$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c53a68e4-6b3d-4fba-a3e7-7c778c3b46b6.roa File: c53a68e4-6b3d-4fba-a3e7-7c778c3b46b6.roa (raw, json) Hash identifier: KjcXH9AW0ECE8pN7MwIndHO/IyrPFqaRA+mWDn2nKwk= Subject key identifier: 74:52:70:79:37:12:8F:D7:09:43:64:B0:70:CB:6A:7D:61:4C:CF:D9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 254C24E9AF8CE24969AE9715A0B63B420EFD3577 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c53a68e4-6b3d-4fba-a3e7-7c778c3b46b6.roa Signing time: Tue 10 Jun 2025 00:30:10 +0000 ROA not before: Tue 10 Jun 2025 00:30:10 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf7:b040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4c:24:e9:af:8c:e2:49:69:ae:97:15:a0:b6:3b:42:0e:fd:35:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 00:30:10 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=b59c4b34eea7fb73e2e077353d9d166587d81914b8c99a10344e614d6529b2f9, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b8:0f:52:2d:69:37:a9:e5:ec:33:1a:44:0a: 32:f2:bb:43:dc:8b:2b:a8:24:29:c9:6e:45:f9:81: e9:32:af:2b:fb:5a:2e:3f:d5:e7:8e:fe:d9:1f:0a: 62:db:9b:6c:6a:2d:11:f4:d0:d1:2a:85:c3:bc:cd: a7:79:ac:9d:28:15:26:f0:c3:fa:91:b6:64:b5:e5: 99:91:f8:89:28:89:74:58:f5:73:b4:3a:61:f5:41: 80:a8:e8:17:23:f4:0a:d2:2f:e0:5b:f6:9b:d1:42: 7f:43:69:e3:52:74:f9:d5:82:8c:07:41:fc:eb:19: a8:41:dc:54:0f:81:21:62:1d:00:58:77:f9:5e:63: 24:33:cb:05:d2:ae:78:dc:3a:46:22:00:61:68:e0: d7:60:93:30:4c:c3:51:9b:6e:da:68:2f:6d:d7:e3: d1:90:f0:64:81:5f:50:c7:12:0f:f2:88:fe:19:e1: 84:4e:35:0a:7a:ab:37:b2:4a:c4:c5:be:01:29:c4: a7:c1:2d:b5:39:5c:44:88:5c:4d:42:18:68:3b:91: 5f:81:08:2f:70:83:b5:ce:8d:65:5b:57:9c:00:19: 78:ca:b9:09:c6:04:b8:a3:61:d9:50:f3:2f:d5:72: 06:3c:cc:ac:7f:46:af:b9:42:30:0d:e4:f4:6d:db: 1c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:52:70:79:37:12:8F:D7:09:43:64:B0:70:CB:6A:7D:61:4C:CF:D9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c53a68e4-6b3d-4fba-a3e7-7c778c3b46b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf7:b040::/46 Signature Algorithm: sha256WithRSAEncryption 27:b2:ef:3b:09:5a:c1:d5:cf:bd:33:3b:bb:44:54:bc:ae:14: b1:26:0b:9c:b9:75:08:d6:79:b1:ba:21:f3:1d:da:0b:64:7c: 1f:ec:e9:b6:45:af:ae:31:d7:85:e0:6b:fb:b9:34:93:0b:c9: f5:3d:eb:dd:a7:41:30:3e:fc:92:64:08:13:3d:f7:7a:33:be: 52:b9:8c:12:78:74:db:c8:69:47:74:fe:50:de:9b:6b:fd:ec: b1:a3:11:27:07:34:c0:f6:81:3f:5b:3e:a8:02:e7:eb:15:fb: 1d:5e:24:05:58:21:7e:78:58:99:d6:72:93:d9:9a:dd:6b:f5: dc:be:7c:6a:da:00:18:af:81:b7:29:c5:e0:c0:1d:2f:db:62: 23:fd:90:aa:0d:03:ba:89:88:b3:be:28:26:fc:47:2d:a5:6e: f0:cf:f4:6c:cf:2d:f5:39:fd:8c:49:dd:e7:11:39:0d:d3:b8: ba:d5:8b:60:43:2b:96:c8:c4:27:5a:48:78:4f:ed:94:21:17: 96:fd:0a:a1:4e:b8:25:6f:6a:4a:e1:08:81:42:aa:fd:26:93: 0b:e1:5a:2a:1e:9a:d6:16:07:36:50:c6:f2:56:b0:72:86:71: 3a:7b:63:6a:35:12:35:dd:2c:4f:af:7d:d0:ce:f9:12:5e:80: e0:a9:34:bb -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUJUwk6a+M4klprpcVoLY7Qg79NXcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDAwMzAxMFoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAYjU5YzRiMzRlZWE3ZmI3M2UyZTA3 NzM1M2Q5ZDE2NjU4N2Q4MTkxNGI4Yzk5YTEwMzQ0ZTYxNGQ2NTI5YjJmOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrgPUi1pN6nl7DMaRAoy8rtD3Isr qCQpyW5F+YHpMq8r+1ouP9Xnjv7ZHwpi25tsai0R9NDRKoXDvM2neaydKBUm8MP6 kbZkteWZkfiJKIl0WPVztDph9UGAqOgXI/QK0i/gW/ab0UJ/Q2njUnT51YKMB0H8 6xmoQdxUD4EhYh0AWHf5XmMkM8sF0q543DpGIgBhaODXYJMwTMNRm27aaC9t1+PR kPBkgV9QxxIP8oj+GeGETjUKeqs3skrExb4BKcSnwS21OVxEiFxNQhhoO5FfgQgv cIO1zo1lW1ecABl4yrkJxgS4o2HZUPMv1XIGPMysf0avuUIwDeT0bdscUwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHRScHk3Eo/XCUNksHDLan1hTM/ZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M1M2E2OGU0LTZiM2QtNGZiYS1hM2U3LTdjNzc4YzNiNDZiNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba97BAMA0GCSqGSIb3DQEBCwUAA4IBAQAnsu87CVrB1c+9Mzu7 RFS8rhSxJgucuXUI1nmxuiHzHdoLZHwf7Om2Ra+uMdeF4Gv7uTSTC8n1Pevdp0Ew PvySZAgTPfd6M75SuYwSeHTbyGlHdP5Q3ptr/eyxoxEnBzTA9oE/Wz6oAufrFfsd XiQFWCF+eFiZ1nKT2Zrda/Xcvnxq2gAYr4G3KcXgwB0v22Ij/ZCqDQO6iYizvigm /EctpW7wz/Rszy31Of2MSd3nETkN07i61YtgQyuWyMQnWkh4T+2UIReW/QqhTrgl b2pK4QiBQqr9JpML4VoqHprWFgc2UMbyVrByhnE6e2NqNRI13SxPr33QzvkSXoDg qTS7 -----END CERTIFICATE-----Generated at Sat Jun 14 05:46:29 2025 by rpki-client