$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/59547eed-f394-4d43-b55e-55ee1b7fb6b4.roa File: 59547eed-f394-4d43-b55e-55ee1b7fb6b4.roa (raw, json) Hash identifier: IgVEtGoUEvesEyCr6iStMYcJJvHzmGERm/EM+y13/pg= Subject key identifier: E2:43:0C:91:8D:60:15:B7:40:47:57:B5:4A:C9:0E:51:33:8C:E3:9E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 400F9111C617CBD5E351A9FA44BCEFC475CDA233 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/59547eed-f394-4d43-b55e-55ee1b7fb6b4.roa Signing time: Wed 30 Jul 2025 17:38:35 +0000 ROA not before: Wed 30 Jul 2025 17:38:35 +0000 ROA not after: Wed 03 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:0f:91:11:c6:17:cb:d5:e3:51:a9:fa:44:bc:ef:c4:75:cd:a2:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 30 17:38:35 2025 GMT Not After : Sep 3 23:59:59 2025 GMT Subject: serialNumber=d4491ad95f850ef0f1a1725c58c569d42074bb03eae1edb9de8ad51797dc0b38, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:94:6e:38:c8:18:cb:be:c9:80:13:f9:40:ff: cc:9e:ff:1a:9d:a0:05:3e:db:60:a5:ce:1b:ea:81: 81:c4:21:d7:87:3e:17:21:99:6a:83:e3:41:58:9d: c9:9e:da:e2:9f:5c:ab:07:d4:8a:50:1c:24:aa:81: 10:44:31:6c:2b:90:d3:78:82:c8:5b:69:b6:bb:ee: 27:29:a6:04:65:46:50:65:2c:1d:ec:d5:61:59:4b: 89:45:d3:02:06:fa:49:d7:84:b0:ba:48:9c:9d:69: 88:f2:0b:a3:0f:e4:1c:6d:77:5c:07:9f:d4:82:82: 7a:c0:6c:d9:a7:c5:b2:8c:b0:81:1a:cc:8d:ec:3e: b5:af:d2:3d:c6:35:dd:f6:c9:90:54:f5:81:56:37: dc:26:12:71:fe:fd:59:3b:2b:e6:89:08:34:74:a9: 91:b1:3e:a2:9e:63:ec:e4:b1:41:e3:a1:6e:63:e7: c9:f4:82:a5:21:1d:f4:78:42:c6:d5:5f:30:cb:10: e9:3f:fe:13:dc:fd:ef:36:e0:e4:52:c8:bf:b1:b3: 5f:a0:eb:aa:0f:b7:e3:05:4d:c4:e6:b9:3b:7e:f3: 7c:4f:29:56:df:83:0e:63:91:31:46:9c:8b:b1:c5: 70:de:c9:cb:31:ec:01:45:a0:4d:dc:44:6a:91:3c: 65:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:43:0C:91:8D:60:15:B7:40:47:57:B5:4A:C9:0E:51:33:8C:E3:9E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/59547eed-f394-4d43-b55e-55ee1b7fb6b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:9000::/40 Signature Algorithm: sha256WithRSAEncryption a3:5b:67:50:cf:dd:ba:4e:01:29:62:73:9f:4a:06:c7:ff:03: 59:9a:1b:36:ff:58:f1:55:ed:df:f8:48:9f:d0:b5:4f:0e:84: 64:4a:7a:8a:96:be:c5:7e:9c:6f:b5:77:bd:a9:b5:ab:34:48: ae:e8:9e:93:ff:c8:6d:75:6f:68:93:bf:8a:23:3d:67:0b:fb: 96:7c:3a:14:35:64:eb:fd:8b:89:5e:45:83:72:7c:b4:46:91: b3:ef:2d:55:61:ae:04:9f:1c:e6:1e:42:86:f3:69:e8:50:3a: ef:2b:05:85:2b:eb:ca:64:93:67:7f:1d:4f:1a:92:7f:4e:a8: 4e:dd:6f:46:c3:b9:47:e9:20:a8:3f:b0:4f:04:ba:9d:89:15: 3f:04:4f:f7:7e:68:77:25:93:bd:99:e6:35:c2:95:ba:32:f6: c9:0d:5f:e8:6c:14:e4:ab:02:36:67:5e:36:2a:4c:86:ae:e6: 15:4c:cf:a9:65:23:a1:80:a3:26:f9:04:c5:17:26:84:a5:70: 55:9d:07:bb:e2:9d:28:5a:71:b1:3d:c7:8f:3f:0d:49:bd:c4: 84:4c:da:1f:5d:e8:9d:b8:2e:3d:98:f6:8e:bf:19:3e:2b:16: c9:1d:8e:d3:34:b7:d7:6b:c0:d2:d3:3c:38:6f:8b:7e:3e:c7: 6e:be:5e:c0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQA+REcYXy9XjUan6RLzvxHXNojMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDczMDE3MzgzNVoX DTI1MDkwMzIzNTk1OVowejFJMEcGA1UEBRNAZDQ0OTFhZDk1Zjg1MGVmMGYxYTE3 MjVjNThjNTY5ZDQyMDc0YmIwM2VhZTFlZGI5ZGU4YWQ1MTc5N2RjMGIzODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpRuOMgYy77JgBP5QP/Mnv8anaAF Pttgpc4b6oGBxCHXhz4XIZlqg+NBWJ3Jntrin1yrB9SKUBwkqoEQRDFsK5DTeILI W2m2u+4nKaYEZUZQZSwd7NVhWUuJRdMCBvpJ14SwukicnWmI8gujD+QcbXdcB5/U goJ6wGzZp8WyjLCBGsyN7D61r9I9xjXd9smQVPWBVjfcJhJx/v1ZOyvmiQg0dKmR sT6inmPs5LFB46FuY+fJ9IKlIR30eELG1V8wyxDpP/4T3P3vNuDkUsi/sbNfoOuq D7fjBU3E5rk7fvN8TylW34MOY5ExRpyLscVw3snLMewBRaBN3ERqkTxl5wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOJDDJGNYBW3QEdXtUrJDlEzjOOeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU5NTQ3ZWVkLWYzOTQtNGQ0My1iNTVlLTU1ZWUxYjdmYjZiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaZAwDQYJKoZIhvcNAQELBQADggEBAKNbZ1DP3bpOASlic59K Bsf/A1maGzb/WPFV7d/4SJ/QtU8OhGRKeoqWvsV+nG+1d72ptas0SK7onpP/yG11 b2iTv4ojPWcL+5Z8OhQ1ZOv9i4leRYNyfLRGkbPvLVVhrgSfHOYeQobzaehQOu8r BYUr68pkk2d/HU8akn9OqE7db0bDuUfpIKg/sE8Eup2JFT8ET/d+aHclk72Z5jXC lboy9skNX+hsFOSrAjZnXjYqTIau5hVMz6llI6GAoyb5BMUXJoSlcFWdB7vinSha cbE9x48/DUm9xIRM2h9d6J24Lj2Y9o6/GT4rFskdjtM0t9drwNLTPDhvi34+x26+ XsA= -----END CERTIFICATE-----Generated at Mon Aug 4 15:30:57 2025 by rpki-client