$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5b22d77-3182-4224-8e47-32ca7c3d3373.roa File: e5b22d77-3182-4224-8e47-32ca7c3d3373.roa (raw, json) Hash identifier: fao57CSjiDhp5c/EqUlqg8C4o5NkuNHkQ1AepQ7JGak= Subject key identifier: 24:06:0C:7F:0D:D7:4A:F1:CD:DD:EA:73:DB:49:07:61:F8:BB:67:E6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 05B644F338F78DC8110EC76C861C41FBE96B75 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5b22d77-3182-4224-8e47-32ca7c3d3373.roa Signing time: Mon 09 Jun 2025 15:21:42 +0000 ROA not before: Mon 09 Jun 2025 15:21:42 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:f0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:b6:44:f3:38:f7:8d:c8:11:0e:c7:6c:86:1c:41:fb:e9:6b:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 9 15:21:42 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=657d6449b5277b1166c6da39a89e0fedb909aec54196eb230ffb55bca6662c92, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cf:7f:1e:72:21:86:33:1c:e5:2e:47:86:d2: b5:89:64:85:38:3d:d2:05:ec:d7:ca:32:6b:9e:e2: a0:d2:43:01:f8:63:be:93:b8:4c:68:92:64:7b:ce: 30:8c:7d:78:8e:dc:37:f0:e8:65:cf:4b:34:ef:7b: 9d:96:93:87:45:5a:19:04:c8:02:c5:1d:f0:4f:ba: 03:17:ff:d8:0b:de:c4:8a:85:14:1e:c3:23:b0:75: 61:57:f3:29:cf:66:50:45:ce:0a:63:9a:ee:65:61: 79:48:df:74:45:28:fa:27:8a:a2:b3:08:e3:5d:9b: 64:c6:24:3c:f2:98:62:0c:53:34:75:03:b1:08:9a: 87:f2:66:fb:fd:0f:f8:c2:63:1a:e7:2c:1e:ff:a2: 52:24:cb:cb:59:49:31:97:fd:d1:41:0e:71:18:8c: 8c:a8:61:4c:26:0a:e8:b8:a2:1b:23:27:32:6a:bb: d7:47:f6:17:2a:6e:7f:39:b2:0e:6f:54:b0:26:c6: eb:a0:b8:ed:51:dd:ac:b5:f4:ed:d1:f9:c8:2b:28: 79:c1:3e:23:fe:e3:c0:7a:6d:c1:99:3c:01:53:8c: 3e:70:8f:df:0b:b5:01:4c:6a:e1:86:30:52:49:9c: 54:53:21:e2:8b:1a:f3:e9:ea:e9:6c:a5:36:f0:f3: 0f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:06:0C:7F:0D:D7:4A:F1:CD:DD:EA:73:DB:49:07:61:F8:BB:67:E6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5b22d77-3182-4224-8e47-32ca7c3d3373.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:f0c0::/48 Signature Algorithm: sha256WithRSAEncryption 71:9e:a0:ed:aa:b1:e2:47:2f:ff:c9:b2:eb:4f:85:50:a3:2a: ea:7f:c6:9b:fe:97:6b:82:bd:3f:d3:e4:17:9c:e3:65:11:2d: 2f:22:44:d1:ba:f4:ed:1a:31:f0:a9:17:da:82:e5:24:cf:b7: 1e:39:b6:e9:0d:7e:3f:a7:16:19:9f:af:4a:fb:75:06:18:4b: be:0a:d5:6d:c2:bb:e4:94:2d:8e:dc:16:4b:bd:68:f6:c7:33: 52:0e:4a:d9:cf:d3:54:9a:f4:f3:d3:a5:8d:f0:e6:c3:55:a7: 93:da:88:ea:e3:e2:07:46:31:6d:65:1d:4a:f9:ec:6d:b0:a0: 64:c9:02:b7:8a:f6:39:c5:bb:56:0c:11:9d:88:12:cb:c9:00: df:32:7d:d8:09:89:01:4d:d5:94:d9:23:38:31:67:9a:19:be: 00:79:ea:33:dc:57:17:bd:d1:1b:76:b1:20:23:61:89:59:cf: 92:10:9d:c3:bf:19:8a:65:0a:0a:bc:83:80:04:99:ca:5c:88: ec:16:69:08:7d:be:6a:b2:89:cc:25:5e:28:93:04:8a:25:47: 5e:69:69:72:4b:8c:a3:9b:73:4d:96:bf:c2:c0:c4:97:da:c8: d1:54:f8:f4:31:41:b2:26:4d:a0:96:03:e5:a1:18:d7:69:e9: 32:ab:c9:db -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgITBbZE8zj3jcgRDsdshhxB++lrdTANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTFGNjM1RjAwMDAxMTAvBgNVBAUTKDQwNzY4MjU1MjRE MkM2NkQyRTEwNDM2RkU2NUU5M0U4QzFCRDRBMzcwHhcNMjUwNjA5MTUyMTQyWhcN MjUwNzE0MjM1OTU5WjB6MUkwRwYDVQQFE0A2NTdkNjQ0OWI1Mjc3YjExNjZjNmRh MzlhODllMGZlZGI5MDlhZWM1NDE5NmViMjMwZmZiNTViY2E2NjYyYzkyMS0wKwYD VQQDEyRjMGJmMGZlOC03MTdjLTRmNzItOWI0NS1jOWM1MTkxMzJhODEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaz38eciGGMxzlLkeG0rWJZIU4PdIF 7NfKMmue4qDSQwH4Y76TuExokmR7zjCMfXiO3Dfw6GXPSzTve52Wk4dFWhkEyALF HfBPugMX/9gL3sSKhRQewyOwdWFX8ynPZlBFzgpjmu5lYXlI33RFKPoniqKzCONd m2TGJDzymGIMUzR1A7EImofyZvv9D/jCYxrnLB7/olIky8tZSTGX/dFBDnEYjIyo YUwmCui4ohsjJzJqu9dH9hcqbn85sg5vVLAmxuuguO1R3ay19O3R+cgrKHnBPiP+ 48B6bcGZPAFTjD5wj98LtQFMauGGMFJJnFRTIeKLGvPp6ulspTbw8w85AgMBAAGj ggJLMIICRzAdBgNVHQ4EFgQUJAYMfw3XSvHN3epz20kHYfi7Z+YwHwYDVR0jBBgw FoAUQHaCVSTSxm0uEENv5l6T6MG9SjcwDgYDVR0PAQH/BAQDAgeAMH4GCCsGAQUF BwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBv c2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL1FIYUNWU1RT eG0wdUVFTnY1bDZUNk1HOVNqYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEv ZTViMjJkNzctMzE4Mi00MjI0LThlNDctMzJjYTdjM2QzMzczLnJvYTCBlQYDVR0f BIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFt YXpvbmF3cy5jb20vdm9sdW1lLzA4YzJmMjY0LTIzZjktNDlmYi05ZDQzLWY4YjUw YmVjOTI2MS83YmExNzg2My1hNjEzLTQxOTctOWVkNS1iZWRhNmE4OTg2OWYuY3Js MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkBtry8MAwDQYJKoZIhvcNAQELBQADggEBAHGeoO2qseJHL//JsutP hVCjKup/xpv+l2uCvT/T5Bec42URLS8iRNG69O0aMfCpF9qC5STPtx45tukNfj+n Fhmfr0r7dQYYS74K1W3Cu+SULY7cFku9aPbHM1IOStnP01Sa9PPTpY3w5sNVp5Pa iOrj4gdGMW1lHUr57G2woGTJAreK9jnFu1YMEZ2IEsvJAN8yfdgJiQFN1ZTZIzgx Z5oZvgB56jPcVxe90Rt2sSAjYYlZz5IQncO/GYplCgq8g4AEmcpciOwWaQh9vmqy icwlXiiTBIolR15paXJLjKObc02Wv8LAxJfayNFU+PQxQbImTaCWA+WhGNdp6TKr yds= -----END CERTIFICATE-----Generated at Sun Jun 29 07:31:26 2025 by rpki-client