$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/036dddcb-4f0b-406f-9899-f83b4c0da917.roa File: 036dddcb-4f0b-406f-9899-f83b4c0da917.roa (raw, json) Hash identifier: vWWaIrKDwKnD0KeirwqpeQ3QmvzcVJrB4Z7tUuNcnCQ= Subject key identifier: F6:42:26:8E:93:8E:97:F8:3A:4F:9B:1B:24:3C:A3:77:D7:54:BE:8B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0C88F59392E756314578CB93043AD1FC8AB4EB90 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/036dddcb-4f0b-406f-9899-f83b4c0da917.roa Signing time: Sat 23 Aug 2025 00:21:53 +0000 ROA not before: Sat 23 Aug 2025 00:21:53 +0000 ROA not after: Sat 27 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:7080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:88:f5:93:92:e7:56:31:45:78:cb:93:04:3a:d1:fc:8a:b4:eb:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 23 00:21:53 2025 GMT Not After : Sep 27 23:59:59 2025 GMT Subject: serialNumber=08e1c9577269870ae0d4f860d92971b3ffa426413fd5c25d27aa3ebd720f432f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:93:9d:7d:24:b2:c3:45:10:fa:ca:31:6a:54: 84:26:7c:35:a5:bb:68:37:42:8a:58:76:f1:40:cf: fa:46:d5:cd:d6:77:33:a2:dc:e4:9d:d3:2a:15:c9: 5a:ac:e3:87:97:b1:bd:7b:57:e1:61:20:70:13:f1: 4d:33:1e:c9:16:63:f2:8c:c7:91:84:1c:e6:25:3c: 83:34:d4:0e:4b:77:b8:86:48:bd:5c:5d:a0:a6:99: 53:14:4e:b0:01:aa:8e:a4:46:bb:e7:25:7d:0d:6f: 75:92:d1:7e:61:e6:87:44:fe:51:2a:a2:66:7b:2c: a0:23:86:e4:61:d9:80:d0:8a:b3:9d:26:a6:84:3e: db:47:a3:73:7f:33:b9:94:ed:04:29:c5:79:34:07: 70:d1:90:57:57:46:d0:92:e1:36:db:16:40:a1:2f: 8a:b8:fc:7c:7c:31:57:de:23:c4:de:48:d5:c7:34: d9:b5:4e:b2:aa:72:3d:6e:97:5e:87:db:a6:74:2a: 0d:af:f7:4e:e0:b5:60:0b:39:41:09:c0:01:8a:26: b1:71:fe:a9:86:6f:69:9a:41:cc:a3:b1:89:0b:59: 76:34:79:c4:3b:02:d1:84:e1:46:de:a8:ee:f3:96: 5a:a8:dd:51:dc:09:8a:96:8b:73:09:eb:2b:6a:b5: c2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:42:26:8E:93:8E:97:F8:3A:4F:9B:1B:24:3C:A3:77:D7:54:BE:8B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/036dddcb-4f0b-406f-9899-f83b4c0da917.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:7080::/48 Signature Algorithm: sha256WithRSAEncryption 68:73:82:60:db:7a:a1:81:b4:34:8e:2b:e5:5f:39:f7:c0:85: e8:4a:57:49:01:e5:d0:5e:76:eb:62:d5:82:4c:a9:0b:06:16: 50:6a:3d:38:c1:bd:7f:73:03:e4:d2:8a:46:10:50:a0:9c:d5: 31:d3:32:3f:c5:f1:1a:c9:3a:74:ff:bf:56:f0:81:d9:6b:67: 14:15:ec:32:3f:5f:61:ef:62:73:78:e8:de:11:c8:98:d4:03: 1d:00:fe:85:78:05:29:f5:9c:7f:c4:2b:17:9e:73:ab:ef:d4: 28:00:03:58:1e:76:d3:5c:02:b8:b4:b1:90:e9:51:28:f0:1e: 8c:d0:a1:4c:e3:d4:e1:66:7f:db:40:52:00:e5:5e:b9:2e:da: ce:cf:67:87:26:35:85:19:e2:ce:52:ff:b1:98:b9:17:2c:52: 39:8f:4f:49:a2:0e:89:e9:90:f7:72:b2:f2:88:80:68:a9:d3: 5f:72:e5:72:ff:7a:31:73:cd:85:ff:4e:15:ac:fb:c2:a1:a1: be:b1:69:f5:5f:3e:9f:61:fd:c5:b3:d3:24:41:16:e5:1e:57: 55:54:d2:53:3d:54:4b:61:c8:de:bf:58:ac:45:5a:09:bd:6a: 29:8d:57:41:cc:2e:d4:e4:1e:f3:b3:2a:57:7b:26:20:50:37: e0:3d:10:db -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUDIj1k5LnVjFFeMuTBDrR/Iq065AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMzAwMjE1M1oX DTI1MDkyNzIzNTk1OVowejFJMEcGA1UEBRNAMDhlMWM5NTc3MjY5ODcwYWUwZDRm ODYwZDkyOTcxYjNmZmE0MjY0MTNmZDVjMjVkMjdhYTNlYmQ3MjBmNDMyZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZOdfSSyw0UQ+soxalSEJnw1pbto N0KKWHbxQM/6RtXN1nczotzkndMqFclarOOHl7G9e1fhYSBwE/FNMx7JFmPyjMeR hBzmJTyDNNQOS3e4hki9XF2gpplTFE6wAaqOpEa75yV9DW91ktF+YeaHRP5RKqJm eyygI4bkYdmA0IqznSamhD7bR6NzfzO5lO0EKcV5NAdw0ZBXV0bQkuE22xZAoS+K uPx8fDFX3iPE3kjVxzTZtU6yqnI9bpdeh9umdCoNr/dO4LVgCzlBCcABiiaxcf6p hm9pmkHMo7GJC1l2NHnEOwLRhOFG3qju85ZaqN1R3AmKlotzCesrarXCCQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPZCJo6Tjpf4Ok+bGyQ8o3fXVL6LMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzAzNmRkZGNiLTRmMGItNDA2Zi05ODk5LWY4M2I0YzBkYTkxNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYXCAMA0GCSqGSIb3DQEBCwUAA4IBAQBoc4Jg23qhgbQ0jivl Xzn3wIXoSldJAeXQXnbrYtWCTKkLBhZQaj04wb1/cwPk0opGEFCgnNUx0zI/xfEa yTp0/79W8IHZa2cUFewyP19h72JzeOjeEciY1AMdAP6FeAUp9Zx/xCsXnnOr79Qo AANYHnbTXAK4tLGQ6VEo8B6M0KFM49ThZn/bQFIA5V65LtrOz2eHJjWFGeLOUv+x mLkXLFI5j09Jog6J6ZD3crLyiIBoqdNfcuVy/3oxc82F/04VrPvCoaG+sWn1Xz6f Yf3Fs9MkQRblHldVVNJTPVRLYcjev1isRVoJvWopjVdBzC7U5B7zsypXeyYgUDfg PRDb -----END CERTIFICATE-----Generated at Sat Aug 23 08:09:03 2025 by rpki-client