$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa File: 63206b2b-d620-415f-9dee-e3c63ab27be0.roa (raw, json) Hash identifier: pGqn0tBmBwLu3rFMLvtya9DUZWh8ai0zaaI9ly3Zfwg= Subject key identifier: 0F:26:43:26:05:8C:61:4B:F9:BC:FF:0D:1E:B1:1C:4B:4C:30:8F:54 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3F25429F557B75774C6F1F84E6665C2EC734C186 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa Signing time: Sat 26 Jul 2025 00:01:13 +0000 ROA not before: Sat 26 Jul 2025 00:01:13 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:25:42:9f:55:7b:75:77:4c:6f:1f:84:e6:66:5c:2e:c7:34:c1:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 26 00:01:13 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=ff3f1111234a9eace74a89c48f6a54371d39bbffdabde025a8f2deadc4b902a1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:c5:0f:7c:0b:50:af:1f:28:72:a4:2e:bf:1b: c3:f8:0d:09:9b:52:37:1e:0c:80:cd:94:54:8f:b8: eb:df:40:8c:7e:57:1c:a7:c0:19:45:6e:3f:c4:93: cc:2b:fb:4e:b4:e5:9d:f0:08:d3:91:3a:4b:42:73: 4e:f5:24:40:6c:a8:61:3d:85:bd:13:75:c7:fb:0b: 07:34:5f:fe:72:e5:78:6f:15:a2:d7:58:d6:d6:f5: 3f:a0:49:b7:48:8d:b5:42:9c:bd:ef:95:10:10:b8: 44:36:2b:72:ab:67:77:1b:0c:25:62:d5:29:28:b1: 55:78:fb:ea:e6:b1:89:24:94:69:9f:6b:20:17:39: e8:78:63:81:bc:ff:e2:3a:ae:0f:a0:72:6b:cb:f4: fe:74:3c:99:8b:7f:c2:c7:90:8d:18:84:06:34:06: 59:59:6e:2a:4b:45:f6:62:5a:2f:65:10:a5:12:98: fa:22:0c:2c:91:0e:6d:e2:01:ff:a3:8e:94:bb:c1: ac:e6:b2:38:b8:c5:10:15:4b:a1:0d:48:0a:d4:c1: 20:69:13:d4:7d:7c:14:2b:9b:8e:23:ee:c1:8e:a2: ec:cd:24:9a:a4:c9:27:49:d8:4b:96:d1:8e:56:ec: 4f:b6:c2:8a:72:e9:a6:e5:eb:38:92:41:20:c2:69: ea:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:26:43:26:05:8C:61:4B:F9:BC:FF:0D:1E:B1:1C:4B:4C:30:8F:54 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:8000::/48 Signature Algorithm: sha256WithRSAEncryption 86:75:5f:81:20:01:31:52:9e:1c:c1:7f:60:a7:89:56:67:f2: 1b:81:02:a2:b1:fd:1d:5d:bc:7f:77:21:d0:d2:7b:ef:75:de: 68:d7:3a:ec:b2:ed:c1:fd:30:58:13:90:11:2d:a1:05:67:85: 6e:ef:70:e4:f5:1f:44:d6:7e:e1:cd:2c:ad:4e:00:16:5c:8c: c8:c9:cf:de:8f:d5:41:2d:96:51:e8:c4:7b:34:6c:91:aa:85: 20:f2:96:72:00:5b:14:34:c5:c4:9f:42:06:bc:d4:3e:23:a6: 76:d0:fd:df:38:d0:b5:b8:46:b0:f3:26:2a:fa:c0:05:4a:bc: f4:70:a7:05:54:b0:b3:89:24:a5:c2:9c:23:0f:c1:cb:ee:f7: 49:ec:f2:cb:e6:c0:c7:dc:97:ac:24:ae:19:24:eb:ac:a2:3a: 78:bf:40:ae:75:36:a0:9e:29:18:14:60:03:7d:05:bf:2f:bb: 53:77:56:90:ea:7a:1d:8e:7c:da:4b:ee:b8:fb:c7:b8:c0:00: 5e:a2:f4:85:5e:cc:7e:44:fe:66:81:ae:4b:bb:2d:2f:9b:61: 3f:1b:fe:09:8b:2e:fd:81:2a:47:7d:c2:25:28:1f:2e:c2:99: 29:a7:5a:f9:02:61:b9:dc:c4:64:a3:09:d4:46:73:82:70:ae: 08:13:58:3b -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUPyVCn1V7dXdMbx+E5mZcLsc0wYYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcyNjAwMDExM1oX DTI1MDgzMDIzNTk1OVowejFJMEcGA1UEBRNAZmYzZjExMTEyMzRhOWVhY2U3NGE4 OWM0OGY2YTU0MzcxZDM5YmJmZmRhYmRlMDI1YThmMmRlYWRjNGI5MDJhMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8UPfAtQrx8ocqQuvxvD+A0Jm1I3 HgyAzZRUj7jr30CMflccp8AZRW4/xJPMK/tOtOWd8AjTkTpLQnNO9SRAbKhhPYW9 E3XH+wsHNF/+cuV4bxWi11jW1vU/oEm3SI21Qpy975UQELhENityq2d3GwwlYtUp KLFVePvq5rGJJJRpn2sgFznoeGOBvP/iOq4PoHJry/T+dDyZi3/Cx5CNGIQGNAZZ WW4qS0X2YlovZRClEpj6IgwskQ5t4gH/o46Uu8Gs5rI4uMUQFUuhDUgK1MEgaRPU fXwUK5uOI+7BjqLszSSapMknSdhLltGOVuxPtsKKcumm5es4kkEgwmnqiQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFA8mQyYFjGFL+bz/DR6xHEtMMI9UMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzMjA2YjJiLWQ2MjAtNDE1Zi05ZGVlLWUzYzYzYWIyN2JlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9oAAMA0GCSqGSIb3DQEBCwUAA4IBAQCGdV+BIAExUp4cwX9g p4lWZ/IbgQKisf0dXbx/dyHQ0nvvdd5o1zrssu3B/TBYE5ARLaEFZ4Vu73Dk9R9E 1n7hzSytTgAWXIzIyc/ej9VBLZZR6MR7NGyRqoUg8pZyAFsUNMXEn0IGvNQ+I6Z2 0P3fONC1uEaw8yYq+sAFSrz0cKcFVLCziSSlwpwjD8HL7vdJ7PLL5sDH3JesJK4Z JOusojp4v0CudTagnikYFGADfQW/L7tTd1aQ6nodjnzaS+64+8e4wABeovSFXsx+ RP5mga5Luy0vm2E/G/4Jiy79gSpHfcIlKB8uwpkpp1r5AmG53MRkownURnOCcK4I E1g7 -----END CERTIFICATE-----Generated at Thu Jul 31 01:00:35 2025 by rpki-client