$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f4fb3c5-ffd6-4ac8-9a84-32400beb25a7.roa File: 5f4fb3c5-ffd6-4ac8-9a84-32400beb25a7.roa (raw, json) Hash identifier: Ymj97QTamUHf4sL0rXYwLHarKioRgHpKp7SRFy94glw= Subject key identifier: 8C:73:9F:E9:7F:32:C3:09:88:8C:F7:3F:F2:45:22:B1:7B:3D:B9:6B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5B834C5CB0465A8718ECE194D3CDCDA7A83FD437 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f4fb3c5-ffd6-4ac8-9a84-32400beb25a7.roa Signing time: Mon 09 Jun 2025 15:20:48 +0000 ROA not before: Mon 09 Jun 2025 15:20:48 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:f040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:83:4c:5c:b0:46:5a:87:18:ec:e1:94:d3:cd:cd:a7:a8:3f:d4:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 9 15:20:48 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=ed2696833299a94e243b2c87720d4c5536a04a21a782a8868d1ec3682fb8ec74, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:36:b3:37:bb:f6:16:a3:b9:bf:a8:d0:76:3a: 7f:cf:46:72:25:ca:4f:27:52:c0:29:a4:70:d9:4f: 51:27:64:33:2b:05:f5:1f:64:9d:6f:b5:6f:c4:2a: 29:87:38:c1:4c:c0:5a:8f:4c:08:f3:84:f7:29:9d: 7f:12:f6:d9:26:60:64:8c:d2:7d:09:b9:40:7e:4e: 8c:35:96:1e:00:d3:08:02:97:f6:f3:a7:7f:3a:9f: f6:16:56:e7:b7:27:50:ab:e9:c6:52:cf:b5:5f:40: 0c:46:6f:f1:c3:09:9c:63:2d:7e:d7:ed:d9:41:45: d1:29:29:e6:c3:93:ec:a6:9c:c2:ea:1f:19:05:15: 52:4f:bb:35:a7:69:a9:38:c2:d0:56:9a:c3:97:f0: 8f:ac:10:b3:0b:57:e1:71:04:6b:de:b0:78:a5:e8: 4f:65:04:fb:47:6e:7b:a3:0c:3c:98:4c:32:52:1d: 90:23:c4:78:0d:b3:fe:91:00:9b:7c:79:6b:29:90: 1e:e5:da:f2:2e:17:bd:b8:ed:ac:55:74:ff:d1:c3: b0:bb:22:f8:f6:a5:01:dd:cc:27:06:db:dc:e3:72: 91:e1:3e:e1:f3:4e:80:63:79:17:51:33:af:38:51: 71:ad:5e:da:5d:96:75:bd:64:c9:c9:0b:30:d3:3f: 05:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:73:9F:E9:7F:32:C3:09:88:8C:F7:3F:F2:45:22:B1:7B:3D:B9:6B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f4fb3c5-ffd6-4ac8-9a84-32400beb25a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:f040::/48 Signature Algorithm: sha256WithRSAEncryption 43:33:6e:2e:43:90:5b:59:03:21:a0:ba:4e:93:c2:7d:0c:76: a5:51:c8:ad:28:f1:2e:93:93:57:3f:e3:e6:e4:63:18:9a:35: 7c:4d:a7:8d:0f:e4:aa:60:28:36:04:cd:1a:b1:d8:16:df:50: ba:62:6b:25:c6:39:01:43:27:cc:96:fb:f8:75:d6:81:81:c3: 0c:b1:69:33:58:e6:4e:ab:0b:00:93:47:07:5e:33:f8:ee:38: 5f:fc:03:bb:05:6e:30:3d:66:bb:8b:d2:93:36:29:dd:32:f5: 69:34:c0:6e:60:c9:3d:eb:77:e4:30:e7:2c:c5:2b:3d:5c:c5: a2:11:06:87:6c:e3:38:2a:de:be:85:02:0c:66:f8:f8:d1:08: 80:30:39:b5:07:da:23:57:79:33:13:2f:70:15:67:3e:7c:d9: 23:cb:81:ee:07:b5:2d:a9:8f:d7:e6:07:28:69:9e:02:c4:4f: a3:2f:ad:42:81:ed:65:e3:31:1c:e2:3e:f8:a8:93:c6:ef:8c: 27:ff:ca:44:18:47:5b:83:e4:9a:75:f3:fc:b6:de:73:62:fd: f1:63:0c:6a:50:04:59:60:07:99:d1:97:e8:c4:f3:b5:15:14: 7f:0d:f2:b7:2b:c2:53:bd:50:34:82:9d:c0:27:7c:c4:52:a4: da:2a:e6:59 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUW4NMXLBGWocY7OGU083Np6g/1DcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwOTE1MjA0OFoX DTI1MDcxNDIzNTk1OVowejFJMEcGA1UEBRNAZWQyNjk2ODMzMjk5YTk0ZTI0M2Iy Yzg3NzIwZDRjNTUzNmEwNGEyMWE3ODJhODg2OGQxZWMzNjgyZmI4ZWM3NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTazN7v2FqO5v6jQdjp/z0ZyJcpP J1LAKaRw2U9RJ2QzKwX1H2Sdb7VvxCophzjBTMBaj0wI84T3KZ1/EvbZJmBkjNJ9 CblAfk6MNZYeANMIApf286d/Op/2FlbntydQq+nGUs+1X0AMRm/xwwmcYy1+1+3Z QUXRKSnmw5PsppzC6h8ZBRVST7s1p2mpOMLQVprDl/CPrBCzC1fhcQRr3rB4pehP ZQT7R257oww8mEwyUh2QI8R4DbP+kQCbfHlrKZAe5dryLhe9uO2sVXT/0cOwuyL4 9qUB3cwnBtvc43KR4T7h806AY3kXUTOvOFFxrV7aXZZ1vWTJyQsw0z8FCwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFIxzn+l/MsMJiIz3P/JFIrF7PblrMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVmNGZiM2M1LWZmZDYtNGFjOC05YTg0LTMyNDAwYmViMjVhNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYfBAMA0GCSqGSIb3DQEBCwUAA4IBAQBDM24uQ5BbWQMhoLpO k8J9DHalUcitKPEuk5NXP+Pm5GMYmjV8TaeND+SqYCg2BM0asdgW31C6YmslxjkB QyfMlvv4ddaBgcMMsWkzWOZOqwsAk0cHXjP47jhf/AO7BW4wPWa7i9KTNindMvVp NMBuYMk963fkMOcsxSs9XMWiEQaHbOM4Kt6+hQIMZvj40QiAMDm1B9ojV3kzEy9w FWc+fNkjy4HuB7UtqY/X5gcoaZ4CxE+jL61Cge1l4zEc4j74qJPG74wn/8pEGEdb g+SadfP8tt5zYv3xYwxqUARZYAeZ0ZfoxPO1FRR/DfK3K8JTvVA0gp3AJ3zEUqTa KuZZ -----END CERTIFICATE-----Generated at Sun Jun 29 03:59:22 2025 by rpki-client