$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1a030100-972b-487d-87d6-e4f578ead0a3.roa File: 1a030100-972b-487d-87d6-e4f578ead0a3.roa (raw, json) Hash identifier: OrtAdx/ziLs4sJhZ3zdxVB/KSzsZVEiLvU00D9eMc4w= Subject key identifier: F5:EE:9C:4E:DC:EB:CB:19:52:E6:AB:33:CA:8A:5D:C5:29:1C:6F:47 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7676A2BF2997002C8C8AE40259D733D6885635D7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1a030100-972b-487d-87d6-e4f578ead0a3.roa Signing time: Mon 12 May 2025 15:10:51 +0000 ROA not before: Mon 12 May 2025 15:10:51 +0000 ROA not after: Mon 16 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dabb:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:76:a2:bf:29:97:00:2c:8c:8a:e4:02:59:d7:33:d6:88:56:35:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 12 15:10:51 2025 GMT Not After : Jun 16 23:59:59 2025 GMT Subject: serialNumber=786a2ab6c868ce403343ca9a3dba98bacbf997d48ffa1aba6e4f704a283587a8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6e:c8:cf:8f:1e:95:e3:2f:36:64:98:87:58: cc:23:c3:00:d2:e4:79:5e:a1:53:b0:82:98:a1:b6: 44:ae:02:95:7f:e2:88:d7:01:b0:17:34:3d:1f:8c: ce:16:b2:00:65:89:62:93:db:3d:f6:fd:69:e4:b0: 6f:db:c8:0a:e3:59:5d:da:e7:5f:ec:c0:70:9b:ce: 9a:7f:76:18:de:4c:f3:fa:00:2f:ab:18:e7:5f:e6: af:e4:d0:4f:26:a5:f9:26:ac:20:16:9b:e8:44:e6: 37:47:6f:fe:f7:1b:74:36:ee:7b:bd:b9:50:17:54: fc:51:0b:1f:88:4d:27:5d:48:49:88:d3:ac:fc:37: 21:0c:0c:ff:ef:63:18:5c:7e:b8:0e:38:bf:2f:80: 12:ef:de:bc:85:a8:fa:5a:5c:e4:99:ff:d8:82:60: 7b:1c:cb:00:17:94:53:83:21:83:7b:e1:cf:df:43: ce:53:8e:ef:5b:2d:91:36:80:83:3c:dc:dd:b9:21: 37:58:a0:07:ba:b1:89:ad:61:50:56:76:43:be:b0: 97:0f:31:a8:9e:e1:8c:8c:22:50:e8:3a:5d:d2:da: 56:64:3a:34:ca:08:7b:f1:67:a5:a9:52:98:db:97: 76:07:ce:e8:82:27:58:c2:b8:98:ff:9a:96:33:fc: 15:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EE:9C:4E:DC:EB:CB:19:52:E6:AB:33:CA:8A:5D:C5:29:1C:6F:47 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1a030100-972b-487d-87d6-e4f578ead0a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dabb:8000::/40 Signature Algorithm: sha256WithRSAEncryption 1e:c3:cf:95:3e:79:7e:19:e0:23:bc:97:b6:09:06:dd:b5:48: 01:08:b2:de:fd:22:fb:79:4b:84:49:e4:6e:14:24:6b:ba:d7: ef:74:21:d3:0b:57:f8:b2:68:4c:8f:51:de:21:b0:25:9b:06: e6:f0:7f:25:f7:9c:dd:81:6f:b9:a6:0c:d7:08:f8:17:ec:ba: 59:73:01:59:f4:c5:b0:dd:06:64:89:e9:44:ce:7f:8b:56:d9: 3f:fc:7a:c4:30:a5:2a:07:3a:c0:d1:dc:a8:52:06:d3:2d:52: f6:e3:69:f8:0e:80:52:fa:eb:50:0d:ec:86:26:8b:32:91:82: 05:ab:f2:01:ca:4e:7e:fb:d9:64:50:7e:b8:2b:d9:86:ce:9d: 51:01:f7:f3:ef:78:42:bb:d8:39:aa:5c:70:ad:fd:92:6f:fb: 6e:b5:34:be:ff:9a:67:a8:bf:60:2c:3f:ba:07:63:85:ed:8f: e4:e4:02:e6:cf:5d:94:dc:8e:3f:0a:d0:53:be:71:20:b5:7a: 37:a1:35:47:85:f2:2d:ee:14:b7:81:cd:47:2e:50:05:6e:54: 72:89:1c:b9:30:95:86:38:c8:50:19:b9:0b:c5:29:08:cd:a4: 57:5f:a1:5f:b4:34:28:cc:0c:00:ad:0a:00:71:08:7f:46:f2: 92:e2:e1:48 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdnaivymXACyMiuQCWdcz1ohWNdcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxMjE1MTA1MVoX DTI1MDYxNjIzNTk1OVowejFJMEcGA1UEBRNANzg2YTJhYjZjODY4Y2U0MDMzNDNj YTlhM2RiYTk4YmFjYmY5OTdkNDhmZmExYWJhNmU0ZjcwNGEyODM1ODdhODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3W7Iz48eleMvNmSYh1jMI8MA0uR5 XqFTsIKYobZErgKVf+KI1wGwFzQ9H4zOFrIAZYlik9s99v1p5LBv28gK41ld2udf 7MBwm86af3YY3kzz+gAvqxjnX+av5NBPJqX5JqwgFpvoROY3R2/+9xt0Nu57vblQ F1T8UQsfiE0nXUhJiNOs/DchDAz/72MYXH64Dji/L4AS7968haj6Wlzkmf/YgmB7 HMsAF5RTgyGDe+HP30POU47vWy2RNoCDPNzduSE3WKAHurGJrWFQVnZDvrCXDzGo nuGMjCJQ6Dpd0tpWZDo0ygh78WelqVKY25d2B87ogidYwriY/5qWM/wVUQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPXunE7c68sZUuarM8qKXcUpHG9HMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFhMDMwMTAwLTk3MmItNDg3ZC04N2Q2LWU0ZjU3OGVhZDBhMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbau4AwDQYJKoZIhvcNAQELBQADggEBAB7Dz5U+eX4Z4CO8l7YJ Bt21SAEIst79Ivt5S4RJ5G4UJGu61+90IdMLV/iyaEyPUd4hsCWbBubwfyX3nN2B b7mmDNcI+BfsullzAVn0xbDdBmSJ6UTOf4tW2T/8esQwpSoHOsDR3KhSBtMtUvbj afgOgFL661AN7IYmizKRggWr8gHKTn772WRQfrgr2YbOnVEB9/PveEK72DmqXHCt /ZJv+261NL7/mmeov2AsP7oHY4Xtj+TkAubPXZTcjj8K0FO+cSC1ejehNUeF8i3u FLeBzUcuUAVuVHKJHLkwlYY4yFAZuQvFKQjNpFdfoV+0NCjMDACtCgBxCH9G8pLi 4Ug= -----END CERTIFICATE-----Generated at Mon Jun 2 06:18:32 2025 by rpki-client