$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b65a5d9-ba1a-491e-a0b3-b5836f9e5bc4.roa File: 4b65a5d9-ba1a-491e-a0b3-b5836f9e5bc4.roa (raw, json) Hash identifier: zfljGNL/NuLFs7Wx5W2oHJR1hovZpWF5c2ggZhZ21fg= Subject key identifier: BC:42:6D:37:D9:13:53:B2:4C:FF:11:AD:C6:F7:CB:46:13:B2:00:CC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 58751465281E1D242128F557FED04F577EBCA5D7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b65a5d9-ba1a-491e-a0b3-b5836f9e5bc4.roa Signing time: Wed 25 Jun 2025 00:00:47 +0000 ROA not before: Wed 25 Jun 2025 00:00:47 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab8:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:75:14:65:28:1e:1d:24:21:28:f5:57:fe:d0:4f:57:7e:bc:a5:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 25 00:00:47 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=a345f75a6d2e99f60340c922898ef4d2b04a0b935fd2df99aa2462deb333bd65, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fd:55:db:83:50:cb:de:0c:74:3c:4f:db:d8: 27:f6:3e:31:5b:56:43:60:54:95:15:c9:fb:cf:90: b0:6c:87:1f:56:ee:91:d5:42:8a:d6:16:1e:58:91: 86:20:b9:79:7f:ba:df:03:31:43:cd:1a:e0:a2:e0: a9:4a:1d:11:7d:52:e6:89:15:9c:69:13:43:a0:fa: 6d:0f:10:04:08:d8:3c:c7:bd:24:ce:24:9d:4b:83: 30:84:ad:ba:7e:0d:a0:ad:51:8f:f1:89:0b:47:e0: 3f:6e:c7:93:99:66:14:eb:e1:4f:e1:01:b8:20:69: da:9e:7d:21:82:2b:3a:b1:7d:e4:49:18:9a:25:6f: d2:38:4d:99:b1:07:9a:ee:08:47:55:c3:b4:f0:0b: 3c:48:78:b9:9d:c7:64:4f:cc:c6:96:d5:c9:d9:4a: e7:bc:e5:88:ea:dc:43:cc:57:04:a3:3f:b4:c7:12: 7c:e6:33:02:a0:89:f1:4e:27:2f:3b:bf:e7:9c:00: 2e:64:cb:b4:bb:4b:08:a6:9e:3e:93:d5:6d:4f:e8: e4:a7:91:b7:01:1c:20:42:b1:1b:e2:31:24:6e:d8: c5:83:0a:2a:cf:cf:b2:f6:1f:d0:a8:a2:35:bb:f3: 66:ee:57:40:1e:51:a0:ef:7f:58:59:20:60:dd:60: 44:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:42:6D:37:D9:13:53:B2:4C:FF:11:AD:C6:F7:CB:46:13:B2:00:CC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b65a5d9-ba1a-491e-a0b3-b5836f9e5bc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab8:c000::/40 Signature Algorithm: sha256WithRSAEncryption 2c:2a:66:42:2a:87:af:3c:96:3f:f7:c9:2d:ec:71:30:49:01: 5e:a7:78:03:06:ef:ef:d3:c3:f7:b8:e4:f1:11:e4:c5:0d:17: d9:03:91:1f:d9:12:bc:ff:06:11:84:53:e3:c7:02:de:51:f4: 6f:27:f4:93:8e:5b:70:bb:c7:92:1a:f7:bc:54:b2:f4:33:62: d5:0d:81:ee:b2:99:78:81:ad:c3:63:9f:55:40:5d:16:91:e0: 30:9e:7f:05:a3:c1:a6:07:e7:b3:11:ea:e8:a7:7f:c1:35:b3: ed:11:b7:2d:47:7e:b4:5f:c3:e0:55:44:70:12:53:3b:56:c8: 8d:cf:8e:35:43:ed:21:30:5e:22:20:63:4b:26:d1:af:64:f9: b8:82:48:08:ec:25:3f:24:a4:ad:7c:07:83:e1:14:85:0a:c9: fd:c4:18:7b:6c:b9:04:1e:4e:a2:6e:ba:b3:70:c1:74:4a:f4: 1c:4b:fc:99:98:10:4b:4b:73:1f:25:ae:b7:31:53:18:99:35: 05:2a:e9:d5:db:33:31:63:d9:33:d3:9c:d6:49:9e:97:76:02: 3d:cd:e5:4d:8d:49:b2:d6:91:97:03:98:df:e2:ac:fe:88:15: 3c:6a:ff:cc:ea:ae:be:e1:40:e3:9e:88:4a:90:be:55:9d:31: f8:63:6d:67 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWHUUZSgeHSQhKPVX/tBPV368pdcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYyNTAwMDA0N1oX DTI1MDczMDIzNTk1OVowejFJMEcGA1UEBRNAYTM0NWY3NWE2ZDJlOTlmNjAzNDBj OTIyODk4ZWY0ZDJiMDRhMGI5MzVmZDJkZjk5YWEyNDYyZGViMzMzYmQ2NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwv1V24NQy94MdDxP29gn9j4xW1ZD YFSVFcn7z5CwbIcfVu6R1UKK1hYeWJGGILl5f7rfAzFDzRrgouCpSh0RfVLmiRWc aRNDoPptDxAECNg8x70kziSdS4MwhK26fg2grVGP8YkLR+A/bseTmWYU6+FP4QG4 IGnann0hgis6sX3kSRiaJW/SOE2ZsQea7ghHVcO08As8SHi5ncdkT8zGltXJ2Urn vOWI6txDzFcEoz+0xxJ85jMCoInxTicvO7/nnAAuZMu0u0sIpp4+k9VtT+jkp5G3 ARwgQrEb4jEkbtjFgwoqz8+y9h/QqKI1u/Nm7ldAHlGg739YWSBg3WBEowIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLxCbTfZE1OyTP8Rrcb3y0YTsgDMMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRiNjVhNWQ5LWJhMWEtNDkxZS1hMGIzLWI1ODM2ZjllNWJjNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauMAwDQYJKoZIhvcNAQELBQADggEBACwqZkIqh688lj/3yS3s cTBJAV6neAMG7+/Tw/e45PER5MUNF9kDkR/ZErz/BhGEU+PHAt5R9G8n9JOOW3C7 x5Ia97xUsvQzYtUNge6ymXiBrcNjn1VAXRaR4DCefwWjwaYH57MR6uinf8E1s+0R ty1HfrRfw+BVRHASUztWyI3PjjVD7SEwXiIgY0sm0a9k+biCSAjsJT8kpK18B4Ph FIUKyf3EGHtsuQQeTqJuurNwwXRK9BxL/JmYEEtLcx8lrrcxUxiZNQUq6dXbMzFj 2TPTnNZJnpd2Aj3N5U2NSbLWkZcDmN/irP6IFTxq/8zqrr7hQOOeiEqQvlWdMfhj bWc= -----END CERTIFICATE-----Generated at Sun Jun 29 03:00:18 2025 by rpki-client