$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa File: 1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa (raw, json) Hash identifier: EA/iFzJI3h0MR+Uz/OT2tBN4V8B1LVeh8c5ojyRI5K0= Subject key identifier: 9A:69:17:42:14:01:2E:11:7C:43:2F:6E:EA:D4:80:2A:B1:9B:47:8B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3F29BEFD297FAF5A72A064F46A790A531082D15D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa Signing time: Mon 12 May 2025 15:01:33 +0000 ROA not before: Mon 12 May 2025 15:01:33 +0000 ROA not after: Mon 16 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:29:be:fd:29:7f:af:5a:72:a0:64:f4:6a:79:0a:53:10:82:d1:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 12 15:01:33 2025 GMT Not After : Jun 16 23:59:59 2025 GMT Subject: serialNumber=fff83efeec98f64e72b50b22a66b8a1cc526a8707b2d51b660d6b5b2d04f29c4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:9a:87:3d:5d:c9:05:62:13:32:db:c0:3f:47: 68:72:68:39:95:d1:24:a5:10:01:a8:86:65:bd:88: 8a:91:50:45:2a:22:ff:7a:84:76:dd:ca:72:3c:c1: e3:e6:69:7f:02:6d:52:24:f3:65:c4:60:6f:02:e2: c9:8c:98:36:38:8a:74:0f:cc:94:b4:96:31:45:5b: ca:de:31:67:e3:ec:2e:ed:b1:0b:af:91:c3:84:9f: 58:97:e0:06:8f:2f:b4:9a:3d:5e:11:5a:61:a9:98: 0e:92:bf:30:d3:03:64:68:78:08:15:e3:fe:be:10: 0e:74:da:5d:be:71:83:fa:44:7c:e8:ab:51:be:32: 61:28:6e:c7:2a:28:bd:f0:2c:f8:c0:ac:73:47:fe: d9:84:90:ce:e7:13:95:b6:6a:c8:84:cb:6d:3e:b2: ce:0d:c9:7f:6c:29:bb:34:bc:36:ff:e9:b9:fb:8b: 52:11:8c:37:bd:36:e6:00:b7:8d:2f:09:76:e7:6f: 3f:92:7e:93:f3:c3:39:73:4c:ff:a6:e2:ad:3f:56: f9:d0:8a:07:3b:a8:73:c6:50:1b:28:d7:4a:d9:f9: 26:e2:0e:4f:2d:a7:77:5f:04:b9:24:74:66:de:9f: 7f:bc:32:6a:dc:f7:60:ee:da:3e:1a:fa:4d:3d:3c: 91:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:69:17:42:14:01:2E:11:7C:43:2F:6E:EA:D4:80:2A:B1:9B:47:8B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:e000::/40 Signature Algorithm: sha256WithRSAEncryption 59:58:68:97:a7:39:a4:e7:53:61:45:a5:9f:72:fa:e0:6a:cc: e9:77:af:66:e9:36:35:b7:14:00:e9:4e:43:01:48:38:4b:78: 82:78:ea:63:73:b9:e1:e9:c3:55:98:96:20:7a:df:b7:40:5a: 55:ab:58:36:29:75:ad:6e:5e:2f:a9:38:9d:f3:74:9c:49:e9: 34:bd:3e:03:e0:82:75:81:4c:ce:34:d4:f5:a4:cc:5b:b7:ec: f5:a7:02:85:2a:a6:b7:5f:90:6c:c6:f2:2d:6a:36:5b:8f:bd: 77:da:4f:82:c7:96:d6:06:13:31:5d:fc:1c:c9:c1:2f:c2:88: b4:c9:01:7a:e4:41:36:8c:79:a2:6a:9b:91:e2:1f:f7:8c:c7: 99:0d:53:54:dd:19:ee:1f:59:3e:e6:fe:13:8b:ad:df:b9:07: 34:bc:b7:0d:fc:9d:00:fc:0c:65:25:7e:93:99:fc:30:f3:d6: c8:17:12:cb:2b:e4:03:14:73:0a:9d:7f:c1:3c:81:64:d2:8e: 85:08:9b:08:13:52:b0:f2:2d:e0:fe:0f:da:7c:98:62:ac:3d: 7b:17:bb:73:9f:fe:ee:8b:93:a5:4e:b5:a8:6c:e3:eb:ee:a2: 75:ae:ca:2c:e6:58:24:16:02:2d:d8:b6:99:5b:f6:cc:7c:de: df:53:fa:3d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPym+/Sl/r1pyoGT0ankKUxCC0V0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxMjE1MDEzM1oX DTI1MDYxNjIzNTk1OVowejFJMEcGA1UEBRNAZmZmODNlZmVlYzk4ZjY0ZTcyYjUw YjIyYTY2YjhhMWNjNTI2YTg3MDdiMmQ1MWI2NjBkNmI1YjJkMDRmMjljNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8JqHPV3JBWITMtvAP0docmg5ldEk pRABqIZlvYiKkVBFKiL/eoR23cpyPMHj5ml/Am1SJPNlxGBvAuLJjJg2OIp0D8yU tJYxRVvK3jFn4+wu7bELr5HDhJ9Yl+AGjy+0mj1eEVphqZgOkr8w0wNkaHgIFeP+ vhAOdNpdvnGD+kR86KtRvjJhKG7HKii98Cz4wKxzR/7ZhJDO5xOVtmrIhMttPrLO Dcl/bCm7NLw2/+m5+4tSEYw3vTbmALeNLwl2528/kn6T88M5c0z/puKtP1b50IoH O6hzxlAbKNdK2fkm4g5PLad3XwS5JHRm3p9/vDJq3Pdg7to+GvpNPTyRjQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJppF0IUAS4RfEMvburUgCqxm0eLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFlMmVhYmI2LTdjYjktNDc4Yy1iNjFlLTU0Yjk3ZTE3ZDQ5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9uAwDQYJKoZIhvcNAQELBQADggEBAFlYaJenOaTnU2FFpZ9y +uBqzOl3r2bpNjW3FADpTkMBSDhLeIJ46mNzueHpw1WYliB637dAWlWrWDYpda1u Xi+pOJ3zdJxJ6TS9PgPggnWBTM401PWkzFu37PWnAoUqprdfkGzG8i1qNluPvXfa T4LHltYGEzFd/BzJwS/CiLTJAXrkQTaMeaJqm5HiH/eMx5kNU1TdGe4fWT7m/hOL rd+5BzS8tw38nQD8DGUlfpOZ/DDz1sgXEssr5AMUcwqdf8E8gWTSjoUImwgTUrDy LeD+D9p8mGKsPXsXu3Of/u6Lk6VOtahs4+vuonWuyizmWCQWAi3Ytplb9sx83t9T +j0= -----END CERTIFICATE-----Generated at Tue Jun 3 23:15:47 2025 by rpki-client