$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2c5cdd49-e98b-4e3d-8a61-094f381d2fae.roa File: 2c5cdd49-e98b-4e3d-8a61-094f381d2fae.roa (raw, json) Hash identifier: DUoT4CrLSn/U2F7J7/6JZlYN1kd4E5fVrZ3JspQ83rc= Subject key identifier: E0:D9:16:33:13:C4:00:54:3C:0A:D4:E8:32:86:D1:52:EC:1C:58:DD Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7A8C9FCD282E5F4CD3E736A8C65B8407CF8879C7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2c5cdd49-e98b-4e3d-8a61-094f381d2fae.roa Signing time: Mon 28 Jul 2025 15:10:13 +0000 ROA not before: Mon 28 Jul 2025 15:10:13 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:9040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:8c:9f:cd:28:2e:5f:4c:d3:e7:36:a8:c6:5b:84:07:cf:88:79:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 28 15:10:13 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=e984d9727b5828924516e13448f0907fb496d3e34f134dbbacdfa485bc81fd54, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7e:c6:b0:3e:36:ef:44:4e:da:d5:6e:52:0b: 44:5e:63:4c:f0:59:bb:f7:1c:6c:48:37:98:92:b1: 76:b6:4e:13:b9:03:8f:79:b5:ab:e1:ab:52:a7:5d: 49:55:a1:2b:48:8b:45:9f:0c:9a:ea:14:fa:22:14: 46:e1:0d:80:44:f0:2b:2c:75:7b:2f:1d:3c:8b:66: ce:88:b2:f8:c6:35:ba:1b:68:b8:bc:21:cd:7e:bf: 73:b2:ce:27:7d:fb:41:21:25:bd:84:7d:0f:ba:87: 67:c0:6d:e9:29:ab:4e:53:1f:1e:57:37:5b:28:0b: d9:8a:44:75:e5:99:14:15:0c:12:c6:80:c7:72:2f: 73:bd:29:6e:38:83:96:36:d4:2e:d2:ea:ba:85:d9: 0e:07:a3:bb:7a:65:a4:44:7f:c7:94:06:6b:74:8e: aa:2e:f7:c8:0a:bf:6f:aa:bb:b5:bd:c6:3a:aa:97: c6:e1:33:16:44:99:39:0b:7e:ec:57:a7:6e:d7:31: 67:97:b4:01:8c:4c:0a:b3:09:00:3f:b0:7e:2b:23: 0a:2e:0d:b1:eb:d5:85:fc:44:6b:c6:d9:a2:ae:74: a1:0a:90:70:e8:6e:5a:4c:9c:a2:da:7b:57:0c:fa: 29:3d:15:98:67:b9:1e:c9:79:79:15:37:94:7b:35: a2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D9:16:33:13:C4:00:54:3C:0A:D4:E8:32:86:D1:52:EC:1C:58:DD X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2c5cdd49-e98b-4e3d-8a61-094f381d2fae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:9040::/48 Signature Algorithm: sha256WithRSAEncryption 6e:20:d3:1b:a8:72:32:c7:d3:df:b9:1c:a8:a3:51:f9:e6:84: 19:5c:87:61:36:d2:89:f4:4f:31:83:76:ed:ea:ee:8e:64:d4: a9:86:70:4b:5c:7b:78:d1:a0:c1:e7:f8:a0:cd:9d:7e:cf:ed: 48:11:3b:8b:aa:d8:20:a4:f3:63:b2:9e:69:78:7c:8e:02:f7: b8:1e:31:23:04:48:7b:0d:84:23:df:8f:c3:6a:b3:b4:2c:c8: 61:40:7b:0f:86:62:87:cf:22:3c:23:a6:fc:1f:d9:ca:cf:ab: af:36:ef:fd:a0:ff:f9:88:b9:2c:f3:78:3b:78:ec:c0:86:45: a8:93:a1:66:26:77:66:69:09:c9:d7:52:13:1a:9a:66:97:70: b1:72:a5:32:c9:20:ce:2f:33:f0:75:0b:e8:ca:82:08:51:62: 60:ac:60:77:79:ac:bc:a9:11:bd:69:aa:12:2e:70:9d:c1:f7: 01:ec:8a:33:7f:22:34:17:3f:45:3d:a2:2a:fa:f6:95:d4:77: 96:84:22:81:db:c1:e2:ae:53:62:57:3c:e3:ce:e6:e4:5f:ef: b8:3f:e9:77:ae:28:aa:bf:2b:fe:bf:53:f9:38:6b:54:fa:9a: 18:36:9f:08:6c:db:ad:96:5e:53:de:c9:32:18:d9:25:d9:0f: dd:c9:a9:23 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUeoyfzSguX0zT5zaoxluEB8+IeccwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcyODE1MTAxM1oX DTI1MDkwMTIzNTk1OVowejFJMEcGA1UEBRNAZTk4NGQ5NzI3YjU4Mjg5MjQ1MTZl MTM0NDhmMDkwN2ZiNDk2ZDNlMzRmMTM0ZGJiYWNkZmE0ODViYzgxZmQ1NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs37GsD4270RO2tVuUgtEXmNM8Fm7 9xxsSDeYkrF2tk4TuQOPebWr4atSp11JVaErSItFnwya6hT6IhRG4Q2ARPArLHV7 Lx08i2bOiLL4xjW6G2i4vCHNfr9zss4nfftBISW9hH0PuodnwG3pKatOUx8eVzdb KAvZikR15ZkUFQwSxoDHci9zvSluOIOWNtQu0uq6hdkOB6O7emWkRH/HlAZrdI6q LvfICr9vqru1vcY6qpfG4TMWRJk5C37sV6du1zFnl7QBjEwKswkAP7B+KyMKLg2x 69WF/ERrxtmirnShCpBw6G5aTJyi2ntXDPopPRWYZ7keyXl5FTeUezWipwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFODZFjMTxABUPArU6DKG0VLsHFjdMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJjNWNkZDQ5LWU5OGItNGUzZC04YTYxLTA5NGYzODFkMmZhZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAJBAMA0GCSqGSIb3DQEBCwUAA4IBAQBuINMbqHIyx9PfuRyo o1H55oQZXIdhNtKJ9E8xg3bt6u6OZNSphnBLXHt40aDB5/igzZ1+z+1IETuLqtgg pPNjsp5peHyOAve4HjEjBEh7DYQj34/DarO0LMhhQHsPhmKHzyI8I6b8H9nKz6uv Nu/9oP/5iLks83g7eOzAhkWok6FmJndmaQnJ11ITGppml3CxcqUyySDOLzPwdQvo yoIIUWJgrGB3eay8qRG9aaoSLnCdwfcB7IozfyI0Fz9FPaIq+vaV1HeWhCKB28Hi rlNiVzzjzubkX++4P+l3riiqvyv+v1P5OGtU+poYNp8IbNutll5T3skyGNkl2Q/d yakj -----END CERTIFICATE-----Generated at Thu Jul 31 01:02:11 2025 by rpki-client