$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36a61bb0-d5ee-40f9-b3eb-0fa1d1a4956c.roa File: 36a61bb0-d5ee-40f9-b3eb-0fa1d1a4956c.roa (raw, json) Hash identifier: HymyJ8/8z1LgdWNp8B3eZfrGQj/iX1h1ySkZTMRkCmM= Subject key identifier: 5B:B9:9F:BF:03:C5:2D:D7:94:D0:0C:11:41:79:54:20:D1:8D:3B:AB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 31AB45A3F6EBF95BF1D0BBE1C8CAA0DB79A92A9A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36a61bb0-d5ee-40f9-b3eb-0fa1d1a4956c.roa Signing time: Sat 14 Jun 2025 00:00:13 +0000 ROA not before: Sat 14 Jun 2025 00:00:13 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da36::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ab:45:a3:f6:eb:f9:5b:f1:d0:bb:e1:c8:ca:a0:db:79:a9:2a:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 14 00:00:13 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=fa352e94f667870393332d607d61ecde557816040bdd53490d461bae047973e7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:96:78:2a:44:76:02:95:60:35:60:4f:b5:30: d3:be:0a:11:94:0b:a4:7d:c5:d5:cc:fd:d9:09:68: 9d:f1:8d:c6:8c:15:32:5a:4a:a9:33:3e:97:33:9f: 18:d6:4a:7d:63:3d:a5:ca:97:f7:8b:c7:c5:75:90: fc:a3:77:fd:06:c5:b7:8a:c1:18:da:58:b4:30:c5: ed:89:4b:da:c1:d8:20:15:12:3f:17:c0:f9:ba:d8: e6:12:24:68:d5:f9:99:5a:0e:af:b3:7c:ce:03:69: 28:f1:32:02:2b:00:18:c9:fe:7f:86:3c:fd:3b:61: 89:3e:8a:f6:c7:94:dc:b9:19:da:54:cf:af:49:07: 11:6e:90:85:00:a1:5a:d8:b0:7f:c9:6d:7e:ef:0d: 1c:ab:f5:c5:80:02:a3:18:1a:6e:1c:55:7b:48:1a: b3:cb:96:10:95:3b:5f:dd:14:43:3b:17:65:fc:50: e8:2e:19:ac:aa:b9:f8:aa:2a:d0:b6:47:c9:e4:58: fd:03:b6:27:fd:c2:e2:e1:e5:62:73:b4:07:ce:54: 0c:28:79:30:58:23:50:1e:3a:05:ae:cc:c4:1e:47: 59:6e:a3:5d:de:87:98:d2:b3:36:4a:07:72:ee:1f: 7f:1f:94:53:73:d2:96:a5:83:62:fe:50:b3:42:58: 74:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B9:9F:BF:03:C5:2D:D7:94:D0:0C:11:41:79:54:20:D1:8D:3B:AB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36a61bb0-d5ee-40f9-b3eb-0fa1d1a4956c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da36::/32 Signature Algorithm: sha256WithRSAEncryption c5:c8:27:f2:c1:ea:76:dc:b0:9d:47:2a:21:57:af:c2:00:58: a9:3e:ab:90:96:4e:b9:7c:3e:0a:ee:12:05:ae:21:74:1d:63: df:36:9e:ad:bc:95:d9:8e:ce:04:0a:ab:c6:06:2b:83:7a:90: ae:de:3b:36:a4:3b:de:8b:ec:4a:f1:49:b6:08:b5:1d:77:00: 6c:e7:7e:ef:0a:2c:f1:df:bd:81:eb:24:7a:01:8f:dc:f7:55: 28:fd:f5:82:92:23:b7:8e:20:0d:ea:3d:95:1c:40:e9:ee:eb: 4f:52:5e:d6:5d:1c:d3:ae:75:1e:65:e6:48:18:e0:50:67:8d: de:a2:0c:47:c3:bd:51:ee:f1:bd:f1:be:4d:50:d8:47:3c:20: 55:72:83:88:7b:d6:c2:9f:63:c4:b0:de:db:5d:6a:bf:39:58: d6:33:d1:bb:65:f2:0e:20:c3:44:ed:7d:c3:a7:1b:74:a4:d0: 8f:d4:99:6c:e1:6e:f9:c9:47:a8:e1:40:c7:7a:4c:ca:12:54: a4:16:38:82:05:a8:17:6e:ee:e3:7c:03:83:8a:a8:6d:12:4a: 71:18:2d:70:5b:da:08:07:2b:2e:48:de:92:1c:72:ac:76:fe: 2c:af:ee:43:33:fb:32:93:93:92:77:4d:4e:3c:fa:87:31:16: df:16:3d:68 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUMatFo/br+Vvx0LvhyMqg23mpKpowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxNDAwMDAxM1oX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAZmEzNTJlOTRmNjY3ODcwMzkzMzMy ZDYwN2Q2MWVjZGU1NTc4MTYwNDBiZGQ1MzQ5MGQ0NjFiYWUwNDc5NzNlNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZZ4KkR2ApVgNWBPtTDTvgoRlAuk fcXVzP3ZCWid8Y3GjBUyWkqpMz6XM58Y1kp9Yz2lypf3i8fFdZD8o3f9BsW3isEY 2li0MMXtiUvawdggFRI/F8D5utjmEiRo1fmZWg6vs3zOA2ko8TICKwAYyf5/hjz9 O2GJPor2x5TcuRnaVM+vSQcRbpCFAKFa2LB/yW1+7w0cq/XFgAKjGBpuHFV7SBqz y5YQlTtf3RRDOxdl/FDoLhmsqrn4qirQtkfJ5Fj9A7Yn/cLi4eVic7QHzlQMKHkw WCNQHjoFrszEHkdZbqNd3oeY0rM2Sgdy7h9/H5RTc9KWpYNi/lCzQlh07QIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFFu5n78DxS3XlNAMEUF5VCDRjTurMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM2YTYxYmIwLWQ1ZWUtNDBmOS1iM2ViLTBmYTFkMWE0OTU2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAbaNjANBgkqhkiG9w0BAQsFAAOCAQEAxcgn8sHqdtywnUcqIVev wgBYqT6rkJZOuXw+Cu4SBa4hdB1j3zaerbyV2Y7OBAqrxgYrg3qQrt47NqQ73ovs SvFJtgi1HXcAbOd+7wos8d+9geskegGP3PdVKP31gpIjt44gDeo9lRxA6e7rT1Je 1l0c0651HmXmSBjgUGeN3qIMR8O9Ue7xvfG+TVDYRzwgVXKDiHvWwp9jxLDe211q vzlY1jPRu2XyDiDDRO19w6cbdKTQj9SZbOFu+clHqOFAx3pMyhJUpBY4ggWoF27u 43wDg4qobRJKcRgtcFvaCAcrLkjekhxyrHb+LK/uQzP7MpOTkndNTjz6hzEW3xY9 aA== -----END CERTIFICATE-----Generated at Sat Jun 14 05:50:31 2025 by rpki-client