$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6ea417f3-3b4b-41d7-a7ff-22c7107de3b3.roa File: 6ea417f3-3b4b-41d7-a7ff-22c7107de3b3.roa (raw, json) Hash identifier: x9bi6Q6ePO18SAWFuCZCvD9Ero7BCrn6xea0OT0Jx/w= Subject key identifier: 16:EF:63:DA:D1:BF:AD:DF:F2:F0:C2:31:E8:67:D5:E1:62:EC:8F:2A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3CE8B13EEC424EC4022BAD5EA9A8493F7F3253F7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6ea417f3-3b4b-41d7-a7ff-22c7107de3b3.roa Signing time: Fri 15 Aug 2025 00:01:17 +0000 ROA not before: Fri 15 Aug 2025 00:01:17 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:6080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 00:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e8:b1:3e:ec:42:4e:c4:02:2b:ad:5e:a9:a8:49:3f:7f:32:53:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 15 00:01:17 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=fbd7be0e19a2af450729cdbd93a855118ed0d75d0e5c1cb46e2161955998a00b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:33:18:46:86:de:57:fb:ed:61:78:c2:99:89: 7b:fc:45:7e:89:09:e7:fd:50:fe:e8:b8:d1:36:24: d1:3f:07:8b:49:36:d8:c9:60:97:c9:67:cb:55:0f: e5:e9:1d:ba:08:c7:34:b0:c5:74:af:93:76:5f:c7: a8:fc:07:4c:85:dd:bc:a1:84:83:a0:b1:99:6a:86: d0:c7:55:1c:73:f6:10:cc:3f:ed:d9:eb:e8:80:1f: 91:cd:7a:13:6f:96:40:54:f8:02:e8:11:23:d0:bb: bd:bc:3d:1c:5d:ac:e9:ad:4d:6d:e1:7f:66:e9:44: 9b:0a:97:b4:9d:c5:63:f9:66:7e:93:1f:76:80:c8: 1d:ae:e3:aa:92:9b:71:7e:f9:07:e7:c9:e8:4c:01: c7:82:dc:ed:ef:c1:d9:6d:0d:02:e1:e0:4e:aa:ac: fc:19:fd:c9:a7:75:41:3e:d9:9c:bb:bf:d1:b0:11: 54:e2:11:e2:fd:87:fc:4d:12:50:9d:5d:b7:3f:38: a3:93:d3:80:65:7f:c0:7e:64:e4:2f:74:20:c3:12: c1:5e:e9:6f:fc:49:14:51:f3:7c:ed:5e:9a:02:8d: b7:bc:45:68:6e:4b:df:a7:58:41:5a:0f:3d:29:26: 94:1d:b0:74:50:ac:e7:e1:8b:54:d9:1a:e3:c4:e7: 98:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:EF:63:DA:D1:BF:AD:DF:F2:F0:C2:31:E8:67:D5:E1:62:EC:8F:2A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6ea417f3-3b4b-41d7-a7ff-22c7107de3b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:6080::/46 Signature Algorithm: sha256WithRSAEncryption 31:c1:5e:34:68:c7:c5:db:0a:0c:60:cb:e3:c2:ac:e9:5a:33: 58:ac:4e:50:90:0e:aa:a4:19:ed:ec:3d:db:47:25:06:f3:b5: 39:a6:1e:19:de:84:89:e4:19:29:52:ba:62:b3:b1:d4:e9:95: 28:1f:36:db:0d:c1:e1:35:19:34:05:76:3c:58:01:d8:18:67: 36:97:0d:4c:73:39:90:29:aa:cb:bc:50:84:e1:38:05:c6:13: 8d:0f:5a:6a:03:77:92:90:c9:63:68:c0:75:b9:62:0c:b3:5a: e1:00:f7:cb:f4:50:2f:75:25:9a:d8:85:16:a7:2a:06:82:51: ab:5c:6c:0a:23:da:2e:26:c4:87:f8:f7:49:2f:e8:a4:f8:7b: 14:c3:13:15:34:25:28:ba:bf:fe:14:38:0d:9e:cc:91:fd:0c: ba:cf:11:e6:cd:3c:1e:dc:94:ca:aa:f6:70:ee:73:81:a9:b7: a1:31:20:b6:58:f7:94:f2:06:4b:c1:4e:de:cf:40:7d:31:29: db:bf:64:76:b0:a8:9e:67:de:89:20:a1:38:89:2b:0c:80:34: 0b:e1:31:60:b1:75:a5:5a:3c:f4:46:e1:ec:d4:16:22:23:e0: 42:97:b6:e3:57:b7:87:74:17:c6:63:a0:e0:87:4a:62:82:75: 99:91:31:74 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUPOixPuxCTsQCK61eqahJP38yU/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgxNTAwMDExN1oX DTI1MDkxOTIzNTk1OVowejFJMEcGA1UEBRNAZmJkN2JlMGUxOWEyYWY0NTA3Mjlj ZGJkOTNhODU1MTE4ZWQwZDc1ZDBlNWMxY2I0NmUyMTYxOTU1OTk4YTAwYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjMYRobeV/vtYXjCmYl7/EV+iQnn /VD+6LjRNiTRPweLSTbYyWCXyWfLVQ/l6R26CMc0sMV0r5N2X8eo/AdMhd28oYSD oLGZaobQx1Ucc/YQzD/t2evogB+RzXoTb5ZAVPgC6BEj0Lu9vD0cXazprU1t4X9m 6USbCpe0ncVj+WZ+kx92gMgdruOqkptxfvkH58noTAHHgtzt78HZbQ0C4eBOqqz8 Gf3Jp3VBPtmcu7/RsBFU4hHi/Yf8TRJQnV23Pzijk9OAZX/AfmTkL3QgwxLBXulv /EkUUfN87V6aAo23vEVobkvfp1hBWg89KSaUHbB0UKzn4YtU2RrjxOeY2wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFBbvY9rRv63f8vDCMehn1eFi7I8qMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZlYTQxN2YzLTNiNGItNDFkNy1hN2ZmLTIyYzcxMDdkZTNiMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba82CAMA0GCSqGSIb3DQEBCwUAA4IBAQAxwV40aMfF2woMYMvj wqzpWjNYrE5QkA6qpBnt7D3bRyUG87U5ph4Z3oSJ5BkpUrpis7HU6ZUoHzbbDcHh NRk0BXY8WAHYGGc2lw1MczmQKarLvFCE4TgFxhOND1pqA3eSkMljaMB1uWIMs1rh APfL9FAvdSWa2IUWpyoGglGrXGwKI9ouJsSH+PdJL+ik+HsUwxMVNCUour/+FDgN nsyR/Qy6zxHmzTwe3JTKqvZw7nOBqbehMSC2WPeU8gZLwU7ez0B9MSnbv2R2sKie Z96JIKE4iSsMgDQL4TFgsXWlWjz0RuHs1BYiI+BCl7bjV7eHdBfGY6Dgh0pignWZ kTF0 -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:33 2025 by rpki-client