$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e02e531-f45f-49be-9529-f33d23fae32e.roa File: 6e02e531-f45f-49be-9529-f33d23fae32e.roa (raw, json) Hash identifier: 5VaO+6AUqia3W/RfSPJpVvVf18UVq+Db5dkHjnmzaFs= Subject key identifier: 0B:FE:54:BA:81:71:D7:EF:89:D7:F7:8E:25:D1:7A:E4:A1:97:BC:5D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 61CA9C210FD83D9F0DF96545F9A7E63472E4EC19 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e02e531-f45f-49be-9529-f33d23fae32e.roa Signing time: Fri 16 May 2025 00:51:31 +0000 ROA not before: Fri 16 May 2025 00:51:31 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf7:80c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ca:9c:21:0f:d8:3d:9f:0d:f9:65:45:f9:a7:e6:34:72:e4:ec:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 00:51:31 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=9fa73a402d868c14649712e4c4e085bda9bf75643062a6c4082f8519100074bb, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e8:f6:89:12:44:5f:af:42:3e:e5:8b:e4:11: 33:b4:ea:10:be:01:01:6d:e6:be:9b:97:95:ec:fe: 44:64:1e:6d:82:fe:57:01:c2:07:b4:36:c7:d2:0a: ca:b5:e0:0f:5e:f1:85:14:84:c1:ff:48:c4:59:b1: 34:7b:ad:5d:e4:90:3c:95:09:e5:3c:61:78:41:f4: 58:24:d9:ee:1f:b7:93:bb:91:1f:ed:09:fd:12:af: fc:49:e3:f1:ee:73:de:56:20:dc:15:42:09:b6:61: 49:7b:83:d9:fc:ae:b7:bb:16:54:d2:a3:59:ec:ab: 10:f3:4b:ee:24:69:71:91:19:20:9a:6a:28:dc:17: 55:80:16:39:0c:4c:24:58:28:69:b1:50:8c:07:2f: ed:b4:16:27:f0:33:01:60:9e:f9:2b:cc:06:fd:42: 70:01:56:61:48:bd:35:1a:5f:dc:92:3f:da:ec:f0: a8:1f:a6:7d:3b:a9:0b:d8:88:c4:6c:63:1e:ff:37: 43:d5:18:d7:cc:f7:21:e2:a0:83:af:6f:b1:53:07: 0d:11:95:9c:37:3d:48:b2:8c:28:7b:d9:94:64:e9: 92:8d:e3:f6:6f:43:0e:93:23:66:17:4b:6c:f5:13: 03:0f:6b:19:e9:b8:8e:77:bb:17:65:18:b6:a5:93: 2c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FE:54:BA:81:71:D7:EF:89:D7:F7:8E:25:D1:7A:E4:A1:97:BC:5D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6e02e531-f45f-49be-9529-f33d23fae32e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf7:80c0::/46 Signature Algorithm: sha256WithRSAEncryption 40:20:96:63:95:59:cc:1c:b3:cf:b1:e9:73:2a:0b:26:ab:87: 10:cf:78:15:40:54:95:be:34:ff:ad:3c:66:30:17:ea:45:87: 2e:14:76:14:a5:08:c4:bf:40:52:25:45:65:ec:1d:44:ac:00: 6b:f5:10:aa:d6:be:77:45:d4:8f:32:4f:e9:5e:3a:f2:e0:d7: 94:67:bf:d4:2b:f9:34:a3:f9:34:39:f6:8f:fa:c9:ab:6a:89: 91:25:e1:5c:2c:7c:2e:c1:23:25:a7:b9:94:57:fd:df:b1:4a: 69:87:26:ed:e6:ae:b5:3b:ff:1a:9d:16:73:2f:b0:07:fb:63: 9c:18:ca:15:b6:03:b3:6e:e1:11:a4:62:d3:c3:a6:52:a5:91: 0b:5f:7c:ea:53:0f:84:5e:94:c3:0d:05:fe:e7:8b:d7:f5:4e: f1:e3:6a:87:ac:83:bc:4e:38:b1:6f:d3:4e:55:37:0d:c2:27: a3:62:c1:6c:06:58:d4:ed:b9:c6:ec:17:f6:4a:83:a6:f5:20: e2:8a:76:d4:db:39:ea:ba:02:31:eb:d2:96:02:aa:42:c8:cb: e2:12:ed:84:0c:62:c2:e0:4b:75:7b:f0:8d:71:09:cd:98:b4: ff:97:71:9b:78:50:38:0d:ec:d4:35:75:27:c4:4e:34:3e:eb: 91:fe:63:fc -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYcqcIQ/YPZ8N+WVF+afmNHLk7BkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjAwNTEzMVoX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNAOWZhNzNhNDAyZDg2OGMxNDY0OTcx MmU0YzRlMDg1YmRhOWJmNzU2NDMwNjJhNmM0MDgyZjg1MTkxMDAwNzRiYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+j2iRJEX69CPuWL5BEztOoQvgEB bea+m5eV7P5EZB5tgv5XAcIHtDbH0grKteAPXvGFFITB/0jEWbE0e61d5JA8lQnl PGF4QfRYJNnuH7eTu5Ef7Qn9Eq/8SePx7nPeViDcFUIJtmFJe4PZ/K63uxZU0qNZ 7KsQ80vuJGlxkRkgmmoo3BdVgBY5DEwkWChpsVCMBy/ttBYn8DMBYJ75K8wG/UJw AVZhSL01Gl/ckj/a7PCoH6Z9O6kL2IjEbGMe/zdD1RjXzPch4qCDr2+xUwcNEZWc Nz1Isowoe9mUZOmSjeP2b0MOkyNmF0ts9RMDD2sZ6biOd7sXZRi2pZMsFQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAv+VLqBcdfvidf3jiXReuShl7xdMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZlMDJlNTMxLWY0NWYtNDliZS05NTI5LWYzM2QyM2ZhZTMyZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba94DAMA0GCSqGSIb3DQEBCwUAA4IBAQBAIJZjlVnMHLPPselz Kgsmq4cQz3gVQFSVvjT/rTxmMBfqRYcuFHYUpQjEv0BSJUVl7B1ErABr9RCq1r53 RdSPMk/pXjry4NeUZ7/UK/k0o/k0OfaP+smraomRJeFcLHwuwSMlp7mUV/3fsUpp hybt5q61O/8anRZzL7AH+2OcGMoVtgOzbuERpGLTw6ZSpZELX3zqUw+EXpTDDQX+ 54vX9U7x42qHrIO8Tjixb9NOVTcNwiejYsFsBljU7bnG7Bf2SoOm9SDiinbU2znq ugIx69KWAqpCyMviEu2EDGLC4Et1e/CNcQnNmLT/l3GbeFA4DezUNXUnxE40PuuR /mP8 -----END CERTIFICATE-----Generated at Tue Jun 3 23:11:14 2025 by rpki-client