$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f3ba3251-a502-4cf8-9bc5-449b1376be0f.roa File: f3ba3251-a502-4cf8-9bc5-449b1376be0f.roa (raw, json) Hash identifier: cQ5JU05X63X+0Cof8jBMjMbvHsNin2hDsNd/L9ZD75s= Subject key identifier: 1F:DC:89:11:3F:FB:EE:AB:BA:BB:49:FC:A2:E3:34:8B:89:C7:F8:FE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 466D876620B99950486A321D0F662680BE81B303 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f3ba3251-a502-4cf8-9bc5-449b1376be0f.roa Signing time: Sat 23 Aug 2025 00:31:40 +0000 ROA not before: Sat 23 Aug 2025 00:31:40 +0000 ROA not after: Sat 27 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:2020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:6d:87:66:20:b9:99:50:48:6a:32:1d:0f:66:26:80:be:81:b3:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 23 00:31:40 2025 GMT Not After : Sep 27 23:59:59 2025 GMT Subject: serialNumber=e73e0127f5ca42be67bb22c0cec710ed001c3fbb5fd1fcd3a0925a323b6ad3d2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:56:0f:01:ac:c6:35:55:8f:d8:df:27:c3:43: b1:47:a2:cf:f2:13:54:13:01:d2:61:38:de:98:79: c7:f0:2c:ac:11:ad:2e:6c:6d:fa:50:54:30:e2:a9: 39:cb:b9:28:31:24:44:6a:64:6b:2e:99:5b:d1:aa: 2e:46:27:2a:d6:e9:f0:5f:43:53:6b:f3:13:ca:b4: 95:f7:52:89:51:6e:a1:87:47:9e:7f:18:d4:2f:a6: cf:fc:50:b0:d3:6a:60:45:2c:8f:9f:b8:04:35:bf: 36:f1:14:7a:ca:a8:cc:ed:6b:49:31:84:ba:77:b7: 17:99:cf:88:01:bc:e3:cd:d1:fa:cc:c0:94:9c:0a: 60:3b:92:b9:a2:fd:5c:03:c5:2a:ad:c1:15:69:06: a4:79:f1:b8:5b:1c:d8:0e:3e:1d:ff:ae:a3:4a:f2: 7f:2e:51:44:90:37:2e:a5:34:0c:08:14:c8:ee:99: 2a:ea:3a:fa:6a:a6:37:a4:cc:7f:48:7c:26:b2:88: 5e:0a:10:8a:cb:0e:e4:15:92:c3:8e:ae:61:c3:f4: 58:d2:21:ba:fa:54:0e:eb:c9:54:0a:8a:15:76:55: f3:a4:cc:17:1e:4e:89:2f:3b:d2:99:64:4f:c0:47: 3e:ef:b3:35:cc:f3:7a:0d:51:60:d0:94:2e:67:a0: e2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DC:89:11:3F:FB:EE:AB:BA:BB:49:FC:A2:E3:34:8B:89:C7:F8:FE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f3ba3251-a502-4cf8-9bc5-449b1376be0f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:2020::/48 Signature Algorithm: sha256WithRSAEncryption 0d:8f:21:9e:91:80:e2:c4:3b:d2:c3:19:86:d4:4a:1d:c7:fe: aa:f4:b1:f9:61:93:11:19:80:e9:a1:82:b4:10:c0:ba:a1:11: 4c:d5:a6:19:ec:65:d6:6f:fc:fe:e1:5e:a2:fb:69:a9:f7:cb: 0b:2b:ba:11:e5:1d:f6:1a:4e:8e:e2:71:fa:2f:64:87:af:e2: a3:3f:d6:7e:f7:7c:bb:b5:bb:30:04:a6:1a:48:92:d7:0a:8f: 56:40:68:fa:b9:c4:59:2a:8a:c8:62:0b:8c:8c:56:c9:62:46: 25:69:46:a2:dc:a5:77:ee:61:4a:4d:d8:5b:84:45:6a:ea:15: 63:be:b5:b5:83:4f:b1:70:0d:97:50:6b:6c:54:2d:fd:bc:0c: 47:7e:ea:83:44:04:ed:8f:a2:2a:1e:2e:ed:45:9c:1e:2a:48: db:97:74:78:20:31:6c:c0:f0:90:a2:1d:5f:de:f3:e0:a7:b3: fb:75:18:ca:ed:95:03:0d:30:28:39:22:3b:28:33:f3:4e:71: 00:c4:ac:c6:e9:fe:80:8a:d0:11:cf:8f:13:81:b6:b4:73:f0: e9:c0:f8:1f:1a:5c:1a:fb:51:9a:94:cb:27:47:b1:e6:08:b4: b8:a0:a9:00:19:61:02:2d:7a:da:e5:dd:fc:a2:e0:af:04:c8: 25:3d:84:4a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURm2HZiC5mVBIajIdD2YmgL6BswMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyMzAwMzE0MFoX DTI1MDkyNzIzNTk1OVowejFJMEcGA1UEBRNAZTczZTAxMjdmNWNhNDJiZTY3YmIy MmMwY2VjNzEwZWQwMDFjM2ZiYjVmZDFmY2QzYTA5MjVhMzIzYjZhZDNkMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1YPAazGNVWP2N8nw0OxR6LP8hNU EwHSYTjemHnH8CysEa0ubG36UFQw4qk5y7koMSREamRrLplb0aouRicq1unwX0NT a/MTyrSV91KJUW6hh0eefxjUL6bP/FCw02pgRSyPn7gENb828RR6yqjM7WtJMYS6 d7cXmc+IAbzjzdH6zMCUnApgO5K5ov1cA8UqrcEVaQakefG4WxzYDj4d/66jSvJ/ LlFEkDcupTQMCBTI7pkq6jr6aqY3pMx/SHwmsoheChCKyw7kFZLDjq5hw/RY0iG6 +lQO68lUCooVdlXzpMwXHk6JLzvSmWRPwEc+77M1zPN6DVFg0JQuZ6DiXQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFB/ciRE/++6rurtJ/KLjNIuJx/j+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2YzYmEzMjUxLWE1MDItNGNmOC05YmM1LTQ0OWIxMzc2YmUwZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYSAgMA0GCSqGSIb3DQEBCwUAA4IBAQANjyGekYDixDvSwxmG 1Eodx/6q9LH5YZMRGYDpoYK0EMC6oRFM1aYZ7GXWb/z+4V6i+2mp98sLK7oR5R32 Gk6O4nH6L2SHr+KjP9Z+93y7tbswBKYaSJLXCo9WQGj6ucRZKorIYguMjFbJYkYl aUai3KV37mFKTdhbhEVq6hVjvrW1g0+xcA2XUGtsVC39vAxHfuqDRATtj6IqHi7t RZweKkjbl3R4IDFswPCQoh1f3vPgp7P7dRjK7ZUDDTAoOSI7KDPzTnEAxKzG6f6A itARz48Tgba0c/DpwPgfGlwa+1GalMsnR7HmCLS4oKkAGWECLXra5d38ouCvBMgl PYRK -----END CERTIFICATE-----Generated at Sat Aug 23 10:10:35 2025 by rpki-client