c:02:bb: a9:5a:2f:f1:a1:f9:ae:67:b2:01:bd:17:4d:75:43:42:84:08: ac:f4:12:0c:76:88:bd:67:f6:69:7e:c6:1a:5a:b4:30:2f:29: b3:16:37:bc:88:12:76:3b:41:6a:4f:ae:46:f0:28:5f:8d:c3: 4d:6a:ae:28:46:85:12:1e:e6:34:00:04:a2:a5:b2:1b:6c:3e: bc:34:6e:ef:8b:d8:38:c7:c3:5f:61:d4:0d:45:71:32:9f:56: 0c:7d:e6:88 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUco9TraYy9TJdzVzfmh7g4KKS4FUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDIyODIwMjAwNFoX DTI1MDQwNDIzNTk1OVowejFJMEcGA1UEBRNAZTAzODA0MTllZTEzYTcxODhhZmI0 Nzk3NjJiMGQ3MzJlZjQzNjJlMTI3ZjE0NmM1ODViOGY3ZmRhZWE4ODMyMTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XEG52w6crAhyOds2WgnVpQkaJzP FVhk9jLB/WiMs19sqjeo9LyxT7Xs7+JmcgiaZ0PEz58QoVFVNANqjIlt90ogYWNi SGJJBHE9PoxgNsTkPUTQy/p6hMWzhIXiunM7dhkgcUbqtUPtVZF02OoJTLSvxKXU jJTwjvfFf0TTL51cSpZikih0ljOV+HerA9l+oOTmqQ0qGsQHGgzPjlC/zxGQZo/8 O0EGn/TYN7GCU3al56mwCVDeJbeCY4hYw+C/xnkZqU0q2+LZreIV71ZwZ0EKDvj0 WCnePYQt3i81I2P2Rbz+U1acZM91w0UbnNQkuHzK1kDbr2AHtI2zAtqZnQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOSU+sVBlI3vNhF8liGs6bEXOIACMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2VmZGNiNDNiLTJmMTktNDEwNy1hMGEzLWM1NWRhY2NiMjcxNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+AoEAwDQYJKoZIhvcNAQELBQADggEBAH7ix+6TPaqAYBc4e9qd fBBVPZ6TWIqgX/Z3MieM3zo6KB6OYXntxy0v6KU+V/V3zMAqDaZLDrC2FXHZQJXB jHSBelMRYrlPNzofh1J7EiHeDLZxQl+VpPHrTH4BMeAHfMmnEHMjFQvRT95WuTlu qHeF52QEYaIeDIVaLEWsW8veb4AtJIbjP07SXoXANNo/NpcIyVc+4XK3I7I55CqW sTwCu6laL/Gh+a5nsgG9F011Q0KECKz0Egx2iL1n9ml+xhpatDAvKbMWN7yIEnY7 QWpPrkbwKF+Nw01qrihGhRIe5jQABKKlshtsPrw0bu+L2DjHw19h1A1FcTKfVgx9 5og= -----END CERTIFICATE-----Generated at Thu Mar 13 23:37:30 2025 by rpki-client