$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d5a8513-21e5-4af7-b1b9-e85bc8e16eb8.roa File: 4d5a8513-21e5-4af7-b1b9-e85bc8e16eb8.roa (raw, json) Hash identifier: tttXyeaeB4loX+GxFeFrrgof+CAyaIfy+UNVQM6BOL4= Subject key identifier: B9:8C:A8:AC:EA:75:9C:31:A6:E6:43:29:1A:DE:89:B8:F6:52:3A:BA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 19F9EFB84349E33CF2A30677036D465F33FE9964 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d5a8513-21e5-4af7-b1b9-e85bc8e16eb8.roa Signing time: Fri 13 Jun 2025 00:00:20 +0000 ROA not before: Fri 13 Jun 2025 00:00:20 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafa:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f9:ef:b8:43:49:e3:3c:f2:a3:06:77:03:6d:46:5f:33:fe:99:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 13 00:00:20 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=24f9e440ff1bed9f9a9d53466ae0d7138d45d7acb75d24d1748afd5c10bff51b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:44:1c:74:1b:a1:90:11:17:32:d5:87:ff:86: 47:79:0d:cc:88:8a:5a:51:c8:5a:6f:99:88:cf:98: 5d:fd:7d:b2:10:6e:6c:55:4f:f0:28:d7:c2:b9:63: 12:e8:12:92:43:50:6a:27:6c:51:3e:99:57:b2:62: 2e:54:29:9a:e2:c0:1b:0f:20:10:62:ec:98:74:93: 5b:d6:6f:20:ce:ee:75:d5:e6:4b:93:c8:a0:00:c8: ed:eb:4a:3f:e8:0f:36:39:3a:1a:37:ef:fc:8a:c1: af:ae:04:57:35:3f:f7:1e:eb:ef:f9:03:f8:cc:07: 4d:d7:fb:83:8a:ab:35:42:15:9d:f7:07:6a:1d:04: c8:d9:c2:2e:0b:bd:d7:92:92:78:9b:63:1d:5c:77: 9d:7f:15:2f:eb:92:f4:f1:1f:2b:5b:98:df:fe:55: b8:26:6a:c8:a2:b2:90:e5:b9:be:46:73:ee:2a:65: cb:63:3f:c9:2c:d9:28:44:5b:1e:8a:e4:d6:96:44: ca:67:d3:36:f8:0f:02:44:d0:37:e4:c3:73:85:6a: c1:65:42:ea:c8:b4:f4:b9:a2:b3:a2:e9:a4:59:72: 72:42:9f:21:a4:f2:3d:41:34:dd:08:54:a5:d3:09: 65:92:e4:d8:5f:65:b4:09:d4:df:27:f3:cd:a2:05: 57:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:8C:A8:AC:EA:75:9C:31:A6:E6:43:29:1A:DE:89:B8:F6:52:3A:BA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d5a8513-21e5-4af7-b1b9-e85bc8e16eb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafa:4000::/40 Signature Algorithm: sha256WithRSAEncryption 9c:41:4e:75:79:47:46:3f:0f:a5:30:01:6c:9f:13:60:5b:0a: a2:08:e7:6b:86:fc:07:79:c4:b0:e4:85:70:36:9e:17:47:06: 8c:10:5f:55:d2:e4:12:b8:5b:41:18:25:c7:1e:41:8e:58:a3: e9:71:32:00:b6:98:dc:1d:d3:5e:3d:db:dd:d0:9f:9b:fc:84: 7c:fc:10:82:d7:67:2a:5d:91:a0:ea:28:4f:36:e6:4d:83:6b: 40:19:80:be:0c:8f:68:82:3d:0c:e7:a8:6a:16:11:a8:ce:de: 5f:38:c7:16:ab:dc:21:6c:26:c4:14:db:e8:40:4a:9c:43:c1: a8:a4:4a:28:5d:d5:24:fe:d3:0f:07:74:88:fc:1c:5f:ea:d6: b7:64:23:33:06:79:57:12:7d:4c:d2:b4:f5:b8:b2:61:3e:e9: 95:07:69:1f:02:bf:6c:cd:43:32:23:98:12:36:2b:de:e1:7d: da:db:86:81:3d:bc:16:53:b4:5b:94:19:10:52:90:d2:98:c6: f1:ef:69:b8:1c:ad:57:04:99:6d:20:7a:91:3c:99:7f:7f:00: 09:76:52:e5:97:52:85:b3:41:18:e0:83:e8:5b:43:2a:65:44: 2f:dc:00:8e:a9:1a:3b:92:58:ed:70:17:e8:e1:16:02:2e:01: 56:05:ef:ad -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUGfnvuENJ4zzyowZ3A21GXzP+mWQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMzAwMDAyMFoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMjRmOWU0NDBmZjFiZWQ5ZjlhOWQ1 MzQ2NmFlMGQ3MTM4ZDQ1ZDdhY2I3NWQyNGQxNzQ4YWZkNWMxMGJmZjUxYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0QcdBuhkBEXMtWH/4ZHeQ3MiIpa Uchab5mIz5hd/X2yEG5sVU/wKNfCuWMS6BKSQ1BqJ2xRPplXsmIuVCma4sAbDyAQ YuyYdJNb1m8gzu511eZLk8igAMjt60o/6A82OToaN+/8isGvrgRXNT/3Huvv+QP4 zAdN1/uDiqs1QhWd9wdqHQTI2cIuC73XkpJ4m2MdXHedfxUv65L08R8rW5jf/lW4 JmrIorKQ5bm+RnPuKmXLYz/JLNkoRFseiuTWlkTKZ9M2+A8CRNA35MNzhWrBZULq yLT0uaKzoumkWXJyQp8hpPI9QTTdCFSl0wllkuTYX2W0CdTfJ/PNogVXTwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLmMqKzqdZwxpuZDKRreibj2Ujq6MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRkNWE4NTEzLTIxZTUtNGFmNy1iMWI5LWU4NWJjOGUxNmViOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+kAwDQYJKoZIhvcNAQELBQADggEBAJxBTnV5R0Y/D6UwAWyf E2BbCqII52uG/Ad5xLDkhXA2nhdHBowQX1XS5BK4W0EYJcceQY5Yo+lxMgC2mNwd 0149293Qn5v8hHz8EILXZypdkaDqKE825k2Da0AZgL4Mj2iCPQznqGoWEajO3l84 xxar3CFsJsQU2+hASpxDwaikSihd1ST+0w8HdIj8HF/q1rdkIzMGeVcSfUzStPW4 smE+6ZUHaR8Cv2zNQzIjmBI2K97hfdrbhoE9vBZTtFuUGRBSkNKYxvHvabgcrVcE mW0gepE8mX9/AAl2UuWXUoWzQRjgg+hbQyplRC/cAI6pGjuSWO1wF+jhFgIuAVYF 760= -----END CERTIFICATE-----Generated at Sat Jun 14 06:02:12 2025 by rpki-client