$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ff7aeb9b-4fc4-44e8-aa35-b92698a6c334.roa File: ff7aeb9b-4fc4-44e8-aa35-b92698a6c334.roa (raw, json) Hash identifier: FFj6qODI98yDmVxSLbWXsv0YBUoRAuDgwT9kHrZHJpM= Subject key identifier: DE:E2:EE:DD:CD:76:A9:0A:B5:B9:D5:90:08:71:B8:E4:A8:F4:ED:A8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 165589AC038814D4B8F6B7399A3C68F3405AA0B7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ff7aeb9b-4fc4-44e8-aa35-b92698a6c334.roa Signing time: Sat 07 Jun 2025 00:10:06 +0000 ROA not before: Sat 07 Jun 2025 00:10:06 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:28c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:55:89:ac:03:88:14:d4:b8:f6:b7:39:9a:3c:68:f3:40:5a:a0:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 7 00:10:06 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=f7a2c4c165225ac3830849c78fe9ad467ae5da9ee5b105cc2dd1849bad248d0b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a2:65:da:26:7a:bd:f0:53:8d:13:61:ac:e3: d6:f0:dc:ac:77:cb:4b:a2:9b:fd:8e:7e:6d:0a:c7: a6:fa:a9:04:3c:12:28:6d:dc:d2:cd:c6:5b:f6:56: ae:ee:2c:df:1c:50:d8:e3:01:11:78:7e:f9:d0:4e: f3:c0:1a:5b:3e:cd:58:9c:df:e3:51:95:f6:ee:20: 71:49:e9:99:cb:5c:a0:f4:64:4e:b7:37:28:c9:78: b0:ab:98:b6:e1:a4:2f:4c:9a:2f:c9:8d:51:e2:5a: 6c:96:71:87:49:98:cd:fa:cb:ee:ce:e4:6a:c0:f8: be:e1:18:0f:26:fc:60:cc:a1:6d:72:ec:99:d9:ad: 2f:b8:47:16:34:cf:c2:03:b3:5c:61:64:4a:7e:56: 2e:d6:f2:51:5f:0c:65:0f:13:1e:73:0c:50:45:27: 1f:1d:f6:4c:2b:3f:da:72:e0:76:a4:3a:c9:4a:ee: c9:ef:6b:47:e0:f3:6e:5b:74:1f:bc:d2:ae:69:f9: 46:23:9d:8c:5e:14:0e:8c:7d:8f:0b:fd:ee:3b:50: 3d:d1:a6:c1:eb:fa:3a:ae:2a:38:3e:b1:7b:cf:87: 42:14:ff:8c:55:64:7e:c2:c0:fb:94:b9:d7:aa:08: ac:5c:85:e3:7e:85:9f:5d:3f:d6:d1:3a:e5:49:c0: c5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E2:EE:DD:CD:76:A9:0A:B5:B9:D5:90:08:71:B8:E4:A8:F4:ED:A8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ff7aeb9b-4fc4-44e8-aa35-b92698a6c334.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:28c0::/48 Signature Algorithm: sha256WithRSAEncryption 4c:b6:10:f7:37:13:18:b1:4d:9b:f9:32:67:2b:7d:13:1a:29: 46:be:fa:b4:9f:d8:b2:69:5a:c6:98:5d:e7:dc:62:d5:78:94: 48:7f:c2:e3:a8:ff:19:72:cd:04:3e:f0:2d:25:ba:98:bf:e4: 74:cc:5a:39:87:df:c8:e6:b3:55:0a:9c:63:4b:42:c4:c9:4c: 87:b8:a6:ce:37:44:64:67:45:bd:0e:f0:51:73:09:e7:c1:c9: f9:c7:0c:2f:66:e4:6c:68:05:b5:4a:1c:9f:83:b0:04:4c:0c: 6c:45:52:50:2f:ac:5f:32:1f:eb:28:ce:0a:07:34:5f:f1:56: f6:ee:7a:95:59:22:98:43:88:2e:e5:fc:68:b1:28:79:78:44: a0:d1:37:4c:9a:2a:59:42:53:59:cf:d4:39:55:24:d0:1a:44: ea:9d:47:4f:04:a4:ec:99:46:6f:44:98:86:34:77:d2:1a:76: a3:85:79:cf:b0:a7:0e:32:49:c5:a5:e5:5d:35:aa:e1:92:37: 2c:fb:b0:8c:83:0d:d5:b3:ce:ed:37:39:4a:10:b6:14:92:49: f2:ce:ef:74:87:e0:f4:22:3e:2d:4a:2d:0a:65:2a:9e:c9:f4: f2:d7:6b:f8:71:5e:af:36:59:96:a9:e1:af:a5:4f:9b:02:cc: 6e:14:eb:4f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUFlWJrAOIFNS49rc5mjxo80BaoLcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwNzAwMTAwNloX DTI1MDcxMjIzNTk1OVowejFJMEcGA1UEBRNAZjdhMmM0YzE2NTIyNWFjMzgzMDg0 OWM3OGZlOWFkNDY3YWU1ZGE5ZWU1YjEwNWNjMmRkMTg0OWJhZDI0OGQwYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6Jl2iZ6vfBTjRNhrOPW8Nysd8tL opv9jn5tCsem+qkEPBIobdzSzcZb9lau7izfHFDY4wEReH750E7zwBpbPs1YnN/j UZX27iBxSemZy1yg9GROtzcoyXiwq5i24aQvTJovyY1R4lpslnGHSZjN+svuzuRq wPi+4RgPJvxgzKFtcuyZ2a0vuEcWNM/CA7NcYWRKflYu1vJRXwxlDxMecwxQRScf HfZMKz/acuB2pDrJSu7J72tH4PNuW3QfvNKuaflGI52MXhQOjH2PC/3uO1A90abB 6/o6rio4PrF7z4dCFP+MVWR+wsD7lLnXqgisXIXjfoWfXT/W0TrlScDF2wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFN7i7t3NdqkKtbnVkAhxuOSo9O2oMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZmN2FlYjliLTRmYzQtNDRlOC1hYTM1LWI5MjY5OGE2YzMzNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaOCjAMA0GCSqGSIb3DQEBCwUAA4IBAQBMthD3NxMYsU2b+TJn K30TGilGvvq0n9iyaVrGmF3n3GLVeJRIf8LjqP8Zcs0EPvAtJbqYv+R0zFo5h9/I 5rNVCpxjS0LEyUyHuKbON0RkZ0W9DvBRcwnnwcn5xwwvZuRsaAW1Shyfg7AETAxs RVJQL6xfMh/rKM4KBzRf8Vb27nqVWSKYQ4gu5fxosSh5eESg0TdMmipZQlNZz9Q5 VSTQGkTqnUdPBKTsmUZvRJiGNHfSGnajhXnPsKcOMknFpeVdNarhkjcs+7CMgw3V s87tNzlKELYUkknyzu90h+D0Ij4tSi0KZSqeyfTy12v4cV6vNlmWqeGvpU+bAsxu FOtP -----END CERTIFICATE-----Generated at Sat Jun 14 06:19:11 2025 by rpki-client