$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa File: e19d78e4-93af-46a2-b178-56ac1a3905e7.roa (raw, json) Hash identifier: n8sAuMfOHi0e33A6IihNmpn2UbkJnTK9MOyY7ki5g7w= Subject key identifier: E7:BD:F4:12:21:45:31:D2:36:D7:EE:BE:7A:B3:B2:99:16:D0:74:47 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6CF9C974AC2C74DF7D255255B0B02DB6CBA3256C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa Signing time: Fri 22 Aug 2025 00:20:48 +0000 ROA not before: Fri 22 Aug 2025 00:20:48 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f9:c9:74:ac:2c:74:df:7d:25:52:55:b0:b0:2d:b6:cb:a3:25:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 22 00:20:48 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=2b18cb0506f69dd98d71ba471ca828c0dfdb4223811603f8b7d72d519f8be3df, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:f5:5c:1b:a1:7d:b6:f8:0f:7e:ba:b8:67: 62:32:0a:56:39:56:b2:93:ee:42:ce:ca:8c:2d:c4: f9:f5:56:df:d4:64:89:9b:a3:85:00:93:c9:83:95: 19:0f:eb:14:8e:81:05:f9:13:00:6f:82:ee:88:f0: 4f:ea:b7:49:3e:e2:ca:76:50:67:65:8b:a5:49:03: 33:ac:aa:a4:fa:42:55:f5:33:f0:3b:d2:a0:86:11: 79:b8:dd:0f:1e:4d:64:2c:7e:84:74:8c:39:e2:8d: 0d:a4:a4:cf:15:4e:16:0f:63:2c:23:8c:23:43:d6: 02:ed:99:40:30:13:45:44:03:00:e4:5a:f8:15:26: 12:34:e6:54:da:b9:b2:21:c2:f9:1a:b7:c0:87:6e: 32:d3:9a:9c:b2:5d:5c:f6:1e:fe:f9:96:95:9b:49: 34:c7:95:37:66:05:13:cb:bf:08:09:16:a3:2c:12: 94:fc:bf:e0:7d:77:1e:39:36:9a:c0:21:70:fc:5a: ce:d7:61:03:59:b2:97:4d:c9:74:af:4a:f3:23:2a: 66:a9:6a:39:b8:d9:d8:27:15:c7:02:87:36:b8:18: 61:9a:01:e1:7b:98:f6:9f:73:c2:3f:ed:37:87:f9: b3:2b:92:55:cf:cf:9f:cb:bb:8b:af:9c:32:e9:2b: 39:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:BD:F4:12:21:45:31:D2:36:D7:EE:BE:7A:B3:B2:99:16:D0:74:47 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:4080::/48 Signature Algorithm: sha256WithRSAEncryption 39:17:b0:ab:d7:0c:53:58:8a:ff:4d:ea:a9:9c:8a:44:a2:e3: 84:ff:8e:e3:90:80:de:0d:93:36:f8:da:0b:1b:65:22:6d:72: 0e:18:01:a6:a6:fb:78:54:f7:ac:90:af:2f:3a:57:cd:52:d4: cc:56:1f:9f:2b:75:11:d4:bb:d7:9c:f0:27:62:36:d4:73:62: 4f:f7:d9:89:7c:4c:ee:94:42:3d:5a:16:88:19:4a:fd:0f:33: ed:fa:f3:b4:8a:8e:f8:1a:36:d8:76:08:a9:76:a4:6a:60:6b: de:80:b2:a7:2a:39:6f:eb:e4:0f:4c:15:db:a2:98:e1:0c:44: f1:6a:7c:bc:29:75:07:75:8d:8b:d9:f9:a5:37:2b:22:a9:7e: 22:a3:01:75:6a:91:19:fa:fd:2c:23:e6:ff:a2:2b:26:5b:f6: b9:1b:5f:0a:c8:50:8e:25:33:cf:02:2b:f6:e7:20:5b:1e:0e: 40:e4:08:95:76:16:ea:18:47:cd:4f:08:d7:b9:61:80:34:ef: 0d:e6:84:ca:c3:a3:26:51:37:ea:18:0d:30:29:3c:17:98:47: 56:c2:24:44:40:f7:b4:59:6a:e6:43:9c:f1:46:ae:0d:72:b7: 5c:d5:96:6c:b8:92:2d:ce:b1:66:02:0f:71:5b:53:49:2d:c6: fc:fa:00:c0 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUbPnJdKwsdN99JVJVsLAttsujJWwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMjAwMjA0OFoX DTI1MDkyNjIzNTk1OVowejFJMEcGA1UEBRNAMmIxOGNiMDUwNmY2OWRkOThkNzFi YTQ3MWNhODI4YzBkZmRiNDIyMzgxMTYwM2Y4YjdkNzJkNTE5ZjhiZTNkZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRz1XBuhfbb4D366uGdiMgpWOVay k+5CzsqMLcT59Vbf1GSJm6OFAJPJg5UZD+sUjoEF+RMAb4LuiPBP6rdJPuLKdlBn ZYulSQMzrKqk+kJV9TPwO9KghhF5uN0PHk1kLH6EdIw54o0NpKTPFU4WD2MsI4wj Q9YC7ZlAMBNFRAMA5Fr4FSYSNOZU2rmyIcL5GrfAh24y05qcsl1c9h7++ZaVm0k0 x5U3ZgUTy78ICRajLBKU/L/gfXceOTaawCFw/FrO12EDWbKXTcl0r0rzIypmqWo5 uNnYJxXHAoc2uBhhmgHhe5j2n3PCP+03h/mzK5JVz8+fy7uLr5wy6Ss5DwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFOe99BIhRTHSNtfuvnqzspkW0HRHMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UxOWQ3OGU0LTkzYWYtNDZhMi1iMTc4LTU2YWMxYTM5MDVlNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAECAMA0GCSqGSIb3DQEBCwUAA4IBAQA5F7Cr1wxTWIr/Teqp nIpEouOE/47jkIDeDZM2+NoLG2UibXIOGAGmpvt4VPeskK8vOlfNUtTMVh+fK3UR 1LvXnPAnYjbUc2JP99mJfEzulEI9WhaIGUr9DzPt+vO0io74GjbYdgipdqRqYGve gLKnKjlv6+QPTBXbopjhDETxany8KXUHdY2L2fmlNysiqX4iowF1apEZ+v0sI+b/ oismW/a5G18KyFCOJTPPAiv25yBbHg5A5AiVdhbqGEfNTwjXuWGANO8N5oTKw6Mm UTfqGA0wKTwXmEdWwiREQPe0WWrmQ5zxRq4Ncrdc1ZZsuJItzrFmAg9xW1NJLcb8 +gDA -----END CERTIFICATE-----Generated at Sat Aug 23 06:48:05 2025 by rpki-client