$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa File: ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa (raw, json) Hash identifier: U3fQAj+BLi7gHKDNsb+LtAF0eToL+n4eKmkru31i0W4= Subject key identifier: 41:8E:8D:81:43:9E:91:19:F4:3E:3B:AC:5A:0C:E1:D8:BD:27:FD:E4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7653B8EFF9ED959D9772B86487E7E408A5FFAA9C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa Signing time: Wed 20 Aug 2025 00:01:13 +0000 ROA not before: Wed 20 Aug 2025 00:01:13 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:f000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:53:b8:ef:f9:ed:95:9d:97:72:b8:64:87:e7:e4:08:a5:ff:aa:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 20 00:01:13 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=5cacf9b226726c2c4783f961132b3c4291704c34f836d8e92938379d02b01a4b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:db:da:eb:50:f7:85:85:90:9f:82:9c:82:af: 5a:a9:29:e8:af:10:7f:a2:c8:fc:d5:b8:4d:e0:d3: 3a:c1:50:f7:e3:a1:49:02:04:ff:a2:07:75:08:11: ac:53:a7:1b:c1:05:35:35:1a:74:f9:0b:fa:14:59: da:4d:85:55:c0:e6:13:90:7d:68:7a:ee:05:ec:37: b7:75:0a:4c:ef:c5:29:54:72:70:25:aa:55:1b:ed: 14:f6:7a:03:f1:a3:fd:c9:f2:1a:48:d5:7b:fe:53: cf:38:f7:e4:d5:4d:a3:f6:ba:4b:d1:f3:e0:e2:c2: 81:c2:99:cb:85:8d:97:66:c9:6d:4a:f2:77:65:81: 7b:58:ff:83:8c:f1:5b:ac:7b:c1:ab:2b:c5:96:5a: 05:ed:d3:1a:c8:5d:2e:09:75:be:e4:43:4e:39:21: 61:e6:68:7e:70:6b:20:df:33:24:69:a4:c5:70:26: 43:30:63:4b:63:64:3e:52:da:e8:95:93:b9:9e:ce: de:51:82:ca:e9:e4:db:b5:3f:ee:a0:74:37:2f:0e: 74:90:4f:3b:be:fe:54:33:db:1d:a2:05:b7:09:0d: 02:e7:8e:a4:8e:6c:dd:17:41:53:68:4d:3d:ca:8b: 99:af:88:39:ce:80:92:b0:fe:a2:64:6c:81:70:30: 72:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:8E:8D:81:43:9E:91:19:F4:3E:3B:AC:5A:0C:E1:D8:BD:27:FD:E4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:f000::/48 Signature Algorithm: sha256WithRSAEncryption 8b:21:96:88:58:19:96:36:71:aa:78:02:e1:6b:dc:eb:6e:97: 75:0c:06:41:a0:70:07:54:32:6b:c8:3e:27:7f:30:9f:6e:81: 45:bb:c1:98:e4:94:ac:ff:61:d4:50:93:32:99:56:87:30:12: 2b:41:5d:38:7d:b7:9d:52:2e:00:7c:08:66:2b:d1:f9:b2:4e: 9a:bd:a0:58:cf:ba:d0:68:5e:3e:c1:6c:b3:9c:ca:f7:1a:7e: 84:63:52:bb:2d:ff:16:6e:ee:6d:1a:43:c9:70:05:17:93:f7: 03:5a:74:f5:a3:88:f0:88:73:a3:d9:f5:9a:d1:2b:40:27:16: 39:80:78:3b:64:3b:74:89:73:8f:ed:0c:31:9e:fc:f9:1a:9a: 61:d1:fa:6b:7f:d4:38:f7:23:eb:68:36:ab:67:77:8f:7e:71: 0b:dd:7d:ea:84:cc:ee:9b:07:e1:c9:ef:a6:5b:29:24:a9:37: 0b:a8:04:c7:73:92:e4:bc:5f:52:da:10:4f:02:47:d6:68:15: 64:01:ed:cc:c0:f1:dc:c6:aa:4d:a4:3e:23:a5:26:b8:e9:13: 89:14:c0:84:fa:b0:a6:3d:66:4a:b1:8d:75:f3:8d:ee:05:98: a8:70:2c:2d:66:d5:e2:2a:00:1a:c1:b4:e0:22:5a:6b:75:56: 30:47:71:34 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdlO47/ntlZ2Xcrhkh+fkCKX/qpwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMDAwMDExM1oX DTI1MDkyNDIzNTk1OVowejFJMEcGA1UEBRNANWNhY2Y5YjIyNjcyNmMyYzQ3ODNm OTYxMTMyYjNjNDI5MTcwNGMzNGY4MzZkOGU5MjkzODM3OWQwMmIwMWE0YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNva61D3hYWQn4Kcgq9aqSnorxB/ osj81bhN4NM6wVD346FJAgT/ogd1CBGsU6cbwQU1NRp0+Qv6FFnaTYVVwOYTkH1o eu4F7De3dQpM78UpVHJwJapVG+0U9noD8aP9yfIaSNV7/lPPOPfk1U2j9rpL0fPg 4sKBwpnLhY2XZsltSvJ3ZYF7WP+DjPFbrHvBqyvFlloF7dMayF0uCXW+5ENOOSFh 5mh+cGsg3zMkaaTFcCZDMGNLY2Q+UtrolZO5ns7eUYLK6eTbtT/uoHQ3Lw50kE87 vv5UM9sdogW3CQ0C546kjmzdF0FTaE09youZr4g5zoCSsP6iZGyBcDByTQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEGOjYFDnpEZ9D47rFoM4di9J/3kMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2NlNjM0M2Q5LTQ2NDctNDIwMS1iMWE2LThjYTdlZTRjYzZiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9vAAMA0GCSqGSIb3DQEBCwUAA4IBAQCLIZaIWBmWNnGqeALh a9zrbpd1DAZBoHAHVDJryD4nfzCfboFFu8GY5JSs/2HUUJMymVaHMBIrQV04fbed Ui4AfAhmK9H5sk6avaBYz7rQaF4+wWyznMr3Gn6EY1K7Lf8Wbu5tGkPJcAUXk/cD WnT1o4jwiHOj2fWa0StAJxY5gHg7ZDt0iXOP7Qwxnvz5Gpph0fprf9Q49yPraDar Z3ePfnEL3X3qhMzumwfhye+mWykkqTcLqATHc5LkvF9S2hBPAkfWaBVkAe3MwPHc xqpNpD4jpSa46ROJFMCE+rCmPWZKsY11843uBZiocCwtZtXiKgAawbTgIlprdVYw R3E0 -----END CERTIFICATE-----Generated at Sat Aug 23 06:39:08 2025 by rpki-client