$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/60a9d1f9-fbb2-44af-9d72-a43ce4c06c7b.roa File: 60a9d1f9-fbb2-44af-9d72-a43ce4c06c7b.roa (raw, json) Hash identifier: nQmoaCQJ3oZCqm7B9zHj+Jd0caB1ycKh0eebTgRr4K4= Subject key identifier: AD:89:AF:A9:42:08:B7:55:A8:80:71:A6:2B:6A:5C:78:DF:66:08:A1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5BBD880C5B6A371D0A55E7835BC98CF508F6F1D0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/60a9d1f9-fbb2-44af-9d72-a43ce4c06c7b.roa Signing time: Fri 23 May 2025 00:01:03 +0000 ROA not before: Fri 23 May 2025 00:01:03 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daef:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bd:88:0c:5b:6a:37:1d:0a:55:e7:83:5b:c9:8c:f5:08:f6:f1:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 23 00:01:03 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=19cdaf87c14c5033489bd472e8ba073f948ad455c9e6f3c8d5476fcd6b257647, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:07:25:59:d1:f9:05:ba:00:7b:7e:09:8b:17: 03:d2:68:a2:0b:f0:ad:ae:68:5e:9a:11:0f:f8:a6: 80:e8:e4:30:c4:31:15:b4:a3:ef:f2:5f:70:e6:a4: 0c:4a:24:48:35:2c:07:5a:4d:22:9c:a3:d4:51:ec: 12:c3:ef:94:ba:91:e6:60:87:b3:72:70:23:69:3f: 73:b5:eb:f1:2d:e6:33:b1:1f:ea:49:b9:3d:5b:57: 6f:b2:ae:78:b7:9b:b5:fe:e1:02:da:91:02:50:4f: 98:f8:87:26:75:5d:a2:81:f8:a3:f9:1b:3b:99:ae: c3:7d:68:36:e0:62:8b:4b:9d:0c:b4:3b:db:0b:77: f8:a8:eb:f8:a8:2b:5f:27:50:13:67:0d:ce:c4:f8: 62:bd:03:fb:73:0a:dc:8f:91:42:1d:dc:cb:5d:5d: 1b:ae:ba:b1:e9:7f:eb:d3:5d:79:ad:6f:6f:36:87: f0:a7:31:60:f0:4e:c6:6a:91:cf:24:39:cf:18:2f: f5:f9:9b:a4:50:9e:01:7a:07:cc:dc:4b:bb:f0:db: 6d:79:5b:3f:7b:90:96:05:82:13:c4:98:3e:60:3b: 90:bd:5e:e9:2b:42:dd:79:e7:b6:83:a0:7e:a4:00: 45:b2:c7:b8:10:29:5a:8e:f0:f3:86:cf:cb:f7:a8: 37:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:89:AF:A9:42:08:B7:55:A8:80:71:A6:2B:6A:5C:78:DF:66:08:A1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/60a9d1f9-fbb2-44af-9d72-a43ce4c06c7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daef:1000::/40 Signature Algorithm: sha256WithRSAEncryption 79:ed:8b:33:e7:ad:d7:0b:af:65:4d:f1:22:86:6e:6f:33:46: c4:27:97:7f:6d:59:90:1f:8b:2b:1e:67:2a:61:e9:46:99:39: 38:cb:7a:c5:1a:34:ec:d1:35:21:32:16:aa:dc:34:bc:38:3e: e6:be:d9:b0:ce:03:c5:ca:d3:30:21:c5:3c:0d:d2:8f:06:0e: 67:80:97:53:e9:6a:03:50:07:b0:16:ce:ed:a9:ed:ff:fa:d8: 33:63:35:f1:80:15:9e:c1:a0:2f:1e:90:98:bd:17:ef:89:a1: 6b:dc:50:99:da:d6:b3:75:09:b1:49:cd:aa:c9:be:73:e6:93: e9:b0:b4:29:cb:21:fb:86:aa:23:12:01:0e:57:22:01:56:bd: 8e:91:49:1c:57:a0:b4:96:df:1f:07:83:fe:99:aa:3c:7e:b6: 74:16:97:dc:9b:2f:db:0c:73:44:26:84:83:1f:7a:36:15:5c: 55:f5:3c:9b:52:65:4a:7f:7f:a6:cf:ee:71:f8:bd:99:d3:0c: a6:b0:22:ab:85:cb:17:ca:8d:99:62:6c:1e:c0:59:9d:cd:e8: 24:00:29:aa:7f:cf:cd:66:03:68:a4:10:88:e6:67:24:b4:65: b1:62:9a:a5:4e:d3:ca:31:ce:36:60:22:b8:93:de:5f:a1:d0: 68:b2:6f:4d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUW72IDFtqNx0KVeeDW8mM9Qj28dAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUyMzAwMDEwM1oX DTI1MDYyNzIzNTk1OVowejFJMEcGA1UEBRNAMTljZGFmODdjMTRjNTAzMzQ4OWJk NDcyZThiYTA3M2Y5NDhhZDQ1NWM5ZTZmM2M4ZDU0NzZmY2Q2YjI1NzY0NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1QclWdH5BboAe34JixcD0miiC/Ct rmhemhEP+KaA6OQwxDEVtKPv8l9w5qQMSiRINSwHWk0inKPUUewSw++UupHmYIez cnAjaT9ztevxLeYzsR/qSbk9W1dvsq54t5u1/uEC2pECUE+Y+IcmdV2igfij+Rs7 ma7DfWg24GKLS50MtDvbC3f4qOv4qCtfJ1ATZw3OxPhivQP7cwrcj5FCHdzLXV0b rrqx6X/r0115rW9vNofwpzFg8E7GapHPJDnPGC/1+ZukUJ4BegfM3Eu78NtteVs/ e5CWBYITxJg+YDuQvV7pK0Ldeee2g6B+pABFsse4EClajvDzhs/L96g3EwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFK2Jr6lCCLdVqIBxpitqXHjfZgihMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYwYTlkMWY5LWZiYjItNDRhZi05ZDcyLWE0M2NlNGMwNmM3Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba7xAwDQYJKoZIhvcNAQELBQADggEBAHntizPnrdcLr2VN8SKG bm8zRsQnl39tWZAfiyseZyph6UaZOTjLesUaNOzRNSEyFqrcNLw4Pua+2bDOA8XK 0zAhxTwN0o8GDmeAl1PpagNQB7AWzu2p7f/62DNjNfGAFZ7BoC8ekJi9F++JoWvc UJna1rN1CbFJzarJvnPmk+mwtCnLIfuGqiMSAQ5XIgFWvY6RSRxXoLSW3x8Hg/6Z qjx+tnQWl9ybL9sMc0QmhIMfejYVXFX1PJtSZUp/f6bP7nH4vZnTDKawIquFyxfK jZlibB7AWZ3N6CQAKap/z81mA2ikEIjmZyS0ZbFimqVO08oxzjZgIriT3l+h0Giy b00= -----END CERTIFICATE-----Generated at Mon Jun 2 06:14:07 2025 by rpki-client