$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c3824f8-42e9-4418-8966-1b2766cf39bd.roa File: 5c3824f8-42e9-4418-8966-1b2766cf39bd.roa (raw, json) Hash identifier: +b3tNi+lHwQ1HilS/FUq558VWq+fu/nBeE7uAoxeRQw= Subject key identifier: 83:7A:C2:1F:43:C8:C0:50:DB:C6:BC:6E:00:1F:09:C2:2B:00:56:EB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 447DAD5B103CE8D7965D3A2BA16CB662C167B0BE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c3824f8-42e9-4418-8966-1b2766cf39bd.roa Signing time: Tue 10 Jun 2025 15:12:20 +0000 ROA not before: Tue 10 Jun 2025 15:12:20 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7d:ad:5b:10:3c:e8:d7:96:5d:3a:2b:a1:6c:b6:62:c1:67:b0:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 15:12:20 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=a6e4d7bc994c90f980ad29551da2fd354b2f614954df8276cace4bf9e1121834, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:8c:7a:c8:8d:1e:7d:19:ca:ca:44:47:0f:b9: 0e:a2:85:33:ca:24:e2:7b:e4:c7:b1:69:1f:42:45: df:4d:77:d7:44:9f:43:58:21:f4:a6:12:70:c1:e3: 76:fe:d4:08:a5:5c:07:c4:54:40:50:7c:ed:b3:45: 2e:14:c2:98:5a:74:a9:9d:20:d9:06:77:89:68:2e: 70:c9:7c:f4:09:c0:a6:53:db:c4:43:98:ef:14:a0: 1d:68:04:3f:dc:20:53:38:65:8a:25:eb:a0:97:4a: 26:3f:66:42:ab:b8:c5:cd:86:7a:35:9d:8e:cc:8e: 0c:ee:e1:e2:e5:99:95:45:5d:1e:52:02:fc:9a:80: 0e:75:03:b3:9b:18:56:c2:ea:47:19:c3:74:66:3f: 69:aa:5b:d2:71:6e:a3:37:af:4d:a5:8a:69:4d:31: a0:c2:a0:a9:10:60:98:d2:fe:b8:64:15:05:80:63: 60:ff:2b:37:52:a4:8e:79:e0:01:43:ba:9c:06:ea: e0:c4:af:1a:24:ab:4b:4f:3f:96:46:92:c5:1b:a9: 8e:41:2e:fa:54:b0:a2:c0:f9:59:7c:97:e5:ec:71: 54:2c:14:2f:b2:71:4e:6b:ab:1d:2c:c9:07:c3:24: 9b:82:10:7d:43:3c:c4:5a:f0:ec:c8:03:30:4a:59: fe:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7A:C2:1F:43:C8:C0:50:DB:C6:BC:6E:00:1F:09:C2:2B:00:56:EB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c3824f8-42e9-4418-8966-1b2766cf39bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:7000::/40 Signature Algorithm: sha256WithRSAEncryption 12:35:70:98:c8:26:f8:52:4f:ae:f7:3b:d6:f6:d6:b6:bc:40: 9f:f3:4c:33:8d:24:63:eb:42:90:e7:3a:f3:f7:e0:be:f7:54: 7a:3c:4e:2c:46:87:75:99:79:ef:17:d1:1f:ee:1a:c5:ac:78: a8:63:81:47:2d:ff:5e:08:3a:d8:5a:4d:f9:4c:b8:7c:34:d6: f6:f2:cd:93:14:57:a8:97:0b:0d:49:5c:25:84:d4:5a:7d:dd: 51:c4:fb:e6:73:87:56:e8:7f:ca:d9:1c:9d:54:a2:31:fa:2c: 3c:cd:d2:fe:a3:cd:52:9d:78:b0:57:f3:2e:0e:25:d7:2d:a7: 0e:6e:2e:fb:88:7f:15:a4:65:33:19:6b:0c:63:96:ed:33:2b: 47:0c:84:97:ce:90:f3:6e:ea:d3:14:e6:1c:09:9c:f4:0e:64: 9c:fb:22:5c:1d:10:45:fe:2b:a5:5c:a0:e4:29:14:46:c4:86: 71:6c:44:c8:c3:cd:7e:ab:00:0b:2e:d1:36:45:fa:1e:88:9f: d3:73:d5:98:a4:7d:d2:15:6b:a4:a8:fb:5d:cf:8d:35:03:1f: 43:79:7b:0d:b0:50:82:db:60:8e:35:d0:87:64:20:04:11:b0: a5:0f:64:57:27:7c:d0:be:0b:1b:f1:57:ef:5f:32:22:03:2f: ab:ba:41:5c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURH2tWxA86NeWXToroWy2YsFnsL4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDE1MTIyMFoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAYTZlNGQ3YmM5OTRjOTBmOTgwYWQy OTU1MWRhMmZkMzU0YjJmNjE0OTU0ZGY4Mjc2Y2FjZTRiZjllMTEyMTgzNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYx6yI0efRnKykRHD7kOooUzyiTi e+THsWkfQkXfTXfXRJ9DWCH0phJwweN2/tQIpVwHxFRAUHzts0UuFMKYWnSpnSDZ BneJaC5wyXz0CcCmU9vEQ5jvFKAdaAQ/3CBTOGWKJeugl0omP2ZCq7jFzYZ6NZ2O zI4M7uHi5ZmVRV0eUgL8moAOdQOzmxhWwupHGcN0Zj9pqlvScW6jN69NpYppTTGg wqCpEGCY0v64ZBUFgGNg/ys3UqSOeeABQ7qcBurgxK8aJKtLTz+WRpLFG6mOQS76 VLCiwPlZfJfl7HFULBQvsnFOa6sdLMkHwySbghB9QzzEWvDsyAMwSln+MQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIN6wh9DyMBQ28a8bgAfCcIrAFbrMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVjMzgyNGY4LTQyZTktNDQxOC04OTY2LTFiMjc2NmNmMzliZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8XAwDQYJKoZIhvcNAQELBQADggEBABI1cJjIJvhST673O9b2 1ra8QJ/zTDONJGPrQpDnOvP34L73VHo8TixGh3WZee8X0R/uGsWseKhjgUct/14I OthaTflMuHw01vbyzZMUV6iXCw1JXCWE1Fp93VHE++Zzh1bof8rZHJ1UojH6LDzN 0v6jzVKdeLBX8y4OJdctpw5uLvuIfxWkZTMZawxjlu0zK0cMhJfOkPNu6tMU5hwJ nPQOZJz7IlwdEEX+K6VcoOQpFEbEhnFsRMjDzX6rAAsu0TZF+h6In9Nz1ZikfdIV a6So+13PjTUDH0N5ew2wUILbYI410IdkIAQRsKUPZFcnfNC+CxvxV+9fMiIDL6u6 QVw= -----END CERTIFICATE-----Generated at Sat Jun 14 06:11:54 2025 by rpki-client