$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7fd07c-40bf-4d7b-af7c-043c20c75a6d.roa File: 2e7fd07c-40bf-4d7b-af7c-043c20c75a6d.roa (raw, json) Hash identifier: Plf5ffYC9EcUmcdBjnBXzScRtGC2Vni81rg5HD4mwow= Subject key identifier: BF:62:6E:F4:65:DF:BE:D4:CC:3A:9B:D6:37:C7:EB:75:8E:66:BB:73 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 369D978EED7085B0696558D502A7C99691BEB0CE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7fd07c-40bf-4d7b-af7c-043c20c75a6d.roa Signing time: Fri 22 Aug 2025 00:00:46 +0000 ROA not before: Fri 22 Aug 2025 00:00:46 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:9d:97:8e:ed:70:85:b0:69:65:58:d5:02:a7:c9:96:91:be:b0:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 22 00:00:46 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=68b281ac68a13ec574bbea089efecd9f75f901b0e9e6c6d8553ef275c8c52636, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:c7:e1:d7:3f:22:9c:da:4a:e3:da:c5:ed: 49:06:27:2e:b1:65:4f:25:55:86:18:7f:e8:b6:d1: 01:ac:65:1b:7d:4b:9f:6e:7a:26:11:b5:9c:63:02: bf:64:ea:f1:c6:ce:62:88:3f:85:dd:e9:a0:54:0c: 6e:01:2d:8c:68:43:2c:b0:5d:90:f9:c1:c4:77:76: d7:8d:f9:4b:da:c3:f2:09:28:d6:aa:e6:ea:78:4c: a2:86:bc:31:09:55:a9:8a:e5:67:b7:2f:bf:1e:d8: b9:1b:7f:66:59:a3:d6:7d:0d:7d:19:91:a8:7a:db: 03:9d:a5:3a:4f:5a:40:ec:a7:9a:c5:3f:08:bf:a9: d5:47:eb:63:bc:84:5c:9b:ff:59:a4:ab:40:0b:67: 1a:98:67:e7:f2:77:f0:16:ac:b7:96:66:28:21:2e: 0c:c9:14:1f:56:d3:81:0a:37:c2:34:9c:86:4b:98: 66:70:d3:5d:bf:29:3b:fe:d7:22:3d:ab:6c:da:cd: c7:20:ef:ed:57:f0:4d:8d:5e:89:c4:51:96:3f:5a: e0:fa:39:35:84:2c:86:14:81:08:c0:64:46:5e:d6: d5:85:d7:5b:10:44:c9:c1:a4:f0:79:13:62:ec:1a: 18:69:ca:f9:19:cb:e4:20:08:31:e4:4f:a1:fc:0d: bc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:62:6E:F4:65:DF:BE:D4:CC:3A:9B:D6:37:C7:EB:75:8E:66:BB:73 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7fd07c-40bf-4d7b-af7c-043c20c75a6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 6b:8c:03:ce:a6:6f:8f:e8:12:65:35:aa:ea:b2:4d:c7:c1:3a: 0e:f2:69:a7:e3:d0:31:70:76:2e:c2:e2:81:60:7d:37:56:54: cc:ac:59:6c:59:e0:c1:a7:cc:e9:cd:a5:a6:a7:00:4a:22:59: 45:0e:39:85:06:96:88:bf:ad:fe:eb:9a:cb:26:30:2a:04:ab: 05:22:42:b6:2e:92:fa:cb:73:75:3f:bd:13:c1:0b:70:3f:23: 8c:d7:7d:6d:f1:69:58:5e:51:32:5d:3d:23:1b:21:91:b3:30: 42:b0:c7:8c:ce:b3:69:d4:de:aa:7a:88:b4:90:dd:a1:4c:52: 3a:12:ff:bb:69:45:e5:f8:1e:e0:ce:07:2d:0e:e5:19:3f:9a: 8f:9a:28:ec:86:2b:dd:f6:13:12:e4:7e:04:50:e8:54:ca:df: bb:8a:28:c2:ee:88:45:21:11:be:47:3d:03:fc:e7:29:c1:4e: 30:4a:76:af:32:4f:c2:80:de:63:18:f4:88:ef:e6:ae:ba:99: 2b:b8:83:4a:73:ce:62:a0:59:12:e7:9f:f6:4b:14:16:1b:3e: c1:ba:f7:d2:1d:71:6f:fd:5f:7b:5f:e3:31:8f:bb:81:67:e1: 6c:5d:90:ac:7c:d0:f2:de:4f:f7:af:37:ad:dc:f0:c5:7f:36: 38:da:b7:3f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUNp2Xju1whbBpZVjVAqfJlpG+sM4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMjAwMDA0NloX DTI1MDkyNjIzNTk1OVowejFJMEcGA1UEBRNANjhiMjgxYWM2OGExM2VjNTc0YmJl YTA4OWVmZWNkOWY3NWY5MDFiMGU5ZTZjNmQ4NTUzZWYyNzVjOGM1MjYzNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyL3H4dc/IpzaSuPaxe1JBicusWVP JVWGGH/ottEBrGUbfUufbnomEbWcYwK/ZOrxxs5iiD+F3emgVAxuAS2MaEMssF2Q +cHEd3bXjflL2sPyCSjWqubqeEyihrwxCVWpiuVnty+/Hti5G39mWaPWfQ19GZGo etsDnaU6T1pA7KeaxT8Iv6nVR+tjvIRcm/9ZpKtAC2camGfn8nfwFqy3lmYoIS4M yRQfVtOBCjfCNJyGS5hmcNNdvyk7/tciPats2s3HIO/tV/BNjV6JxFGWP1rg+jk1 hCyGFIEIwGRGXtbVhddbEETJwaTweRNi7BoYacr5GcvkIAgx5E+h/A28/QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFL9ibvRl377UzDqb1jfH63WOZrtzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJlN2ZkMDdjLTQwYmYtNGQ3Yi1hZjdjLTA0M2MyMGM3NWE2ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8kDAMA0GCSqGSIb3DQEBCwUAA4IBAQBrjAPOpm+P6BJlNarq sk3HwToO8mmn49AxcHYuwuKBYH03VlTMrFlsWeDBp8zpzaWmpwBKIllFDjmFBpaI v63+65rLJjAqBKsFIkK2LpL6y3N1P70TwQtwPyOM131t8WlYXlEyXT0jGyGRszBC sMeMzrNp1N6qeoi0kN2hTFI6Ev+7aUXl+B7gzgctDuUZP5qPmijshivd9hMS5H4E UOhUyt+7iijC7ohFIRG+Rz0D/OcpwU4wSnavMk/CgN5jGPSI7+auupkruINKc85i oFkS55/2SxQWGz7BuvfSHXFv/V97X+Mxj7uBZ+FsXZCsfNDy3k/3rzet3PDFfzY4 2rc/ -----END CERTIFICATE-----Generated at Sat Aug 23 10:04:34 2025 by rpki-client