$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/01d4bf11-2541-434d-85c1-6b1e095e0eec.roa File: 01d4bf11-2541-434d-85c1-6b1e095e0eec.roa (raw, json) Hash identifier: K7Ife5CZKRcgeR0EPSuCMlzRlvWG78l7i4dxMPzV5mc= Subject key identifier: F9:D0:B1:45:D7:45:59:FF:DC:A2:2B:17:BB:8C:71:53:D9:D2:69:CD Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5F06C8717CF6A8F082757276AEFC98C51A7ED300 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/01d4bf11-2541-434d-85c1-6b1e095e0eec.roa Signing time: Mon 09 Jun 2025 15:30:24 +0000 ROA not before: Mon 09 Jun 2025 15:30:24 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:06:c8:71:7c:f6:a8:f0:82:75:72:76:ae:fc:98:c5:1a:7e:d3:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 9 15:30:24 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=e0993bfbc9bb9d935c1c8cf64720430c596a588d86ced6d2fcff51199363478a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c6:67:c9:65:ff:ad:cd:4b:38:a7:d7:e2:21: 2c:92:44:60:4b:0c:69:9c:b5:b9:32:46:79:df:e2: f1:42:6e:ef:e6:48:2d:42:f4:a5:db:c1:c4:dc:01: 03:61:7d:3d:16:35:cd:62:0b:58:0f:6c:dd:2c:a4: 71:a3:b0:51:1d:72:b6:7b:8e:bb:15:8a:c1:4e:fc: d2:8b:5e:53:b5:44:d8:c2:ce:ae:45:18:7c:b1:6e: 62:8f:3a:23:0e:79:12:ac:48:01:55:a2:38:a1:8a: 9b:31:5c:fd:a3:73:15:16:93:2a:5c:5f:d3:b0:95: 3d:39:cf:11:87:c9:fb:45:74:a2:06:cc:e8:06:83: 57:08:7f:d1:7a:5f:ec:fb:44:a2:d9:6c:77:a6:1a: 25:55:79:54:ea:3f:a5:e8:d6:5c:86:6b:11:8f:f2: 71:5c:d4:c4:4c:8c:3f:ba:ca:a2:e0:89:6d:3b:d9: 6b:b8:8c:c7:41:77:82:aa:16:83:bb:88:5b:c2:0a: c4:49:3a:8d:1a:da:f2:6b:71:23:68:79:d1:e8:c8: b2:e3:7f:91:71:28:bd:53:3c:1b:e6:e0:11:d6:26: 11:50:f3:e9:7b:68:6c:44:d0:a7:ba:22:f8:c9:b7: 49:1c:4b:da:b3:94:56:de:bc:29:70:ca:43:2c:b3: 5b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D0:B1:45:D7:45:59:FF:DC:A2:2B:17:BB:8C:71:53:D9:D2:69:CD X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/01d4bf11-2541-434d-85c1-6b1e095e0eec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 2a:e3:0d:00:0c:7e:59:c8:84:9b:94:c6:55:32:31:a3:00:43: cf:2f:0e:5c:3f:f8:9f:03:28:d6:b1:22:c4:7f:db:ce:2b:c7: 25:0c:73:8f:6b:cb:dc:5c:85:3b:83:66:6d:76:b9:af:bb:16: 02:57:ba:05:3e:25:c4:6e:5c:4e:4c:1d:d7:39:3f:03:9c:b9: ac:49:f0:1f:29:23:17:f4:99:43:25:96:66:f0:35:a2:97:23: a2:f4:3b:24:44:fb:f5:c2:3a:d0:2f:f0:05:1b:87:30:c6:50: af:a7:8b:e0:43:08:1c:c2:cc:5f:d9:b6:b5:7b:bf:1f:90:d5: e5:45:f6:82:40:4d:36:51:12:d1:aa:a7:b0:c1:ba:73:e4:b9: d2:85:ba:f3:09:40:34:19:1c:23:2e:46:01:0b:30:eb:a9:89: 9d:e0:f7:4e:57:fb:d7:3e:62:ce:40:75:a2:ba:2a:29:2a:4d: 49:b9:56:4f:e9:e0:b7:84:52:e6:fe:e0:0f:8d:b0:92:f2:f1: 1a:35:7c:8c:ed:18:0c:48:b3:7a:00:fc:8d:43:9d:72:1d:03: b6:c2:d5:78:71:7d:d9:fc:a6:8e:4b:96:99:65:e5:5c:39:17: e1:be:be:89:4d:98:dc:19:d4:bb:64:4a:15:a1:18:32:e7:a5: 5d:db:4f:3d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUXwbIcXz2qPCCdXJ2rvyYxRp+0wAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwOTE1MzAyNFoX DTI1MDcxNDIzNTk1OVowejFJMEcGA1UEBRNAZTA5OTNiZmJjOWJiOWQ5MzVjMWM4 Y2Y2NDcyMDQzMGM1OTZhNTg4ZDg2Y2VkNmQyZmNmZjUxMTk5MzYzNDc4YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1sZnyWX/rc1LOKfX4iEskkRgSwxp nLW5MkZ53+LxQm7v5kgtQvSl28HE3AEDYX09FjXNYgtYD2zdLKRxo7BRHXK2e467 FYrBTvzSi15TtUTYws6uRRh8sW5ijzojDnkSrEgBVaI4oYqbMVz9o3MVFpMqXF/T sJU9Oc8Rh8n7RXSiBszoBoNXCH/Rel/s+0Si2Wx3pholVXlU6j+l6NZchmsRj/Jx XNTETIw/usqi4IltO9lruIzHQXeCqhaDu4hbwgrESTqNGtrya3EjaHnR6Miy43+R cSi9Uzwb5uAR1iYRUPPpe2hsRNCnuiL4ybdJHEvas5RW3rwpcMpDLLNbnQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPnQsUXXRVn/3KIrF7uMcVPZ0mnNMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzAxZDRiZjExLTI1NDEtNDM0ZC04NWMxLTZiMWUwOTVlMGVlYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQAq4w0ADH5ZyISblMZV MjGjAEPPLw5cP/ifAyjWsSLEf9vOK8clDHOPa8vcXIU7g2ZtdrmvuxYCV7oFPiXE blxOTB3XOT8DnLmsSfAfKSMX9JlDJZZm8DWilyOi9DskRPv1wjrQL/AFG4cwxlCv p4vgQwgcwsxf2ba1e78fkNXlRfaCQE02URLRqqewwbpz5LnShbrzCUA0GRwjLkYB CzDrqYmd4PdOV/vXPmLOQHWiuiopKk1JuVZP6eC3hFLm/uAPjbCS8vEaNXyM7RgM SLN6APyNQ51yHQO2wtV4cX3Z/KaOS5aZZeVcORfhvr6JTZjcGdS7ZEoVoRgy56Vd 2089 -----END CERTIFICATE-----Generated at Sat Jun 14 06:09:45 2025 by rpki-client