$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa File: 70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa (raw, json) Hash identifier: PhkMWSYdFKvp8qOTK7qusKoyaMG+zLf62fM5hnd7Zco= Subject key identifier: 6A:15:B7:90:9F:71:A5:EE:FF:AC:A4:93:B2:D6:9C:83:05:7D:89:28 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 078DC4075C18C25515109C4D5471E0E187C6231A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa Signing time: Fri 22 Aug 2025 00:01:38 +0000 ROA not before: Fri 22 Aug 2025 00:01:38 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8d:c4:07:5c:18:c2:55:15:10:9c:4d:54:71:e0:e1:87:c6:23:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 22 00:01:38 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=d76adc7c61a1b1d382da15f5dc2bd200e82caee182da45f54b8af28e45d1ef5e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:e2:bc:38:6f:bd:2d:b1:93:20:95:53:26: 4d:30:b9:0d:da:3b:58:d3:23:37:46:3b:0e:0e:c0: cb:07:d3:d6:c8:9c:db:08:30:c2:56:ef:c1:e5:38: 7d:03:d4:d2:cb:6a:cb:fe:c9:74:fd:e6:f6:b4:ad: 49:93:8f:a0:a4:19:6c:ff:5d:99:20:f1:c1:7f:c8: be:00:fe:43:06:ff:03:2f:6b:fe:c8:fd:de:89:ed: 15:02:95:b5:6a:8b:6a:71:92:0e:41:f8:9d:c0:d0: 9f:cc:52:2a:24:a9:38:0e:7a:5f:39:ae:29:cb:4d: d2:cd:48:73:ac:fb:26:52:f1:6d:d6:bd:9d:69:ba: eb:ae:68:e5:36:ae:6c:0c:7b:ff:54:80:c6:c6:86: ca:7d:39:fe:bb:25:e7:c5:78:da:10:8b:39:3b:0f: 64:1f:db:c8:a6:1a:a5:02:f9:55:e1:ea:be:cc:fd: cc:fb:e3:8c:16:c9:18:5c:6a:31:3a:87:96:a3:8f: 6d:49:4c:0c:60:7e:a6:81:60:0f:12:c1:9a:1b:1c: 22:90:0f:af:8f:a3:91:90:11:80:c7:b0:e4:e3:c4: 28:19:ac:b3:dc:fc:f9:d9:ef:33:10:46:5a:e4:27: 4f:93:14:73:ff:de:48:0c:59:0c:38:27:74:bf:5b: 4a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:15:B7:90:9F:71:A5:EE:FF:AC:A4:93:B2:D6:9C:83:05:7D:89:28 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:a080::/48 Signature Algorithm: sha256WithRSAEncryption 4a:35:78:d8:29:74:42:3c:e5:fa:49:11:b6:be:6b:88:91:b5: 4e:59:de:04:2d:33:8d:f1:ff:23:f7:9b:58:44:70:82:81:23: ff:91:71:1e:44:ce:72:4a:b8:88:e3:75:9c:86:0e:5b:2b:0a: fa:52:83:f1:99:fd:85:dc:6f:69:32:49:ef:8c:04:52:91:57: e9:22:67:a2:1c:b0:0d:e4:a0:8a:e0:d1:40:70:4e:bf:c6:0c: 58:d4:b9:85:60:e1:e1:9e:b5:f7:0a:b3:ef:c5:33:ae:0f:35: d1:dc:84:cf:80:d5:1c:bc:e5:2a:96:af:ea:05:0e:04:3b:85: d1:f2:d5:99:5f:52:37:2f:fd:cc:3b:af:3c:b7:51:fa:54:e7: 4b:8d:a3:2a:a5:de:84:1c:e7:44:75:2f:b4:1e:ba:8b:84:e9: 0e:f3:78:4e:5c:b9:c6:f8:04:0b:5a:42:7b:88:29:51:5f:b4: 81:6b:8d:6c:96:06:2a:f9:d8:d3:69:64:2f:14:f6:7e:34:c3: 63:3c:b8:b0:f8:91:55:60:7f:a6:bd:df:bf:a2:c8:88:48:d3: f6:05:9e:c3:9b:27:ae:78:a7:37:82:f2:8e:52:71:49:d8:03: fa:4b:ba:d6:bd:83:69:55:8b:e0:62:ca:43:79:07:d1:87:2e: 5a:22:26:b1 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUB43EB1wYwlUVEJxNVHHg4YfGIxowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMjAwMDEzOFoX DTI1MDkyNjIzNTk1OVowejFJMEcGA1UEBRNAZDc2YWRjN2M2MWExYjFkMzgyZGEx NWY1ZGMyYmQyMDBlODJjYWVlMTgyZGE0NWY1NGI4YWYyOGU0NWQxZWY1ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzeTivDhvvS2xkyCVUyZNMLkN2jtY 0yM3RjsODsDLB9PWyJzbCDDCVu/B5Th9A9TSy2rL/sl0/eb2tK1Jk4+gpBls/12Z IPHBf8i+AP5DBv8DL2v+yP3eie0VApW1aotqcZIOQfidwNCfzFIqJKk4DnpfOa4p y03SzUhzrPsmUvFt1r2dabrrrmjlNq5sDHv/VIDGxobKfTn+uyXnxXjaEIs5Ow9k H9vIphqlAvlV4eq+zP3M++OMFskYXGoxOoeWo49tSUwMYH6mgWAPEsGaGxwikA+v j6ORkBGAx7Dk48QoGayz3Pz52e8zEEZa5CdPkxRz/95IDFkMOCd0v1tKGwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGoVt5CfcaXu/6ykk7LWnIMFfYkoMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcwNzgxNTk3LTZlZGMtNDliYy1iZDhjLWM5YWRjNjhkMWIyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYaCAMA0GCSqGSIb3DQEBCwUAA4IBAQBKNXjYKXRCPOX6SRG2 vmuIkbVOWd4ELTON8f8j95tYRHCCgSP/kXEeRM5ySriI43Wchg5bKwr6UoPxmf2F 3G9pMknvjARSkVfpImeiHLAN5KCK4NFAcE6/xgxY1LmFYOHhnrX3CrPvxTOuDzXR 3ITPgNUcvOUqlq/qBQ4EO4XR8tWZX1I3L/3MO688t1H6VOdLjaMqpd6EHOdEdS+0 HrqLhOkO83hOXLnG+AQLWkJ7iClRX7SBa41slgYq+djTaWQvFPZ+NMNjPLiw+JFV YH+mvd+/osiISNP2BZ7DmyeueKc3gvKOUnFJ2AP6S7rWvYNpVYvgYspDeQfRhy5a Iiax -----END CERTIFICATE-----Generated at Sat Aug 23 10:11:10 2025 by rpki-client