$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa File: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (raw, json) Hash identifier: fq/1/lAjE0At0TOKKfk0EpjGilZuMgSq75atpaMxDVA= Subject key identifier: 83:AE:6A:13:60:1E:D4:F0:8D:36:F5:42:0C:EA:C5:2C:C8:1E:AC:7A Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1BA3EF3BE9B07ACA5F96C320B22383CB6B36F1DC Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa Signing time: Wed 09 Jul 2025 00:00:05 +0000 ROA not before: Wed 09 Jul 2025 00:00:05 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a3:ef:3b:e9:b0:7a:ca:5f:96:c3:20:b2:23:83:cb:6b:36:f1:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jul 9 00:00:05 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=ea363168e473ea04753298970c47b08195a161e9ac36a0ca5c703a06414e8803, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c4:f4:25:3f:c0:af:bc:c8:4b:22:58:d8:36: 24:0e:e3:75:78:e4:d2:6c:e7:4e:94:5b:1f:c3:58: 85:1f:cc:b2:5c:52:59:e2:46:ff:3d:aa:0f:10:01: 65:5a:77:f6:1a:c7:8b:cd:d0:22:d0:8b:2e:18:07: 37:e3:22:32:80:2d:73:4e:55:c1:c6:87:ce:da:3c: 44:9c:7e:6c:69:66:34:6f:53:ac:f2:17:a6:2e:7f: 21:ea:50:fd:4a:dc:a7:9f:8a:93:22:4c:4f:2e:10: a4:57:6a:3e:09:a3:4f:a6:81:33:17:8d:41:44:d8: f6:b7:6c:b8:38:f7:f4:e4:e0:33:79:ef:6e:5e:bf: d9:56:fa:64:2d:5e:f7:c6:53:9e:5a:a6:64:d7:ac: 95:94:3d:26:2d:fc:b2:6d:29:92:1f:5f:d0:42:1f: 72:b7:a2:a3:59:0e:bb:50:d4:fe:d0:36:d7:69:a8: 78:b8:c7:ac:2a:97:c4:4a:4a:74:d2:66:f7:b0:e4: 99:b3:de:f1:4e:42:9d:2c:72:bd:90:03:63:5e:5f: b6:6c:be:b1:1a:23:62:0c:6d:87:8b:f1:f1:28:74: 9b:99:c7:8e:83:f0:f3:c4:d7:a9:17:c4:a3:e4:57: 4f:15:c0:18:c4:e5:66:1e:15:4d:5d:79:da:88:3f: 8b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:AE:6A:13:60:1E:D4:F0:8D:36:F5:42:0C:EA:C5:2C:C8:1E:AC:7A X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/48 Signature Algorithm: sha256WithRSAEncryption 01:8c:a8:bb:ff:71:b1:35:45:36:3b:af:fe:0a:88:e4:af:1b: cd:66:c8:ac:d3:86:f8:68:24:46:bf:67:17:80:ab:e7:46:ec: 20:54:97:df:2f:be:09:c7:4c:30:74:35:77:55:77:2a:e1:38: 40:95:28:50:e4:94:06:28:b9:6b:dd:8c:7f:55:5c:fa:c4:f3: 1b:31:35:15:54:ac:72:d6:9b:7b:e8:c4:dd:3c:6d:16:14:56: 1d:2c:35:38:4f:9c:81:f3:e0:1a:20:67:83:be:64:33:e5:29: ee:0c:bb:fa:e2:88:61:c6:b3:5f:c8:db:aa:a5:54:20:4e:ad: 89:25:fc:ee:a4:f5:d7:b6:71:16:6d:70:62:f0:3a:85:75:27: 27:2f:85:08:6b:d9:1c:04:c5:6d:ca:82:f5:10:67:24:1d:ce: 58:18:fc:87:4f:98:6e:18:72:ff:8f:f4:7d:a2:2d:09:25:67: fd:ca:b9:a3:fe:70:78:db:cc:b9:7a:47:42:c8:59:2e:e0:09: 18:4f:e5:36:44:23:47:fe:53:d6:cf:e6:77:2f:8e:9c:75:d5: 0c:f3:15:f1:29:6e:d2:6d:15:8e:22:44:ab:8f:a6:da:3b:f9: 14:1e:27:35:1f:6b:2f:1e:e6:b0:0d:0d:32:af:c5:52:24:bb: 78:6a:95:87 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUG6PvO+mwespflsMgsiODy2s28dwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDcwOTAwMDAwNVoX DTI1MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAZWEzNjMxNjhlNDczZWEwNDc1MzI5 ODk3MGM0N2IwODE5NWExNjFlOWFjMzZhMGNhNWM3MDNhMDY0MTRlODgwMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcT0JT/Ar7zISyJY2DYkDuN1eOTS bOdOlFsfw1iFH8yyXFJZ4kb/PaoPEAFlWnf2GseLzdAi0IsuGAc34yIygC1zTlXB xofO2jxEnH5saWY0b1Os8hemLn8h6lD9Stynn4qTIkxPLhCkV2o+CaNPpoEzF41B RNj2t2y4OPf05OAzee9uXr/ZVvpkLV73xlOeWqZk16yVlD0mLfyybSmSH1/QQh9y t6KjWQ67UNT+0DbXaah4uMesKpfESkp00mb3sOSZs97xTkKdLHK9kANjXl+2bL6x GiNiDG2Hi/HxKHSbmceOg/DzxNepF8Sj5FdPFcAYxOVmHhVNXXnaiD+LmwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFIOuahNgHtTwjTb1QgzqxSzIHqx6MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzM4MWZjNmU2LTVkNDktNDFiYy1iNTg0LWQ5NDM3YzY4ZTNjZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQABjKi7/3GxNUU2O6/+ CojkrxvNZsis04b4aCRGv2cXgKvnRuwgVJffL74Jx0wwdDV3VXcq4ThAlShQ5JQG KLlr3Yx/VVz6xPMbMTUVVKxy1pt76MTdPG0WFFYdLDU4T5yB8+AaIGeDvmQz5Snu DLv64ohhxrNfyNuqpVQgTq2JJfzupPXXtnEWbXBi8DqFdScnL4UIa9kcBMVtyoL1 EGckHc5YGPyHT5huGHL/j/R9oi0JJWf9yrmj/nB428y5ekdCyFku4AkYT+U2RCNH /lPWz+Z3L46cddUM8xXxKW7SbRWOIkSrj6baO/kUHic1H2svHuawDQ0yr8VSJLt4 apWH -----END CERTIFICATE-----Generated at Tue Jul 22 04:22:21 2025 by rpki-client