$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8d0314b7-fdd6-4cd4-9bd7-5dc63f6343a8.roa File: 8d0314b7-fdd6-4cd4-9bd7-5dc63f6343a8.roa (raw, json) Hash identifier: YO1ZpcNFgkSOdQqcfJyCJiS+FtOdnK9HiKRlo4rAYN4= Subject key identifier: 5E:E4:42:9F:B5:15:B2:9D:7B:E8:7A:BE:BC:8B:37:F5:B3:E5:8D:47 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7E6E31CF35839670121916BB83C67C6C6C35E510 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8d0314b7-fdd6-4cd4-9bd7-5dc63f6343a8.roa Signing time: Sat 23 Aug 2025 00:41:46 +0000 ROA not before: Sat 23 Aug 2025 00:41:46 +0000 ROA not after: Sat 27 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:6e:31:cf:35:83:96:70:12:19:16:bb:83:c6:7c:6c:6c:35:e5:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 23 00:41:46 2025 GMT Not After : Sep 27 23:59:59 2025 GMT Subject: serialNumber=4c4c384b88ca24f39e21dbdef60a6b2d502602cb482c83ff00f6c5a7f3ae779a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1c:3c:d1:08:98:26:17:fe:ad:c9:16:e6:f4: a6:36:41:4f:38:c5:ea:62:5f:48:61:35:7b:74:af: 37:93:ee:8c:ce:b3:f8:fd:8b:e9:f6:45:c3:a2:54: 7e:f0:0c:ee:66:3c:ce:56:71:60:36:18:87:c9:e5: a5:96:c6:78:6a:c1:bc:3b:48:29:27:ba:7f:7a:2a: 87:e3:3b:1a:c7:8a:92:f1:09:ef:1c:b7:61:2c:a7: be:a6:c4:18:e4:bf:95:8c:ab:ea:5f:b1:2b:ae:ca: 06:9a:50:dd:a7:10:11:5f:c3:c8:e0:72:2a:6e:a1: 61:61:f9:10:fa:c2:3a:b7:70:08:61:db:64:61:c7: bf:98:80:0d:63:a8:7e:f0:bf:8d:50:5f:08:2b:e1: dc:86:e1:31:e6:46:a1:cc:fd:cd:4b:03:16:e8:a9: e2:fd:0e:2c:fb:1f:4f:55:da:05:e8:a0:04:0a:18: 17:09:58:80:bd:27:a0:5c:19:49:02:e1:1a:b5:8d: 54:7e:c8:5b:dc:89:23:21:f1:6f:00:14:99:4e:29: 92:c0:33:55:92:7e:f6:fa:f4:de:8e:03:c7:f5:16: bc:48:97:11:23:67:90:6d:d3:94:ea:81:8f:d7:01: c3:e0:e2:14:41:0f:c4:fc:b2:f8:f4:c3:68:1f:61: db:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E4:42:9F:B5:15:B2:9D:7B:E8:7A:BE:BC:8B:37:F5:B3:E5:8D:47 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8d0314b7-fdd6-4cd4-9bd7-5dc63f6343a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:c000::/40 Signature Algorithm: sha256WithRSAEncryption a9:e0:97:ec:0a:09:76:e9:9c:85:4e:87:c8:56:06:25:ec:f2: a1:21:3e:93:87:55:7a:5d:e0:a9:39:7a:7c:3a:d3:11:99:7e: b6:aa:05:16:38:c4:1f:9e:51:fb:c2:63:ba:61:5f:d5:a5:4e: 7f:3e:9a:cb:7f:97:d5:b2:75:0e:d0:bd:a7:77:d4:9c:a2:52: 38:ac:31:b5:00:d2:f1:a4:c4:d6:2c:b1:e2:c9:09:61:d6:10: 35:be:35:d5:a7:74:01:ca:7c:d8:c0:1a:4f:d3:df:1f:9b:ba: 2c:a1:48:75:fc:74:3c:4c:a2:36:08:a6:ba:8c:40:18:13:2f: 20:bc:38:52:3b:82:60:07:e0:99:ee:1f:03:2e:ea:5f:5d:cf: 53:df:98:57:71:57:63:00:4a:12:a7:9b:2e:df:37:3c:f2:aa: f3:70:57:48:3a:e8:f7:c8:03:49:f8:d7:69:bc:ce:e9:f6:d5: f6:4d:02:9f:93:2b:f2:4a:41:64:90:ef:28:ba:29:a3:6e:b0: 3f:90:c3:19:ee:c2:bc:f4:d6:d6:d1:09:e6:7b:f2:64:1e:a0: 74:58:cf:84:66:80:68:ae:bf:95:77:c1:51:ed:24:ba:09:83: d5:9e:79:7f:29:46:44:9f:f4:19:d6:f2:44:85:b3:32:f7:3e: 8e:e0:8f:3f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUfm4xzzWDlnASGRa7g8Z8bGw15RAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMzAwNDE0NloX DTI1MDkyNzIzNTk1OVowejFJMEcGA1UEBRNANGM0YzM4NGI4OGNhMjRmMzllMjFk YmRlZjYwYTZiMmQ1MDI2MDJjYjQ4MmM4M2ZmMDBmNmM1YTdmM2FlNzc5YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hw80QiYJhf+rckW5vSmNkFPOMXq Yl9IYTV7dK83k+6MzrP4/Yvp9kXDolR+8AzuZjzOVnFgNhiHyeWllsZ4asG8O0gp J7p/eiqH4zsax4qS8QnvHLdhLKe+psQY5L+VjKvqX7ErrsoGmlDdpxARX8PI4HIq bqFhYfkQ+sI6t3AIYdtkYce/mIANY6h+8L+NUF8IK+HchuEx5kahzP3NSwMW6Kni /Q4s+x9PVdoF6KAEChgXCViAvSegXBlJAuEatY1Ufshb3IkjIfFvABSZTimSwDNV kn72+vTejgPH9Ra8SJcRI2eQbdOU6oGP1wHD4OIUQQ/E/LL49MNoH2Hb7QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFF7kQp+1FbKde+h6vryLN/Wz5Y1HMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhkMDMxNGI3LWZkZDYtNGNkNC05YmQ3LTVkYzYzZjYzNDNhOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/8AwDQYJKoZIhvcNAQELBQADggEBAKngl+wKCXbpnIVOh8hW BiXs8qEhPpOHVXpd4Kk5enw60xGZfraqBRY4xB+eUfvCY7phX9WlTn8+mst/l9Wy dQ7Qvad31JyiUjisMbUA0vGkxNYsseLJCWHWEDW+NdWndAHKfNjAGk/T3x+buiyh SHX8dDxMojYIprqMQBgTLyC8OFI7gmAH4JnuHwMu6l9dz1PfmFdxV2MAShKnmy7f NzzyqvNwV0g66PfIA0n412m8zun21fZNAp+TK/JKQWSQ7yi6KaNusD+Qwxnuwrz0 1tbRCeZ78mQeoHRYz4RmgGiuv5V3wVHtJLoJg9WeeX8pRkSf9BnW8kSFszL3Po7g jz8= -----END CERTIFICATE-----Generated at Sat Aug 23 08:07:05 2025 by rpki-client