$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/30151f9e-f6c9-40d6-bebe-daced959a278.roa File: 30151f9e-f6c9-40d6-bebe-daced959a278.roa (raw, json) Hash identifier: q0/P7tQSA7p05n10Lg0rlEEdGo8yNXaVlOIw4ntrLd4= Subject key identifier: 39:E6:5F:E9:A6:3E:7A:D6:00:CE:05:C7:62:E2:89:61:F0:42:9D:CA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 58D2570AA7D78B0E2DFF37457B33BDD5A9F63264 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/30151f9e-f6c9-40d6-bebe-daced959a278.roa Signing time: Tue 13 May 2025 00:20:17 +0000 ROA not before: Tue 13 May 2025 00:20:17 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:2880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d2:57:0a:a7:d7:8b:0e:2d:ff:37:45:7b:33:bd:d5:a9:f6:32:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:20:17 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=b368539efe32b9cf545cac322f60f9618a1932a99b79ce2d76602ca0fa7715b5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:66:11:35:8c:f1:83:3d:94:b8:e5:66:28:89: f5:15:de:38:ed:cf:ea:39:aa:92:fb:bb:08:bd:18: 30:38:dc:56:d7:c8:5c:12:6e:18:ac:23:de:0c:5b: a9:17:ae:4d:a0:39:c6:24:85:4e:bf:cf:da:fd:f6: 58:9f:b7:30:c9:27:16:0e:dd:7d:9e:df:9f:ce:80: d6:12:3a:3e:7f:3e:a0:8b:f5:ab:ee:d0:fd:ad:85: ee:c3:28:a8:77:1e:20:2a:0a:5a:52:8c:12:31:c7: ba:96:a2:af:88:dd:4a:d2:44:b4:fe:3d:24:79:23: da:37:cf:6c:0d:cc:1b:e7:30:76:64:50:00:ca:25: 19:57:5c:6d:94:37:a1:c7:42:82:72:2a:7b:bd:41: 17:26:8c:b3:87:18:f9:0e:38:8f:f0:37:a0:db:6a: 9b:9c:f7:28:63:2d:7b:d3:96:7c:c9:3e:f1:7d:73: de:19:b8:66:81:7f:d0:5f:25:f7:2e:39:fb:bc:1a: fd:05:a1:1d:f2:bd:a4:66:99:c8:a8:95:dc:9c:f9: f4:51:3c:c3:d6:16:c6:d4:3b:0b:d6:2e:41:55:af: 46:14:89:8b:ae:70:dd:bc:43:3c:e3:56:50:e3:30: 60:5d:f9:7d:78:d5:97:90:b9:e1:5d:1e:da:a0:80: 2b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E6:5F:E9:A6:3E:7A:D6:00:CE:05:C7:62:E2:89:61:F0:42:9D:CA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/30151f9e-f6c9-40d6-bebe-daced959a278.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:2880::/48 Signature Algorithm: sha256WithRSAEncryption 60:ff:c0:f6:09:b4:bf:84:0c:aa:5d:3d:41:d8:c9:75:37:8d: 93:fa:8b:97:37:cd:c1:2d:94:9f:76:2e:74:48:c4:4a:91:be: 14:b6:5e:9b:0d:45:00:6b:88:43:4e:bf:90:15:e8:da:f8:0e: 91:85:0a:25:f7:2b:a9:10:d4:e7:88:d8:09:dc:d7:b9:a4:fc: ab:85:27:d3:96:b2:5b:d1:e3:2b:6a:27:16:25:27:4d:fc:a7: 5f:30:2f:fe:2f:13:78:77:bd:48:61:e1:12:4e:c6:1d:19:1d: 8b:16:0a:55:1f:ff:b0:cf:02:4c:da:85:39:c9:0a:40:24:59: 87:f3:55:c0:c6:be:05:0c:9e:e4:9a:8c:83:86:53:38:64:8a: 6a:4a:49:2d:21:6a:53:68:f1:43:80:a7:41:60:45:d7:65:e5: d2:21:dc:9e:5e:9a:38:cb:f9:ed:72:0c:a5:44:cc:dd:a5:84: 38:c2:f3:ef:f4:70:30:75:97:e2:20:5b:e4:c1:6d:6b:8e:5c: cf:4d:09:08:3d:b0:b3:0b:4b:36:a6:ab:ec:3b:af:03:2a:0b: 6f:84:b5:3f:f6:18:a6:9a:c1:74:3c:89:39:3c:a7:ba:fd:26: 39:76:5e:dd:96:d7:20:bc:47:e6:35:63:1e:75:c0:cb:00:25: 73:43:db:5f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUWNJXCqfXiw4t/zdFezO91an2MmQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxMzAwMjAxN1oX DTI1MDYxNzIzNTk1OVowejFJMEcGA1UEBRNAYjM2ODUzOWVmZTMyYjljZjU0NWNh YzMyMmY2MGY5NjE4YTE5MzJhOTliNzljZTJkNzY2MDJjYTBmYTc3MTViNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGYRNYzxgz2UuOVmKIn1Fd447c/q OaqS+7sIvRgwONxW18hcEm4YrCPeDFupF65NoDnGJIVOv8/a/fZYn7cwyScWDt19 nt+fzoDWEjo+fz6gi/Wr7tD9rYXuwyiodx4gKgpaUowSMce6lqKviN1K0kS0/j0k eSPaN89sDcwb5zB2ZFAAyiUZV1xtlDehx0KCcip7vUEXJoyzhxj5DjiP8Deg22qb nPcoYy1705Z8yT7xfXPeGbhmgX/QXyX3Ljn7vBr9BaEd8r2kZpnIqJXcnPn0UTzD 1hbG1DsL1i5BVa9GFImLrnDdvEM841ZQ4zBgXfl9eNWXkLnhXR7aoIArZwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDnmX+mmPnrWAM4Fx2LiiWHwQp3KMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzMwMTUxZjllLWY2YzktNDBkNi1iZWJlLWRhY2VkOTU5YTI3OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8iiAMA0GCSqGSIb3DQEBCwUAA4IBAQBg/8D2CbS/hAyqXT1B 2Ml1N42T+ouXN83BLZSfdi50SMRKkb4Utl6bDUUAa4hDTr+QFeja+A6RhQol9yup ENTniNgJ3Ne5pPyrhSfTlrJb0eMraicWJSdN/KdfMC/+LxN4d71IYeESTsYdGR2L FgpVH/+wzwJM2oU5yQpAJFmH81XAxr4FDJ7kmoyDhlM4ZIpqSkktIWpTaPFDgKdB YEXXZeXSIdyeXpo4y/ntcgylRMzdpYQ4wvPv9HAwdZfiIFvkwW1rjlzPTQkIPbCz C0s2pqvsO68DKgtvhLU/9himmsF0PIk5PKe6/SY5dl7dltcgvEfmNWMedcDLACVz Q9tf -----END CERTIFICATE-----Generated at Tue Jun 3 23:31:51 2025 by rpki-client