$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aed464c0-6a36-4536-957a-b9c0a5a51ca2.roa File: aed464c0-6a36-4536-957a-b9c0a5a51ca2.roa (raw, json) Hash identifier: IaFMCWrEGKcwt+2HSHWfkoKyvuS6fDm0UHn5NXuHrAE= Subject key identifier: 52:7C:F6:11:F8:93:12:E6:CA:34:A6:28:E0:2D:1C:0C:09:D9:8B:1E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5471E03B3D6C6D849B2A9D837D2873A8C1AF85AB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aed464c0-6a36-4536-957a-b9c0a5a51ca2.roa Signing time: Tue 10 Jun 2025 15:31:27 +0000 ROA not before: Tue 10 Jun 2025 15:31:27 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:2800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:71:e0:3b:3d:6c:6d:84:9b:2a:9d:83:7d:28:73:a8:c1:af:85:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 15:31:27 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=4562adbb6d1f1b5ad6c5a85cc49fc883ec5497810f6c64ce2f894d31582cc8e6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:65:0b:66:b8:4e:ec:db:e6:a2:2f:d0:f6:f5: fa:74:6e:fe:18:53:98:8f:02:6d:5f:3e:ad:2c:b7: b9:b9:18:99:b4:64:94:1e:cc:5d:14:54:7d:30:ab: 67:9d:29:ef:5a:7e:33:cb:20:d2:98:57:a7:63:94: c2:01:f7:5b:77:0e:b7:f3:a4:7b:41:5a:bf:e2:70: d0:16:5e:40:66:f0:68:5b:75:42:c2:31:ee:01:d5: f0:e0:83:f9:15:31:2c:e3:c8:3a:59:a3:af:3f:ca: 5b:29:49:6f:a3:31:d5:ae:17:f9:14:cf:33:a9:ab: 91:28:9a:78:d4:02:7b:30:4b:a1:c3:d7:0b:29:27: 03:31:43:c3:49:21:a2:6f:b3:26:64:15:53:0d:a3: 66:a1:d7:ec:45:dd:9a:d9:ab:df:49:51:50:12:29: 75:d1:ce:99:d5:33:e8:93:71:6a:bb:13:ac:7b:b5: c3:cb:39:33:ec:29:e1:60:ee:5c:08:22:8f:db:41: db:5a:79:49:54:44:29:2a:a6:55:df:77:06:4e:3c: 9d:db:4d:c2:b4:fb:23:f8:46:cb:e1:20:4c:ab:02: b4:ee:52:4d:91:a5:5f:e6:ab:70:8a:e9:ac:d6:8d: 5b:c6:53:e6:8c:fb:3f:c9:c0:80:e2:79:13:e7:6b: ff:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7C:F6:11:F8:93:12:E6:CA:34:A6:28:E0:2D:1C:0C:09:D9:8B:1E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aed464c0-6a36-4536-957a-b9c0a5a51ca2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:2800::/40 Signature Algorithm: sha256WithRSAEncryption 74:13:20:1f:1e:02:40:c9:86:58:64:7d:8b:ff:4c:e0:c8:52: 5c:3e:71:ac:7e:01:14:ca:04:ad:54:5f:12:29:c5:81:22:b0: 1b:5d:aa:5c:7f:c6:a0:ad:eb:ef:7e:de:20:ed:25:c9:1e:16: 7b:cd:e5:10:1b:82:f9:48:09:33:3c:de:c6:64:34:b1:20:c1: 4e:ab:ff:d3:c8:c3:1e:96:34:2e:b4:d3:25:89:b2:a3:e1:b2: 75:9d:20:a9:66:f0:62:90:b3:a3:ee:1d:fc:0d:50:aa:68:dc: 27:06:eb:17:a1:eb:84:e3:61:1e:bd:ad:ee:8a:e9:f0:27:49: 1c:ed:46:6c:12:e4:a9:fa:01:26:f3:cc:9d:23:d4:fd:d6:03: cd:e0:4a:ae:38:1a:a2:e8:3d:cd:96:d5:54:bc:52:b6:42:47: c5:b7:83:f3:93:60:42:f8:68:fa:f6:05:5d:58:76:f0:3e:90: 08:f2:dd:5e:e4:94:45:7e:6d:9d:41:a1:d4:6a:31:21:a2:f3: af:3c:62:c6:e5:7f:08:72:7c:f2:4f:b8:32:82:51:05:81:0a: 41:e4:2a:ed:aa:a2:ed:ab:54:41:c6:e8:15:18:df:90:29:00: d8:40:fd:4d:93:9f:d9:66:f0:b5:ac:2d:e6:a9:d1:df:e7:2e: 3f:10:32:2b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVHHgOz1sbYSbKp2DfShzqMGvhaswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDE1MzEyN1oX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNANDU2MmFkYmI2ZDFmMWI1YWQ2YzVh ODVjYzQ5ZmM4ODNlYzU0OTc4MTBmNmM2NGNlMmY4OTRkMzE1ODJjYzhlNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWULZrhO7Nvmoi/Q9vX6dG7+GFOY jwJtXz6tLLe5uRiZtGSUHsxdFFR9MKtnnSnvWn4zyyDSmFenY5TCAfdbdw6386R7 QVq/4nDQFl5AZvBoW3VCwjHuAdXw4IP5FTEs48g6WaOvP8pbKUlvozHVrhf5FM8z qauRKJp41AJ7MEuhw9cLKScDMUPDSSGib7MmZBVTDaNmodfsRd2a2avfSVFQEil1 0c6Z1TPok3FquxOse7XDyzkz7CnhYO5cCCKP20HbWnlJVEQpKqZV33cGTjyd203C tPsj+EbL4SBMqwK07lJNkaVf5qtwiums1o1bxlPmjPs/ycCA4nkT52v/GQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFJ89hH4kxLmyjSmKOAtHAwJ2YseMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FlZDQ2NGMwLTZhMzYtNDUzNi05NTdhLWI5YzBhNWE1MWNhMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8SgwDQYJKoZIhvcNAQELBQADggEBAHQTIB8eAkDJhlhkfYv/ TODIUlw+cax+ARTKBK1UXxIpxYEisBtdqlx/xqCt6+9+3iDtJckeFnvN5RAbgvlI CTM83sZkNLEgwU6r/9PIwx6WNC600yWJsqPhsnWdIKlm8GKQs6PuHfwNUKpo3CcG 6xeh64TjYR69re6K6fAnSRztRmwS5Kn6ASbzzJ0j1P3WA83gSq44GqLoPc2W1VS8 UrZCR8W3g/OTYEL4aPr2BV1YdvA+kAjy3V7klEV+bZ1BodRqMSGi8688Ysblfwhy fPJPuDKCUQWBCkHkKu2qou2rVEHG6BUY35ApANhA/U2Tn9lm8LWsLeap0d/nLj8Q Mis= -----END CERTIFICATE-----Generated at Sat Jun 14 06:35:14 2025 by rpki-client