$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d3c18840-4560-48db-94cd-c1df18e0ceee.roa File: d3c18840-4560-48db-94cd-c1df18e0ceee.roa (raw, json) Hash identifier: CTCYxEFnpPj4utaAjLFxvBXDaYr0Xc25h1OqC4KOaR4= Subject key identifier: 2A:BF:13:D5:2F:5F:CC:CA:FA:6F:5F:DC:78:BC:ED:BB:AB:2E:7F:4A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 46403BA51E53B2EEC1B7A997B22BA76E58C6C180 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d3c18840-4560-48db-94cd-c1df18e0ceee.roa Signing time: Tue 10 Jun 2025 00:41:14 +0000 ROA not before: Tue 10 Jun 2025 00:41:14 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf7:90c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:40:3b:a5:1e:53:b2:ee:c1:b7:a9:97:b2:2b:a7:6e:58:c6:c1:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 00:41:14 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=0c5d1966b18d6a11334d78c58e987c232765ece66adee085cd87d8fbcba3f374, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0d:2c:81:3a:f1:b2:96:21:b3:94:ec:1a:93: 3a:83:ae:34:7d:88:03:de:a9:7f:05:b8:77:8d:f8: c5:c5:2d:e5:0d:e2:54:b0:95:05:45:b7:5e:2c:b0: 8a:20:e6:e8:5e:89:ce:08:18:87:93:6a:04:20:6f: b8:21:61:19:e4:4d:b1:b6:f9:a8:4c:bd:dd:32:57: 1d:b1:c6:b3:77:bb:e0:e1:1d:af:a8:f9:42:06:6e: 85:e7:87:c2:c7:bb:3e:57:ef:9e:9e:6d:3d:25:67: f4:b2:91:ba:6e:ef:21:55:34:f8:b9:b4:ee:14:b8: 99:e3:f5:80:ac:89:9e:72:8c:49:4f:40:26:e6:d9: df:26:2d:bd:b1:c1:d2:ff:32:87:ec:c9:e0:04:c8: c6:17:41:9c:d0:28:3f:81:ce:30:e6:00:0d:ba:86: fb:9d:0e:2c:fe:2b:80:ed:84:53:63:84:79:81:83: c6:c6:f3:7e:56:ad:ce:48:97:8d:31:7e:bd:55:dd: 9d:3a:0b:44:75:0e:94:18:af:0f:79:2c:e2:dd:a6: 4f:a2:ba:60:c2:1c:1e:cc:29:06:61:ff:1e:9f:4c: d4:b5:71:a2:fa:50:4d:c7:41:6b:df:f2:12:4c:cd: 6d:d9:91:cb:25:a2:13:08:5f:a4:01:b0:d8:9c:e0: 10:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BF:13:D5:2F:5F:CC:CA:FA:6F:5F:DC:78:BC:ED:BB:AB:2E:7F:4A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d3c18840-4560-48db-94cd-c1df18e0ceee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf7:90c0::/46 Signature Algorithm: sha256WithRSAEncryption 50:8a:4f:bc:80:e7:f5:42:0c:bb:db:d3:ae:6f:33:49:d7:73: 45:57:6a:f0:8d:ac:f0:81:ef:ae:d3:75:2b:45:09:e3:83:23: 2e:70:cf:b4:79:ce:8e:b2:8b:c7:7a:4f:32:21:ed:c2:92:73: 0e:0e:a1:a5:70:ca:4b:46:ee:b6:d2:1f:1f:28:8d:96:2b:08: 38:4d:5e:4a:5c:9c:61:ff:e5:ff:21:ef:a8:db:81:84:7d:c5: 56:8a:5f:96:33:e8:33:f2:da:15:95:69:da:3a:92:7f:df:00: 7c:2b:b5:79:85:17:06:dc:64:32:d8:70:5c:b9:d3:61:5b:04: 21:a5:53:ce:29:ae:7c:6f:c9:a1:07:da:c5:5e:8d:2b:92:48: ab:6d:a0:85:a8:23:a0:4e:ae:70:c5:32:80:23:d2:d2:f2:59: 4e:06:ee:90:ef:78:52:9e:43:f0:da:68:4e:d6:f6:40:e4:26: ec:38:eb:11:4a:9b:f2:18:c3:a7:1e:15:2f:c6:d4:a5:02:ac: a7:5b:d0:18:aa:63:71:6f:ea:62:91:c5:d5:d5:fd:99:ca:72: b1:3a:fc:29:20:15:f7:49:53:6b:b1:e1:a1:9b:c5:0c:27:70: 41:f3:11:86:61:56:17:44:a3:b9:c4:eb:1e:a1:cb:07:52:74: 7f:28:10:ac -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURkA7pR5Tsu7Bt6mXsiunbljGwYAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDAwNDExNFoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAMGM1ZDE5NjZiMThkNmExMTMzNGQ3 OGM1OGU5ODdjMjMyNzY1ZWNlNjZhZGVlMDg1Y2Q4N2Q4ZmJjYmEzZjM3NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzg0sgTrxspYhs5TsGpM6g640fYgD 3ql/Bbh3jfjFxS3lDeJUsJUFRbdeLLCKIOboXonOCBiHk2oEIG+4IWEZ5E2xtvmo TL3dMlcdscazd7vg4R2vqPlCBm6F54fCx7s+V++enm09JWf0spG6bu8hVTT4ubTu FLiZ4/WArImecoxJT0Am5tnfJi29scHS/zKH7MngBMjGF0Gc0Cg/gc4w5gANuob7 nQ4s/iuA7YRTY4R5gYPGxvN+Vq3OSJeNMX69Vd2dOgtEdQ6UGK8PeSzi3aZPorpg whwezCkGYf8en0zUtXGi+lBNx0Fr3/ISTM1t2ZHLJaITCF+kAbDYnOAQ5QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCq/E9UvX8zK+m9f3Hi87burLn9KMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2QzYzE4ODQwLTQ1NjAtNDhkYi05NGNkLWMxZGYxOGUwY2VlZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba95DAMA0GCSqGSIb3DQEBCwUAA4IBAQBQik+8gOf1Qgy729Ou bzNJ13NFV2rwjazwge+u03UrRQnjgyMucM+0ec6OsovHek8yIe3CknMODqGlcMpL Ru620h8fKI2WKwg4TV5KXJxh/+X/Ie+o24GEfcVWil+WM+gz8toVlWnaOpJ/3wB8 K7V5hRcG3GQy2HBcudNhWwQhpVPOKa58b8mhB9rFXo0rkkirbaCFqCOgTq5wxTKA I9LS8llOBu6Q73hSnkPw2mhO1vZA5CbsOOsRSpvyGMOnHhUvxtSlAqynW9AYqmNx b+pikcXV1f2ZynKxOvwpIBX3SVNrseGhm8UMJ3BB8xGGYVYXRKO5xOseocsHUnR/ KBCs -----END CERTIFICATE-----Generated at Sat Jun 14 06:25:13 2025 by rpki-client