$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa File: dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa (raw, json) Hash identifier: qa4CY7XytViLV3nCXQrzemrnPqCKKKhT0gH/z9vgJ0E= Subject key identifier: B0:07:30:88:27:9B:B3:8C:D9:A5:69:2F:26:AA:47:E1:F5:33:5E:86 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3B7947B7834FEB1A932B7654043F6C8183832CBA Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa Signing time: Tue 06 May 2025 00:00:46 +0000 ROA not before: Tue 06 May 2025 00:00:46 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 00:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:79:47:b7:83:4f:eb:1a:93:2b:76:54:04:3f:6c:81:83:83:2c:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 6 00:00:46 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=e965017ebfc6d87fbcfd8adbd930a8bd508dcd8a61f3ae39f8932452b0958be1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8b:9e:32:17:41:db:11:06:15:63:ba:f0:d6: b2:1c:b5:8c:de:31:26:19:4a:9b:62:52:c2:80:3f: 27:27:03:50:20:4f:1c:ca:df:fe:97:26:da:f8:7a: b6:87:d1:1f:c9:35:2f:87:8e:af:f9:9f:c7:f6:e6: c5:1c:b9:02:00:ae:bf:08:41:c3:1b:5f:4b:44:39: 63:1c:7f:85:73:11:95:14:88:a0:f0:a0:c6:8e:a8: bc:0c:4c:06:aa:36:6a:2d:e1:ea:a4:c5:7c:09:36: 2b:94:27:69:1e:4d:88:0e:75:dc:d9:6d:b3:77:c7: 0f:89:f7:9b:56:ec:b2:27:e4:93:6d:93:4d:ab:6d: 1c:d2:8a:f0:8b:f6:b7:eb:87:86:07:94:ed:2e:4b: 4f:c9:cf:3f:81:b6:06:ad:37:ee:78:45:16:4b:e7: 6d:ab:df:f0:27:5a:2b:02:6f:38:46:63:a6:2b:20: 01:0d:4b:16:42:65:50:08:57:e1:4a:c8:c9:10:70: d3:f9:5c:1e:cd:b8:0b:22:76:47:05:50:e9:9e:19: a0:aa:ea:2a:19:84:e4:96:fa:73:64:ce:3c:da:e9: df:72:88:66:86:34:74:05:77:be:c8:09:bf:b6:69: f4:cf:21:00:4b:41:44:9b:af:33:fe:67:2a:26:cc: 94:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:07:30:88:27:9B:B3:8C:D9:A5:69:2F:26:AA:47:E1:F5:33:5E:86 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:2000::/40 Signature Algorithm: sha256WithRSAEncryption 44:24:69:c4:aa:05:cc:b5:27:31:83:fd:38:25:fd:73:b7:1c: 5d:4f:9d:a2:ab:48:16:12:f9:81:15:d4:7c:48:9c:0f:70:af: b3:dc:ac:85:78:60:79:d4:11:18:9e:08:0f:7e:b4:d3:04:92: 33:4d:fb:df:0f:09:7b:23:75:ba:46:8e:34:7a:0e:57:8d:82: bb:f2:3d:0c:3f:97:ab:b3:77:b8:e9:3a:b0:85:8f:98:42:cf: da:02:82:d8:6d:6c:38:0a:c0:dd:00:a6:5b:fc:11:3d:44:ea: 32:8c:11:6d:81:4c:ae:3c:45:5b:33:01:9d:ed:3c:bb:cd:20: fd:63:e5:43:19:c1:01:66:30:86:c0:b9:c8:72:8d:dd:0e:5a: e4:0c:b3:a5:d8:08:51:b2:2d:21:dc:1b:24:c0:51:1a:cb:d0: 98:ab:74:6c:13:1e:e7:12:40:86:f7:70:f5:32:28:d8:79:97: 0e:61:84:2c:e0:c1:b0:ee:c2:8e:42:2e:82:03:0f:9a:85:55: 7f:33:92:7d:db:72:a6:5d:25:f4:95:e3:bc:c0:70:85:36:bc: 74:ae:2f:b6:87:f6:58:1d:d0:04:96:78:84:8c:2b:45:9a:65: 30:89:53:24:72:12:0a:d5:1b:32:8c:33:74:51:82:f4:f5:93: a1:5a:14:fb -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUO3lHt4NP6xqTK3ZUBD9sgYODLLowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUwNjAwMDA0NloX DTI1MDYxMDIzNTk1OVowejFJMEcGA1UEBRNAZTk2NTAxN2ViZmM2ZDg3ZmJjZmQ4 YWRiZDkzMGE4YmQ1MDhkY2Q4YTYxZjNhZTM5Zjg5MzI0NTJiMDk1OGJlMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4ueMhdB2xEGFWO68NayHLWM3jEm GUqbYlLCgD8nJwNQIE8cyt/+lyba+Hq2h9EfyTUvh46v+Z/H9ubFHLkCAK6/CEHD G19LRDljHH+FcxGVFIig8KDGjqi8DEwGqjZqLeHqpMV8CTYrlCdpHk2IDnXc2W2z d8cPifebVuyyJ+STbZNNq20c0orwi/a364eGB5TtLktPyc8/gbYGrTfueEUWS+dt q9/wJ1orAm84RmOmKyABDUsWQmVQCFfhSsjJEHDT+VwezbgLInZHBVDpnhmgquoq GYTklvpzZM482unfcohmhjR0BXe+yAm/tmn0zyEAS0FEm68z/mcqJsyUTwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLAHMIgnm7OM2aVpLyaqR+H1M16GMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RkM2Q2MDIwLWJlNzgtNDZjYS05YjhhLTYzZmRiZmM5ZGE5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9SAwDQYJKoZIhvcNAQELBQADggEBAEQkacSqBcy1JzGD/Tgl /XO3HF1PnaKrSBYS+YEV1HxInA9wr7PcrIV4YHnUERieCA9+tNMEkjNN+98PCXsj dbpGjjR6DleNgrvyPQw/l6uzd7jpOrCFj5hCz9oCgthtbDgKwN0Aplv8ET1E6jKM EW2BTK48RVszAZ3tPLvNIP1j5UMZwQFmMIbAuchyjd0OWuQMs6XYCFGyLSHcGyTA URrL0JirdGwTHucSQIb3cPUyKNh5lw5hhCzgwbDuwo5CLoIDD5qFVX8zkn3bcqZd JfSV47zAcIU2vHSuL7aH9lgd0ASWeISMK0WaZTCJUyRyEgrVGzKMM3RRgvT1k6Fa FPs= -----END CERTIFICATE-----Generated at Wed May 7 05:50:20 2025 by rpki-client