$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b3eb2916-fdc8-4499-8857-c751c9ab3822.roa File: b3eb2916-fdc8-4499-8857-c751c9ab3822.roa (raw, json) Hash identifier: ADgT7fsIVQmY93/0Kq31L3XOda6ZlKRbKqLddfly/iU= Subject key identifier: 38:0D:60:49:64:83:62:9C:DC:8C:55:11:9B:D0:91:DA:43:22:0E:DE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7DCFDFC8368D476746748ADE230925628C8B5D65 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b3eb2916-fdc8-4499-8857-c751c9ab3822.roa Signing time: Tue 10 Jun 2025 00:31:14 +0000 ROA not before: Tue 10 Jun 2025 00:31:14 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:4040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:cf:df:c8:36:8d:47:67:46:74:8a:de:23:09:25:62:8c:8b:5d:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 00:31:14 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=3d66de4aadc47126a518c969a6e7aac66740df0ed7027650e5c3ac5c4b49d3b4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:37:17:71:4e:6b:a8:1e:d5:97:e5:85:cd:56: a6:61:d9:bf:66:76:2a:80:48:17:1c:5a:5e:8f:fb: b6:b1:6f:83:1a:7e:0d:58:3a:e3:09:65:5f:a1:fd: 98:1e:30:cc:d2:e4:82:5a:ca:3c:0f:24:4f:eb:86: 78:63:7e:46:2b:99:1e:64:b9:09:1e:9e:0d:35:66: cb:17:ec:3f:c1:9e:17:7d:81:e1:63:f7:0a:45:2c: 99:57:6d:77:20:59:98:db:5a:51:37:46:26:a3:9e: ab:7d:3f:16:a4:ca:d9:2c:dc:5f:20:7d:fc:65:04: 90:5e:05:02:79:e8:fe:ea:12:76:d4:7d:85:f3:2b: 9b:c8:3a:3a:28:d3:bd:5f:b2:11:29:92:07:0f:29: e0:59:f8:0e:a9:78:29:d7:7b:af:fc:84:7a:b8:4b: 55:c1:da:6a:62:40:20:86:15:8d:ba:a6:2b:1a:44: cf:e9:f8:44:0c:23:7f:dc:83:f2:7d:99:98:10:81: 40:2f:a1:d5:3c:bb:e6:97:a3:99:f1:71:ff:85:68: 26:e0:96:50:ae:df:9e:9c:29:67:c0:5a:de:3a:c7: a6:76:96:e2:bd:55:e6:3b:55:b9:c0:f3:9d:98:f3: 7c:88:c9:1f:61:88:40:47:52:89:72:10:6c:53:fe: b5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0D:60:49:64:83:62:9C:DC:8C:55:11:9B:D0:91:DA:43:22:0E:DE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b3eb2916-fdc8-4499-8857-c751c9ab3822.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:4040::/46 Signature Algorithm: sha256WithRSAEncryption 6c:e2:82:a9:97:37:b1:db:46:f6:32:6a:bd:49:89:e7:21:15: 89:38:3e:62:fe:db:5d:6a:93:63:8a:25:40:7b:0b:0f:25:f3: 0d:4b:a2:6a:11:e7:22:c2:9d:88:96:37:c1:ce:ac:73:09:3f: 43:37:06:fe:4f:93:ce:ae:77:e5:52:da:df:28:87:8a:6d:06: 5d:98:29:78:05:14:60:fa:78:37:9c:2b:2b:0f:6f:92:71:9f: 1a:3e:45:d9:3d:92:be:a0:e0:18:bb:72:4b:73:fd:42:16:7b: b4:bd:3e:79:f8:62:6d:28:97:83:31:a4:f6:0c:d8:f0:47:cc: 89:c7:ce:6f:3e:bb:53:a0:fe:6e:ae:11:29:2f:c1:e4:b7:3a: 97:9f:2b:9b:f7:51:7e:c3:7c:fa:9d:29:a2:0f:5b:af:94:0d: 8d:10:e8:de:73:47:c9:27:20:6e:50:51:8f:90:36:b3:17:49: bf:db:a9:f9:66:14:e4:0b:16:91:0b:d6:2b:68:ce:43:d5:e3: 6c:56:62:2b:9f:df:6d:04:87:54:be:0e:e2:82:67:65:71:a6: ea:72:8b:d8:ba:f4:93:a4:ca:be:98:49:c3:97:3e:fb:8f:49: a8:60:d3:c6:7d:82:b9:da:b3:3d:04:c5:58:d0:e4:95:ce:2c: 2a:90:89:53 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfc/fyDaNR2dGdIreIwklYoyLXWUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDAwMzExNFoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAM2Q2NmRlNGFhZGM0NzEyNmE1MThj OTY5YTZlN2FhYzY2NzQwZGYwZWQ3MDI3NjUwZTVjM2FjNWM0YjQ5ZDNiNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjcXcU5rqB7Vl+WFzVamYdm/ZnYq gEgXHFpej/u2sW+DGn4NWDrjCWVfof2YHjDM0uSCWso8DyRP64Z4Y35GK5keZLkJ Hp4NNWbLF+w/wZ4XfYHhY/cKRSyZV213IFmY21pRN0Ymo56rfT8WpMrZLNxfIH38 ZQSQXgUCeej+6hJ21H2F8yubyDo6KNO9X7IRKZIHDyngWfgOqXgp13uv/IR6uEtV wdpqYkAghhWNuqYrGkTP6fhEDCN/3IPyfZmYEIFAL6HVPLvml6OZ8XH/hWgm4JZQ rt+enClnwFreOsemdpbivVXmO1W5wPOdmPN8iMkfYYhAR1KJchBsU/61DQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDgNYElkg2Kc3IxVEZvQkdpDIg7eMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IzZWIyOTE2LWZkYzgtNDQ5OS04ODU3LWM3NTFjOWFiMzgyMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba+0BAMA0GCSqGSIb3DQEBCwUAA4IBAQBs4oKplzex20b2Mmq9 SYnnIRWJOD5i/ttdapNjiiVAewsPJfMNS6JqEeciwp2IljfBzqxzCT9DNwb+T5PO rnflUtrfKIeKbQZdmCl4BRRg+ng3nCsrD2+ScZ8aPkXZPZK+oOAYu3JLc/1CFnu0 vT55+GJtKJeDMaT2DNjwR8yJx85vPrtToP5urhEpL8HktzqXnyub91F+w3z6nSmi D1uvlA2NEOjec0fJJyBuUFGPkDazF0m/26n5ZhTkCxaRC9YraM5D1eNsVmIrn99t BIdUvg7igmdlcabqcovYuvSTpMq+mEnDlz77j0moYNPGfYK52rM9BMVY0OSVziwq kIlT -----END CERTIFICATE-----Generated at Sat Jun 14 06:07:28 2025 by rpki-client