$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f11193c8-37cb-42c1-9803-825500063384.roa File: f11193c8-37cb-42c1-9803-825500063384.roa (raw, json) Hash identifier: W7e3yU39XVI1idI0SNARFVJyPgGLNyEy2iqezpvdxFY= Subject key identifier: 28:F9:AE:A4:49:6F:D3:95:91:B7:78:71:E5:5B:4A:56:A8:41:C1:39 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 035352C9E8B47E9DDC3D980704FFB88C7A52B8B3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f11193c8-37cb-42c1-9803-825500063384.roa Signing time: Tue 10 Jun 2025 00:20:06 +0000 ROA not before: Tue 10 Jun 2025 00:20:06 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:c0c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:53:52:c9:e8:b4:7e:9d:dc:3d:98:07:04:ff:b8:8c:7a:52:b8:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 00:20:06 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=4725dc97cd3c985890f226dd0a966234ea810f1f2078ca999d57e2ffef656933, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:db:e5:17:13:ae:58:1e:58:d5:85:75:1f: c6:28:26:54:81:b9:4f:8f:5a:f0:65:14:70:3c:9e: 2d:1b:24:64:dd:89:bf:2d:5d:ae:1e:a8:ba:2c:45: de:8c:c9:b9:9d:0f:f5:1d:61:02:4e:ce:80:d3:a2: 0e:09:b6:97:b0:64:d4:b8:97:16:c9:ad:21:2e:9c: cd:76:a7:ef:c5:d9:43:f3:ab:69:e4:e4:c4:1d:13: 50:f6:64:98:f9:ca:4e:f4:e8:47:ea:51:7d:5f:0f: e9:a5:61:28:c4:8f:2a:a7:29:c8:fe:30:bc:76:5a: 10:ed:7d:43:d4:b0:9f:13:09:ff:64:97:0f:fc:0f: 68:0d:c0:d5:7c:66:56:84:2e:79:bc:3d:d8:52:c8: c5:d6:dc:08:34:2c:a8:da:c8:af:e1:d1:84:7d:47: 6a:6a:8b:18:d9:52:c9:11:de:fc:9f:fd:7d:39:8b: c4:a3:88:b0:77:35:97:c2:7a:73:43:fd:57:e3:61: 40:77:d3:73:4c:1c:e0:1f:2d:e3:03:6e:44:08:46: 00:78:fc:83:b4:af:9c:f9:0e:8e:d7:a1:c6:0c:35: 09:68:c0:ed:b7:82:87:ac:1a:a7:34:9d:2b:86:d4: 3e:3c:95:6a:5c:42:da:2b:b0:04:68:51:e8:39:f2: 06:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F9:AE:A4:49:6F:D3:95:91:B7:78:71:E5:5B:4A:56:A8:41:C1:39 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f11193c8-37cb-42c1-9803-825500063384.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:c0c0::/46 Signature Algorithm: sha256WithRSAEncryption 8f:e6:41:a3:60:7a:ef:0b:26:45:00:89:a2:01:99:0f:29:64: 3b:59:f4:5f:47:85:09:b6:f5:e2:71:c4:73:5f:eb:07:55:e0: 3a:21:9e:e7:a0:22:c3:d9:89:30:d8:6d:ee:df:ef:f2:18:d2: f6:2f:d9:46:85:4c:32:92:22:e6:52:63:6f:45:a3:53:bd:64: 8a:30:23:f0:95:36:1f:04:5c:e3:e6:08:ce:0f:40:86:34:0b: d4:81:da:65:b6:ee:ee:8a:84:07:e9:bd:ec:e7:e8:86:ae:25: 27:bf:80:ec:63:57:26:1c:57:2b:b6:ac:5f:bd:7b:ad:b6:99: ad:ce:08:9c:08:1b:ed:c8:b6:a2:1c:3a:30:71:05:4b:38:a2: a9:ce:30:10:3b:27:33:3e:04:9a:dc:03:f9:2f:ac:b7:27:fd: 29:b1:ce:b6:48:94:f6:eb:3b:0a:ac:84:88:21:6a:fd:da:18: ee:ba:79:71:57:e7:b0:cb:0c:0f:d2:ca:88:99:a5:d6:d7:97: 01:c6:9d:1b:a0:eb:a1:35:e4:9f:3f:ae:ef:f4:11:b0:5a:f0: 92:88:15:7f:67:ce:e7:74:ef:7e:b2:21:a4:48:f6:55:fe:a7: fe:1d:c0:84:37:0e:10:a8:c3:56:1c:91:f0:a0:3e:71:74:18: fe:cd:42:80 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUA1NSyei0fp3cPZgHBP+4jHpSuLMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDAwMjAwNloX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNANDcyNWRjOTdjZDNjOTg1ODkwZjIy NmRkMGE5NjYyMzRlYTgxMGYxZjIwNzhjYTk5OWQ1N2UyZmZlZjY1NjkzMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApsrb5RcTrlgeWNWFdR/GKCZUgblP j1rwZRRwPJ4tGyRk3Ym/LV2uHqi6LEXejMm5nQ/1HWECTs6A06IOCbaXsGTUuJcW ya0hLpzNdqfvxdlD86tp5OTEHRNQ9mSY+cpO9OhH6lF9Xw/ppWEoxI8qpynI/jC8 dloQ7X1D1LCfEwn/ZJcP/A9oDcDVfGZWhC55vD3YUsjF1twINCyo2siv4dGEfUdq aosY2VLJEd78n/19OYvEo4iwdzWXwnpzQ/1X42FAd9NzTBzgHy3jA25ECEYAePyD tK+c+Q6O16HGDDUJaMDtt4KHrBqnNJ0rhtQ+PJVqXELaK7AEaFHoOfIGyQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCj5rqRJb9OVkbd4ceVbSlaoQcE5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2YxMTE5M2M4LTM3Y2ItNDJjMS05ODAzLTgyNTUwMDA2MzM4NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAbaacDAMA0GCSqGSIb3DQEBCwUAA4IBAQCP5kGjYHrvCyZFAImi AZkPKWQ7WfRfR4UJtvXiccRzX+sHVeA6IZ7noCLD2Ykw2G3u3+/yGNL2L9lGhUwy kiLmUmNvRaNTvWSKMCPwlTYfBFzj5gjOD0CGNAvUgdpltu7uioQH6b3s5+iGriUn v4DsY1cmHFcrtqxfvXuttpmtzgicCBvtyLaiHDowcQVLOKKpzjAQOyczPgSa3AP5 L6y3J/0psc62SJT26zsKrISIIWr92hjuunlxV+ewywwP0sqImaXW15cBxp0boOuh NeSfP67v9BGwWvCSiBV/Z87ndO9+siGkSPZV/qf+HcCENw4QqMNWHJHwoD5xdBj+ zUKA -----END CERTIFICATE-----Generated at Sat Jun 14 06:42:35 2025 by rpki-client