$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa File: 55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa (raw, json) Hash identifier: Tw5raxYYg7Vww3EtYFz2hQtb6j1etUkUpt89wHVa2ik= Subject key identifier: 05:D9:90:9E:59:06:5D:11:F4:47:6E:49:0D:CE:A7:0B:17:1A:27:6C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1E22C9EECA7D50C98795663D29A5323CC9666458 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa Signing time: Fri 01 Aug 2025 00:00:11 +0000 ROA not before: Fri 01 Aug 2025 00:00:11 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 00:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:22:c9:ee:ca:7d:50:c9:87:95:66:3d:29:a5:32:3c:c9:66:64:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 1 00:00:11 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=cf17d4c43b8552a74223ef615a55743c20141765fc321ef6c6eced777b066c54, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4f:e9:f0:1e:fa:78:43:60:5f:91:cd:13:f5: 98:84:53:42:c2:eb:68:2c:07:47:92:dc:0e:ad:da: 1a:3a:29:6d:8e:d5:1c:a8:47:7e:ec:d4:43:28:6c: ea:fd:0a:e2:b2:d3:d2:60:1d:32:cb:5e:98:5f:7c: 14:e7:7b:65:1c:50:a4:85:5a:7c:47:09:df:76:b3: 92:28:4a:3b:8b:dc:8f:4f:76:61:0d:62:10:22:69: f3:3d:59:15:d5:60:38:cd:be:d7:5a:50:08:cd:90: 32:a4:55:24:1c:ce:f2:87:cf:54:1c:44:ab:8e:6a: 5c:f8:9b:32:a5:74:1f:26:e8:14:23:60:b8:d1:46: 20:93:9c:f4:b5:68:9e:8c:16:ba:d3:87:60:10:67: b3:6c:00:7e:eb:e3:5b:22:89:50:4a:79:ac:e7:1f: 7b:75:61:fe:05:bd:f7:8a:a7:c3:ae:a5:97:43:58: 64:99:dc:e0:f1:bc:34:c2:6c:9d:ee:78:43:5b:71: a6:6b:f0:df:90:0e:68:e9:91:0f:41:e5:d5:1a:fe: 78:1b:85:3e:4e:c0:a9:cc:06:0a:d2:44:47:34:1a: fc:69:89:0e:4f:ca:e2:ec:ee:bd:8f:ac:db:8e:03: d4:18:50:4a:95:f5:ab:83:ba:bf:54:b4:23:34:e7: 4a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D9:90:9E:59:06:5D:11:F4:47:6E:49:0D:CE:A7:0B:17:1A:27:6C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:800::/40 Signature Algorithm: sha256WithRSAEncryption bf:43:82:8f:08:fd:4c:fe:d6:48:3c:28:9a:8c:bd:49:29:af: 5a:c8:61:d2:da:1f:e7:fb:dc:b0:cc:5c:85:4d:5e:53:78:52: ea:9f:9c:c8:ee:1f:02:5c:1b:2e:24:ae:99:d8:37:31:1d:f1: bb:11:c6:f0:74:d9:81:e6:2a:03:ee:31:e4:0f:f9:12:d3:6d: 9f:72:7c:dd:25:15:a9:79:7a:d9:9d:fc:f2:c5:4b:25:ca:22: 4c:5a:60:92:f9:fb:17:15:d1:60:98:83:ac:0b:21:78:bc:4f: b4:46:0c:a0:59:32:73:c3:ed:68:1f:66:d5:e3:e5:60:f0:12: 52:e6:23:1d:81:41:5d:b8:8d:56:0a:81:0d:eb:0c:66:ef:e8: bd:71:ef:72:f6:34:91:0c:b0:b7:c8:f0:9c:b4:2b:de:fc:e9: bf:7f:b6:3d:c1:29:c1:a7:9e:5d:3a:16:14:4a:b4:db:41:30: b5:7d:1a:1f:60:04:fa:d8:e3:67:dd:5e:52:59:a5:5c:5d:b3: e1:be:80:b8:68:39:57:3f:bc:1e:5a:8f:39:5d:9a:6e:66:52: 17:94:4f:d1:de:46:d2:d9:59:f8:a5:8c:d8:f2:87:62:e0:5b: a9:03:cc:ab:ed:7d:ad:e5:59:c8:28:c4:64:be:9c:a1:64:48: 73:de:04:bd -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUHiLJ7sp9UMmHlWY9KaUyPMlmZFgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgwMTAwMDAxMVoX DTI1MDkwNTIzNTk1OVowejFJMEcGA1UEBRNAY2YxN2Q0YzQzYjg1NTJhNzQyMjNl ZjYxNWE1NTc0M2MyMDE0MTc2NWZjMzIxZWY2YzZlY2VkNzc3YjA2NmM1NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtE/p8B76eENgX5HNE/WYhFNCwuto LAdHktwOrdoaOiltjtUcqEd+7NRDKGzq/QristPSYB0yy16YX3wU53tlHFCkhVp8 RwnfdrOSKEo7i9yPT3ZhDWIQImnzPVkV1WA4zb7XWlAIzZAypFUkHM7yh89UHESr jmpc+JsypXQfJugUI2C40UYgk5z0tWiejBa604dgEGezbAB+6+NbIolQSnms5x97 dWH+Bb33iqfDrqWXQ1hkmdzg8bw0wmyd7nhDW3Gma/DfkA5o6ZEPQeXVGv54G4U+ TsCpzAYK0kRHNBr8aYkOT8ri7O69j6zbjgPUGFBKlfWrg7q/VLQjNOdKQQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAXZkJ5ZBl0R9EduSQ3OpwsXGidsMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1ZGU0ZDNjLWMyNjItNDRlMi05YjRiLTRkYjZiZWRjOGM2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaAgwDQYJKoZIhvcNAQELBQADggEBAL9Dgo8I/Uz+1kg8KJqM vUkpr1rIYdLaH+f73LDMXIVNXlN4UuqfnMjuHwJcGy4krpnYNzEd8bsRxvB02YHm KgPuMeQP+RLTbZ9yfN0lFal5etmd/PLFSyXKIkxaYJL5+xcV0WCYg6wLIXi8T7RG DKBZMnPD7WgfZtXj5WDwElLmIx2BQV24jVYKgQ3rDGbv6L1x73L2NJEMsLfI8Jy0 K9786b9/tj3BKcGnnl06FhRKtNtBMLV9Gh9gBPrY42fdXlJZpVxds+G+gLhoOVc/ vB5ajzldmm5mUheUT9HeRtLZWfiljNjyh2LgW6kDzKvtfa3lWcgoxGS+nKFkSHPe BL0= -----END CERTIFICATE-----Generated at Wed Aug 20 10:40:17 2025 by rpki-client