$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d6622abc-f896-4288-ad4e-5c52c1eaf806.roa File: d6622abc-f896-4288-ad4e-5c52c1eaf806.roa (raw, json) Hash identifier: S7Cn1AVSxGHFiO9cAyYqJo5gDQlVC+1oN0IlRBa7CX8= Subject key identifier: D9:94:9C:62:75:16:52:A4:D6:23:C4:4B:DA:83:20:62:1C:E7:67:B6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 779312AE7528F96719FE19DBC5D8813F3B66816D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d6622abc-f896-4288-ad4e-5c52c1eaf806.roa Signing time: Wed 04 Jun 2025 00:00:10 +0000 ROA not before: Wed 04 Jun 2025 00:00:10 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da60:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:93:12:ae:75:28:f9:67:19:fe:19:db:c5:d8:81:3f:3b:66:81:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 4 00:00:10 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=012b695b03dc4949f0ddc54aa5947142ca617de9f0ecac7124c30de8d1e36cc2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2d:e3:e9:4a:a9:2d:b2:d4:69:89:59:ee:4d: 32:2b:b6:61:47:25:9f:cb:f9:16:87:af:f1:9b:1f: 8c:f5:89:f0:92:35:e6:f2:24:8c:8c:05:a6:fa:ad: 7f:5f:9f:b6:b2:8c:24:c4:a6:50:99:e8:98:a8:01: 95:58:76:39:a7:fb:33:0c:cb:4e:a0:dc:e5:98:b6: 67:2c:1f:58:f6:2b:20:72:d5:4a:40:59:85:7a:1e: 78:9e:18:14:86:e1:10:c0:a9:d7:31:58:6d:d6:41: 04:c3:09:ab:70:6d:f8:e8:4a:3e:4d:2e:41:c4:11: 42:54:ad:0d:e1:0a:7c:7c:5c:27:cc:b2:70:43:a4: 41:6b:f5:54:4c:a1:7f:5e:a2:d4:0d:e8:6c:f9:17: 1e:05:72:65:46:02:69:34:94:ca:8d:50:3f:53:ec: d1:86:dc:94:2b:e0:8d:1b:1b:e4:96:d6:4f:25:6d: f5:97:d0:03:cf:a1:e2:9b:71:b0:42:c9:74:dd:cd: af:b1:f2:cd:01:9e:0b:14:f0:08:ae:71:db:bb:37: 46:30:e4:03:0a:85:51:98:6e:40:22:be:e8:32:34: 07:94:42:7d:82:8c:30:c3:d9:e4:44:26:8b:14:46: df:5a:63:d8:bf:71:e5:7c:0b:c4:e0:73:19:1c:41: 8d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:94:9C:62:75:16:52:A4:D6:23:C4:4B:DA:83:20:62:1C:E7:67:B6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d6622abc-f896-4288-ad4e-5c52c1eaf806.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da60:4800::/40 Signature Algorithm: sha256WithRSAEncryption 0d:8b:ac:d0:31:5e:59:ff:23:2b:01:21:cd:76:48:db:da:b3: 9b:ea:1b:e9:e6:3c:5c:53:ac:a6:ed:3a:36:42:14:8e:e7:65: 9f:89:80:d1:62:96:c4:eb:f2:d8:80:c1:7d:6d:07:be:18:4d: c7:6e:a4:dd:c5:f1:42:77:7f:e3:51:9b:04:fd:b6:79:ee:2f: 54:69:9b:d6:03:26:aa:b7:f8:b0:04:f3:46:6e:55:82:fc:36: 54:d0:de:45:bd:5e:b0:1e:2e:74:b7:50:ad:c6:c9:69:e3:25: a1:46:0b:7c:93:31:56:69:36:1a:82:fd:d8:ed:0c:65:40:9e: d4:ff:ff:f7:dd:b4:a2:ab:7a:37:8a:23:7e:d5:5f:cc:fa:3f: 1b:1a:a3:ae:25:c2:3a:61:0b:c5:2a:5b:8c:12:cf:9f:91:30: 53:4c:0d:94:c7:62:5c:88:31:83:1c:de:0f:09:3d:35:9c:9b: b8:b1:29:5c:23:1d:3c:f8:64:f8:66:e9:a5:2d:1b:19:9f:4f: 7c:5f:eb:5e:f4:54:7f:97:1a:f3:9a:fe:bf:7b:83:6b:87:e6: f4:be:87:e2:7a:c0:16:0a:60:21:7f:40:24:b8:bf:da:13:d6: a7:cf:84:28:a8:26:9d:a8:fa:3f:06:37:1c:d8:64:3c:8f:fb: dc:54:a3:d7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUd5MSrnUo+WcZ/hnbxdiBPztmgW0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwNDAwMDAxMFoX DTI1MDcwOTIzNTk1OVowejFJMEcGA1UEBRNAMDEyYjY5NWIwM2RjNDk0OWYwZGRj NTRhYTU5NDcxNDJjYTYxN2RlOWYwZWNhYzcxMjRjMzBkZThkMWUzNmNjMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmi3j6UqpLbLUaYlZ7k0yK7ZhRyWf y/kWh6/xmx+M9YnwkjXm8iSMjAWm+q1/X5+2sowkxKZQmeiYqAGVWHY5p/szDMtO oNzlmLZnLB9Y9isgctVKQFmFeh54nhgUhuEQwKnXMVht1kEEwwmrcG346Eo+TS5B xBFCVK0N4Qp8fFwnzLJwQ6RBa/VUTKF/XqLUDehs+RceBXJlRgJpNJTKjVA/U+zR htyUK+CNGxvkltZPJW31l9ADz6Him3GwQsl03c2vsfLNAZ4LFPAIrnHbuzdGMOQD CoVRmG5AIr7oMjQHlEJ9gowww9nkRCaLFEbfWmPYv3HlfAvE4HMZHEGNSwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNmUnGJ1FlKk1iPES9qDIGIc52e2MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q2NjIyYWJjLWY4OTYtNDI4OC1hZDRlLTVjNTJjMWVhZjgwNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYEgwDQYJKoZIhvcNAQELBQADggEBAA2LrNAxXln/IysBIc12 SNvas5vqG+nmPFxTrKbtOjZCFI7nZZ+JgNFilsTr8tiAwX1tB74YTcdupN3F8UJ3 f+NRmwT9tnnuL1Rpm9YDJqq3+LAE80ZuVYL8NlTQ3kW9XrAeLnS3UK3GyWnjJaFG C3yTMVZpNhqC/djtDGVAntT///fdtKKrejeKI37VX8z6Pxsao64lwjphC8UqW4wS z5+RMFNMDZTHYlyIMYMc3g8JPTWcm7ixKVwjHTz4ZPhm6aUtGxmfT3xf6170VH+X GvOa/r97g2uH5vS+h+J6wBYKYCF/QCS4v9oT1qfPhCioJp2o+j8GNxzYZDyP+9xU o9c= -----END CERTIFICATE-----Generated at Sat Jun 14 06:26:16 2025 by rpki-client