$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0276322-5c62-450c-9379-22ba77895050.roa File: c0276322-5c62-450c-9379-22ba77895050.roa (raw, json) Hash identifier: U6x2Ocft221kUkYHf1yhWlJ2VDpXv5ieSj6/NIfJ8K4= Subject key identifier: 95:21:52:5E:81:F0:D1:EE:64:59:73:C8:E0:D4:CA:35:1E:22:38:50 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1B712DD1488A574FAF0D6ECB1E412D981F1995B9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0276322-5c62-450c-9379-22ba77895050.roa Signing time: Fri 01 Aug 2025 00:30:24 +0000 ROA not before: Fri 01 Aug 2025 00:30:24 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1f::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:71:2d:d1:48:8a:57:4f:af:0d:6e:cb:1e:41:2d:98:1f:19:95:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 1 00:30:24 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=3933d9c9b2b279aecf7de8c9714e7f6ccccb5f2b11a700528c2e4167c53081c1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:29:c2:69:24:81:04:bf:bf:e6:4d:d8:82:bb: fc:c2:cd:db:bc:11:26:cb:80:24:21:f4:0a:48:3c: f1:9f:d3:f3:ee:07:18:94:25:28:49:77:d6:79:13: 46:b6:82:a4:f2:bf:e1:94:f6:92:3c:89:5c:40:9f: f3:de:2b:95:cf:86:39:89:66:0d:07:5c:30:03:dc: 2d:fd:c9:eb:6b:b2:04:df:1c:94:bc:e5:0c:8b:68: 8d:35:93:fa:65:dd:7f:4d:34:f7:4c:57:b4:40:24: e3:73:4f:af:8b:f7:b7:fc:f2:98:b9:57:f3:c8:8d: a5:0b:d9:aa:04:c2:79:5d:9a:d5:01:16:3e:6e:3e: 61:c3:78:73:36:3c:d3:38:18:44:9f:89:7e:7a:be: c7:70:a5:d9:d8:28:aa:1c:a7:41:8f:e2:b7:c7:7f: 7a:1c:0d:ab:47:df:78:45:23:81:6f:3b:72:e1:a3: 88:e8:98:7d:a2:c7:39:4b:d8:f8:f6:3a:ff:8e:e9: 3d:49:f3:b3:7f:a1:c2:5f:7e:b0:37:6f:ac:c9:37: 9d:6d:d4:1e:d2:d5:36:74:1c:d2:96:97:6d:aa:c2: 42:dd:46:19:24:1f:d2:bc:e6:e0:0d:9d:48:da:cc: e8:d9:da:a0:2f:94:91:2b:a3:b5:c7:1a:87:21:06: a3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:21:52:5E:81:F0:D1:EE:64:59:73:C8:E0:D4:CA:35:1E:22:38:50 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0276322-5c62-450c-9379-22ba77895050.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1f::/38 Signature Algorithm: sha256WithRSAEncryption 8c:12:08:13:9e:4b:53:28:f7:23:a9:b6:86:c4:d3:af:f5:36: a1:d1:7b:47:10:24:cb:71:8c:44:39:11:29:fb:71:4d:a9:73: 41:be:2d:2b:36:6c:7e:62:30:0a:c3:0d:49:e1:b7:71:5f:e9: 6e:0c:1b:00:0e:83:16:78:c8:4a:5a:56:8b:17:16:f8:87:a0: 6b:58:20:b1:85:12:c3:28:49:5e:7d:a9:0d:49:2e:3f:89:50: 7b:51:83:ac:9a:dd:f4:20:1b:eb:ac:44:43:33:ce:70:6c:dc: ba:79:99:dc:0d:31:c3:74:8f:04:01:97:4e:b8:52:fe:14:d8: cf:a6:e5:0c:a2:76:76:b7:29:0b:a6:bf:41:ba:cf:23:31:16: 78:67:8b:ba:db:13:15:8b:57:f8:70:36:0d:9a:4c:ba:16:3f: 93:b1:ea:1e:9c:1d:a3:5a:4d:26:13:45:88:e6:b9:ec:60:be: 2e:33:aa:1f:00:76:a8:25:5e:a9:f0:fd:26:09:a9:49:e3:27: d1:a6:b2:8d:ae:49:8d:3d:d6:fb:80:cb:09:52:be:e6:94:3b: b5:26:50:bb:3b:49:ee:a4:af:3a:be:76:09:3c:65:b3:31:5e: 5a:87:52:77:69:06:04:cd:7a:80:01:ca:e8:4f:e0:8e:ca:4e: f4:91:36:d9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUG3Et0UiKV0+vDW7LHkEtmB8ZlbkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgwMTAwMzAyNFoX DTI1MDkwNTIzNTk1OVowejFJMEcGA1UEBRNAMzkzM2Q5YzliMmIyNzlhZWNmN2Rl OGM5NzE0ZTdmNmNjY2NiNWYyYjExYTcwMDUyOGMyZTQxNjdjNTMwODFjMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4SnCaSSBBL+/5k3Ygrv8ws3bvBEm y4AkIfQKSDzxn9Pz7gcYlCUoSXfWeRNGtoKk8r/hlPaSPIlcQJ/z3iuVz4Y5iWYN B1wwA9wt/cnra7IE3xyUvOUMi2iNNZP6Zd1/TTT3TFe0QCTjc0+vi/e3/PKYuVfz yI2lC9mqBMJ5XZrVARY+bj5hw3hzNjzTOBhEn4l+er7HcKXZ2CiqHKdBj+K3x396 HA2rR994RSOBbzty4aOI6Jh9osc5S9j49jr/juk9SfOzf6HCX36wN2+syTedbdQe 0tU2dBzSlpdtqsJC3UYZJB/SvObgDZ1I2szo2dqgL5SRK6O1xxqHIQajrQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJUhUl6B8NHuZFlzyODUyjUeIjhQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2MwMjc2MzIyLTVjNjItNDUwYy05Mzc5LTIyYmE3Nzg5NTA1MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaHwAwDQYJKoZIhvcNAQELBQADggEBAIwSCBOeS1Mo9yOptobE 06/1NqHRe0cQJMtxjEQ5ESn7cU2pc0G+LSs2bH5iMArDDUnht3Ff6W4MGwAOgxZ4 yEpaVosXFviHoGtYILGFEsMoSV59qQ1JLj+JUHtRg6ya3fQgG+usREMzznBs3Lp5 mdwNMcN0jwQBl064Uv4U2M+m5Qyidna3KQumv0G6zyMxFnhni7rbExWLV/hwNg2a TLoWP5Ox6h6cHaNaTSYTRYjmuexgvi4zqh8AdqglXqnw/SYJqUnjJ9Gmso2uSY09 1vuAywlSvuaUO7UmULs7Se6krzq+dgk8ZbMxXlqHUndpBgTNeoAByuhP4I7KTvSR Ntk= -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:20 2025 by rpki-client