$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6f6b5a3c-b3f5-4577-a228-2ce1b7327c05.roa File: 6f6b5a3c-b3f5-4577-a228-2ce1b7327c05.roa (raw, json) Hash identifier: d5IEH6UImZ3zP0PhHl373yYkkrpRLRaKhS1CHk2+GUo= Subject key identifier: 55:31:DE:77:5D:8B:4D:51:96:F4:C0:E2:E9:8A:68:4C:B6:7A:02:C1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 344AEF50AA9CAC461CF7593AF8CA9F151B28F238 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6f6b5a3c-b3f5-4577-a228-2ce1b7327c05.roa Signing time: Sat 23 Aug 2025 00:21:59 +0000 ROA not before: Sat 23 Aug 2025 00:21:59 +0000 ROA not after: Sat 27 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:c880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:4a:ef:50:aa:9c:ac:46:1c:f7:59:3a:f8:ca:9f:15:1b:28:f2:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 23 00:21:59 2025 GMT Not After : Sep 27 23:59:59 2025 GMT Subject: serialNumber=76df41a7422633d2b03104fc150a975872f03be8fe104983d99afc5b035cfb89, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:23:14:57:11:9c:31:ff:a0:c6:61:c4:35:a7: 0a:0e:05:b6:54:7b:6c:23:47:fd:7b:72:48:b9:01: 2e:e3:fa:9c:48:a8:3c:43:1d:5f:ea:b5:b6:f2:3a: 7e:7b:8f:42:79:2e:d9:ae:48:1d:47:40:72:49:ac: 99:5c:1f:f5:69:74:24:eb:1f:a0:71:2f:1d:ed:d0: ce:f8:bf:67:0a:a0:e8:7c:d5:70:a2:c4:69:8f:5b: e6:4a:95:49:87:c7:42:42:aa:53:6f:5c:cb:f4:32: 03:19:3b:d2:4a:7e:19:18:87:ea:da:ec:4d:ee:4f: 34:71:41:2d:98:c1:71:c0:ce:20:83:d6:00:82:96: 51:cb:f4:90:8a:da:51:61:87:72:17:f4:21:65:62: f0:d5:fc:be:c0:89:5d:1f:05:41:67:f1:4e:df:6c: ba:1b:c2:fd:d5:03:16:88:ae:08:d8:c7:08:f7:48: ae:7f:66:a1:4f:f5:dc:20:cd:a0:59:6d:f9:90:f2: b8:1d:de:d0:58:d7:54:24:04:46:19:13:5b:7a:92: 23:31:1c:cc:db:61:69:64:e2:a4:38:8a:7b:58:83: 93:0f:b5:7f:8c:b4:ae:8b:83:21:85:dd:64:1b:3d: 4b:c0:1c:c7:8b:dd:98:99:ba:6a:23:e6:8e:9c:81: 92:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:31:DE:77:5D:8B:4D:51:96:F4:C0:E2:E9:8A:68:4C:B6:7A:02:C1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6f6b5a3c-b3f5-4577-a228-2ce1b7327c05.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:c880::/48 Signature Algorithm: sha256WithRSAEncryption 4b:ea:11:3d:4a:56:36:23:a6:d1:e0:0d:63:a1:7d:7d:09:ca: 8f:2c:06:ee:82:32:87:32:f9:96:b4:0b:82:32:e2:0b:cd:ca: 7a:30:aa:ad:ae:a6:bc:8c:c5:dc:08:e2:4e:66:88:f3:ff:fd: dd:a6:f6:a5:47:45:03:9f:31:87:10:e5:9d:d8:29:c8:a4:50: 11:c2:34:01:1a:5c:2a:13:48:28:50:c2:13:d4:c8:b6:83:1c: b7:b6:46:0c:dc:f8:09:29:9c:9f:6a:34:26:3e:1e:79:71:16: 09:fc:57:30:6e:60:ba:ce:7b:8b:e6:a2:bb:31:e9:06:21:6b: e4:74:01:fa:5b:aa:4e:a5:15:97:4b:5d:6a:d0:f2:6a:bb:a3: d2:95:26:1c:5b:8c:20:e4:35:f3:5d:db:0d:79:11:53:04:ba: 0d:15:e0:56:2f:58:52:b3:86:c9:6e:e3:91:ca:78:0b:c1:9b: 06:01:ca:a1:16:06:8f:1d:6e:d0:d6:62:b4:1d:18:1a:0e:bc: 9f:42:9a:33:a2:97:02:ca:aa:26:2a:2c:ad:1e:a4:a3:c2:b1: 95:13:50:b9:82:29:5f:dc:98:2a:a1:6a:ae:06:1f:d2:4a:f4: be:f1:16:c7:47:b5:8c:58:4f:75:dd:06:2e:7c:49:26:90:5a: 7a:76:05:39 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUNErvUKqcrEYc91k6+MqfFRso8jgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMzAwMjE1OVoX DTI1MDkyNzIzNTk1OVowejFJMEcGA1UEBRNANzZkZjQxYTc0MjI2MzNkMmIwMzEw NGZjMTUwYTk3NTg3MmYwM2JlOGZlMTA0OTgzZDk5YWZjNWIwMzVjZmI4OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmSMUVxGcMf+gxmHENacKDgW2VHts I0f9e3JIuQEu4/qcSKg8Qx1f6rW28jp+e49CeS7ZrkgdR0BySayZXB/1aXQk6x+g cS8d7dDO+L9nCqDofNVwosRpj1vmSpVJh8dCQqpTb1zL9DIDGTvSSn4ZGIfq2uxN 7k80cUEtmMFxwM4gg9YAgpZRy/SQitpRYYdyF/QhZWLw1fy+wIldHwVBZ/FO32y6 G8L91QMWiK4I2McI90iuf2ahT/XcIM2gWW35kPK4Hd7QWNdUJARGGRNbepIjMRzM 22FpZOKkOIp7WIOTD7V/jLSui4Mhhd1kGz1LwBzHi92YmbpqI+aOnIGSdQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFUx3nddi01RlvTA4umKaEy2egLBMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZmNmI1YTNjLWIzZjUtNDU3Ny1hMjI4LTJjZTFiNzMyN2MwNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/8iAMA0GCSqGSIb3DQEBCwUAA4IBAQBL6hE9SlY2I6bR4A1j oX19CcqPLAbugjKHMvmWtAuCMuILzcp6MKqtrqa8jMXcCOJOZojz//3dpvalR0UD nzGHEOWd2CnIpFARwjQBGlwqE0goUMIT1Mi2gxy3tkYM3PgJKZyfajQmPh55cRYJ /FcwbmC6znuL5qK7MekGIWvkdAH6W6pOpRWXS11q0PJqu6PSlSYcW4wg5DXzXdsN eRFTBLoNFeBWL1hSs4bJbuORyngLwZsGAcqhFgaPHW7Q1mK0HRgaDryfQpozopcC yqomKiytHqSjwrGVE1C5gilf3JgqoWquBh/SSvS+8RbHR7WMWE913QYufEkmkFp6 dgU5 -----END CERTIFICATE-----Generated at Sat Aug 23 13:30:15 2025 by rpki-client