$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5fd65b7-7b6d-44c2-b189-8290e9cab2c0.roa File: d5fd65b7-7b6d-44c2-b189-8290e9cab2c0.roa (raw, json) Hash identifier: 0AcP+FtmrWrIS3DTpvNmVxQcFxDmXXR7Yg4xATlQ79w= Subject key identifier: C1:9D:E2:22:93:4A:0E:5A:64:D7:44:31:61:A4:E3:4D:65:B5:9B:97 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3A7D530980E6A7C4EDF531A17CFFE8EC157F02DE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5fd65b7-7b6d-44c2-b189-8290e9cab2c0.roa Signing time: Mon 18 Aug 2025 15:00:36 +0000 ROA not before: Mon 18 Aug 2025 15:00:36 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daf4:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:7d:53:09:80:e6:a7:c4:ed:f5:31:a1:7c:ff:e8:ec:15:7f:02:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 18 15:00:36 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=d8c5ce6ebd3e51cdb01dbbbdc62f9a2da030d78147159a4b1082843e6d1225e9, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ab:86:46:0f:2f:c1:46:d1:f1:45:a5:56:5d: 82:e8:eb:a5:dd:52:40:e9:34:2c:ab:9a:c6:67:96: 22:41:72:06:b3:cd:60:56:c5:b5:ad:64:15:0f:8b: 8e:08:cd:3c:15:bd:25:d2:73:c1:97:0d:45:fe:f0: 25:32:45:44:8b:19:db:47:ed:87:4b:61:07:04:9f: b2:48:de:a0:74:63:34:54:b0:84:01:2d:a7:e0:45: 85:cc:c7:30:65:5c:94:53:1d:3a:18:38:0b:c3:e7: cf:80:ba:50:75:ad:fd:31:fd:13:6f:84:47:a7:ec: 80:da:53:0e:05:3e:a3:5a:d3:67:84:a7:c3:68:98: 21:c5:2f:5d:da:14:20:af:a4:f4:6e:f4:27:6f:6f: 31:ef:7e:c8:3d:39:c4:e1:05:84:5b:f2:0d:02:aa: e6:17:92:e2:46:20:dc:bc:e4:da:60:bc:a1:09:a5: 37:22:ef:a8:1d:75:33:f5:ed:75:90:28:f7:9e:2a: c6:07:b1:ca:8b:ad:b5:9d:d3:3b:bb:26:ae:ca:34: 1c:26:63:dd:5b:6c:cd:2c:8a:34:88:ec:e5:44:dd: c8:03:20:9a:42:5e:49:e7:63:c9:3a:c4:23:a9:bc: 41:6e:a5:97:1e:91:cd:bc:dd:c7:a9:76:78:d7:cc: 2a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9D:E2:22:93:4A:0E:5A:64:D7:44:31:61:A4:E3:4D:65:B5:9B:97 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5fd65b7-7b6d-44c2-b189-8290e9cab2c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:7000::/40 Signature Algorithm: sha256WithRSAEncryption 31:08:61:12:ee:52:e5:5f:b9:16:9e:6b:f2:1e:4c:f2:ad:1c: 6a:01:ff:65:db:8f:69:0f:82:1d:b3:c6:f3:16:d7:33:9e:d9: 69:bb:35:79:f1:3e:72:00:23:8e:20:9d:98:9d:3a:58:81:f7: d9:12:34:37:db:1e:22:cb:75:dc:2e:13:ee:22:e2:0a:2e:fc: 3b:44:3e:b2:4c:b2:e0:70:27:c2:37:c6:1c:6e:60:09:4d:11: 87:07:cf:a5:6f:39:6d:11:24:d1:1b:75:ee:05:98:db:61:7e: 7b:3f:54:0f:f8:69:67:41:a7:1c:91:bf:40:82:b2:84:f0:85: f7:85:2c:f2:a0:d9:26:47:a4:c9:51:60:d5:d2:ca:29:8c:b2: 40:15:c8:ca:ca:fa:a2:00:b3:a9:f9:d3:0b:f6:c0:83:5a:f0: 8e:d2:c2:7f:5d:de:ff:d2:ce:37:6e:5a:8f:22:f4:d0:e4:77: 94:7d:b3:49:5b:74:fc:c5:bc:cd:7e:96:03:46:cd:10:20:3b: 5e:05:37:ca:15:a6:0b:ad:40:00:50:33:bd:e7:2b:74:03:fe: 6f:a6:1e:8c:61:56:b9:59:d6:12:68:3c:95:99:aa:ff:7f:57: 6f:8a:31:6f:55:84:42:7a:65:72:1e:d4:a6:d9:ac:1b:7f:e0: dc:f2:2d:cf -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUOn1TCYDmp8Tt9TGhfP/o7BV/At4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgxODE1MDAzNloX DTI1MDkyMjIzNTk1OVowejFJMEcGA1UEBRNAZDhjNWNlNmViZDNlNTFjZGIwMWRi YmJkYzYyZjlhMmRhMDMwZDc4MTQ3MTU5YTRiMTA4Mjg0M2U2ZDEyMjVlOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqauGRg8vwUbR8UWlVl2C6Oul3VJA 6TQsq5rGZ5YiQXIGs81gVsW1rWQVD4uOCM08Fb0l0nPBlw1F/vAlMkVEixnbR+2H S2EHBJ+ySN6gdGM0VLCEAS2n4EWFzMcwZVyUUx06GDgLw+fPgLpQda39Mf0Tb4RH p+yA2lMOBT6jWtNnhKfDaJghxS9d2hQgr6T0bvQnb28x737IPTnE4QWEW/INAqrm F5LiRiDcvOTaYLyhCaU3Iu+oHXUz9e11kCj3nirGB7HKi621ndM7uyauyjQcJmPd W2zNLIo0iOzlRN3IAyCaQl5J52PJOsQjqbxBbqWXHpHNvN3HqXZ418wqYQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMGd4iKTSg5aZNdEMWGk401ltZuXMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q1ZmQ2NWI3LTdiNmQtNDRjMi1iMTg5LTgyOTBlOWNhYjJjMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9HAwDQYJKoZIhvcNAQELBQADggEBADEIYRLuUuVfuRaea/Ie TPKtHGoB/2Xbj2kPgh2zxvMW1zOe2Wm7NXnxPnIAI44gnZidOliB99kSNDfbHiLL ddwuE+4i4gou/DtEPrJMsuBwJ8I3xhxuYAlNEYcHz6VvOW0RJNEbde4FmNthfns/ VA/4aWdBpxyRv0CCsoTwhfeFLPKg2SZHpMlRYNXSyimMskAVyMrK+qIAs6n50wv2 wINa8I7Swn9d3v/SzjduWo8i9NDkd5R9s0lbdPzFvM1+lgNGzRAgO14FN8oVpgut QABQM73nK3QD/m+mHoxhVrlZ1hJoPJWZqv9/V2+KMW9VhEJ6ZXIe1KbZrBt/4Nzy Lc8= -----END CERTIFICATE-----Generated at Sat Aug 23 10:13:11 2025 by rpki-client