$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07c6407-4a6d-4c72-8e3f-4f2d148c1b6d.roa File: e07c6407-4a6d-4c72-8e3f-4f2d148c1b6d.roa (raw, json) Hash identifier: pPqT9w7EoDoXbG/QuVqsSHKw61hjhTHwpOv4uw/ik3k= Subject key identifier: 40:B6:8C:70:2E:70:DB:AF:3F:96:15:33:D1:C3:7E:E4:52:6A:7F:BC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 29EF0379C8A704D5544FCC0CAFD99AA5AC6CA9BF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07c6407-4a6d-4c72-8e3f-4f2d148c1b6d.roa Signing time: Fri 15 Aug 2025 00:20:13 +0000 ROA not before: Fri 15 Aug 2025 00:20:13 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab8:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ef:03:79:c8:a7:04:d5:54:4f:cc:0c:af:d9:9a:a5:ac:6c:a9:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 15 00:20:13 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=571e40d518ad51c78e61eb582cb8854e1f11f095d51561a4de14ef6d3281ee58, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5a:13:90:44:a8:fd:44:13:55:2a:c7:a3:94: 6e:91:34:85:95:30:a8:af:a4:1f:c0:26:5f:32:e8: 2a:48:1b:c8:60:ac:cf:7c:d1:f9:85:26:08:ae:37: 2d:2e:cf:12:a7:5a:72:bf:49:a2:3d:74:0d:72:77: 27:0b:43:03:92:77:50:29:a3:83:36:32:a4:27:a1: 76:c3:20:45:0a:93:27:d2:34:44:6f:71:9e:f3:18: 19:05:2c:5e:82:ca:c6:6c:20:4a:e4:5d:85:90:e9: 3d:6e:f6:7f:a8:cf:29:c6:e9:a8:96:e9:d5:85:1a: 10:11:07:c7:ee:9a:0b:3a:73:71:83:f0:4b:70:7f: 1f:0a:5e:28:78:aa:46:ee:39:ab:b5:ad:6b:2a:23: da:98:0b:af:df:ba:d0:33:b9:d7:f6:2e:f3:74:17: f5:7b:5f:13:20:f9:ad:e7:55:b0:38:9c:22:94:69: b5:78:27:ec:09:1f:e9:31:1f:ae:f3:c7:db:70:5a: fd:09:dd:fa:45:82:1f:26:31:55:58:a8:cf:ea:5d: e4:1c:b6:8f:60:2a:6f:83:af:51:82:ab:1b:90:e4: c6:21:07:02:65:5a:17:4c:11:3a:b8:e6:38:85:b2: 5a:2f:38:4c:ac:61:27:57:4d:e4:2f:45:26:43:de: ec:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B6:8C:70:2E:70:DB:AF:3F:96:15:33:D1:C3:7E:E4:52:6A:7F:BC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07c6407-4a6d-4c72-8e3f-4f2d148c1b6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab8:1000::/40 Signature Algorithm: sha256WithRSAEncryption 1a:30:57:40:4f:19:60:90:14:fb:e9:f3:f3:d1:1f:b3:d6:aa: 5d:92:c2:ec:61:4e:a4:07:d1:9f:35:61:c8:89:ae:f2:37:27: 5e:5a:9b:c7:c1:ff:ec:e8:e8:f2:64:51:73:41:8b:ee:03:c6: f0:61:fb:53:9b:52:0a:0a:23:14:d0:74:b3:e2:3b:e1:a4:c0: e2:a0:f8:92:70:5d:25:d7:4d:27:9c:59:a4:2b:d8:99:50:03: 95:cd:6d:70:75:ff:2e:8c:cb:c4:f1:9d:8d:a7:7c:d3:8f:f0: a3:43:3d:51:f4:e0:91:8a:e5:25:8c:89:b8:bb:b1:8f:01:a2: f3:70:4c:68:ae:94:bd:00:2b:59:92:c4:de:dc:6c:3c:8c:9d: 69:ed:75:39:27:57:b0:51:43:aa:85:70:34:29:85:27:e8:c8: b5:7e:93:ca:3d:94:aa:59:bd:70:e5:b2:ec:ca:65:0b:8e:c4: 0a:9d:b7:13:6b:d3:00:bf:35:11:2c:c6:d6:d8:48:0d:e6:4b: c7:2b:15:cf:71:28:a4:bb:80:cc:f5:ff:a1:20:eb:a9:e1:20: 11:f5:5c:68:41:65:71:7c:c5:8b:40:65:22:6b:19:cb:be:4e: fc:31:52:d0:f8:e9:68:17:be:d2:37:11:f7:bb:55:bc:bf:c1: 0f:5e:27:0d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKe8DecinBNVUT8wMr9mapaxsqb8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgxNTAwMjAxM1oX DTI1MDkxOTIzNTk1OVowejFJMEcGA1UEBRNANTcxZTQwZDUxOGFkNTFjNzhlNjFl YjU4MmNiODg1NGUxZjExZjA5NWQ1MTU2MWE0ZGUxNGVmNmQzMjgxZWU1ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1oTkESo/UQTVSrHo5RukTSFlTCo r6QfwCZfMugqSBvIYKzPfNH5hSYIrjctLs8Sp1pyv0miPXQNcncnC0MDkndQKaOD NjKkJ6F2wyBFCpMn0jREb3Ge8xgZBSxegsrGbCBK5F2FkOk9bvZ/qM8pxumolunV hRoQEQfH7poLOnNxg/BLcH8fCl4oeKpG7jmrta1rKiPamAuv37rQM7nX9i7zdBf1 e18TIPmt51WwOJwilGm1eCfsCR/pMR+u88fbcFr9Cd36RYIfJjFVWKjP6l3kHLaP YCpvg69RgqsbkOTGIQcCZVoXTBE6uOY4hbJaLzhMrGEnV03kL0UmQ97sgQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEC2jHAucNuvP5YVM9HDfuRSan+8MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UwN2M2NDA3LTRhNmQtNGM3Mi04ZTNmLTRmMmQxNDhjMWI2ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauBAwDQYJKoZIhvcNAQELBQADggEBABowV0BPGWCQFPvp8/PR H7PWql2SwuxhTqQH0Z81YciJrvI3J15am8fB/+zo6PJkUXNBi+4DxvBh+1ObUgoK IxTQdLPiO+GkwOKg+JJwXSXXTSecWaQr2JlQA5XNbXB1/y6My8TxnY2nfNOP8KND PVH04JGK5SWMibi7sY8BovNwTGiulL0AK1mSxN7cbDyMnWntdTknV7BRQ6qFcDQp hSfoyLV+k8o9lKpZvXDlsuzKZQuOxAqdtxNr0wC/NREsxtbYSA3mS8crFc9xKKS7 gMz1/6Eg66nhIBH1XGhBZXF8xYtAZSJrGcu+TvwxUtD46WgXvtI3Efe7Vby/wQ9e Jw0= -----END CERTIFICATE-----Generated at Sat Aug 23 10:10:11 2025 by rpki-client