$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/34f0a7a2-e26e-4df2-8831-0d777cdb488c.roa File: 34f0a7a2-e26e-4df2-8831-0d777cdb488c.roa (raw, json) Hash identifier: gWozGH9zNDLollNf4UxrUobsFdCgMDIKWx6yJA0YLz4= Subject key identifier: AA:A5:18:70:D6:BA:30:AD:F7:B6:BD:CB:A6:FC:D7:AA:34:AD:D3:5F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 77E8FEC95F370BEB09DD40B3F8402198979B6C0A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/34f0a7a2-e26e-4df2-8831-0d777cdb488c.roa Signing time: Tue 10 Jun 2025 00:30:25 +0000 ROA not before: Tue 10 Jun 2025 00:30:25 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:2840::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e8:fe:c9:5f:37:0b:eb:09:dd:40:b3:f8:40:21:98:97:9b:6c:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 00:30:25 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=e944f74341403b26860b845b9f743105983878a7f03e4ac4b5764d23fe9facba, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:73:10:c8:b5:6c:06:a8:02:14:f5:a4:db:70: 9f:33:db:54:02:3f:bb:9d:42:8c:bc:37:9c:63:cd: 6b:26:86:10:78:3c:85:8d:9e:57:fe:fe:bf:ed:96: 50:56:36:9b:e9:e0:db:a1:ce:d9:af:a3:32:fd:85: d6:f9:7d:f7:92:62:3a:38:68:ef:98:a7:2e:68:c5: d4:a1:2f:b7:75:6b:a8:e1:12:da:19:87:c3:0b:a4: 8c:9a:ed:16:e8:8d:f2:0d:67:54:27:87:c0:89:09: 16:86:fc:b2:21:51:c3:f8:22:99:9f:07:8a:5e:7f: bb:2f:9d:48:db:32:a2:5e:fb:be:65:f7:99:e5:0b: a1:23:02:55:0e:2a:c6:4b:d3:b4:d9:d3:95:35:2a: 17:86:66:2c:26:0e:c4:86:a3:5b:09:84:bf:e5:be: 55:0e:ea:4a:e6:c1:9e:47:18:8b:21:80:7f:39:27: 3a:db:fb:fb:29:e8:a0:61:c8:c9:94:9b:ae:55:7a: 78:44:32:72:35:2e:68:53:89:35:67:cc:aa:71:c1: 69:10:2b:87:75:f8:56:db:75:80:8f:34:30:bf:08: 0d:f5:05:d8:37:1d:af:cb:34:3d:15:83:6b:6e:90: 81:60:9a:79:8a:cc:89:29:cd:db:17:70:f7:cd:1b: 4b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A5:18:70:D6:BA:30:AD:F7:B6:BD:CB:A6:FC:D7:AA:34:AD:D3:5F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/34f0a7a2-e26e-4df2-8831-0d777cdb488c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:2840::/46 Signature Algorithm: sha256WithRSAEncryption 90:92:80:c9:d3:ca:51:d3:01:61:98:35:24:8d:70:33:10:9c: 4a:67:e3:d3:6e:cd:ca:4a:04:84:f9:6e:4a:6c:d7:ef:a9:2e: 3b:30:79:ba:a3:e3:b9:f1:91:e6:b1:2c:7b:a6:31:b7:a1:15: 01:ae:ad:36:a5:dd:3b:a6:9b:e0:6b:13:d7:a8:4e:af:3b:07: ab:14:38:5f:cd:4f:a9:83:61:31:77:99:7f:b3:2d:c6:94:f7: 71:c8:d3:17:d6:f6:a9:c7:a3:39:31:99:71:15:f5:84:e8:04: 3d:2c:99:e9:9d:cf:2d:e5:8d:69:5d:5d:f1:79:e7:4d:60:0f: 47:a8:11:66:d9:5a:ef:f8:6c:f5:fd:b1:6f:02:23:ff:5c:b3: 06:60:e8:d2:2b:56:84:57:c7:59:b1:32:32:f3:f8:c6:88:54: 2d:47:cf:14:45:dc:21:d4:63:7f:37:4b:60:db:fa:de:27:c1: 93:9d:b0:70:8e:46:1c:39:fc:ba:db:8c:b1:c3:37:9a:96:ef: 4f:ef:b5:83:18:e0:1e:05:5a:a2:d9:78:0e:3f:b7:f6:b4:8c: a1:e9:16:fb:82:3f:f7:80:37:a0:b9:e1:b9:ec:db:62:44:89: b4:67:52:f5:9d:ba:f1:65:fe:45:5a:82:e3:47:3f:84:9f:0b: 54:ce:94:26 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUd+j+yV83C+sJ3UCz+EAhmJebbAowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDAwMzAyNVoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAZTk0NGY3NDM0MTQwM2IyNjg2MGI4 NDViOWY3NDMxMDU5ODM4NzhhN2YwM2U0YWM0YjU3NjRkMjNmZTlmYWNiYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0nMQyLVsBqgCFPWk23CfM9tUAj+7 nUKMvDecY81rJoYQeDyFjZ5X/v6/7ZZQVjab6eDboc7Zr6My/YXW+X33kmI6OGjv mKcuaMXUoS+3dWuo4RLaGYfDC6SMmu0W6I3yDWdUJ4fAiQkWhvyyIVHD+CKZnweK Xn+7L51I2zKiXvu+ZfeZ5QuhIwJVDirGS9O02dOVNSoXhmYsJg7EhqNbCYS/5b5V DupK5sGeRxiLIYB/OSc62/v7KeigYcjJlJuuVXp4RDJyNS5oU4k1Z8yqccFpECuH dfhW23WAjzQwvwgN9QXYNx2vyzQ9FYNrbpCBYJp5isyJKc3bF3D3zRtLQQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKqlGHDWujCt97a9y6b816o0rdNfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM0ZjBhN2EyLWUyNmUtNGRmMi04ODMxLTBkNzc3Y2RiNDg4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAbaaShAMA0GCSqGSIb3DQEBCwUAA4IBAQCQkoDJ08pR0wFhmDUk jXAzEJxKZ+PTbs3KSgSE+W5KbNfvqS47MHm6o+O58ZHmsSx7pjG3oRUBrq02pd07 ppvgaxPXqE6vOwerFDhfzU+pg2Exd5l/sy3GlPdxyNMX1vapx6M5MZlxFfWE6AQ9 LJnpnc8t5Y1pXV3xeedNYA9HqBFm2Vrv+Gz1/bFvAiP/XLMGYOjSK1aEV8dZsTIy 8/jGiFQtR88URdwh1GN/N0tg2/reJ8GTnbBwjkYcOfy624yxwzealu9P77WDGOAe BVqi2XgOP7f2tIyh6Rb7gj/3gDegueG57NtiRIm0Z1L1nbrxZf5FWoLjRz+EnwtU zpQm -----END CERTIFICATE-----Generated at Sat Jun 14 06:16:22 2025 by rpki-client