$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6380258-f2e2-4e11-a03e-5d303ceea0d2.roa File: f6380258-f2e2-4e11-a03e-5d303ceea0d2.roa (raw, json) Hash identifier: sSuJhq55t0xmx+g6ROPa6qaw+7wQuNh7bDWB7tnJpZo= Subject key identifier: 94:EC:D5:D1:E4:45:1F:C7:55:81:6E:DA:13:43:8A:F1:B5:36:B5:40 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 094EF06380FBAB380B746C92553AE659A8F89D3C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6380258-f2e2-4e11-a03e-5d303ceea0d2.roa Signing time: Tue 10 Jun 2025 15:00:27 +0000 ROA not before: Tue 10 Jun 2025 15:00:27 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:4e:f0:63:80:fb:ab:38:0b:74:6c:92:55:3a:e6:59:a8:f8:9d:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 10 15:00:27 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=af96f4688609a0895fb4d7102a04a4382eefcf2e80f537780b7bb7e716d48188, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f0:d9:57:ed:81:8f:eb:ec:b8:e1:a3:4a:2d: af:ae:ac:47:1b:a6:93:ca:65:e9:78:2b:92:2a:7e: a1:4d:84:a1:86:a4:4f:59:f6:8c:65:54:26:cd:49: e6:35:3f:9c:f8:1c:80:79:25:19:ff:64:2b:2e:dd: b6:b2:7d:85:f7:c5:12:ce:92:5c:13:7b:73:11:85: e5:f3:c4:fe:f5:7b:af:c7:d2:66:de:51:90:29:b3: ed:7b:74:c2:d6:c5:f5:c7:9a:44:5f:c6:7c:3d:8d: b0:d7:d4:3e:aa:6d:92:20:f1:7e:eb:58:51:68:0c: f9:85:75:8d:ca:5e:2c:c9:5c:e6:15:eb:08:63:cf: 03:92:15:f9:36:d7:39:33:10:7f:17:58:89:b8:10: e2:2d:9f:61:d6:5c:62:aa:30:8a:e2:e3:c8:c7:f6: 03:2c:46:17:8d:1f:ca:bd:ca:37:18:d1:00:88:8a: db:54:b1:7d:e7:cd:fe:06:e4:d3:c6:64:ab:3b:fa: fc:55:2e:10:d1:5e:87:6e:b6:8f:68:3c:ed:22:64: 62:d9:32:79:4f:0f:db:c5:a7:db:bb:aa:1a:88:f7: c1:c8:cd:95:b9:e3:53:72:8a:fd:aa:0a:ea:a4:42: a9:1e:f6:1a:20:5d:9e:f8:20:cd:13:17:8f:7a:30: dd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:EC:D5:D1:E4:45:1F:C7:55:81:6E:DA:13:43:8A:F1:B5:36:B5:40 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6380258-f2e2-4e11-a03e-5d303ceea0d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:e000::/40 Signature Algorithm: sha256WithRSAEncryption 06:1e:4a:52:9e:d0:d2:64:22:54:73:02:7c:dc:80:4c:98:6e: 76:94:1f:05:83:fb:56:aa:6e:d4:dc:af:06:c9:6a:b3:20:48: 10:eb:5e:36:93:a6:90:51:ac:40:f1:c3:7e:d0:a7:51:11:35: d4:f3:37:2c:f9:08:70:a3:b9:2e:54:4b:51:0d:25:fc:30:1a: d6:ea:ba:b8:ca:60:4f:1f:af:3c:19:c7:ec:89:ea:22:0d:b1: 52:c3:44:2c:41:9c:51:52:c6:48:6d:05:99:43:b0:26:0c:82: 1e:47:44:d0:83:c2:96:63:2c:c7:88:09:63:3a:90:67:bf:ad: 49:66:f7:fb:26:bd:a7:93:84:12:94:79:26:77:58:19:ac:e2: 06:95:47:ea:59:e0:3f:de:01:f0:58:29:cc:ad:40:4c:e3:6f: 81:2c:d6:01:d3:35:d5:b3:cc:ae:73:76:b3:1d:5a:52:1d:6f: ed:05:8a:75:e2:f5:98:fe:6a:38:08:5a:2f:2d:f6:13:15:08: 90:d9:aa:b0:a0:fd:9f:77:79:f5:33:ae:86:30:9a:21:4e:e1: fc:b0:8c:38:58:14:6e:4c:b8:84:13:ba:89:15:d3:c3:82:79: 98:ca:66:bc:58:25:3b:4f:2e:48:d3:a1:59:67:20:71:60:1b: 24:c8:a7:55 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCU7wY4D7qzgLdGySVTrmWaj4nTwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxMDE1MDAyN1oX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAYWY5NmY0Njg4NjA5YTA4OTVmYjRk NzEwMmEwNGE0MzgyZWVmY2YyZTgwZjUzNzc4MGI3YmI3ZTcxNmQ0ODE4ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/DZV+2Bj+vsuOGjSi2vrqxHG6aT ymXpeCuSKn6hTYShhqRPWfaMZVQmzUnmNT+c+ByAeSUZ/2QrLt22sn2F98USzpJc E3tzEYXl88T+9Xuvx9Jm3lGQKbPte3TC1sX1x5pEX8Z8PY2w19Q+qm2SIPF+61hR aAz5hXWNyl4syVzmFesIY88DkhX5Ntc5MxB/F1iJuBDiLZ9h1lxiqjCK4uPIx/YD LEYXjR/Kvco3GNEAiIrbVLF9583+BuTTxmSrO/r8VS4Q0V6HbraPaDztImRi2TJ5 Tw/bxafbu6oaiPfByM2VueNTcor9qgrqpEKpHvYaIF2e+CDNExePejDd+QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJTs1dHkRR/HVYFu2hNDivG1NrVAMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y2MzgwMjU4LWYyZTItNGUxMS1hMDNlLTVkMzAzY2VlYTBkMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaueAwDQYJKoZIhvcNAQELBQADggEBAAYeSlKe0NJkIlRzAnzc gEyYbnaUHwWD+1aqbtTcrwbJarMgSBDrXjaTppBRrEDxw37Qp1ERNdTzNyz5CHCj uS5US1ENJfwwGtbqurjKYE8frzwZx+yJ6iINsVLDRCxBnFFSxkhtBZlDsCYMgh5H RNCDwpZjLMeICWM6kGe/rUlm9/smvaeThBKUeSZ3WBms4gaVR+pZ4D/eAfBYKcyt QEzjb4Es1gHTNdWzzK5zdrMdWlIdb+0FinXi9Zj+ajgIWi8t9hMVCJDZqrCg/Z93 efUzroYwmiFO4fywjDhYFG5MuIQTuokV08OCeZjKZrxYJTtPLkjToVlnIHFgGyTI p1U= -----END CERTIFICATE-----Generated at Sun Jun 15 00:00:03 2025 by rpki-client