$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f724fc4-af92-4f6e-9781-835f37854eec.roa File: 2f724fc4-af92-4f6e-9781-835f37854eec.roa (raw, json) Hash identifier: UTenDtjLZuuxvuTF12O59zAR3i+RoF/qcHfQ8LAXrf4= Subject key identifier: EA:08:63:F3:D4:ED:B5:4E:9D:E9:47:8D:ED:DF:8D:5B:6D:0D:0E:CC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7A87A75F3F2EBC858301E27BDAEA43AB8D4FE7A8 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f724fc4-af92-4f6e-9781-835f37854eec.roa Signing time: Tue 10 Jun 2025 15:50:04 +0000 ROA not before: Tue 10 Jun 2025 15:50:04 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1f:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:87:a7:5f:3f:2e:bc:85:83:01:e2:7b:da:ea:43:ab:8d:4f:e7:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 15:50:04 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=e35c439b29d263a60374d5b2ac014ef8e135222b02416ef2456d4204469fa991, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5a:a2:b0:d8:e0:5e:75:36:73:3c:d8:50:e3: 9b:0a:fe:c3:53:df:3d:8a:44:1f:97:cc:a9:7e:57: 30:29:33:b6:43:b0:75:7a:6c:41:1a:03:39:c0:6d: bb:bb:d2:45:fb:4a:d0:91:af:71:7b:14:0a:9c:f7: d9:0c:81:ef:39:44:d8:d2:55:de:ce:53:6c:db:0e: 21:15:18:96:90:da:28:f4:02:60:9b:d0:50:ad:a2: 92:86:3d:dd:2f:cc:c7:65:0f:09:d0:d4:19:cf:26: 49:9a:3f:fe:d0:f3:be:fb:a8:01:d7:36:2d:5a:8b: 15:c3:71:21:57:56:66:c2:61:6c:d6:72:03:12:fe: 6c:62:08:db:6c:cd:42:95:05:6b:e6:7e:38:9d:48: ad:e4:8b:5d:90:51:ac:f4:c8:d7:86:1b:f1:47:fb: 03:fd:67:fb:26:df:16:fc:4f:07:c3:c0:a7:62:ce: 74:e5:89:2c:78:4d:9b:c2:b1:cf:78:5f:1e:70:45: 29:63:99:8b:41:a6:1d:f3:52:0d:87:f9:75:7b:10: 0f:63:d0:fe:e0:e5:34:07:30:ac:3c:03:9e:9b:52: 23:b3:86:2d:a8:af:17:be:3f:9b:de:94:29:6a:c2: d9:75:94:2d:3c:a0:63:9d:20:95:41:84:ef:5c:9d: 8c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:08:63:F3:D4:ED:B5:4E:9D:E9:47:8D:ED:DF:8D:5B:6D:0D:0E:CC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f724fc4-af92-4f6e-9781-835f37854eec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1f:c00::/38 Signature Algorithm: sha256WithRSAEncryption ba:4d:bc:f9:48:3c:fa:c4:ec:e6:f2:a2:1f:15:c9:92:9c:cd: 6b:04:6b:ea:90:b6:35:5a:75:02:88:d3:ec:d4:04:81:95:f7: 54:15:96:3d:9d:08:30:44:b5:fd:e1:42:46:6f:9a:ea:1e:39: eb:34:8c:2a:1c:dc:52:27:51:4d:37:97:66:14:de:0c:55:72: a4:f2:c4:b5:ed:e8:a1:1a:39:e9:73:f9:69:c1:a8:ff:e9:cb: a0:04:08:e9:33:43:c7:2a:9c:67:4e:19:5d:cb:03:bc:ba:39: d1:93:f6:aa:6f:b7:3c:e7:19:d6:27:c4:a1:eb:80:6b:64:67: 8f:4f:de:5d:01:ba:d4:c0:c4:02:04:0c:13:85:0e:4a:c4:12: 64:0d:c8:e0:7a:88:92:f5:41:a0:3c:ee:d3:01:c9:81:be:3d: 6a:68:35:16:8a:47:44:38:7e:d6:ad:59:a4:24:f0:a8:50:ea: 3a:6e:cb:58:78:4a:0b:84:c0:16:73:b5:38:79:23:94:e2:dc: df:15:3e:94:eb:b9:24:51:10:58:47:76:3a:37:97:de:93:8c: 6e:15:62:a3:7f:4b:cf:a5:60:ed:46:d0:01:f9:de:2c:bd:af: 00:cc:f4:a6:3a:5b:e2:e1:f2:f4:5b:29:fd:35:8f:c6:91:07: d5:e0:1b:d2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUeoenXz8uvIWDAeJ72upDq41P56gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDE1NTAwNFoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAZTM1YzQzOWIyOWQyNjNhNjAzNzRk NWIyYWMwMTRlZjhlMTM1MjIyYjAyNDE2ZWYyNDU2ZDQyMDQ0NjlmYTk5MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplqisNjgXnU2czzYUOObCv7DU989 ikQfl8ypflcwKTO2Q7B1emxBGgM5wG27u9JF+0rQka9xexQKnPfZDIHvOUTY0lXe zlNs2w4hFRiWkNoo9AJgm9BQraKShj3dL8zHZQ8J0NQZzyZJmj/+0PO++6gB1zYt WosVw3EhV1ZmwmFs1nIDEv5sYgjbbM1ClQVr5n44nUit5ItdkFGs9MjXhhvxR/sD /Wf7Jt8W/E8Hw8CnYs505YkseE2bwrHPeF8ecEUpY5mLQaYd81INh/l1exAPY9D+ 4OU0BzCsPAOem1Ijs4YtqK8Xvj+b3pQpasLZdZQtPKBjnSCVQYTvXJ2MNwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOoIY/PU7bVOnelHje3fjVttDQ7MMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJmNzI0ZmM0LWFmOTItNGY2ZS05NzgxLTgzNWYzNzg1NGVlYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaHwwwDQYJKoZIhvcNAQELBQADggEBALpNvPlIPPrE7Obyoh8V yZKczWsEa+qQtjVadQKI0+zUBIGV91QVlj2dCDBEtf3hQkZvmuoeOes0jCoc3FIn UU03l2YU3gxVcqTyxLXt6KEaOelz+WnBqP/py6AECOkzQ8cqnGdOGV3LA7y6OdGT 9qpvtzznGdYnxKHrgGtkZ49P3l0ButTAxAIEDBOFDkrEEmQNyOB6iJL1QaA87tMB yYG+PWpoNRaKR0Q4ftatWaQk8KhQ6jpuy1h4SguEwBZztTh5I5Ti3N8VPpTruSRR EFhHdjo3l96TjG4VYqN/S8+lYO1G0AH53iy9rwDM9KY6W+Lh8vRbKf01j8aRB9Xg G9I= -----END CERTIFICATE-----Generated at Sat Jun 14 06:03:12 2025 by rpki-client