$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/931330f5-9897-4b1f-9582-a81df9bb0324.roa File: 931330f5-9897-4b1f-9582-a81df9bb0324.roa (raw, json) Hash identifier: sHXbvIyRhT7xkNRQcYt1UYwz5LY1E57sxY5ATFXuNGE= Subject key identifier: A9:31:95:AF:51:58:B8:AF:53:D6:0A:DC:BF:5F:39:2D:24:93:95:DC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7CA707BF0D6BCFE4B795135313626E4B4A9C1B61 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/931330f5-9897-4b1f-9582-a81df9bb0324.roa Signing time: Tue 10 Jun 2025 15:02:14 +0000 ROA not before: Tue 10 Jun 2025 15:02:14 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafe:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a7:07:bf:0d:6b:cf:e4:b7:95:13:53:13:62:6e:4b:4a:9c:1b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 15:02:14 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=29e64743675d59475816b01b52dbd42553e857fdc2ee3fe48f241c450c186939, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:45:f9:d1:a8:3b:03:fb:18:0a:8f:dd:b2:45: 74:36:8d:bb:87:4d:70:38:c7:35:32:18:fd:3a:3d: b3:c6:67:5d:6e:d5:47:a0:96:91:d2:33:93:9d:79: f2:57:2d:32:c6:57:4e:7f:9d:95:13:6f:9c:73:48: 50:2f:c6:19:e9:b2:68:de:5a:14:08:cd:13:8c:30: 19:57:b2:1b:08:24:a6:03:e7:50:18:82:9a:17:79: 9f:27:0e:7d:4d:e1:70:15:ca:31:07:57:a2:5e:a4: fc:50:d6:42:3b:39:94:1f:10:67:b7:20:a2:9d:45: 16:8a:f0:68:06:b5:5b:31:6c:4a:f2:46:48:4e:a6: b6:6d:d8:0c:bc:ea:5b:b7:28:7f:dd:a2:3e:ea:8d: cb:07:30:d0:af:23:61:bc:1d:2d:21:49:ff:b5:3e: 71:1e:53:6c:67:c0:2b:d6:b0:a8:9c:58:ae:2f:23: a0:66:51:dc:98:20:96:80:e6:f3:b8:e3:72:da:d8: 65:08:6e:9f:59:39:2d:4b:76:a8:39:b9:f7:81:1b: e0:d3:be:78:2a:d3:8d:ee:39:dc:cc:e1:23:58:96: db:8d:2e:31:9c:cf:67:27:d8:29:75:e8:5a:bf:d4: 54:6c:42:35:96:48:52:df:97:93:d5:fb:93:96:e8: cf:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:31:95:AF:51:58:B8:AF:53:D6:0A:DC:BF:5F:39:2D:24:93:95:DC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/931330f5-9897-4b1f-9582-a81df9bb0324.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafe:6000::/40 Signature Algorithm: sha256WithRSAEncryption 7b:90:84:2c:db:33:4b:a0:47:f4:a1:10:1a:f9:6b:d7:0e:a4: 83:0b:94:53:d9:d1:30:0d:76:e5:6b:38:5a:f0:1e:dd:28:9c: e7:a1:64:aa:d4:43:42:62:87:3f:ca:bb:a2:e9:3a:43:31:48: e8:9b:d0:24:97:aa:a4:a2:88:38:8a:62:c2:96:58:75:24:6d: 05:8f:ef:06:1f:78:2f:2e:02:dc:a5:e8:78:85:cc:4e:42:0f: 1d:40:d9:fc:00:00:f3:01:df:85:14:99:68:de:99:5f:bc:38: 90:3c:d3:80:90:da:8a:da:aa:5f:19:a4:01:35:76:4b:18:38: 8e:c0:73:9c:d8:f4:1b:89:a7:cc:7a:51:99:27:2a:73:30:ea: 4a:26:42:07:24:b8:8e:1f:61:99:e8:7d:fa:0e:17:73:0a:a0: a4:81:da:39:30:a8:f6:d6:e0:a4:88:e3:e2:6f:8a:79:f7:61: 65:14:01:06:62:26:2b:02:0e:de:c1:b8:52:12:03:1c:2a:23: 4a:19:fa:87:7e:f9:d9:c4:15:71:e9:da:12:c0:50:bf:e6:38: 95:24:02:da:bf:e1:01:87:0e:a4:56:bf:c2:64:af:c9:af:56: e8:d6:bf:14:a0:b7:05:d3:5b:28:62:cc:fe:af:80:2a:11:36: 67:74:da:b1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUfKcHvw1rz+S3lRNTE2JuS0qcG2EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDE1MDIxNFoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAMjllNjQ3NDM2NzVkNTk0NzU4MTZi MDFiNTJkYmQ0MjU1M2U4NTdmZGMyZWUzZmU0OGYyNDFjNDUwYzE4NjkzOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEX50ag7A/sYCo/dskV0No27h01w OMc1Mhj9Oj2zxmddbtVHoJaR0jOTnXnyVy0yxldOf52VE2+cc0hQL8YZ6bJo3loU CM0TjDAZV7IbCCSmA+dQGIKaF3mfJw59TeFwFcoxB1eiXqT8UNZCOzmUHxBntyCi nUUWivBoBrVbMWxK8kZITqa2bdgMvOpbtyh/3aI+6o3LBzDQryNhvB0tIUn/tT5x HlNsZ8Ar1rConFiuLyOgZlHcmCCWgObzuONy2thlCG6fWTktS3aoObn3gRvg0754 KtON7jnczOEjWJbbjS4xnM9nJ9gpdehav9RUbEI1lkhS35eT1fuTlujPGQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKkxla9RWLivU9YK3L9fOS0kk5XcMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkzMTMzMGY1LTk4OTctNGIxZi05NTgyLWE4MWRmOWJiMDMyNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/mAwDQYJKoZIhvcNAQELBQADggEBAHuQhCzbM0ugR/ShEBr5 a9cOpIMLlFPZ0TANduVrOFrwHt0onOehZKrUQ0Jihz/Ku6LpOkMxSOib0CSXqqSi iDiKYsKWWHUkbQWP7wYfeC8uAtyl6HiFzE5CDx1A2fwAAPMB34UUmWjemV+8OJA8 04CQ2oraql8ZpAE1dksYOI7Ac5zY9BuJp8x6UZknKnMw6komQgckuI4fYZnoffoO F3MKoKSB2jkwqPbW4KSI4+Jvinn3YWUUAQZiJisCDt7BuFISAxwqI0oZ+od++dnE FXHp2hLAUL/mOJUkAtq/4QGHDqRWv8Jkr8mvVujWvxSgtwXTWyhizP6vgCoRNmd0 2rE= -----END CERTIFICATE-----Generated at Sat Jun 14 06:30:32 2025 by rpki-client