$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7318f07c-8b30-4d74-8191-cb89a3eae284.roa File: 7318f07c-8b30-4d74-8191-cb89a3eae284.roa (raw, json) Hash identifier: yQieN0lzSSg/3jYa0SEd80teii85Z5n/zQ6K25hCtaI= Subject key identifier: DB:AD:BA:8B:BD:49:51:32:0F:51:E1:E5:6A:A4:40:4D:F4:2B:2E:6A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 26A6059A12EF542A284A8B46B3401FE753896863 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7318f07c-8b30-4d74-8191-cb89a3eae284.roa Signing time: Tue 05 Aug 2025 00:00:04 +0000 ROA not before: Tue 05 Aug 2025 00:00:04 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daed:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a6:05:9a:12:ef:54:2a:28:4a:8b:46:b3:40:1f:e7:53:89:68:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 5 00:00:04 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5fd532de5ac97e124f423c422d591916faf423fcaaefc889cc2278851f744a85, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7c:41:1a:3a:08:44:7c:b0:e9:b5:5a:8b:5b: b3:95:34:f1:1f:31:64:45:04:f0:d6:e1:59:94:3e: 75:5b:11:9d:66:11:e5:b9:f1:c4:54:26:f9:4f:60: 05:3a:72:46:05:22:e9:3c:d4:15:67:01:a4:25:09: 9b:5f:d7:e7:b1:1f:47:5f:a9:9d:af:1a:f9:19:1b: 29:8c:66:73:d8:92:b4:6e:c4:84:bb:f9:ba:69:08: 6b:fd:ea:a6:df:17:7c:a9:ec:cb:7a:e2:95:e4:19: bb:e2:21:55:f6:3a:1f:2b:d0:53:c3:f2:03:51:83: 3e:f7:1f:f4:ec:0e:79:3a:7f:a5:b6:8d:03:82:fd: c3:66:6a:ce:f2:dd:6e:eb:73:f3:60:5c:33:a0:56: 99:b4:8b:7b:39:0a:ac:2d:77:a8:bc:37:f4:8d:fa: ac:cd:c8:e4:48:cf:2c:b4:8d:86:d4:a1:e1:5a:00: 6f:06:b5:d8:5d:a3:b1:a4:4f:bb:df:4f:e2:1d:a4: 95:30:20:17:76:91:5d:7c:88:4c:23:a2:74:e5:92: e0:89:21:ab:fc:56:e6:b7:27:9f:cb:f9:7d:31:bc: 62:a7:90:2e:f7:72:a4:e7:ab:82:8c:24:c8:fe:f0: f1:13:1a:50:c9:70:65:c1:fb:30:4d:4b:ec:d2:76: 6c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:AD:BA:8B:BD:49:51:32:0F:51:E1:E5:6A:A4:40:4D:F4:2B:2E:6A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7318f07c-8b30-4d74-8191-cb89a3eae284.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daed:6000::/40 Signature Algorithm: sha256WithRSAEncryption 52:5e:40:47:e2:ec:e6:26:86:7c:db:12:f3:ff:09:7a:2b:71: b3:24:d8:73:90:f8:34:11:ea:5d:e6:b2:ae:e9:61:53:6f:b5: c1:0d:ff:6d:44:b6:20:97:0f:89:62:36:8a:15:31:d1:65:65: c0:23:3b:4d:13:37:b6:c7:30:6e:7b:60:34:96:42:31:27:63: 0e:7c:76:1d:e1:d5:c6:5b:43:f3:88:4e:45:48:16:fa:b7:85: 73:40:b0:9f:64:b1:e5:6e:fc:1d:39:47:3f:64:4c:1d:8f:68: 83:a6:4d:2d:b9:98:0a:9a:eb:e5:3d:2e:5c:0f:e9:f9:15:9c: 2b:3a:92:4b:8e:c9:ed:fa:9c:33:e3:14:aa:9a:0c:fc:e5:3b: ee:88:14:08:b2:a9:b5:c1:2b:41:78:15:a1:c6:0c:ba:c0:1c: 4b:9d:07:86:69:48:37:ce:3e:79:5b:68:52:90:01:da:23:cd: 9a:14:aa:f2:e4:78:a7:99:51:1c:c0:fd:d4:f0:79:7c:45:2c: 54:60:c8:62:8c:7a:bc:7b:ee:83:38:b4:82:dd:56:22:1b:ee: b1:da:49:73:80:ef:e4:da:b9:24:10:73:54:9f:5a:88:93:a0: ee:ec:9d:eb:df:f3:26:8b:ea:51:b2:e5:68:d5:77:2a:42:db: a5:ec:05:c6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJqYFmhLvVCooSotGs0Af51OJaGMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgwNTAwMDAwNFoX DTI1MDkwOTIzNTk1OVowejFJMEcGA1UEBRNANWZkNTMyZGU1YWM5N2UxMjRmNDIz YzQyMmQ1OTE5MTZmYWY0MjNmY2FhZWZjODg5Y2MyMjc4ODUxZjc0NGE4NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHxBGjoIRHyw6bVai1uzlTTxHzFk RQTw1uFZlD51WxGdZhHlufHEVCb5T2AFOnJGBSLpPNQVZwGkJQmbX9fnsR9HX6md rxr5GRspjGZz2JK0bsSEu/m6aQhr/eqm3xd8qezLeuKV5Bm74iFV9jofK9BTw/ID UYM+9x/07A55On+lto0Dgv3DZmrO8t1u63PzYFwzoFaZtIt7OQqsLXeovDf0jfqs zcjkSM8stI2G1KHhWgBvBrXYXaOxpE+730/iHaSVMCAXdpFdfIhMI6J05ZLgiSGr /Fbmtyefy/l9Mbxip5Au93Kk56uCjCTI/vDxExpQyXBlwfswTUvs0nZs6wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNutuou9SVEyD1Hh5WqkQE30Ky5qMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzczMThmMDdjLThiMzAtNGQ3NC04MTkxLWNiODlhM2VhZTI4NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba7WAwDQYJKoZIhvcNAQELBQADggEBAFJeQEfi7OYmhnzbEvP/ CXorcbMk2HOQ+DQR6l3msq7pYVNvtcEN/21EtiCXD4liNooVMdFlZcAjO00TN7bH MG57YDSWQjEnYw58dh3h1cZbQ/OITkVIFvq3hXNAsJ9kseVu/B05Rz9kTB2PaIOm TS25mAqa6+U9LlwP6fkVnCs6kkuOye36nDPjFKqaDPzlO+6IFAiyqbXBK0F4FaHG DLrAHEudB4ZpSDfOPnlbaFKQAdojzZoUqvLkeKeZURzA/dTweXxFLFRgyGKMerx7 7oM4tILdViIb7rHaSXOA7+TauSQQc1SfWoiToO7snevf8yaL6lGy5WjVdypC26Xs BcY= -----END CERTIFICATE-----Generated at Sat Aug 23 08:07:36 2025 by rpki-client