$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa File: 1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa (raw, json) Hash identifier: 5jQqIHfWYLcHGYo3nVq6RTt/CNSJoHiaHpC3zc9a2Eg= Subject key identifier: 4B:C8:07:F5:13:10:66:39:6B:EB:49:E8:77:0C:CF:45:3C:D0:84:79 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3A8EACCFE30D98B367870793679607C929986E05 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa Signing time: Sat 26 Jul 2025 00:02:06 +0000 ROA not before: Sat 26 Jul 2025 00:02:06 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:8e:ac:cf:e3:0d:98:b3:67:87:07:93:67:96:07:c9:29:98:6e:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 26 00:02:06 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=ca3a68b1fb99e188b459440dcec63f72b2dd0c8f9ffa52641457bd5042e4e8e6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:14:1c:51:0e:5c:ea:51:61:fd:3e:e1:44:1f: 17:3e:ed:73:f3:33:04:d3:21:01:34:c0:41:9e:4e: fa:fb:89:2b:26:8d:06:2d:38:97:07:84:44:0b:72: 82:27:ec:4d:e2:7b:5e:9c:3a:98:7b:0a:a2:46:b4: 99:e3:30:bb:52:45:45:8c:6c:b3:54:37:3f:cc:07: b7:f2:c1:65:95:c9:91:a3:3c:7f:6f:26:a6:76:fd: 7a:e0:c0:30:12:c0:4c:2d:65:6a:37:f3:6a:1f:15: 9d:cf:37:55:61:cd:a3:76:5b:58:0a:b5:66:34:e2: 22:d8:f5:ee:0f:fc:1e:9e:d0:00:69:94:6d:6c:a2: ea:63:05:de:d0:a7:81:a8:70:b5:0d:15:f9:05:31: 6f:a1:ea:e4:e8:2f:93:70:d9:33:84:0b:77:ed:d7: 9a:26:c3:e9:58:00:02:e3:46:bb:20:8e:0b:68:56: 2b:23:39:24:ac:8f:34:14:71:b5:83:f4:b5:1a:25: 20:ff:41:77:47:bc:c3:3b:d3:89:0d:1b:59:71:5b: 38:df:b2:67:95:f3:c6:1a:4f:73:eb:51:ce:f4:25: 23:b1:4b:a2:0f:37:67:23:99:81:fa:44:6c:11:13: e6:d6:c0:e0:3f:52:da:20:84:0c:87:97:59:f3:dc: 35:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:C8:07:F5:13:10:66:39:6B:EB:49:E8:77:0C:CF:45:3C:D0:84:79 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:e000::/40 Signature Algorithm: sha256WithRSAEncryption 83:cc:75:c4:78:e6:0c:6e:57:31:c3:2f:2f:5d:7a:73:02:be: d7:98:e3:2a:c4:03:86:88:b3:65:c6:94:2e:d9:90:1f:f0:51: 7a:11:84:bb:c0:e5:2b:47:76:4b:05:7c:74:7e:12:e9:3a:1c: 23:10:1c:39:c2:94:31:c6:6f:85:4f:d3:74:68:a8:10:76:28: 53:e1:45:a5:f1:f9:a1:75:52:e4:a8:c6:5c:09:f9:17:47:2a: 0b:43:a2:41:60:1d:50:6e:06:31:1f:63:32:8b:4a:d3:1c:c2: ae:35:b0:18:76:25:0f:95:3f:96:4f:31:28:90:8f:be:e1:2e: bc:25:0c:f1:be:e3:ae:66:85:2d:a1:43:f8:ff:84:17:5a:a8: 86:2b:ed:9f:ff:ff:89:52:3e:98:d0:7e:6f:b0:be:bd:fb:3e: 91:2f:62:3f:de:a0:50:95:ed:b9:d2:53:f6:0e:e1:cc:82:9f: e1:93:6a:79:05:93:35:60:8a:35:d9:f2:b3:f0:f7:46:86:04: 78:c8:3f:12:5e:90:6f:8b:06:d9:4d:10:4e:cc:10:aa:fa:d4: 42:c2:53:20:b8:d8:c6:06:e5:61:42:5a:72:c6:2b:56:ae:5c: 16:0c:70:9a:5d:9b:45:2e:ee:82:03:7e:fc:dd:25:49:ff:a4: f5:dc:f7:80 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUOo6sz+MNmLNnhweTZ5YHySmYbgUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcyNjAwMDIwNloX DTI1MDgzMDIzNTk1OVowejFJMEcGA1UEBRNAY2EzYTY4YjFmYjk5ZTE4OGI0NTk0 NDBkY2VjNjNmNzJiMmRkMGM4ZjlmZmE1MjY0MTQ1N2JkNTA0MmU0ZThlNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxQcUQ5c6lFh/T7hRB8XPu1z8zME 0yEBNMBBnk76+4krJo0GLTiXB4REC3KCJ+xN4ntenDqYewqiRrSZ4zC7UkVFjGyz VDc/zAe38sFllcmRozx/byamdv164MAwEsBMLWVqN/NqHxWdzzdVYc2jdltYCrVm NOIi2PXuD/wentAAaZRtbKLqYwXe0KeBqHC1DRX5BTFvoerk6C+TcNkzhAt37dea JsPpWAAC40a7II4LaFYrIzkkrI80FHG1g/S1GiUg/0F3R7zDO9OJDRtZcVs437Jn lfPGGk9z61HO9CUjsUuiDzdnI5mB+kRsERPm1sDgP1LaIIQMh5dZ89w1mwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEvIB/UTEGY5a+tJ6HcMz0U80IR5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFlMmVhYmI2LTdjYjktNDc4Yy1iNjFlLTU0Yjk3ZTE3ZDQ5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9uAwDQYJKoZIhvcNAQELBQADggEBAIPMdcR45gxuVzHDLy9d enMCvteY4yrEA4aIs2XGlC7ZkB/wUXoRhLvA5StHdksFfHR+Euk6HCMQHDnClDHG b4VP03RoqBB2KFPhRaXx+aF1UuSoxlwJ+RdHKgtDokFgHVBuBjEfYzKLStMcwq41 sBh2JQ+VP5ZPMSiQj77hLrwlDPG+465mhS2hQ/j/hBdaqIYr7Z///4lSPpjQfm+w vr37PpEvYj/eoFCV7bnSU/YO4cyCn+GTankFkzVgijXZ8rPw90aGBHjIPxJekG+L BtlNEE7MEKr61ELCUyC42MYG5WFCWnLGK1auXBYMcJpdm0Uu7oIDfvzdJUn/pPXc 94A= -----END CERTIFICATE-----Generated at Thu Jul 31 01:00:19 2025 by rpki-client