$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/86eb88ff-78f4-4f08-a1fa-b28fc3bf05ef.roa File: 86eb88ff-78f4-4f08-a1fa-b28fc3bf05ef.roa (raw, json) Hash identifier: nMz72yKCpWL8q5z7ke2VIlo0d2Kei6rO27+mONUGAKw= Subject key identifier: 6B:9D:08:8D:CF:78:07:AA:50:F9:49:D6:82:71:52:91:6F:B3:AF:C0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 054F920519DB34D5F1FF726A12E59803EA636E1E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/86eb88ff-78f4-4f08-a1fa-b28fc3bf05ef.roa Signing time: Wed 04 Jun 2025 00:00:15 +0000 ROA not before: Wed 04 Jun 2025 00:00:15 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:da60:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 00:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:4f:92:05:19:db:34:d5:f1:ff:72:6a:12:e5:98:03:ea:63:6e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 4 00:00:15 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=d199f68a9738e27a22fb215d382295e7948d95b6c5b04fcd34bb4a98c69f8bb5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:24:34:d7:35:57:fc:f0:44:a2:d6:1d:5b:52: 89:07:19:14:4a:a4:92:74:59:03:7a:12:67:c9:d0: 64:c6:af:fd:8c:ca:46:7e:25:de:4c:bf:d0:6e:3d: c3:1a:95:76:ca:90:7d:fa:8a:69:4c:72:d4:83:79: 8b:58:d6:6b:69:c5:81:9e:d0:e5:63:61:0d:6c:b5: 59:1b:df:22:f1:c0:17:ef:65:b1:1d:a0:f6:50:cb: 2d:1f:65:8c:44:0d:7e:1f:c1:29:de:14:2b:97:2a: 2c:43:3a:16:65:ab:9f:93:8a:08:2d:2f:fa:da:7d: e5:e4:5e:15:cc:17:41:59:24:f6:76:d9:5a:fb:be: 95:f0:ae:29:79:90:af:b9:0f:87:11:cd:9b:20:de: 8e:73:c8:16:22:e4:16:94:84:8b:95:72:dd:a5:88: d3:bf:10:09:25:86:24:16:7f:e0:f5:44:a9:f0:95: cb:5a:ea:8e:cf:ac:61:f4:a1:e4:5e:c9:4e:2a:bb: 74:8d:45:6a:d3:f5:5a:4f:1e:ea:f2:d7:5a:e8:dc: a1:ec:a8:1f:1c:bd:cf:9e:32:92:ed:16:35:c8:cc: bb:66:d5:ea:7e:38:66:46:ee:03:9a:ab:e1:cd:68: 28:20:8f:ff:44:4e:36:e0:02:6a:91:2e:9d:58:44: ad:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9D:08:8D:CF:78:07:AA:50:F9:49:D6:82:71:52:91:6F:B3:AF:C0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/86eb88ff-78f4-4f08-a1fa-b28fc3bf05ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da60:1000::/40 Signature Algorithm: sha256WithRSAEncryption 0f:05:36:c4:66:ff:9c:32:c8:c0:fd:f9:50:1d:b6:23:17:f7: a4:69:0e:5f:9e:15:88:ca:a2:18:23:2b:f0:04:d6:e3:d5:d7: 3f:4e:0b:ad:a5:c5:af:03:ce:d0:a6:1e:b3:6c:e1:bd:f7:af: 8c:4c:96:83:82:1a:ce:d8:69:26:e0:61:ac:66:0f:2b:5e:0b: 87:95:58:03:32:59:9a:ca:85:3d:7c:9a:c6:95:fc:04:94:5a: b4:93:5b:0e:05:9f:7a:c3:21:95:da:17:18:d0:92:ca:70:6a: 24:6f:e7:4e:22:4b:f3:01:8e:cb:1d:a0:43:0e:25:c2:45:d6: 8d:be:cf:13:87:d3:b9:7d:83:96:96:da:e0:7e:96:37:e6:f8: 4c:a2:a4:4f:0b:f8:64:f8:a2:53:59:c7:27:2b:f2:50:70:30: 6e:97:04:b5:0f:c3:63:f6:04:83:0a:f2:58:60:71:a4:74:7b: 1d:dc:c1:33:ad:d1:4a:76:eb:48:d7:e6:f4:dd:ca:fc:ed:9d: bc:19:6b:79:00:50:5b:c8:94:25:c2:87:97:62:2d:28:d3:d7: 79:3a:44:5a:e5:b4:e7:ba:11:5c:45:c7:75:07:8f:60:b3:12: ec:23:03:cc:9e:45:3f:43:5b:f1:27:60:04:1d:01:73:c4:d4: 79:22:b2:9e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUBU+SBRnbNNXx/3JqEuWYA+pjbh4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwNDAwMDAxNVoX DTI1MDcwOTIzNTk1OVowejFJMEcGA1UEBRNAZDE5OWY2OGE5NzM4ZTI3YTIyZmIy MTVkMzgyMjk1ZTc5NDhkOTViNmM1YjA0ZmNkMzRiYjRhOThjNjlmOGJiNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+CQ01zVX/PBEotYdW1KJBxkUSqSS dFkDehJnydBkxq/9jMpGfiXeTL/Qbj3DGpV2ypB9+oppTHLUg3mLWNZracWBntDl Y2ENbLVZG98i8cAX72WxHaD2UMstH2WMRA1+H8Ep3hQrlyosQzoWZaufk4oILS/6 2n3l5F4VzBdBWST2dtla+76V8K4peZCvuQ+HEc2bIN6Oc8gWIuQWlISLlXLdpYjT vxAJJYYkFn/g9USp8JXLWuqOz6xh9KHkXslOKrt0jUVq0/VaTx7q8tda6Nyh7Kgf HL3PnjKS7RY1yMy7ZtXqfjhmRu4DmqvhzWgoII//RE424AJqkS6dWEStCQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGudCI3PeAeqUPlJ1oJxUpFvs6/AMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzg2ZWI4OGZmLTc4ZjQtNGYwOC1hMWZhLWIyOGZjM2JmMDVlZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYBAwDQYJKoZIhvcNAQELBQADggEBAA8FNsRm/5wyyMD9+VAd tiMX96RpDl+eFYjKohgjK/AE1uPV1z9OC62lxa8DztCmHrNs4b33r4xMloOCGs7Y aSbgYaxmDyteC4eVWAMyWZrKhT18msaV/ASUWrSTWw4Fn3rDIZXaFxjQkspwaiRv 504iS/MBjssdoEMOJcJF1o2+zxOH07l9g5aW2uB+ljfm+EyipE8L+GT4olNZxycr 8lBwMG6XBLUPw2P2BIMK8lhgcaR0ex3cwTOt0Up260jX5vTdyvztnbwZa3kAUFvI lCXCh5diLSjT13k6RFrltOe6EVxFx3UHj2CzEuwjA8yeRT9DW/EnYAQdAXPE1Hki sp4= -----END CERTIFICATE-----Generated at Sun Jun 15 09:00:07 2025 by rpki-client