$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/445d78ad-29c7-49fd-ad71-7cd16140cfce.roa File: 445d78ad-29c7-49fd-ad71-7cd16140cfce.roa (raw, json) Hash identifier: NNzgnoysBzgAMsmdkX0lLV1FHafjavKweZlAzsHuPHc= Subject key identifier: A7:EC:64:05:6F:D2:AE:21:3C:1C:0A:B4:9C:E6:87:F6:C4:1A:65:33 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 57F852A049A985ABF6071BD3321D9F6E397D0F79 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/445d78ad-29c7-49fd-ad71-7cd16140cfce.roa Signing time: Wed 06 Aug 2025 00:00:18 +0000 ROA not before: Wed 06 Aug 2025 00:00:18 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daef:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 00:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:f8:52:a0:49:a9:85:ab:f6:07:1b:d3:32:1d:9f:6e:39:7d:0f:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 6 00:00:18 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=86ad1449f63b35dba9a0f244e471853b47ecb4cc9dcec208ad02883d1da29f3d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4e:f2:c9:4c:dd:bc:9f:64:c0:af:c2:07:99: 04:c7:c6:07:bc:85:07:b2:24:1a:20:26:ad:cd:9e: 48:66:68:14:7c:83:c1:87:09:29:f8:06:48:89:83: 06:a1:29:cc:13:a1:81:48:23:a1:91:48:65:e9:fb: 03:70:d5:28:c4:1e:a0:b3:b0:ca:13:56:67:a1:21: 71:2a:94:2a:68:f2:04:a2:c9:43:05:15:82:14:6c: 57:d8:fe:e2:f6:f6:c8:e2:d5:50:42:01:54:75:80: 00:03:8d:67:50:67:91:f6:9f:a3:bf:05:3d:32:04: 41:47:b6:de:f9:c8:1c:84:da:7f:1f:aa:37:f7:3c: 4c:73:3e:ef:8b:23:81:ed:c5:d4:91:28:f7:50:e5: e6:01:86:f8:ba:a7:7e:28:77:e0:aa:34:d7:64:d0: f1:e6:f2:3b:c7:34:f4:ef:2d:32:a7:4b:a7:ce:08: 8e:ef:8d:03:17:58:40:55:fc:6d:ac:27:1f:f9:dc: 6d:a8:b0:6b:f8:7b:52:69:cb:e4:a1:de:97:60:f1: 52:35:0c:79:bb:a6:d3:f6:ce:f6:f8:6a:f2:d4:3b: 16:da:84:91:a8:81:e3:50:cf:41:36:e1:8b:c5:1e: 60:90:48:92:3e:ba:80:09:1f:15:c0:b1:d9:70:1a: e4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EC:64:05:6F:D2:AE:21:3C:1C:0A:B4:9C:E6:87:F6:C4:1A:65:33 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/445d78ad-29c7-49fd-ad71-7cd16140cfce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daef:6000::/40 Signature Algorithm: sha256WithRSAEncryption 3a:31:9b:5e:29:84:7e:88:6e:68:6a:8d:1a:43:11:ae:6a:47: b7:4d:00:f2:cc:fe:a1:57:51:9c:ce:d9:75:e2:29:50:13:cc: d3:5f:45:9b:b3:88:af:1f:d8:e1:e6:78:81:e7:4f:49:7c:c6: f1:89:17:41:d3:f3:fa:e9:5b:42:f1:2d:b8:26:f6:97:19:21: 02:1b:bf:4d:e5:77:f1:b9:9c:51:5f:d0:23:6a:be:64:08:42: eb:c6:f0:27:04:30:15:34:f2:6a:fe:7e:05:0e:67:29:0e:dd: bf:ed:bd:d2:5e:fe:90:d3:f0:e8:fc:5f:90:42:82:44:3e:b9: 82:c5:14:12:b3:3b:d8:ee:32:50:0b:18:8b:04:0b:4d:d2:a2: 82:93:6d:ff:fc:f0:c3:27:a6:1c:2f:ee:24:d6:cf:13:c3:4b: 5e:9d:c0:9e:fb:fb:d9:4e:57:0f:e6:0f:c1:99:5a:62:42:9d: a0:3a:00:c1:6e:97:fe:cd:de:ec:b8:77:ee:3a:3b:75:92:ad: 07:39:54:11:61:aa:5b:80:0e:ca:2b:c7:c3:42:01:cb:48:26: ab:fe:91:c8:01:59:fb:69:d5:27:c1:6e:7e:fd:45:e0:14:85: 0a:8e:20:59:07:a2:d0:03:ad:3c:65:0e:9b:17:71:f2:8c:68: f6:ed:5f:78 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUV/hSoEmphav2BxvTMh2fbjl9D3kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgwNjAwMDAxOFoX DTI1MDkxMDIzNTk1OVowejFJMEcGA1UEBRNAODZhZDE0NDlmNjNiMzVkYmE5YTBm MjQ0ZTQ3MTg1M2I0N2VjYjRjYzlkY2VjMjA4YWQwMjg4M2QxZGEyOWYzZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmk7yyUzdvJ9kwK/CB5kEx8YHvIUH siQaICatzZ5IZmgUfIPBhwkp+AZIiYMGoSnME6GBSCOhkUhl6fsDcNUoxB6gs7DK E1ZnoSFxKpQqaPIEoslDBRWCFGxX2P7i9vbI4tVQQgFUdYAAA41nUGeR9p+jvwU9 MgRBR7be+cgchNp/H6o39zxMcz7viyOB7cXUkSj3UOXmAYb4uqd+KHfgqjTXZNDx 5vI7xzT07y0yp0unzgiO740DF1hAVfxtrCcf+dxtqLBr+HtSacvkod6XYPFSNQx5 u6bT9s72+Gry1DsW2oSRqIHjUM9BNuGLxR5gkEiSPrqACR8VwLHZcBrk9wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKfsZAVv0q4hPBwKtJzmh/bEGmUzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQ0NWQ3OGFkLTI5YzctNDlmZC1hZDcxLTdjZDE2MTQwY2ZjZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba72AwDQYJKoZIhvcNAQELBQADggEBADoxm14phH6IbmhqjRpD Ea5qR7dNAPLM/qFXUZzO2XXiKVATzNNfRZuziK8f2OHmeIHnT0l8xvGJF0HT8/rp W0LxLbgm9pcZIQIbv03ld/G5nFFf0CNqvmQIQuvG8CcEMBU08mr+fgUOZykO3b/t vdJe/pDT8Oj8X5BCgkQ+uYLFFBKzO9juMlALGIsEC03SooKTbf/88MMnphwv7iTW zxPDS16dwJ77+9lOVw/mD8GZWmJCnaA6AMFul/7N3uy4d+46O3WSrQc5VBFhqluA Dsorx8NCActIJqv+kcgBWftp1SfBbn79ReAUhQqOIFkHotADrTxlDpsXcfKMaPbt X3g= -----END CERTIFICATE-----Generated at Wed Aug 6 05:25:31 2025 by rpki-client