$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/87ba4a57-b2b9-43cc-9a6f-a0d705c2a0d4.roa File: 87ba4a57-b2b9-43cc-9a6f-a0d705c2a0d4.roa (raw, json) Hash identifier: Ec4cyFOp3pAZeBrzzcok7a3pzNcKFy4wxG7Kyy0i5qs= Subject key identifier: 00:B6:6F:E2:8A:5F:0A:8A:11:48:F3:A8:DF:65:C0:E5:9A:48:42:C5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7C7D9BB833D74E2B1979B25CC895E103F7BE354E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/87ba4a57-b2b9-43cc-9a6f-a0d705c2a0d4.roa Signing time: Tue 10 Jun 2025 15:20:51 +0000 ROA not before: Tue 10 Jun 2025 15:20:51 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:7d:9b:b8:33:d7:4e:2b:19:79:b2:5c:c8:95:e1:03:f7:be:35:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 15:20:51 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=bcbf54f68b614a8d4bc92284821b68d5250c3e7a1f2c5cd60de8622a7b2316b2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:45:44:a7:97:72:02:d2:87:3f:7d:9e:5f:69: 83:50:e4:de:40:80:7b:12:39:8b:10:01:35:76:70: 23:86:80:57:97:e4:bb:c7:07:e3:21:c9:cf:c0:da: 1f:92:47:8c:84:75:36:41:ab:f3:9a:74:dc:00:36: 88:62:a8:aa:6c:f6:23:3f:f7:70:e8:32:ff:3b:61: 00:10:8c:61:a0:c9:d4:3d:dd:8e:47:2b:16:96:39: 2c:15:8b:84:38:27:65:4c:6d:21:49:22:8c:1d:ce: 1b:bc:fe:37:96:ca:3e:86:c4:68:9b:df:39:43:f6: 55:08:df:69:36:0d:53:c9:88:15:a2:04:b2:aa:a9: 5c:e6:5d:8d:15:e0:f7:54:a5:be:61:9a:c2:cb:9b: 15:77:d7:c0:27:38:89:1f:b1:86:ab:00:de:c7:e0: fd:29:9b:1c:73:3a:ee:b5:e1:b4:f4:30:1f:58:ed: 77:67:68:05:5a:50:54:eb:de:2e:3e:af:bb:ef:33: d0:98:b9:e5:67:4a:b1:00:48:4a:83:10:51:b5:9d: ef:6d:a3:7a:23:4e:92:e9:fe:7b:1c:d5:aa:db:ae: 71:1e:92:fa:a9:eb:36:d2:1f:cc:6b:86:35:be:27: 89:4d:c2:48:0d:98:e9:01:09:2e:a0:33:5d:42:79: ac:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B6:6F:E2:8A:5F:0A:8A:11:48:F3:A8:DF:65:C0:E5:9A:48:42:C5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/87ba4a57-b2b9-43cc-9a6f-a0d705c2a0d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:6000::/40 Signature Algorithm: sha256WithRSAEncryption 09:43:51:ac:ab:6c:5a:10:29:7b:3f:a8:eb:68:e7:94:82:aa: 51:b7:02:1d:4d:9f:eb:c3:ea:3b:8e:9b:c5:cd:50:f5:8e:71: d6:d4:58:c5:06:6f:61:5a:5c:d7:35:3c:dc:67:25:06:c6:1d: 5b:a7:eb:44:f8:77:13:73:97:13:66:59:e7:8f:24:d1:4c:f6: 0b:08:de:cc:af:1f:1a:30:d0:42:0a:99:02:92:58:f3:7e:2d: 9a:92:bd:3f:5c:25:99:b0:21:a7:37:cb:5f:03:2f:c9:fc:bc: 1f:e4:b3:03:28:f5:1a:58:6e:d5:81:da:49:4c:38:16:82:c7: 62:8e:ec:66:66:dc:47:c9:87:8e:78:28:dc:75:6c:46:e8:fa: 48:f5:02:76:69:8b:57:14:a3:9c:f6:99:26:42:59:8f:46:84: 2f:f6:7f:34:89:56:da:19:8b:28:71:b8:3d:dc:2f:e7:2d:f5: f0:47:e0:4c:fb:90:0f:a0:0a:35:69:5c:e9:9a:88:d8:af:d0: d5:df:90:f1:f3:4b:30:60:05:21:2d:09:dd:25:60:a1:65:51: 26:dd:f2:cd:59:ae:02:fe:fe:f4:53:4e:c3:f7:25:73:02:91: a1:b6:72:7c:ac:54:62:d4:c3:7d:a0:25:3a:d6:ca:79:be:8d: ed:7e:b5:05 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUfH2buDPXTisZebJcyJXhA/e+NU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDE1MjA1MVoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAYmNiZjU0ZjY4YjYxNGE4ZDRiYzky Mjg0ODIxYjY4ZDUyNTBjM2U3YTFmMmM1Y2Q2MGRlODYyMmE3YjIzMTZiMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UVEp5dyAtKHP32eX2mDUOTeQIB7 EjmLEAE1dnAjhoBXl+S7xwfjIcnPwNofkkeMhHU2QavzmnTcADaIYqiqbPYjP/dw 6DL/O2EAEIxhoMnUPd2ORysWljksFYuEOCdlTG0hSSKMHc4bvP43lso+hsRom985 Q/ZVCN9pNg1TyYgVogSyqqlc5l2NFeD3VKW+YZrCy5sVd9fAJziJH7GGqwDex+D9 KZscczruteG09DAfWO13Z2gFWlBU694uPq+77zPQmLnlZ0qxAEhKgxBRtZ3vbaN6 I06S6f57HNWq265xHpL6qes20h/Ma4Y1vieJTcJIDZjpAQkuoDNdQnmsdwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAC2b+KKXwqKEUjzqN9lwOWaSELFMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzg3YmE0YTU3LWIyYjktNDNjYy05YTZmLWEwZDcwNWMyYTBkNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacGAwDQYJKoZIhvcNAQELBQADggEBAAlDUayrbFoQKXs/qOto 55SCqlG3Ah1Nn+vD6juOm8XNUPWOcdbUWMUGb2FaXNc1PNxnJQbGHVun60T4dxNz lxNmWeePJNFM9gsI3syvHxow0EIKmQKSWPN+LZqSvT9cJZmwIac3y18DL8n8vB/k swMo9RpYbtWB2klMOBaCx2KO7GZm3EfJh454KNx1bEbo+kj1AnZpi1cUo5z2mSZC WY9GhC/2fzSJVtoZiyhxuD3cL+ct9fBH4Ez7kA+gCjVpXOmaiNiv0NXfkPHzSzBg BSEtCd0lYKFlUSbd8s1ZrgL+/vRTTsP3JXMCkaG2cnysVGLUw32gJTrWynm+je1+ tQU= -----END CERTIFICATE-----Generated at Sat Jun 14 06:08:43 2025 by rpki-client