$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa File: 6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa (raw, json) Hash identifier: 8CQZ5CPfQZwLi9xKIrM7yT/17jIDicpCzfpnezU719Y= Subject key identifier: 14:84:AC:F2:F9:88:50:C2:EE:07:8A:5E:98:C9:1D:4C:BA:15:74:B1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2279D42DD9A15DE06216D9F735E21AC03D79D875 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa Signing time: Fri 16 May 2025 15:31:38 +0000 ROA not before: Fri 16 May 2025 15:31:38 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafe:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:79:d4:2d:d9:a1:5d:e0:62:16:d9:f7:35:e2:1a:c0:3d:79:d8:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 15:31:38 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=86682c05f78994b0c67d888c9474345f050f65392fc2936606e4129489a71c0c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:18:90:34:5a:17:1e:bf:ba:e7:87:18:b8:c9: 30:cf:b5:0c:3b:14:15:e7:c0:ff:aa:32:ba:c2:b2: 53:51:0f:4c:69:bb:17:32:be:13:9b:10:be:0c:b9: 23:7d:cc:85:24:6e:7e:57:9c:36:5b:3d:5f:3d:0e: fb:ba:a5:d1:ba:6b:aa:8c:c5:45:41:54:3b:69:e7: 2e:5c:16:5f:b8:01:5f:3a:7e:ea:ae:77:4c:31:a1: 40:53:e8:89:dc:23:ae:eb:c7:34:39:ea:0a:50:79: 09:91:4e:10:45:52:91:9b:ab:8f:2d:96:61:2e:cb: c6:92:56:3e:06:72:8c:f8:d5:01:76:0e:c4:c1:b2: df:e0:4a:d2:a3:54:24:87:00:ba:b0:ea:bb:a2:55: 89:ff:f0:e6:df:09:1c:b8:24:db:fe:8a:20:ad:3d: d0:72:12:dd:4e:c3:b6:c1:a1:19:2d:de:b1:8c:78: 78:a3:dd:c6:66:2d:48:cc:59:14:ca:db:31:3c:ba: 43:2a:cc:cc:4f:9b:85:0d:59:d2:a2:21:a8:c7:29: 42:64:8c:04:0f:a2:e0:9e:b9:ba:c2:4e:55:ce:34: 44:55:72:3e:b4:c9:f5:4d:80:5e:38:3f:60:db:a0: 3c:0e:08:2c:f8:6b:b3:bf:f0:59:9e:5b:dc:8c:d1: 64:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:84:AC:F2:F9:88:50:C2:EE:07:8A:5E:98:C9:1D:4C:BA:15:74:B1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafe:4800::/40 Signature Algorithm: sha256WithRSAEncryption 9f:50:22:71:26:11:6f:e4:1d:bb:1b:ec:a0:f0:26:5f:b6:34: 70:e2:b2:ef:05:e4:55:e1:58:7e:8a:cb:d8:6e:e7:13:6a:e6: 4f:61:a3:bf:fa:5e:b2:56:68:ca:02:fa:a9:5d:27:8d:c5:4f: 9b:53:16:a2:62:6d:c4:32:e4:52:5e:28:29:04:d9:fb:71:1f: ed:22:13:b1:a9:a4:f3:b7:49:19:2d:ac:ad:7b:81:70:f7:df: 65:bd:f5:a3:59:ed:57:50:25:d1:b4:b5:bd:b1:83:23:bd:1d: f0:95:7a:52:15:1a:73:10:ed:45:9b:d5:41:28:9e:fd:37:67: 3c:82:2d:74:e2:85:e2:ee:3e:65:b0:9d:73:12:f7:fb:0f:85: d8:af:71:70:19:11:9e:f0:f3:14:4c:99:8f:60:ec:d5:5d:df: c3:be:45:fc:6d:ef:bd:82:d0:27:d4:56:f6:ab:ea:5f:91:e5: 95:03:d0:d9:3c:b1:7a:1c:4d:59:44:d3:03:cf:ed:52:7c:2a: 2d:71:30:1d:24:24:a4:42:b2:97:97:e4:11:5c:ee:5d:ee:0c: 69:97:39:6a:d4:e1:ce:b5:d7:97:0c:8d:38:3a:67:04:9e:e7: 0b:fd:9c:23:b2:99:a5:47:b5:51:3d:fe:86:0f:20:43:70:fb: 38:5b:5e:de -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUInnULdmhXeBiFtn3NeIawD152HUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjE1MzEzOFoX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNAODY2ODJjMDVmNzg5OTRiMGM2N2Q4 ODhjOTQ3NDM0NWYwNTBmNjUzOTJmYzI5MzY2MDZlNDEyOTQ4OWE3MWMwYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxiQNFoXHr+654cYuMkwz7UMOxQV 58D/qjK6wrJTUQ9MabsXMr4TmxC+DLkjfcyFJG5+V5w2Wz1fPQ77uqXRumuqjMVF QVQ7aecuXBZfuAFfOn7qrndMMaFAU+iJ3COu68c0OeoKUHkJkU4QRVKRm6uPLZZh LsvGklY+BnKM+NUBdg7EwbLf4ErSo1QkhwC6sOq7olWJ//Dm3wkcuCTb/oogrT3Q chLdTsO2waEZLd6xjHh4o93GZi1IzFkUytsxPLpDKszMT5uFDVnSoiGoxylCZIwE D6Lgnrm6wk5VzjREVXI+tMn1TYBeOD9g26A8Dggs+Guzv/BZnlvcjNFk+wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBSErPL5iFDC7geKXpjJHUy6FXSxMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZkNzhhZGJkLTgyNjMtNDZiYS05YzZiLTRjM2VkNDU2ZjQxMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/kgwDQYJKoZIhvcNAQELBQADggEBAJ9QInEmEW/kHbsb7KDw Jl+2NHDisu8F5FXhWH6Ky9hu5xNq5k9ho7/6XrJWaMoC+qldJ43FT5tTFqJibcQy 5FJeKCkE2ftxH+0iE7GppPO3SRktrK17gXD332W99aNZ7VdQJdG0tb2xgyO9HfCV elIVGnMQ7UWb1UEonv03ZzyCLXTiheLuPmWwnXMS9/sPhdivcXAZEZ7w8xRMmY9g 7NVd38O+Rfxt772C0CfUVvar6l+R5ZUD0Nk8sXocTVlE0wPP7VJ8Ki1xMB0kJKRC speX5BFc7l3uDGmXOWrU4c6115cMjTg6ZwSe5wv9nCOymaVHtVE9/oYPIENw+zhb Xt4= -----END CERTIFICATE-----Generated at Tue Jun 3 23:39:17 2025 by rpki-client