$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/93e5c0ca-7001-44d8-98d5-8e75c8a10793.roa File: 93e5c0ca-7001-44d8-98d5-8e75c8a10793.roa (raw, json) Hash identifier: joZhFbsmC3XC+g+BqeUGr1JVvZyQECygkE3C2zaBEPc= Subject key identifier: DA:77:30:E8:52:D6:6D:DF:09:0C:F8:19:6E:99:3E:5F:76:A5:F0:3B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 44444ABE69C2A3C16F408A94C9EB80655BC8A3B9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/93e5c0ca-7001-44d8-98d5-8e75c8a10793.roa Signing time: Mon 18 Aug 2025 15:01:30 +0000 ROA not before: Mon 18 Aug 2025 15:01:30 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daf4:c800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:44:4a:be:69:c2:a3:c1:6f:40:8a:94:c9:eb:80:65:5b:c8:a3:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 18 15:01:30 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=4ddf2742c713ee82767d6bbb64028b043c049a184a09754ab42895a9e38c3458, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c7:c1:36:2c:17:9e:f0:58:af:fe:8a:8a:a6: d4:79:61:89:b2:ac:c1:5b:f1:c4:0a:e1:76:7e:b3: 61:f2:2c:d3:23:56:58:27:aa:ab:11:04:20:67:22: 23:3e:c4:88:be:19:f0:55:88:d0:c8:c6:ad:4e:f8: e5:dd:49:93:e4:76:12:5d:1a:98:82:ce:2f:1d:70: e5:a4:0e:28:73:82:24:8a:fd:f5:98:4c:19:f8:76: e9:51:52:fc:45:de:b3:55:ff:2b:7a:c2:ab:3c:05: 62:ca:28:14:c9:af:e3:b1:df:33:4a:fa:9a:06:eb: 27:85:2a:97:c9:a8:16:a1:1f:23:77:0a:d2:0c:08: de:2a:5e:2f:6b:6e:c7:b2:9c:af:0a:84:bc:9f:8c: 75:01:e0:31:38:9a:8c:f9:08:43:36:29:36:9d:fa: 90:3f:de:9c:f7:e3:cb:e6:aa:8b:0e:06:df:cc:46: 03:f8:e9:54:4a:ba:f1:ec:53:86:03:9f:14:30:45: 88:ed:4a:08:9e:d7:db:c4:ca:84:2f:07:bd:2f:00: 9c:b8:5a:a7:c9:39:f4:bd:8b:fe:cf:81:e0:64:c2: e2:6d:86:81:01:9b:b2:13:f9:27:d8:62:32:32:1a: fb:a4:53:e3:15:c2:bd:36:05:18:db:ec:6a:3e:15: 01:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:77:30:E8:52:D6:6D:DF:09:0C:F8:19:6E:99:3E:5F:76:A5:F0:3B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/93e5c0ca-7001-44d8-98d5-8e75c8a10793.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:c800::/40 Signature Algorithm: sha256WithRSAEncryption b7:1c:24:69:b3:73:49:5b:d8:18:8c:f6:89:78:80:68:07:8c: 49:79:83:09:fe:8a:72:d6:0b:57:a2:7c:f3:52:29:c8:20:96: ab:23:78:a2:13:ca:f9:34:6e:1a:cf:f9:1a:88:0b:a6:c9:6d: 07:b2:e3:c5:0d:84:94:17:68:9e:4a:91:0b:05:72:26:15:5d: 68:a4:e4:f9:95:7d:70:52:e3:1a:63:f7:86:36:fe:8a:5a:c7: 04:01:c7:7a:5c:61:8b:27:2e:94:05:de:0e:39:be:35:b3:7b: d1:3e:c9:3b:40:3b:28:ed:5a:3d:2c:4c:99:e0:68:16:92:40: e5:0e:72:59:b4:d6:cc:1c:3e:09:d3:e3:d3:91:c5:06:1e:26: 66:7f:df:0e:bf:ee:14:a8:d7:78:61:cc:b2:b5:fb:67:b1:77: 85:5f:7c:2b:99:2c:81:5b:49:7f:66:8d:3c:ec:4d:af:4c:55: c5:20:b7:ac:1a:4c:fa:91:49:b5:87:13:b9:f6:7b:12:f5:d3: ea:a2:7f:3b:6c:07:2d:0a:56:b0:cf:11:86:0e:e6:72:7d:fe: e4:f8:0d:5f:14:b7:cf:3c:69:bb:ca:77:97:08:0d:82:98:c4: 85:7a:f3:61:c8:d4:d5:85:65:23:a2:6d:40:13:4e:6d:13:b9: 30:6c:b7:4e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURERKvmnCo8FvQIqUyeuAZVvIo7kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgxODE1MDEzMFoX DTI1MDkyMjIzNTk1OVowejFJMEcGA1UEBRNANGRkZjI3NDJjNzEzZWU4Mjc2N2Q2 YmJiNjQwMjhiMDQzYzA0OWExODRhMDk3NTRhYjQyODk1YTllMzhjMzQ1ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcfBNiwXnvBYr/6KiqbUeWGJsqzB W/HECuF2frNh8izTI1ZYJ6qrEQQgZyIjPsSIvhnwVYjQyMatTvjl3UmT5HYSXRqY gs4vHXDlpA4oc4Ikiv31mEwZ+HbpUVL8Rd6zVf8resKrPAViyigUya/jsd8zSvqa BusnhSqXyagWoR8jdwrSDAjeKl4va27HspyvCoS8n4x1AeAxOJqM+QhDNik2nfqQ P96c9+PL5qqLDgbfzEYD+OlUSrrx7FOGA58UMEWI7UoIntfbxMqELwe9LwCcuFqn yTn0vYv+z4HgZMLibYaBAZuyE/kn2GIyMhr7pFPjFcK9NgUY2+xqPhUBpwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNp3MOhS1m3fCQz4GW6ZPl92pfA7MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkzZTVjMGNhLTcwMDEtNDRkOC05OGQ1LThlNzVjOGExMDc5My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9MgwDQYJKoZIhvcNAQELBQADggEBALccJGmzc0lb2BiM9ol4 gGgHjEl5gwn+inLWC1eifPNSKcgglqsjeKITyvk0bhrP+RqIC6bJbQey48UNhJQX aJ5KkQsFciYVXWik5PmVfXBS4xpj94Y2/opaxwQBx3pcYYsnLpQF3g45vjWze9E+ yTtAOyjtWj0sTJngaBaSQOUOclm01swcPgnT49ORxQYeJmZ/3w6/7hSo13hhzLK1 +2exd4VffCuZLIFbSX9mjTzsTa9MVcUgt6waTPqRSbWHE7n2exL10+qifztsBy0K VrDPEYYO5nJ9/uT4DV8Ut888abvKd5cIDYKYxIV682HI1NWFZSOibUATTm0TuTBs t04= -----END CERTIFICATE-----Generated at Sat Aug 23 08:07:19 2025 by rpki-client