$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1ee0ca6-4099-4f84-8e05-ff02d67a580a.roa File: e1ee0ca6-4099-4f84-8e05-ff02d67a580a.roa (raw, json) Hash identifier: kD0NrmJnvLM/yl5o2NI/HRWHx/GjyFpJTux8I7b1FS0= Subject key identifier: 19:81:6D:3A:E0:EB:14:19:E8:5C:AE:55:43:6B:17:7A:CB:7E:B5:49 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5B02D76D9C4B71C2C77DB576A3917D7CCFB97B99 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1ee0ca6-4099-4f84-8e05-ff02d67a580a.roa Signing time: Sat 23 Aug 2025 00:31:03 +0000 ROA not before: Sat 23 Aug 2025 00:31:03 +0000 ROA not after: Sat 27 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:2800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:02:d7:6d:9c:4b:71:c2:c7:7d:b5:76:a3:91:7d:7c:cf:b9:7b:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 23 00:31:03 2025 GMT Not After : Sep 27 23:59:59 2025 GMT Subject: serialNumber=ae756524bc3ac008bd92e9e45f02f13ea359c6bb574983c67765fc62ef5ed9b7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2b:28:2f:c6:ad:15:70:84:02:f1:51:16:51: be:9c:81:8f:dc:d7:c8:8d:9e:23:fd:d0:c8:9a:10: 73:9b:71:49:af:c9:14:dc:ee:6e:37:c6:62:94:a0: 75:13:12:c0:1a:9f:60:b4:1f:5d:3d:f0:ed:2b:fd: 68:a6:5e:31:45:65:3d:fc:24:65:ba:0c:c7:ee:6e: ff:84:85:ce:4c:1b:98:43:bd:59:4b:29:9c:6f:64: dd:b7:c8:06:06:e7:0b:57:fc:8c:09:d1:03:14:89: 12:6c:86:d8:a4:a1:b4:8e:7e:31:94:a5:28:3c:b8: fa:84:0a:65:c1:8b:d4:78:63:76:7c:e8:4f:9a:ae: 74:28:6d:c9:78:95:9f:57:c2:9d:f4:4b:89:0d:ae: a0:75:6d:ad:f7:db:22:52:21:c0:a7:1a:10:d2:7f: 0b:16:2c:85:fa:bd:48:82:d9:c3:00:a2:4f:45:a8: d8:05:a4:1a:6e:93:bb:1c:a8:c2:2c:71:7e:62:41: 8d:8e:24:5b:17:e6:d3:e1:2b:0c:99:38:8f:2a:a4: 73:d0:40:97:34:e3:c5:17:b6:f2:aa:7c:14:13:5d: dc:c1:d0:04:83:2f:b1:43:ae:57:4b:ed:a8:fd:c9: 10:d1:a6:58:31:2b:12:02:12:06:be:6b:17:dd:9c: 4e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:81:6D:3A:E0:EB:14:19:E8:5C:AE:55:43:6B:17:7A:CB:7E:B5:49 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1ee0ca6-4099-4f84-8e05-ff02d67a580a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:2800::/40 Signature Algorithm: sha256WithRSAEncryption af:43:79:4c:56:96:f2:d3:a0:36:b4:95:e1:51:cc:c5:29:b1: f3:55:57:31:d7:32:f4:1c:cc:91:0c:f8:29:b8:38:8f:35:97: cc:65:39:54:57:ac:4c:f9:f6:56:b1:20:ee:ec:ba:12:a1:c3: 8f:4d:ce:e9:e3:ea:b0:9f:08:fc:9a:72:56:03:fc:a3:34:6f: d7:15:5f:5f:a0:5c:4a:0f:1c:23:35:e9:8f:a4:87:85:27:16: 09:97:32:7e:d7:a3:c0:73:47:5e:8b:ba:31:6a:ac:21:74:3c: 2d:68:59:75:4c:e6:f6:6c:19:a5:38:6b:61:29:bd:1d:25:b1: b9:2c:e1:61:37:99:17:2c:e4:bf:49:4c:bf:94:aa:9f:34:4c: 2b:be:2e:51:0c:98:3a:16:9f:dd:87:c2:8e:ff:8b:49:6b:65: d8:3a:79:cf:e5:66:cc:cf:d9:e3:92:1d:df:a0:09:a7:50:4e: b7:11:ee:34:21:61:d0:9f:b2:e6:da:7b:ff:b3:67:b5:f8:0b: 0d:7d:43:be:57:cc:04:d7:f3:c7:e2:6f:3c:e4:06:ed:2f:d4: a6:1e:1a:ff:4e:17:ba:54:88:7f:41:93:c3:f4:38:db:85:d3: 13:34:fa:f7:90:ac:f6:9b:82:f7:ca:02:f5:ed:45:9f:2c:9b: 39:e9:ee:6d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWwLXbZxLccLHfbV2o5F9fM+5e5kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMzAwMzEwM1oX DTI1MDkyNzIzNTk1OVowejFJMEcGA1UEBRNAYWU3NTY1MjRiYzNhYzAwOGJkOTJl OWU0NWYwMmYxM2VhMzU5YzZiYjU3NDk4M2M2Nzc2NWZjNjJlZjVlZDliNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSsoL8atFXCEAvFRFlG+nIGP3NfI jZ4j/dDImhBzm3FJr8kU3O5uN8ZilKB1ExLAGp9gtB9dPfDtK/1opl4xRWU9/CRl ugzH7m7/hIXOTBuYQ71ZSymcb2Tdt8gGBucLV/yMCdEDFIkSbIbYpKG0jn4xlKUo PLj6hAplwYvUeGN2fOhPmq50KG3JeJWfV8Kd9EuJDa6gdW2t99siUiHApxoQ0n8L FiyF+r1IgtnDAKJPRajYBaQabpO7HKjCLHF+YkGNjiRbF+bT4SsMmTiPKqRz0ECX NOPFF7byqnwUE13cwdAEgy+xQ65XS+2o/ckQ0aZYMSsSAhIGvmsX3ZxOFQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBmBbTrg6xQZ6FyuVUNrF3rLfrVJMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UxZWUwY2E2LTQwOTktNGY4NC04ZTA1LWZmMDJkNjdhNTgwYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8igwDQYJKoZIhvcNAQELBQADggEBAK9DeUxWlvLToDa0leFR zMUpsfNVVzHXMvQczJEM+Cm4OI81l8xlOVRXrEz59laxIO7suhKhw49Nzunj6rCf CPyaclYD/KM0b9cVX1+gXEoPHCM16Y+kh4UnFgmXMn7Xo8BzR16LujFqrCF0PC1o WXVM5vZsGaU4a2EpvR0lsbks4WE3mRcs5L9JTL+Uqp80TCu+LlEMmDoWn92Hwo7/ i0lrZdg6ec/lZszP2eOSHd+gCadQTrcR7jQhYdCfsubae/+zZ7X4Cw19Q75XzATX 88fibzzkBu0v1KYeGv9OF7pUiH9Bk8P0ONuF0xM0+veQrPabgvfKAvXtRZ8smznp 7m0= -----END CERTIFICATE-----Generated at Sat Aug 23 13:29:52 2025 by rpki-client