$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/56aba584-e6fd-42ac-9d3c-f747713e6c50.roa File: 56aba584-e6fd-42ac-9d3c-f747713e6c50.roa (raw, json) Hash identifier: 9U7AHjeQBSfKT0ERd9PvkZ3nA3LQ19wWwdf/lmyDd4c= Subject key identifier: 24:15:5B:A7:D8:A3:1E:28:1D:04:CC:9E:47:27:C2:8E:BC:EF:EE:22 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 76B773025A211F372064792B99D80EDEED512E9D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/56aba584-e6fd-42ac-9d3c-f747713e6c50.roa Signing time: Tue 13 May 2025 00:01:37 +0000 ROA not before: Tue 13 May 2025 00:01:37 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:c840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b7:73:02:5a:21:1f:37:20:64:79:2b:99:d8:0e:de:ed:51:2e:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:01:37 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=1178229c853c1b94833a7c706d76540a0b37f891f424f47224fb3a5c78edee56, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c1:ac:b3:9b:5a:3d:63:98:35:5f:8d:f0:e2: 57:46:24:bd:ae:36:e4:bd:de:33:16:86:4d:77:8e: 2d:a5:6a:00:15:33:3a:2c:89:c4:85:ff:cd:f4:75: 73:d7:34:db:50:7d:7e:9b:2c:26:74:e9:3e:da:c9: e7:a6:da:81:8b:80:c1:2d:57:2e:de:f9:3d:7f:a5: 19:08:dc:d6:97:21:d8:12:6d:0a:b5:d7:1f:6b:f4: ad:c8:31:fc:3f:ec:c6:a9:16:e9:c5:20:21:9c:7f: 90:2d:a1:5c:0d:8c:bd:9d:f7:87:89:b3:b0:6e:f3: 6c:ee:51:db:13:0a:9f:24:69:98:90:98:9a:4e:4c: e2:4f:9b:7f:5a:9b:4b:5d:25:36:0c:78:50:15:9f: 1c:aa:ef:18:31:f5:d5:93:21:1a:f0:28:5a:62:c9: dd:47:b6:74:74:92:3c:7a:c3:85:13:10:23:63:cb: 28:a0:60:fb:79:0e:ed:0f:50:de:18:e1:14:ac:b7: 57:c2:15:5c:85:71:00:60:6e:c9:68:25:7d:a2:2d: 3c:25:30:4a:8f:53:d2:a7:10:1c:a4:dd:fa:ea:e6: 79:ce:2e:fa:b5:0f:11:cb:be:1b:89:1b:03:ad:30: 2f:a7:5d:f4:42:80:42:8a:c5:0b:e5:7b:17:04:f8: 87:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:15:5B:A7:D8:A3:1E:28:1D:04:CC:9E:47:27:C2:8E:BC:EF:EE:22 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/56aba584-e6fd-42ac-9d3c-f747713e6c50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:c840::/48 Signature Algorithm: sha256WithRSAEncryption 66:8b:69:30:35:ac:43:53:3e:de:c8:93:38:b4:8a:cb:95:18: 75:a3:73:eb:64:d9:f8:2c:e0:4a:b3:7c:51:3c:16:d8:7d:43: b1:1e:a9:07:c9:48:70:66:7a:1b:2a:56:c6:4a:e2:33:9a:6e: 60:d7:f4:29:ff:0f:18:79:d2:90:d5:ec:96:3f:46:9c:58:e3: 38:fb:e9:e8:a9:b8:30:17:c1:7c:46:89:90:35:20:be:20:c3: 30:73:d6:9f:39:66:d7:25:65:e7:b2:24:0b:85:c3:77:22:97: b3:c4:74:89:12:c1:93:ba:8a:c7:72:f1:0c:24:fa:79:18:4b: 55:92:76:8c:76:15:de:54:9d:14:62:5c:39:86:6e:85:58:34: 40:40:59:ae:b1:fd:a0:16:c9:70:3a:6b:1b:63:52:73:21:26: 72:44:b5:1c:bb:60:ba:3b:1f:a8:6a:0a:47:de:db:49:9a:e2: 64:25:d0:b1:01:2f:98:a0:51:8b:70:be:ac:38:f3:f8:bc:99: 23:c1:1c:45:22:8d:d0:e0:24:73:f2:08:c0:be:cb:70:69:bf: f1:d4:38:e0:be:b7:71:77:d7:96:eb:14:18:a1:d5:1c:09:60: 6e:b0:30:ee:60:6a:68:ca:7c:a9:3b:5b:88:d0:1f:2a:b2:b6: 66:1c:30:51 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdrdzAlohHzcgZHkrmdgO3u1RLp0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxMzAwMDEzN1oX DTI1MDYxNzIzNTk1OVowejFJMEcGA1UEBRNAMTE3ODIyOWM4NTNjMWI5NDgzM2E3 YzcwNmQ3NjU0MGEwYjM3Zjg5MWY0MjRmNDcyMjRmYjNhNWM3OGVkZWU1NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8Gss5taPWOYNV+N8OJXRiS9rjbk vd4zFoZNd44tpWoAFTM6LInEhf/N9HVz1zTbUH1+mywmdOk+2snnptqBi4DBLVcu 3vk9f6UZCNzWlyHYEm0Ktdcfa/StyDH8P+zGqRbpxSAhnH+QLaFcDYy9nfeHibOw bvNs7lHbEwqfJGmYkJiaTkziT5t/WptLXSU2DHhQFZ8cqu8YMfXVkyEa8ChaYsnd R7Z0dJI8esOFExAjY8sooGD7eQ7tD1DeGOEUrLdXwhVchXEAYG7JaCV9oi08JTBK j1PSpxAcpN366uZ5zi76tQ8Ry74biRsDrTAvp130QoBCisUL5XsXBPiHnQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCQVW6fYox4oHQTMnkcnwo687+4iMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU2YWJhNTg0LWU2ZmQtNDJhYy05ZDNjLWY3NDc3MTNlNmM1MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAMhAMA0GCSqGSIb3DQEBCwUAA4IBAQBmi2kwNaxDUz7eyJM4 tIrLlRh1o3PrZNn4LOBKs3xRPBbYfUOxHqkHyUhwZnobKlbGSuIzmm5g1/Qp/w8Y edKQ1eyWP0acWOM4++noqbgwF8F8RomQNSC+IMMwc9afOWbXJWXnsiQLhcN3Ipez xHSJEsGTuorHcvEMJPp5GEtVknaMdhXeVJ0UYlw5hm6FWDRAQFmusf2gFslwOmsb Y1JzISZyRLUcu2C6Ox+oagpH3ttJmuJkJdCxAS+YoFGLcL6sOPP4vJkjwRxFIo3Q 4CRz8gjAvstwab/x1Djgvrdxd9eW6xQYodUcCWBusDDuYGpoynypO1uI0B8qsrZm HDBR -----END CERTIFICATE-----Generated at Tue Jun 3 23:33:04 2025 by rpki-client