$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa File: efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa (raw, json) Hash identifier: SMfX8gVbkglV/i/z4WAiMIWZRySafkfFQjHVpKvGx6k= Subject key identifier: 00:5B:DB:B2:F4:AE:03:C8:49:8B:BB:76:BD:17:0A:B8:F3:CB:5C:42 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0806CAFA39642388357362B1061B9C6A05E133C9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa Signing time: Tue 10 Jun 2025 00:00:05 +0000 ROA not before: Tue 10 Jun 2025 00:00:05 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.83.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:06:ca:fa:39:64:23:88:35:73:62:b1:06:1b:9c:6a:05:e1:33:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 00:00:05 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=db257da0fd384aebca4db81c364e51c5685bf2121f90c7208d614e550536427b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bd:75:94:42:8d:20:12:05:4b:2a:70:b0:27: 22:ec:ff:d8:f6:8b:36:73:49:ee:ef:a9:5c:cc:39: 9e:2d:07:82:32:30:60:f3:fc:39:3d:f5:b0:0c:11: 14:24:5a:c9:d1:8d:d5:61:d0:27:8a:22:88:7b:48: 28:56:2e:49:fc:17:99:3e:6d:83:ac:91:41:24:de: ae:08:4c:e1:93:e4:72:e5:d9:63:88:00:88:82:f7: 89:45:59:49:c8:2e:0e:dd:4c:3c:d0:25:13:be:4c: 7c:4d:39:bd:ef:6d:89:82:d5:d7:ed:b7:1d:08:8a: 31:e0:ea:ff:de:58:fc:61:bf:a8:ae:db:3f:c1:54: 1f:17:5b:05:b0:aa:2e:63:85:db:4a:07:68:30:7a: 51:51:64:f8:98:e1:42:34:bf:22:92:87:89:4d:81: 0d:4b:4c:f0:ab:84:50:94:3d:c9:81:23:b5:48:7f: 29:17:7c:70:7f:87:a8:b6:53:52:d1:65:2b:0f:30: bc:40:e4:21:38:90:3b:84:b8:54:0f:34:ca:2f:73: 73:13:47:44:68:c7:ca:d8:36:de:04:af:01:c0:94: a0:18:27:04:4e:89:3a:6f:02:15:01:89:a9:67:0e: 32:06:17:d2:df:08:8e:fd:8e:fc:23:08:8c:9b:4e: a4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5B:DB:B2:F4:AE:03:C8:49:8B:BB:76:BD:17:0A:B8:F3:CB:5C:42 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.83.220.0/22 Signature Algorithm: sha256WithRSAEncryption 00:ce:7f:8a:c8:e9:4d:61:25:7c:55:68:98:16:78:e9:2f:5a: 53:d6:56:f3:85:98:38:36:bd:40:23:80:57:63:ef:d8:79:77: 40:3e:3f:c3:f9:8c:6d:ac:8b:5f:f5:5b:f1:ec:7f:0f:6e:71: 12:96:94:1e:b9:9f:01:be:65:7b:0e:0d:b5:f6:de:b3:7e:79: ad:86:00:aa:fa:3e:d3:ba:a2:33:4f:53:6b:98:89:26:ca:5a: 03:b0:75:61:5b:cf:ee:fe:62:d1:7f:f8:ad:6b:64:b1:94:72: 9d:8a:9c:36:85:70:06:7b:ab:7d:2a:c0:59:65:97:23:03:6b: 41:8e:4c:56:a4:4e:60:0d:7a:62:d5:a1:e0:6b:be:f4:77:0d: a1:cd:fe:59:99:a0:63:8a:6d:38:f2:99:8c:0e:21:da:1f:b8: 23:1e:ab:b4:fb:15:ce:31:70:79:47:e4:fe:e4:d4:50:53:ad: 5a:04:c5:99:a5:98:77:70:a4:f3:9f:f1:4e:ab:9a:3b:f7:19: f2:67:f4:f2:f6:a6:3c:54:15:3e:23:01:0d:a0:fc:f7:60:b2: 89:8d:91:87:21:b0:ac:87:26:9c:3b:80:4c:33:03:b1:09:6b: 8a:89:d8:2e:bc:45:79:a9:e5:7f:e6:13:0f:79:cc:ea:39:4d: 66:05:76:21 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUCAbK+jlkI4g1c2KxBhucagXhM8kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDAwMDAwNVoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAZGIyNTdkYTBmZDM4NGFlYmNhNGRi ODFjMzY0ZTUxYzU2ODViZjIxMjFmOTBjNzIwOGQ2MTRlNTUwNTM2NDI3YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwL11lEKNIBIFSypwsCci7P/Y9os2 c0nu76lczDmeLQeCMjBg8/w5PfWwDBEUJFrJ0Y3VYdAniiKIe0goVi5J/BeZPm2D rJFBJN6uCEzhk+Ry5dljiACIgveJRVlJyC4O3Uw80CUTvkx8TTm9722JgtXX7bcd CIox4Or/3lj8Yb+orts/wVQfF1sFsKouY4XbSgdoMHpRUWT4mOFCNL8ikoeJTYEN S0zwq4RQlD3JgSO1SH8pF3xwf4eotlNS0WUrDzC8QOQhOJA7hLhUDzTKL3NzE0dE aMfK2DbeBK8BwJSgGCcETok6bwIVAYmpZw4yBhfS3wiO/Y78IwiMm06k/QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFABb27L0rgPISYu7dr0XCrjzy1xCMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VmZDJhYzNkLWRjMzgtNGQ5My1hYWFjLTRjYmQ2Y2M5MTFjNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy1PcMA0GCSqGSIb3DQEBCwUAA4IBAQAAzn+KyOlNYSV8VWiYFnjp L1pT1lbzhZg4Nr1AI4BXY+/YeXdAPj/D+YxtrItf9Vvx7H8PbnESlpQeuZ8BvmV7 Dg219t6zfnmthgCq+j7TuqIzT1NrmIkmyloDsHVhW8/u/mLRf/ita2SxlHKdipw2 hXAGe6t9KsBZZZcjA2tBjkxWpE5gDXpi1aHga770dw2hzf5ZmaBjim048pmMDiHa H7gjHqu0+xXOMXB5R+T+5NRQU61aBMWZpZh3cKTzn/FOq5o79xnyZ/Ty9qY8VBU+ IwENoPz3YLKJjZGHIbCshyacO4BMMwOxCWuKidguvEV5qeV/5hMPeczqOU1mBXYh -----END CERTIFICATE-----Generated at Sat Jun 14 06:30:28 2025 by rpki-client