$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa File: 710800d0-a544-4fe9-abd4-369c82fabbb3.roa (raw, json) Hash identifier: fpLb6R15OEAGIrlY2PKpSM+BY1JJbKhvZj3CewJSvyQ= Subject key identifier: CF:B8:8C:91:8C:11:2B:B9:FF:F6:9D:7C:9F:8C:22:A1:25:8E:4C:A2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 571FB278A8969153969A602AB42CFBF797308081 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa Signing time: Wed 27 Aug 2025 00:00:08 +0000 ROA not before: Wed 27 Aug 2025 00:00:08 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafe:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 00:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:1f:b2:78:a8:96:91:53:96:9a:60:2a:b4:2c:fb:f7:97:30:80:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 27 00:00:08 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=8a1fc4deb5ea51f6a92e6ad8eaf6f74e8d1098f62f5b184f82f2b5d8ca852faa, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:03:26:6d:46:24:56:58:ac:fc:61:b9:4a:89: 6e:a0:9f:0c:cf:32:20:33:b9:ac:30:38:e1:a6:70: eb:74:bc:21:78:98:d3:0f:f8:e7:af:7d:ae:19:d6: 87:1f:52:dc:d9:71:7e:b3:b4:63:69:32:08:e3:ff: de:56:7c:fc:d9:42:53:81:95:ee:ab:57:c2:fd:ee: 7a:90:ed:f9:98:7f:9b:32:de:92:dc:a8:ab:f5:9d: 0e:ec:f7:43:78:bc:8f:56:ab:4d:8d:1a:7c:ad:f1: 99:4b:b2:22:3e:df:46:fb:be:37:1a:1f:fa:73:21: 18:57:be:8e:c3:99:28:e8:3f:40:d8:6d:86:90:bf: f9:c5:15:3a:27:41:03:b0:6b:22:48:14:be:d3:37: 43:e0:ed:8b:2c:b9:16:04:ed:5b:98:c8:1d:54:ee: 12:34:60:e8:7d:14:e0:9d:56:2e:ff:56:29:d4:50: 8f:9e:ff:b8:f3:b8:d5:4c:c9:2c:d0:52:fb:cf:0b: da:12:3a:3c:39:df:a9:c2:50:c2:00:c1:45:b6:b1: 98:9a:27:30:fc:ed:c8:73:55:57:94:83:1a:1c:f4: 7f:b7:43:ec:25:d3:b1:e2:40:87:72:a6:af:54:77: 99:30:1b:d6:85:53:a2:22:36:24:48:da:8c:1b:4f: 1c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B8:8C:91:8C:11:2B:B9:FF:F6:9D:7C:9F:8C:22:A1:25:8E:4C:A2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafe:800::/40 Signature Algorithm: sha256WithRSAEncryption c1:72:95:d3:a7:d7:e2:a7:20:d9:39:66:ef:35:58:55:e1:9e: b9:0a:43:c1:dc:a8:1c:35:39:c9:4d:55:90:dc:a9:3e:13:80: 3a:82:4c:1c:2d:f9:d1:77:71:35:4e:4a:4a:5d:da:f4:2b:c6: ff:dc:69:48:17:49:4c:8a:b2:e0:41:29:20:46:0b:be:5a:1d: b9:09:25:a2:31:4e:14:80:94:3c:40:2a:92:44:c2:56:6b:10: 6d:eb:4e:fd:d1:14:bb:ef:b2:9c:05:b7:94:42:ca:30:6a:a5: 52:d0:15:4d:94:a3:f5:90:3e:cb:f1:ef:63:12:c8:fc:5c:f6: 6d:a0:24:23:e8:f4:c1:bc:09:df:9f:d5:13:ab:79:56:9c:7f: 0d:42:79:b9:bf:55:3e:ea:0e:bb:6c:09:e7:5d:29:9f:40:53: b1:a8:03:f3:a2:a9:4f:19:31:bf:b2:03:ec:61:cc:41:a5:52: d1:47:dc:4f:e9:22:f9:53:52:ec:4d:fb:b4:15:87:d4:90:79: 10:0b:fa:94:90:a1:43:68:2a:06:fc:6e:33:6f:8f:ba:f5:58: 0e:e3:78:ba:ac:ea:95:33:ce:59:e3:0a:e3:b4:f6:b7:d0:4a: 28:04:b8:ef:ab:3d:1e:a4:e4:ec:39:7a:af:88:aa:03:f4:2c: 98:c5:36:db -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVx+yeKiWkVOWmmAqtCz795cwgIEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgyNzAwMDAwOFoX DTI1MTAwMTIzNTk1OVowejFJMEcGA1UEBRNAOGExZmM0ZGViNWVhNTFmNmE5MmU2 YWQ4ZWFmNmY3NGU4ZDEwOThmNjJmNWIxODRmODJmMmI1ZDhjYTg1MmZhYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgMmbUYkVlis/GG5SoluoJ8MzzIg M7msMDjhpnDrdLwheJjTD/jnr32uGdaHH1Lc2XF+s7RjaTII4//eVnz82UJTgZXu q1fC/e56kO35mH+bMt6S3Kir9Z0O7PdDeLyPVqtNjRp8rfGZS7IiPt9G+743Gh/6 cyEYV76Ow5ko6D9A2G2GkL/5xRU6J0EDsGsiSBS+0zdD4O2LLLkWBO1bmMgdVO4S NGDofRTgnVYu/1Yp1FCPnv+487jVTMks0FL7zwvaEjo8Od+pwlDCAMFFtrGYmicw /O3Ic1VXlIMaHPR/t0PsJdOx4kCHcqavVHeZMBvWhVOiIjYkSNqMG08csQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFM+4jJGMESu5//adfJ+MIqEljkyiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcxMDgwMGQwLWE1NDQtNGZlOS1hYmQ0LTM2OWM4MmZhYmJiMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/ggwDQYJKoZIhvcNAQELBQADggEBAMFyldOn1+KnINk5Zu81 WFXhnrkKQ8HcqBw1OclNVZDcqT4TgDqCTBwt+dF3cTVOSkpd2vQrxv/caUgXSUyK suBBKSBGC75aHbkJJaIxThSAlDxAKpJEwlZrEG3rTv3RFLvvspwFt5RCyjBqpVLQ FU2Uo/WQPsvx72MSyPxc9m2gJCPo9MG8Cd+f1ROreVacfw1Cebm/VT7qDrtsCedd KZ9AU7GoA/OiqU8ZMb+yA+xhzEGlUtFH3E/pIvlTUuxN+7QVh9SQeRAL+pSQoUNo Kgb8bjNvj7r1WA7jeLqs6pUzzlnjCuO09rfQSigEuO+rPR6k5Ow5eq+IqgP0LJjF Nts= -----END CERTIFICATE-----Generated at Fri Sep 19 06:10:45 2025 by rpki-client