$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa File: 9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa (raw, json) Hash identifier: Ia8z4Qtzd+9PI64ZSfCy12IAWX9svrKevkt9oUwcUNY= Subject key identifier: FD:93:AE:16:18:5F:BF:3A:29:37:84:27:42:CE:94:65:2E:C2:43:88 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0FE16BF6F3DBDB826EB444DA7E532D630C90075F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa Signing time: Tue 10 Jun 2025 15:51:39 +0000 ROA not before: Tue 10 Jun 2025 15:51:39 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da10:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e1:6b:f6:f3:db:db:82:6e:b4:44:da:7e:53:2d:63:0c:90:07:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 15:51:39 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=53a4cc2eb6ce3d59f09028de9a0d6787b988e044e0c3aed059ef52765a446215, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:55:fd:b8:e0:7e:ed:4f:6c:7d:8a:38:a1:68: f5:f3:67:9d:35:9f:e3:d2:27:ea:82:a4:a6:77:90: b1:1f:27:bd:24:2c:e6:f2:37:4a:8f:38:98:27:80: e6:af:5f:98:9d:37:d5:13:96:d7:0b:c8:45:ae:af: d5:c2:40:bd:af:13:7a:d8:97:a8:cc:cd:e3:05:43: e5:43:f5:1a:b7:de:3d:01:f2:44:9c:f5:00:e2:11: 15:9a:12:e8:22:d3:1e:d1:ab:96:66:79:81:6a:42: 0e:e2:d6:27:09:21:56:b0:ff:70:12:bf:55:f4:80: 61:05:39:ff:75:f1:3b:7f:9b:4a:9a:14:d4:08:8a: b2:41:23:9f:77:64:d4:93:b4:74:6d:34:35:35:23: 68:b9:30:b0:87:be:9c:54:01:0b:59:01:a1:ba:dd: b0:bf:4e:01:b2:9b:85:06:c2:1e:b3:05:2c:be:ed: 36:13:64:cb:5e:a3:12:fa:b7:2c:ef:ed:0a:92:51: a0:ae:bb:1d:86:59:91:28:01:ea:d3:4e:ca:6a:e1: 3e:3e:02:82:f8:a9:fd:8f:7a:1a:33:87:24:b7:ad: ba:94:d1:35:12:2d:02:ea:23:cb:63:08:6b:d0:94: 57:84:3b:d8:ea:df:c7:ad:b0:87:83:19:12:44:e3: 55:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:93:AE:16:18:5F:BF:3A:29:37:84:27:42:CE:94:65:2E:C2:43:88 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da10:8000::/36 Signature Algorithm: sha256WithRSAEncryption 0c:d2:dd:52:64:5d:9d:02:28:73:8f:ba:15:f3:1e:52:19:74: 8b:99:d6:df:68:4c:35:b2:69:0d:50:66:93:22:48:29:35:07: 6c:c2:9a:63:cc:38:37:21:8e:dc:7c:b5:2e:80:09:6c:6e:ff: db:04:1b:eb:17:5f:ec:7b:15:3d:65:d4:b8:38:ce:4e:08:39: 4c:a8:57:53:d6:b5:4f:38:6f:85:83:f6:12:7b:d0:20:03:a2: e8:a8:ec:9c:bb:3f:7b:d4:1a:58:b3:0b:94:e0:60:2f:14:45: 87:24:9f:13:76:a2:cf:c0:2e:2e:e2:46:08:43:eb:cd:71:84: 79:6a:46:b3:b3:1c:59:d9:0d:d6:87:11:03:91:86:57:78:44: b8:86:c6:1d:d2:0d:e3:b1:bf:6f:5c:83:c9:99:34:15:1c:22: 4f:9e:26:a7:42:12:03:4a:c0:4e:9d:5e:34:ef:b4:70:97:3c: 03:64:92:8f:4b:15:9f:dd:d4:38:d7:6a:8c:db:eb:0f:eb:1b: 85:d0:f6:e1:01:46:04:55:0d:d9:08:2e:41:e6:1b:8b:f9:2d: ee:45:d8:d8:c4:1d:f6:ee:f4:ce:90:fe:7a:ae:75:5b:8c:c2: a4:93:47:79:09:12:4d:25:40:97:41:9f:d5:04:85:e8:7c:1e: 57:41:04:d6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUD+Fr9vPb24JutETaflMtYwyQB18wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDE1NTEzOVoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNANTNhNGNjMmViNmNlM2Q1OWYwOTAy OGRlOWEwZDY3ODdiOTg4ZTA0NGUwYzNhZWQwNTllZjUyNzY1YTQ0NjIxNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1X9uOB+7U9sfYo4oWj182edNZ/j 0ifqgqSmd5CxHye9JCzm8jdKjziYJ4Dmr1+YnTfVE5bXC8hFrq/VwkC9rxN62Jeo zM3jBUPlQ/Uat949AfJEnPUA4hEVmhLoItMe0auWZnmBakIO4tYnCSFWsP9wEr9V 9IBhBTn/dfE7f5tKmhTUCIqyQSOfd2TUk7R0bTQ1NSNouTCwh76cVAELWQGhut2w v04BspuFBsIeswUsvu02E2TLXqMS+rcs7+0KklGgrrsdhlmRKAHq007KauE+PgKC +Kn9j3oaM4ckt626lNE1Ei0C6iPLYwhr0JRXhDvY6t/HrbCHgxkSRONVHwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFP2TrhYYX786KTeEJ0LOlGUuwkOIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlkY2Y1ZjhmLTk5NDEtNGM1Ny05M2M2LTZkZjM0NDBkMDBhMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaEIAwDQYJKoZIhvcNAQELBQADggEBAAzS3VJkXZ0CKHOPuhXz HlIZdIuZ1t9oTDWyaQ1QZpMiSCk1B2zCmmPMODchjtx8tS6ACWxu/9sEG+sXX+x7 FT1l1Lg4zk4IOUyoV1PWtU84b4WD9hJ70CADouio7Jy7P3vUGlizC5TgYC8URYck nxN2os/ALi7iRghD681xhHlqRrOzHFnZDdaHEQORhld4RLiGxh3SDeOxv29cg8mZ NBUcIk+eJqdCEgNKwE6dXjTvtHCXPANkko9LFZ/d1DjXaozb6w/rG4XQ9uEBRgRV DdkILkHmG4v5Le5F2NjEHfbu9M6Q/nqudVuMwqSTR3kJEk0lQJdBn9UEheh8HldB BNY= -----END CERTIFICATE-----Generated at Sat Jun 14 06:13:02 2025 by rpki-client