$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c2f1a8-a964-48ab-9d69-9428cf98d4fb.roa File: 61c2f1a8-a964-48ab-9d69-9428cf98d4fb.roa (raw, json) Hash identifier: jz82a3EGEsYpSWNMpg3a4QOZvcts3mKxpwrf5gsFoXo= Subject key identifier: BF:82:3F:C6:36:44:73:7E:88:2C:B4:9D:42:77:83:F1:30:99:54:ED Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6D62F6C00157ECC12A287ED73E65D520F69F3508 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c2f1a8-a964-48ab-9d69-9428cf98d4fb.roa Signing time: Mon 09 Jun 2025 15:00:58 +0000 ROA not before: Mon 09 Jun 2025 15:00:58 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:2020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:62:f6:c0:01:57:ec:c1:2a:28:7e:d7:3e:65:d5:20:f6:9f:35:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 9 15:00:58 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=243718f6c67de312967aeea22710f68c68a289eeaff913c7bc7ecad6e50c97f2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6c:3e:56:0c:23:65:1b:44:00:2d:ad:48:7b: f2:84:68:80:94:4e:5e:00:ec:95:3c:45:43:54:c9: 8e:38:14:86:57:d3:bf:6d:cf:7e:38:a3:06:54:a6: 57:d8:7f:a9:f6:4b:dc:28:db:9e:7c:63:b6:5b:c0: fa:b7:48:9c:5b:63:07:a6:8d:e8:d0:88:5d:f7:f0: 0f:f2:13:5a:b5:73:39:d1:e5:34:65:e1:b4:d9:6a: b5:d9:7c:9e:e6:99:0a:d9:c8:f0:bd:0a:82:e3:ff: 16:d8:16:03:06:e8:c9:da:36:5e:c2:50:d4:44:22: 0c:15:51:6f:62:bc:de:c5:b5:46:0c:c9:b1:76:53: ae:8f:25:ce:4b:cd:1a:f9:8e:1d:4c:bf:2e:00:73: 27:d3:05:76:26:ad:53:6f:8e:30:44:7d:af:d1:cc: 3d:34:de:8f:81:1b:8f:de:45:11:38:f0:02:ec:f0: b7:17:d6:25:ca:24:fa:57:01:28:ff:0a:a3:95:5b: 1c:7e:00:8e:c8:d1:ae:ac:5d:a2:ce:2f:de:a1:ea: ff:53:24:6b:ad:73:d4:18:5d:e3:37:93:76:af:ef: c7:4d:e1:55:8e:76:f0:d6:cc:e9:96:90:2f:25:40: 6f:b2:d2:32:dd:9b:44:3c:4f:5b:e3:17:fd:0c:82: 7d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:82:3F:C6:36:44:73:7E:88:2C:B4:9D:42:77:83:F1:30:99:54:ED X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c2f1a8-a964-48ab-9d69-9428cf98d4fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:2020::/48 Signature Algorithm: sha256WithRSAEncryption 8c:f5:dc:db:0d:79:1f:c3:5d:dc:a5:7e:5f:93:ca:7a:aa:d7: 04:87:c7:36:63:70:db:67:76:0e:8b:5c:13:52:b1:6a:8e:43: ad:09:93:fa:26:2c:7c:a3:39:f4:36:78:88:81:c3:30:92:33: 6b:5b:b2:e0:a4:e9:cc:82:14:e3:8c:52:b6:0b:e2:55:a5:de: af:c8:b2:fb:f3:01:dc:18:ea:fd:c1:72:2b:ba:88:38:13:eb: 99:97:b1:4a:d3:10:18:73:57:71:95:f1:b2:55:47:d4:66:e7: 43:59:03:7f:25:8d:e2:c5:f7:a5:88:2e:0e:63:09:ce:1e:17: 27:5b:ba:21:1b:73:30:90:95:68:c1:6c:62:3a:c9:99:cc:87: dd:d9:b2:b7:63:8a:62:52:cf:c3:e2:8a:15:c9:44:51:9b:33: 82:2c:66:46:12:40:2e:25:2e:42:d3:f8:7b:dc:e5:4a:c7:29: aa:c0:90:3f:11:30:12:6b:7f:ce:b7:fa:a7:ef:fe:7a:87:41: ba:5c:59:78:60:c0:c5:2d:f9:04:51:fe:f2:f9:43:1d:77:be: 16:fd:2c:02:d6:61:b2:b3:99:e0:5d:5d:94:ee:3f:b7:57:32: 36:f5:ff:fd:08:8d:21:65:2c:84:1e:fc:39:01:d7:2f:9b:6c: 5c:21:ba:3c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUbWL2wAFX7MEqKH7XPmXVIPafNQgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwOTE1MDA1OFoX DTI1MDcxNDIzNTk1OVowejFJMEcGA1UEBRNAMjQzNzE4ZjZjNjdkZTMxMjk2N2Fl ZWEyMjcxMGY2OGM2OGEyODllZWFmZjkxM2M3YmM3ZWNhZDZlNTBjOTdmMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmw+VgwjZRtEAC2tSHvyhGiAlE5e AOyVPEVDVMmOOBSGV9O/bc9+OKMGVKZX2H+p9kvcKNuefGO2W8D6t0icW2MHpo3o 0Ihd9/AP8hNatXM50eU0ZeG02Wq12Xye5pkK2cjwvQqC4/8W2BYDBujJ2jZewlDU RCIMFVFvYrzexbVGDMmxdlOujyXOS80a+Y4dTL8uAHMn0wV2Jq1Tb44wRH2v0cw9 NN6PgRuP3kUROPAC7PC3F9YlyiT6VwEo/wqjlVscfgCOyNGurF2izi/eoer/UyRr rXPUGF3jN5N2r+/HTeFVjnbw1szplpAvJUBvstIy3ZtEPE9b4xf9DIJ9mwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFL+CP8Y2RHN+iCy0nUJ3g/EwmVTtMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYxYzJmMWE4LWE5NjQtNDhhYi05ZDY5LTk0MjhjZjk4ZDRmYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8iAgMA0GCSqGSIb3DQEBCwUAA4IBAQCM9dzbDXkfw13cpX5f k8p6qtcEh8c2Y3DbZ3YOi1wTUrFqjkOtCZP6Jix8ozn0NniIgcMwkjNrW7LgpOnM ghTjjFK2C+JVpd6vyLL78wHcGOr9wXIruog4E+uZl7FK0xAYc1dxlfGyVUfUZudD WQN/JY3ixfeliC4OYwnOHhcnW7ohG3MwkJVowWxiOsmZzIfd2bK3Y4piUs/D4ooV yURRmzOCLGZGEkAuJS5C0/h73OVKxymqwJA/ETASa3/Ot/qn7/56h0G6XFl4YMDF LfkEUf7y+UMdd74W/SwC1mGys5ngXV2U7j+3VzI29f/9CI0hZSyEHvw5Adcvm2xc Ibo8 -----END CERTIFICATE-----Generated at Sat Jun 14 06:06:33 2025 by rpki-client