$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3f319ba4-4f75-49fd-9a3b-a90c938a24af.roa File: 3f319ba4-4f75-49fd-9a3b-a90c938a24af.roa (raw, json) Hash identifier: yQqUqiRu8ZDwlnTWSq5909Ue9e5Apj0envs83dZ3mE4= Subject key identifier: 6E:89:30:56:5D:10:0E:0A:8B:59:E8:E2:FB:C8:55:86:4D:69:3F:8C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6223FA2F08EAEAD388DDE1329435819501E805CF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3f319ba4-4f75-49fd-9a3b-a90c938a24af.roa Signing time: Sat 19 Jul 2025 00:00:11 +0000 ROA not before: Sat 19 Jul 2025 00:00:11 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da32:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:23:fa:2f:08:ea:ea:d3:88:dd:e1:32:94:35:81:95:01:e8:05:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 19 00:00:11 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=7deceaee7daa0e218d9259bd4bd016878d75aaf1248355ced88ebd2f1dbbf4c4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6e:1f:d9:09:af:c4:29:fd:ea:a7:64:a3:32: 9a:b0:19:a0:fa:20:e6:97:eb:13:1d:63:10:e2:96: e5:8f:c0:eb:fa:7c:13:61:7c:3c:8d:a9:e0:77:44: eb:01:a0:e5:c6:e1:e9:96:6b:1a:ec:8c:b0:c6:9a: 95:6c:35:42:0c:83:13:1b:8b:13:5a:fb:9e:36:f8: 4e:07:d6:ff:d3:9a:6d:89:42:83:93:da:1d:0f:6d: 3f:51:a7:36:6c:84:29:4d:d2:21:60:91:d4:05:04: 56:7f:21:36:b6:a1:4d:05:5b:55:f8:6b:f9:8e:b8: a3:0d:66:23:b2:c6:49:b9:d2:ea:d9:11:59:f6:6d: 42:77:0c:9a:b9:d9:1c:23:84:f1:69:e2:ac:09:a9: 19:68:df:48:90:23:5c:43:04:97:3e:58:2a:f6:7d: 78:a0:3d:ef:04:4a:40:6d:e0:21:bc:40:dc:ef:cb: 10:f4:78:9d:08:73:c0:06:a0:23:93:12:2f:9b:da: 36:cb:2d:85:d9:51:5a:a3:f7:65:f1:ad:10:08:d1: 07:ca:b8:a5:f7:82:8d:18:97:77:96:ad:aa:32:cf: 5a:89:1b:69:e7:2e:88:e6:eb:f7:65:8b:55:76:1d: a9:3c:f4:78:8b:88:08:9e:e4:45:fd:9a:c2:6f:28: 3b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:89:30:56:5D:10:0E:0A:8B:59:E8:E2:FB:C8:55:86:4D:69:3F:8C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3f319ba4-4f75-49fd-9a3b-a90c938a24af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da32:4000::/40 Signature Algorithm: sha256WithRSAEncryption 12:be:28:b7:d1:40:9c:b2:77:31:4c:a2:94:39:62:e1:63:65: 96:31:72:04:89:3e:3d:36:4d:34:e6:24:9e:5e:f6:c8:15:cb: a5:50:64:fa:08:ef:8b:0c:a7:7a:3d:3c:fc:ca:a4:2e:2b:4c: aa:81:4a:6e:49:07:84:19:f4:c2:93:3f:42:8a:af:55:22:06: 66:1a:52:f1:ab:db:53:5a:c8:be:52:56:ec:ab:63:42:a1:0d: e9:65:27:e3:46:a8:cb:05:a9:fc:a0:0f:3c:a7:2f:27:44:85: ad:6a:d1:19:10:80:ec:0f:40:d1:64:b7:43:c7:28:05:aa:42: 86:3e:10:1f:70:f6:51:d6:a3:fa:58:03:37:02:5a:ef:76:e6: af:07:72:79:20:55:2c:81:d4:9e:bc:d1:af:a7:93:a5:d9:9e: 5c:32:5f:af:2e:79:29:7b:c5:16:0d:b9:b6:1c:9c:3a:d2:86: f8:2d:61:20:ed:47:4d:7a:df:90:f1:23:8b:bc:c0:ca:fe:3f: cb:10:bd:dc:da:33:e5:25:43:93:80:31:6b:3d:b1:27:e5:c9: c2:86:34:89:35:05:e0:b8:39:c4:fe:31:dd:63:8f:a0:45:3f: 3b:a5:8a:0e:b3:6c:ed:26:98:0f:fc:36:35:0c:78:2a:d1:d4: 0a:8b:fc:dc -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYiP6Lwjq6tOI3eEylDWBlQHoBc8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcxOTAwMDAxMVoX DTI1MDgyMzIzNTk1OVowejFJMEcGA1UEBRNAN2RlY2VhZWU3ZGFhMGUyMThkOTI1 OWJkNGJkMDE2ODc4ZDc1YWFmMTI0ODM1NWNlZDg4ZWJkMmYxZGJiZjRjNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxG4f2QmvxCn96qdkozKasBmg+iDm l+sTHWMQ4pblj8Dr+nwTYXw8jangd0TrAaDlxuHplmsa7IywxpqVbDVCDIMTG4sT WvueNvhOB9b/05ptiUKDk9odD20/Uac2bIQpTdIhYJHUBQRWfyE2tqFNBVtV+Gv5 jrijDWYjssZJudLq2RFZ9m1CdwyaudkcI4TxaeKsCakZaN9IkCNcQwSXPlgq9n14 oD3vBEpAbeAhvEDc78sQ9HidCHPABqAjkxIvm9o2yy2F2VFao/dl8a0QCNEHyril 94KNGJd3lq2qMs9aiRtp5y6I5uv3ZYtVdh2pPPR4i4gInuRF/ZrCbyg7vwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFG6JMFZdEA4Ki1no4vvIVYZNaT+MMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzNmMzE5YmE0LTRmNzUtNDlmZC05YTNiLWE5MGM5MzhhMjRhZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaMkAwDQYJKoZIhvcNAQELBQADggEBABK+KLfRQJyydzFMopQ5 YuFjZZYxcgSJPj02TTTmJJ5e9sgVy6VQZPoI74sMp3o9PPzKpC4rTKqBSm5JB4QZ 9MKTP0KKr1UiBmYaUvGr21NayL5SVuyrY0KhDellJ+NGqMsFqfygDzynLydEha1q 0RkQgOwPQNFkt0PHKAWqQoY+EB9w9lHWo/pYAzcCWu925q8HcnkgVSyB1J680a+n k6XZnlwyX68ueSl7xRYNubYcnDrShvgtYSDtR01635DxI4u8wMr+P8sQvdzaM+Ul Q5OAMWs9sSflycKGNIk1BeC4OcT+Md1jj6BFPzulig6zbO0mmA/8NjUMeCrR1AqL /Nw= -----END CERTIFICATE-----Generated at Thu Jul 31 00:59:15 2025 by rpki-client