$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa File: 70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa (raw, json) Hash identifier: yGNj6/M5ZOnp6mOujWsppW7i/wW1T/UPZqZQ9bhxu68= Subject key identifier: CD:3B:13:17:29:B9:68:63:91:E7:27:39:F4:08:27:02:7F:42:33:42 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6DC1A4F7511F912EE3DED3340967F2D7370EE6AB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa Signing time: Sat 07 Jun 2025 00:01:48 +0000 ROA not before: Sat 07 Jun 2025 00:01:48 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c1:a4:f7:51:1f:91:2e:e3:de:d3:34:09:67:f2:d7:37:0e:e6:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 7 00:01:48 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=12cb8d9c4eadfc28792181f6bfe6019caad932274612cbc56437eb824a94364c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a8:13:5b:6d:17:b7:c1:f3:28:e3:3e:39:77: b8:1a:9c:89:3a:66:bb:b8:6d:41:09:39:d1:bb:7d: 39:83:41:7f:4c:0f:2b:be:6c:70:fe:c4:96:58:f5: b6:4b:09:7c:86:b6:04:0b:cf:d4:74:1b:ce:fe:05: 53:8f:73:5f:9c:de:8a:2e:83:88:b8:e2:0f:d9:92: a7:87:11:3a:c0:87:dd:5a:f2:1d:18:c5:9d:93:08: 9b:c5:90:e5:e7:b4:0b:9b:05:e3:66:c4:ce:ac:aa: 0a:21:39:93:73:2a:60:30:31:ce:9f:6a:5e:f2:11: 8a:e4:18:ee:fa:79:17:5e:18:f6:d4:87:dc:97:86: bd:c8:e2:5a:f6:3d:48:d5:b1:d1:ba:d0:fd:66:18: 8c:d4:15:d7:5d:3c:cd:fd:b5:13:ad:f8:01:42:34: b3:72:58:d6:7b:d7:8c:84:e6:12:d9:73:98:fa:9b: 6c:51:ba:70:c0:84:12:54:a4:ba:ff:58:8d:ef:b9: 72:1d:4b:ed:f3:02:75:36:19:b3:89:ae:76:a9:53: 18:fb:81:91:a6:c0:a5:1c:71:74:a5:07:4c:f2:38: e4:4c:8a:30:90:13:1d:6a:c6:79:81:73:58:8c:11: 63:44:cd:a2:b1:a5:fa:5d:c6:b6:e3:ab:78:74:26: 36:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:3B:13:17:29:B9:68:63:91:E7:27:39:F4:08:27:02:7F:42:33:42 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:a080::/48 Signature Algorithm: sha256WithRSAEncryption 99:65:66:29:00:51:9d:08:03:85:17:4f:6f:c9:d2:14:2e:87: f5:56:f2:6d:d3:29:f0:3a:02:04:32:17:44:ec:91:01:02:f4: 29:de:b5:a8:7b:b2:8d:f3:b1:fb:9c:8e:b9:b7:0a:ad:e5:06: 27:c8:fa:70:1e:46:77:6c:5b:78:34:7f:54:ab:3a:b6:5d:df: 1e:cc:f9:92:50:b2:ee:3c:21:c8:c1:4b:75:2b:9c:74:13:3b: 3d:97:95:42:22:56:bf:ab:cc:23:d3:42:eb:09:c9:f6:07:d4: 8d:6a:bc:5c:a0:47:e8:fa:d5:00:c3:7b:ba:43:8c:38:74:03: 85:ea:e3:eb:ec:61:5a:03:d0:e1:52:5e:4a:50:83:97:70:c8: 70:10:76:bb:51:4c:3e:cf:ce:78:db:1b:c5:df:25:20:42:50: 94:d2:0a:ff:eb:9c:95:59:ff:f7:49:e8:ea:89:d4:6e:c3:da: 2a:e4:46:26:b4:4c:ba:d8:f6:0f:d9:03:f5:5f:ab:8f:c0:f9: e2:74:52:d9:50:82:fa:93:ba:e3:32:c9:27:00:fe:46:5f:37: 94:c9:80:15:d2:31:11:31:e5:fb:bd:10:db:49:d9:ee:8b:c0: ff:b5:53:37:55:79:84:3b:6e:4b:92:18:e1:88:42:0a:aa:b7: 87:27:4e:ff -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUbcGk91EfkS7j3tM0CWfy1zcO5qswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwNzAwMDE0OFoX DTI1MDcxMjIzNTk1OVowejFJMEcGA1UEBRNAMTJjYjhkOWM0ZWFkZmMyODc5MjE4 MWY2YmZlNjAxOWNhYWQ5MzIyNzQ2MTJjYmM1NjQzN2ViODI0YTk0MzY0YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqgTW20Xt8HzKOM+OXe4GpyJOma7 uG1BCTnRu305g0F/TA8rvmxw/sSWWPW2Swl8hrYEC8/UdBvO/gVTj3NfnN6KLoOI uOIP2ZKnhxE6wIfdWvIdGMWdkwibxZDl57QLmwXjZsTOrKoKITmTcypgMDHOn2pe 8hGK5Bju+nkXXhj21Ifcl4a9yOJa9j1I1bHRutD9ZhiM1BXXXTzN/bUTrfgBQjSz cljWe9eMhOYS2XOY+ptsUbpwwIQSVKS6/1iN77lyHUvt8wJ1Nhmzia52qVMY+4GR psClHHF0pQdM8jjkTIowkBMdasZ5gXNYjBFjRM2isaX6Xca246t4dCY2UQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFM07ExcpuWhjkecnOfQIJwJ/QjNCMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcwNzgxNTk3LTZlZGMtNDliYy1iZDhjLWM5YWRjNjhkMWIyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYaCAMA0GCSqGSIb3DQEBCwUAA4IBAQCZZWYpAFGdCAOFF09v ydIULof1VvJt0ynwOgIEMhdE7JEBAvQp3rWoe7KN87H7nI65twqt5QYnyPpwHkZ3 bFt4NH9Uqzq2Xd8ezPmSULLuPCHIwUt1K5x0Ezs9l5VCIla/q8wj00LrCcn2B9SN arxcoEfo+tUAw3u6Q4w4dAOF6uPr7GFaA9DhUl5KUIOXcMhwEHa7UUw+z8542xvF 3yUgQlCU0gr/65yVWf/3SejqidRuw9oq5EYmtEy62PYP2QP1X6uPwPnidFLZUIL6 k7rjMsknAP5GXzeUyYAV0jERMeX7vRDbSdnui8D/tVM3VXmEO25LkhjhiEIKqreH J07/ -----END CERTIFICATE-----Generated at Sat Jun 14 06:10:31 2025 by rpki-client