$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b15b8cc-026d-4909-976b-a48a26fc3ee0.roa File: 5b15b8cc-026d-4909-976b-a48a26fc3ee0.roa (raw, json) Hash identifier: gxLYfCaHekR3EsFT6V6Dy0oD4YYrgQpcgx9aI4Rsh0k= Subject key identifier: BD:1F:63:89:58:17:31:DC:CB:0A:B5:7C:4F:6A:CB:C8:FC:9E:B8:C3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7198D38B9A042228E01D3DAF2CC44098AB307C84 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b15b8cc-026d-4909-976b-a48a26fc3ee0.roa Signing time: Sat 23 Aug 2025 00:41:07 +0000 ROA not before: Sat 23 Aug 2025 00:41:07 +0000 ROA not after: Sat 27 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:98:d3:8b:9a:04:22:28:e0:1d:3d:af:2c:c4:40:98:ab:30:7c:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 23 00:41:07 2025 GMT Not After : Sep 27 23:59:59 2025 GMT Subject: serialNumber=cf0d65b4714bf07f0bb3fc82c2b6845a15418035d36ec492c1f86ffc57ea3d64, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:53:f2:0d:93:aa:1f:48:c9:0d:ee:0a:87:9f: d7:7f:c0:04:20:23:6c:b5:c2:f5:49:1d:a8:45:f2: 58:29:c1:70:25:30:b7:8d:e4:a6:e0:95:53:1e:36: 4b:e9:b2:dc:c2:6e:50:e0:88:ee:d1:93:c1:05:fb: b4:c1:6b:42:03:6e:12:dd:72:49:67:4f:bf:55:68: 78:b6:2b:33:f9:6b:d3:ba:03:1d:6f:dd:43:00:bf: c8:73:ac:f6:31:2c:e0:e5:56:04:02:bd:1e:3e:6d: bb:8d:32:46:29:ca:1d:a2:8a:fc:50:75:27:8b:86: c7:08:5b:1a:6a:d7:3f:f6:4d:96:35:f9:65:02:b4: d6:16:2d:ce:ca:7b:be:e4:56:9a:6b:a4:a5:0c:00: f2:93:53:20:70:29:55:17:63:ac:cc:9c:ec:a4:71: db:96:ff:ab:b3:d5:18:fb:6b:ec:a0:2e:55:b4:3f: db:cc:1b:3a:a4:d6:16:2a:42:57:eb:db:b8:66:30: 14:82:59:1f:2b:6f:8e:4c:1f:a0:e8:29:f4:b7:38: 91:49:c4:34:8a:02:2f:e7:52:69:7b:e4:38:17:ae: 2d:fe:1e:13:2a:e3:87:81:18:36:f5:57:d7:7d:0f: 66:1c:ff:0c:9b:98:59:a5:0a:51:6a:df:8a:b0:eb: 00:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1F:63:89:58:17:31:DC:CB:0A:B5:7C:4F:6A:CB:C8:FC:9E:B8:C3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b15b8cc-026d-4909-976b-a48a26fc3ee0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:8800::/40 Signature Algorithm: sha256WithRSAEncryption a7:e6:cf:f3:01:e8:c8:07:bf:13:27:a6:25:56:89:39:99:81: 06:7c:53:7c:b3:35:89:fa:40:76:85:93:c5:45:86:14:11:79: a9:3c:e1:d5:97:4a:b3:e5:0f:ec:15:9e:16:27:ca:bd:2a:ab: c3:01:71:01:f0:3c:1d:03:aa:50:61:4d:19:50:1c:ca:d8:9d: 48:f6:ee:e3:98:c9:9a:43:45:9d:ce:db:1e:e6:44:2d:e9:be: 61:2e:d8:d0:29:02:5e:97:e8:63:98:ee:5e:04:0d:10:32:20: a6:8f:a1:d7:1b:12:50:f0:f1:85:9d:33:2a:ff:6a:51:0c:ec: 45:a6:3e:65:e2:1c:de:88:8b:9f:98:32:b8:98:ce:a5:da:9b: da:b5:a4:48:af:0b:4a:00:20:ec:47:a2:6c:d8:a0:cd:b3:cc: 16:84:4d:d9:d8:71:3c:a0:c0:4a:25:77:b8:48:c2:74:ca:94: ce:b8:57:57:40:f4:fb:52:d9:88:47:0b:34:56:1c:94:2b:0e: fa:22:07:a1:b7:6c:e5:60:f8:7c:31:f9:37:94:16:4b:61:1f: 39:29:38:ff:f4:f0:90:f7:5b:a5:5c:46:8c:fd:9a:5a:5e:70: 84:34:08:fd:64:7a:51:b6:2d:db:d1:e8:4b:ee:0b:99:bd:3e: 28:65:1f:aa -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUcZjTi5oEIijgHT2vLMRAmKswfIQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMzAwNDEwN1oX DTI1MDkyNzIzNTk1OVowejFJMEcGA1UEBRNAY2YwZDY1YjQ3MTRiZjA3ZjBiYjNm YzgyYzJiNjg0NWExNTQxODAzNWQzNmVjNDkyYzFmODZmZmM1N2VhM2Q2NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlPyDZOqH0jJDe4Kh5/Xf8AEICNs tcL1SR2oRfJYKcFwJTC3jeSm4JVTHjZL6bLcwm5Q4Iju0ZPBBfu0wWtCA24S3XJJ Z0+/VWh4tisz+WvTugMdb91DAL/Ic6z2MSzg5VYEAr0ePm27jTJGKcodoor8UHUn i4bHCFsaatc/9k2WNfllArTWFi3Oynu+5Faaa6SlDADyk1MgcClVF2OszJzspHHb lv+rs9UY+2vsoC5VtD/bzBs6pNYWKkJX69u4ZjAUglkfK2+OTB+g6Cn0tziRScQ0 igIv51Jpe+Q4F64t/h4TKuOHgRg29VfXfQ9mHP8Mm5hZpQpRat+KsOsApQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFL0fY4lYFzHcywq1fE9qy8j8nrjDMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzViMTViOGNjLTAyNmQtNDkwOS05NzZiLWE0OGEyNmZjM2VlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/4gwDQYJKoZIhvcNAQELBQADggEBAKfmz/MB6MgHvxMnpiVW iTmZgQZ8U3yzNYn6QHaFk8VFhhQReak84dWXSrPlD+wVnhYnyr0qq8MBcQHwPB0D qlBhTRlQHMrYnUj27uOYyZpDRZ3O2x7mRC3pvmEu2NApAl6X6GOY7l4EDRAyIKaP odcbElDw8YWdMyr/alEM7EWmPmXiHN6Ii5+YMriYzqXam9q1pEivC0oAIOxHomzY oM2zzBaETdnYcTygwEold7hIwnTKlM64V1dA9PtS2YhHCzRWHJQrDvoiB6G3bOVg +Hwx+TeUFkthHzkpOP/08JD3W6VcRoz9mlpecIQ0CP1kelG2LdvR6EvuC5m9Pihl H6o= -----END CERTIFICATE-----Generated at Sat Aug 23 10:09:05 2025 by rpki-client