$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7ffe27-bb9f-402e-8f90-08945a4d91ee.roa File: 2e7ffe27-bb9f-402e-8f90-08945a4d91ee.roa (raw, json) Hash identifier: m28hive+Z0/srsUGD1i4x1vr1dbMnboHNMtTxKZVDdY= Subject key identifier: 47:40:1E:B9:F0:C8:22:B2:53:FE:FA:22:67:62:B1:58:34:61:74:1F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 68649B8991DE74546D4B209130D68468D8370FE3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7ffe27-bb9f-402e-8f90-08945a4d91ee.roa Signing time: Fri 01 Aug 2025 00:20:46 +0000 ROA not before: Fri 01 Aug 2025 00:20:46 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da36:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:64:9b:89:91:de:74:54:6d:4b:20:91:30:d6:84:68:d8:37:0f:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 1 00:20:46 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=c315196d3ac6e85703d19a5c5731444b61fcdb18aea023039c137a728bd0cf1e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:9a:b9:32:35:4a:27:88:bf:78:58:72:9c:f8: ab:b8:65:62:ff:77:a8:9d:3f:0d:90:ac:58:bd:cb: c4:bd:2e:ce:5a:87:d5:79:4a:c3:cf:53:fb:18:bc: 73:f1:f5:57:2a:62:03:8d:3a:f3:00:48:f8:f1:b4: 59:91:3b:ac:3e:64:f6:e6:74:ba:73:4b:dc:b9:7c: 34:d2:39:e5:5f:1f:95:a7:5a:ec:c3:54:67:20:f1: 76:c7:31:7e:3e:74:7d:8f:c0:72:9a:78:46:08:f7: a0:a6:29:af:e6:7d:d9:f1:1e:fb:ee:e0:e6:b3:01: 58:7e:92:46:43:c4:78:e9:5f:d1:d9:08:32:d2:e5: 70:bf:5e:39:f5:b0:67:57:fa:54:c6:ea:43:27:39: 2c:3b:3d:65:72:99:fb:25:af:85:40:02:45:f1:f1: 72:92:b2:96:c6:4d:1e:01:ab:e4:a7:bb:92:cf:f9: 5d:b3:ce:31:b5:66:75:26:88:4a:c6:6e:6a:b1:ee: 92:f5:39:9d:9f:9c:24:e4:90:9e:6b:23:12:6c:e3: e6:1a:5f:e6:02:b5:bc:cd:ce:ec:5a:a9:f2:cd:63: 6d:6b:db:34:e4:f4:f2:94:15:72:cf:63:de:d5:1f: 9d:b4:92:6b:ee:e1:9a:1b:dc:7c:50:81:16:c3:bd: 1d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:40:1E:B9:F0:C8:22:B2:53:FE:FA:22:67:62:B1:58:34:61:74:1F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7ffe27-bb9f-402e-8f90-08945a4d91ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da36:6000::/40 Signature Algorithm: sha256WithRSAEncryption 74:0a:8b:78:d6:53:32:53:39:d7:61:b2:21:71:97:60:0b:67: 96:ae:2b:c7:3a:e4:10:ac:28:9e:1c:21:55:d9:b5:28:aa:11: 34:fc:ea:2b:14:c9:88:bc:60:43:c7:df:c8:d9:5f:f6:d1:be: dd:36:fe:d8:62:0c:94:d4:c5:0f:89:08:e9:7c:df:a5:1a:9f: 21:2c:77:50:fb:ed:29:7d:5e:9e:4e:20:1b:c2:19:80:64:58: a4:11:02:c3:f6:45:e3:39:f4:87:13:0e:5b:14:f5:02:5e:40: 8f:b2:e0:10:d6:7c:08:90:63:b1:da:bc:83:8c:dd:4a:ad:b0: bb:b0:93:c3:ab:b5:1c:b0:c1:55:28:77:4c:58:07:8d:1a:09: e6:d8:ad:9a:c9:10:ae:cd:64:bf:39:b2:fc:d7:b8:34:f3:53: 15:c6:9d:3e:15:c7:ce:c5:73:28:38:04:7f:cf:01:16:00:fa: ff:fd:69:0b:bd:af:58:06:da:d8:eb:8d:0b:25:16:10:d6:2a: 45:c2:c1:5e:bb:87:ce:1e:79:89:28:78:a5:0c:fc:67:bd:f2: 5a:15:b8:62:ca:3d:83:c6:fd:fd:15:15:72:83:04:6d:2f:16: f2:c1:58:33:41:84:7c:99:43:63:08:58:38:9f:38:06:1e:5d: 04:f7:f8:88 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUaGSbiZHedFRtSyCRMNaEaNg3D+MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgwMTAwMjA0NloX DTI1MDkwNTIzNTk1OVowejFJMEcGA1UEBRNAYzMxNTE5NmQzYWM2ZTg1NzAzZDE5 YTVjNTczMTQ0NGI2MWZjZGIxOGFlYTAyMzAzOWMxMzdhNzI4YmQwY2YxZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5q5MjVKJ4i/eFhynPiruGVi/3eo nT8NkKxYvcvEvS7OWofVeUrDz1P7GLxz8fVXKmIDjTrzAEj48bRZkTusPmT25nS6 c0vcuXw00jnlXx+Vp1rsw1RnIPF2xzF+PnR9j8BymnhGCPegpimv5n3Z8R777uDm swFYfpJGQ8R46V/R2Qgy0uVwv1459bBnV/pUxupDJzksOz1lcpn7Ja+FQAJF8fFy krKWxk0eAavkp7uSz/lds84xtWZ1JohKxm5qse6S9Tmdn5wk5JCeayMSbOPmGl/m ArW8zc7sWqnyzWNta9s05PTylBVyz2Pe1R+dtJJr7uGaG9x8UIEWw70dHQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEdAHrnwyCKyU/76ImdisVg0YXQfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJlN2ZmZTI3LWJiOWYtNDAyZS04ZjkwLTA4OTQ1YTRkOTFlZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaNmAwDQYJKoZIhvcNAQELBQADggEBAHQKi3jWUzJTOddhsiFx l2ALZ5auK8c65BCsKJ4cIVXZtSiqETT86isUyYi8YEPH38jZX/bRvt02/thiDJTU xQ+JCOl836UanyEsd1D77Sl9Xp5OIBvCGYBkWKQRAsP2ReM59IcTDlsU9QJeQI+y 4BDWfAiQY7HavIOM3UqtsLuwk8OrtRywwVUod0xYB40aCebYrZrJEK7NZL85svzX uDTzUxXGnT4Vx87Fcyg4BH/PARYA+v/9aQu9r1gG2tjrjQslFhDWKkXCwV67h84e eYkoeKUM/Ge98loVuGLKPYPG/f0VFXKDBG0vFvLBWDNBhHyZQ2MIWDifOAYeXQT3 +Ig= -----END CERTIFICATE-----Generated at Mon Aug 4 18:21:21 2025 by rpki-client