$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c92d86f-d096-414c-bd9a-599ba8ca213f.roa File: 5c92d86f-d096-414c-bd9a-599ba8ca213f.roa (raw, json) Hash identifier: v1LOS5qn34H9+kQKe/43U2JpjFOS/oo/XgTSmV4BHUk= Subject key identifier: 11:FF:6F:E4:9E:7E:E5:6F:1D:26:61:7C:3A:6D:36:69:3D:39:EA:3B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 06BDB811DE18915C0E639C174A417876A9995C3C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c92d86f-d096-414c-bd9a-599ba8ca213f.roa Signing time: Mon 07 Jul 2025 15:10:59 +0000 ROA not before: Mon 07 Jul 2025 15:10:59 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:2800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:bd:b8:11:de:18:91:5c:0e:63:9c:17:4a:41:78:76:a9:99:5c:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 7 15:10:59 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=549196a6511cece8d9175ab4682ed3fc661a0d4302370f66332f851e85a8c8b9, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:31:b9:2d:03:54:d0:9e:7d:7d:fa:96:2d:1d: 88:47:d8:ca:dd:fa:45:e9:0e:dd:dc:b0:b3:56:c3: 94:ea:08:a1:20:c4:c6:b5:b2:ce:e0:f0:18:d3:29: 07:f1:24:c9:ef:fd:62:1a:c1:56:bb:b7:fd:2e:84: cc:d2:28:67:9e:d8:d1:b4:59:fd:8b:3e:b3:ba:8b: 45:93:05:b5:e1:e2:2b:d8:75:8c:46:0a:7a:36:35: f2:e5:53:e4:32:24:35:30:e1:e4:d7:de:63:e4:fc: e5:11:a1:63:92:ce:75:11:7d:72:29:49:38:42:00: 61:d3:90:3c:a7:6e:0e:b0:75:85:1d:bf:43:cb:f2: ad:ce:e8:49:e6:c6:99:52:7c:30:a4:13:75:f3:04: f8:1c:c4:86:f9:db:79:ea:45:84:96:89:75:49:f6: 79:a9:22:80:8f:ee:1d:2a:e6:60:c1:46:0b:2c:6d: ed:44:5a:2f:b1:c2:4d:10:b7:a1:49:62:cd:bf:44: d5:e7:af:6d:0a:51:0b:2f:5c:48:b0:95:4f:2c:bf: b3:e4:28:98:9f:ef:95:66:44:f1:17:96:bc:06:6f: 3b:67:60:36:d8:e7:a0:b2:97:fd:36:9c:c6:14:fc: c2:07:bd:50:48:99:b2:e0:1d:68:d9:9e:45:06:63: ba:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FF:6F:E4:9E:7E:E5:6F:1D:26:61:7C:3A:6D:36:69:3D:39:EA:3B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c92d86f-d096-414c-bd9a-599ba8ca213f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:2800::/40 Signature Algorithm: sha256WithRSAEncryption 5b:b0:2a:7c:70:9d:3c:84:7d:27:0b:7e:f6:9e:40:cb:5f:a2: b0:3c:0c:41:b9:d2:3c:e7:d1:50:19:df:31:2f:22:89:9d:ff: 25:e4:78:95:72:b5:c9:89:49:46:a9:e4:a6:00:ca:88:d3:ee: 6d:b4:98:b1:e4:dd:cb:ca:76:7b:21:d0:78:54:6a:8f:db:a2: c2:d6:e5:0d:b8:a2:60:72:fc:5b:6f:c8:dd:3d:32:3a:c8:b5: 50:ea:41:a8:2e:00:ce:23:76:4a:28:d0:f2:ca:05:76:2e:f4: bc:b2:b0:ad:89:9f:05:01:8f:67:77:20:38:52:76:c1:21:50: d1:b2:25:ba:34:91:b4:e1:f8:b2:24:18:36:39:ec:44:ad:2a: 13:66:9d:d8:e9:8e:ce:64:c3:9f:1b:95:d5:67:0c:19:4f:7a: 50:58:fb:d8:bd:99:34:52:9c:78:43:a4:6b:c9:d0:8d:55:e2: 6a:9a:fb:a0:f2:ac:7f:15:c8:6d:51:7f:ba:4f:3f:63:53:4b: f2:eb:d3:fb:68:b6:e6:86:5a:70:87:a7:60:2e:2c:92:4d:b4: 2e:52:5d:62:be:12:e2:ed:f5:25:10:bd:cd:39:ba:36:a1:cd: 24:1f:13:85:1f:06:36:32:2f:52:84:99:b2:9b:2a:46:c4:bc: ae:8b:a0:89 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUBr24Ed4YkVwOY5wXSkF4dqmZXDwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcwNzE1MTA1OVoX DTI1MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANTQ5MTk2YTY1MTFjZWNlOGQ5MTc1 YWI0NjgyZWQzZmM2NjFhMGQ0MzAyMzcwZjY2MzMyZjg1MWU4NWE4YzhiOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzG5LQNU0J59ffqWLR2IR9jK3fpF 6Q7d3LCzVsOU6gihIMTGtbLO4PAY0ykH8STJ7/1iGsFWu7f9LoTM0ihnntjRtFn9 iz6zuotFkwW14eIr2HWMRgp6NjXy5VPkMiQ1MOHk195j5PzlEaFjks51EX1yKUk4 QgBh05A8p24OsHWFHb9Dy/KtzuhJ5saZUnwwpBN18wT4HMSG+dt56kWElol1SfZ5 qSKAj+4dKuZgwUYLLG3tRFovscJNELehSWLNv0TV569tClELL1xIsJVPLL+z5CiY n++VZkTxF5a8Bm87Z2A22Oegspf9NpzGFPzCB71QSJmy4B1o2Z5FBmO6kQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBH/b+SefuVvHSZhfDptNmk9Oeo7MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVjOTJkODZmLWQwOTYtNDE0Yy1iZDlhLTU5OWJhOGNhMjEzZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacCgwDQYJKoZIhvcNAQELBQADggEBAFuwKnxwnTyEfScLfvae QMtforA8DEG50jzn0VAZ3zEvIomd/yXkeJVytcmJSUap5KYAyojT7m20mLHk3cvK dnsh0HhUao/bosLW5Q24omBy/FtvyN09MjrItVDqQaguAM4jdkoo0PLKBXYu9Lyy sK2JnwUBj2d3IDhSdsEhUNGyJbo0kbTh+LIkGDY57EStKhNmndjpjs5kw58bldVn DBlPelBY+9i9mTRSnHhDpGvJ0I1V4mqa+6DyrH8VyG1Rf7pPP2NTS/Lr0/totuaG WnCHp2AuLJJNtC5SXWK+EuLt9SUQvc05ujahzSQfE4UfBjYyL1KEmbKbKkbEvK6L oIk= -----END CERTIFICATE-----Generated at Thu Jul 31 00:58:51 2025 by rpki-client