$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1579-844b-4192-8162-b5c113e8eea7.roa File: 6b0a1579-844b-4192-8162-b5c113e8eea7.roa (raw, json) Hash identifier: PqTqxqUIoS0diDH/c9T3NfaxYic+UPc4NXREsktwmsk= Subject key identifier: 54:91:66:A9:63:60:B1:2A:85:29:7F:A5:4C:E3:C8:92:D9:74:B7:B4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 65DF6871A7AC68817D27311AF3F4F34F3D8F6A7C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1579-844b-4192-8162-b5c113e8eea7.roa Signing time: Tue 10 Jun 2025 15:51:51 +0000 ROA not before: Tue 10 Jun 2025 15:51:51 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da19::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:df:68:71:a7:ac:68:81:7d:27:31:1a:f3:f4:f3:4f:3d:8f:6a:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 15:51:51 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=2af836c17b8026296c510fd20808411431144fe982dcc518225ab1f91d3f4e0e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:58:94:95:1e:4d:4e:ea:30:98:09:c5:50:29: 06:81:38:53:ac:23:9d:ca:ff:1c:01:17:70:15:d4: 15:64:8e:f9:ae:c2:8f:cc:b0:67:6c:16:42:0c:35: e8:5d:fe:f5:41:5f:43:f6:77:8d:e8:eb:a2:12:b9: 43:6c:b1:84:b4:17:8c:63:18:99:62:85:e9:80:b0: 91:34:ff:ed:50:bd:df:6d:93:2a:55:bf:ad:ad:57: 17:05:2a:a9:01:ca:19:c1:1a:30:d2:11:08:f3:3d: 03:82:af:ac:48:17:99:e1:4c:63:1f:c0:08:c8:b1: d2:8e:20:5d:7e:72:67:8b:62:a2:da:55:b9:c2:0e: 1f:37:01:fc:42:86:7d:40:b5:ba:07:dc:aa:4c:9a: 11:6d:fd:a3:e6:f3:55:51:f9:1a:f5:6a:1b:e3:d0: 3b:18:76:eb:ac:cc:11:b4:ca:80:71:ed:ae:7d:12: 12:9b:1a:d9:ad:bc:47:0f:5f:32:90:5b:d9:88:87: d2:fc:18:f6:1f:de:31:b0:dd:54:d9:32:57:4b:49: a3:09:89:3f:09:95:be:b1:ef:7c:22:58:67:33:11: 5b:e2:40:22:8b:f3:c2:b2:68:b1:91:d9:1d:31:4e: 28:51:1b:20:b7:08:46:66:e7:d1:89:64:e7:ec:cb: c6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:91:66:A9:63:60:B1:2A:85:29:7F:A5:4C:E3:C8:92:D9:74:B7:B4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1579-844b-4192-8162-b5c113e8eea7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da19::/36 Signature Algorithm: sha256WithRSAEncryption 5e:7f:31:3d:c9:00:cd:eb:e9:b1:6a:18:ce:f4:9a:84:74:aa: d6:47:0c:bc:ce:d9:2b:ac:d4:f6:7e:a5:19:b8:5e:ef:df:be: 8d:9e:70:11:7c:68:bb:73:97:0d:e0:6d:03:08:ad:a0:be:60: 4a:a2:8a:e8:05:6d:2e:2e:81:ac:47:fc:4f:d4:7b:c9:18:ff: 08:3a:3e:69:5d:41:a3:e9:25:e3:70:e7:a6:2b:68:f6:4a:2f: 92:ef:c0:65:c9:d3:9a:22:5e:b1:7a:b5:b5:ed:d9:47:bc:3a: c1:de:a6:25:7b:47:35:27:db:fc:40:b1:da:14:5a:1f:d7:83: b3:c5:42:27:59:f7:3d:b7:4b:fe:79:b3:93:27:1c:7f:ea:f8: 6b:df:4d:76:79:f9:90:e8:19:5b:70:c9:ac:af:42:cf:58:62: 99:b5:0a:33:45:b1:90:4a:78:a4:00:63:86:bc:84:22:30:14: b8:6c:55:ab:6b:e1:bf:7c:b2:c0:2b:1d:7b:aa:a1:53:2f:82: 79:4c:c4:0a:d0:84:1f:8d:d1:b1:59:a1:89:07:49:22:6b:f0: 65:54:2c:94:e2:3f:ab:57:81:9d:b8:45:c8:24:7e:25:50:4d: 2f:69:b3:87:b4:51:6f:06:32:1b:ab:d9:12:e8:bc:68:62:85: 55:ea:3e:f2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZd9ocaesaIF9JzEa8/TzTz2PanwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDE1NTE1MVoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAMmFmODM2YzE3YjgwMjYyOTZjNTEw ZmQyMDgwODQxMTQzMTE0NGZlOTgyZGNjNTE4MjI1YWIxZjkxZDNmNGUwZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1iUlR5NTuowmAnFUCkGgThTrCOd yv8cARdwFdQVZI75rsKPzLBnbBZCDDXoXf71QV9D9neN6OuiErlDbLGEtBeMYxiZ YoXpgLCRNP/tUL3fbZMqVb+trVcXBSqpAcoZwRow0hEI8z0Dgq+sSBeZ4UxjH8AI yLHSjiBdfnJni2Ki2lW5wg4fNwH8QoZ9QLW6B9yqTJoRbf2j5vNVUfka9Wob49A7 GHbrrMwRtMqAce2ufRISmxrZrbxHD18ykFvZiIfS/Bj2H94xsN1U2TJXS0mjCYk/ CZW+se98IlhnMxFb4kAii/PCsmixkdkdMU4oURsgtwhGZufRiWTn7MvGbQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFSRZqljYLEqhSl/pUzjyJLZdLe0MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZiMGExNTc5LTg0NGItNDE5Mi04MTYyLWI1YzExM2U4ZWVhNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaGQAwDQYJKoZIhvcNAQELBQADggEBAF5/MT3JAM3r6bFqGM70 moR0qtZHDLzO2Sus1PZ+pRm4Xu/fvo2ecBF8aLtzlw3gbQMIraC+YEqiiugFbS4u gaxH/E/Ue8kY/wg6PmldQaPpJeNw56YraPZKL5LvwGXJ05oiXrF6tbXt2Ue8OsHe piV7RzUn2/xAsdoUWh/Xg7PFQidZ9z23S/55s5MnHH/q+GvfTXZ5+ZDoGVtwyayv Qs9YYpm1CjNFsZBKeKQAY4a8hCIwFLhsVatr4b98ssArHXuqoVMvgnlMxArQhB+N 0bFZoYkHSSJr8GVULJTiP6tXgZ24RcgkfiVQTS9ps4e0UW8GMhur2RLovGhihVXq PvI= -----END CERTIFICATE-----Generated at Sat Jun 14 06:46:26 2025 by rpki-client