$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/745411de-d434-4fb7-bef2-d54990248d48.roa File: 745411de-d434-4fb7-bef2-d54990248d48.roa (raw, json) Hash identifier: Le4t0o9tualji+wqfPXbMwBbWROducGZJSxm6AVZUJA= Subject key identifier: 5C:21:6F:E2:47:D9:50:0D:73:F2:A6:A9:0A:09:BF:1A:AA:CD:62:BA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1BFEF4EAE58DA348E88ABD1FB76FFE671874CADA Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/745411de-d434-4fb7-bef2-d54990248d48.roa Signing time: Mon 07 Jul 2025 15:51:19 +0000 ROA not before: Mon 07 Jul 2025 15:51:19 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da16:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:fe:f4:ea:e5:8d:a3:48:e8:8a:bd:1f:b7:6f:fe:67:18:74:ca:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 7 15:51:19 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=9f807a1b9397a93d0e7de00140e4a7dfa2003eed785487b6e67c787582773e38, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4d:29:da:52:32:2c:b1:dd:5d:2e:47:d2:0d: 20:f3:8f:cb:52:dc:df:38:81:de:68:05:64:96:a9: c0:d3:44:ca:1b:f9:dc:93:2e:6a:6c:37:27:34:92: 37:38:6e:96:38:e0:f1:fa:1b:25:4e:14:c7:da:ac: e1:80:6e:ea:ac:0e:3c:23:06:54:60:25:1b:0a:8c: 8b:8e:4e:06:31:ab:5a:f8:6f:9a:cf:36:02:79:ca: f4:4a:de:88:2b:02:4b:f5:17:d6:1d:94:b9:c3:81: 98:d8:19:a9:22:9f:a9:e1:38:c6:e2:a5:78:c7:a3: 31:28:c6:4e:83:99:0a:eb:53:4d:84:89:3a:22:13: 43:a6:6c:5a:69:3d:52:c1:4a:c4:7c:bf:9d:35:11: 43:5a:16:c7:cb:ad:28:db:91:26:71:69:b7:56:8e: a6:ec:14:75:d4:af:21:25:f9:bb:f9:cf:95:cc:d8: fd:ba:a9:19:90:d2:f5:31:02:08:8f:57:44:02:a6: bc:e9:3c:ad:47:3d:42:21:fc:05:f1:89:3d:eb:07: 7b:4f:af:28:ff:6a:6e:77:82:ce:59:32:15:d7:97: 91:0d:97:22:c8:f7:d7:ee:ed:d7:ad:3d:c7:d4:86: 44:54:74:b3:3e:ec:4d:63:43:c6:d5:0c:01:da:f3: 02:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:21:6F:E2:47:D9:50:0D:73:F2:A6:A9:0A:09:BF:1A:AA:CD:62:BA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/745411de-d434-4fb7-bef2-d54990248d48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da16:800::/38 Signature Algorithm: sha256WithRSAEncryption b3:c8:a5:26:bc:44:b6:1d:45:00:70:39:2a:7c:a6:b9:12:36: 72:48:86:2a:b3:a8:9d:22:50:f5:0e:ec:18:eb:6c:84:c3:de: 33:70:a5:bb:c5:c4:25:4b:42:60:db:4f:8f:5a:7d:05:ea:f5: bf:73:af:21:de:70:18:f4:c9:52:5e:ee:aa:22:58:da:48:8c: ee:8e:20:4e:f8:69:16:53:53:92:34:7f:7e:0d:d5:0d:d3:31: a3:67:3e:a8:55:21:73:e7:3c:8d:d5:f5:3e:08:03:39:bf:71: 49:90:61:92:fd:47:66:79:fd:f2:04:6c:d3:12:68:9e:2d:98: f4:7d:52:cc:94:76:44:c2:5e:1c:c7:f2:e0:e2:87:19:ff:a0: 18:e1:10:40:fd:95:33:89:a4:37:35:25:da:85:52:86:aa:76: d2:fa:04:f6:47:aa:47:08:c4:46:7c:06:c4:7f:b4:34:be:6c: 56:eb:eb:27:fe:39:72:f9:6c:a9:61:99:e2:d7:31:91:ab:61: 37:98:51:35:6c:e2:69:24:30:9b:eb:2e:ca:f1:46:09:78:1c: 68:42:20:8a:c8:da:43:dd:11:71:80:61:ec:c3:4f:8d:46:91: a1:ef:d2:2e:c2:29:75:c2:4a:32:6f:a0:d1:51:b6:32:30:c6: 49:c1:93:21 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUG/706uWNo0joir0ft2/+Zxh0ytowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcwNzE1NTExOVoX DTI1MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAOWY4MDdhMWI5Mzk3YTkzZDBlN2Rl MDAxNDBlNGE3ZGZhMjAwM2VlZDc4NTQ4N2I2ZTY3Yzc4NzU4Mjc3M2UzODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt00p2lIyLLHdXS5H0g0g84/LUtzf OIHeaAVklqnA00TKG/ncky5qbDcnNJI3OG6WOODx+hslThTH2qzhgG7qrA48IwZU YCUbCoyLjk4GMata+G+azzYCecr0St6IKwJL9RfWHZS5w4GY2BmpIp+p4TjG4qV4 x6MxKMZOg5kK61NNhIk6IhNDpmxaaT1SwUrEfL+dNRFDWhbHy60o25EmcWm3Vo6m 7BR11K8hJfm7+c+VzNj9uqkZkNL1MQIIj1dEAqa86TytRz1CIfwF8Yk96wd7T68o /2pud4LOWTIV15eRDZciyPfX7u3XrT3H1IZEVHSzPuxNY0PG1QwB2vMCHQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFwhb+JH2VANc/KmqQoJvxqqzWK6MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc0NTQxMWRlLWQ0MzQtNGZiNy1iZWYyLWQ1NDk5MDI0OGQ0OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaFggwDQYJKoZIhvcNAQELBQADggEBALPIpSa8RLYdRQBwOSp8 prkSNnJIhiqzqJ0iUPUO7BjrbITD3jNwpbvFxCVLQmDbT49afQXq9b9zryHecBj0 yVJe7qoiWNpIjO6OIE74aRZTU5I0f34N1Q3TMaNnPqhVIXPnPI3V9T4IAzm/cUmQ YZL9R2Z5/fIEbNMSaJ4tmPR9UsyUdkTCXhzH8uDihxn/oBjhEED9lTOJpDc1JdqF UoaqdtL6BPZHqkcIxEZ8BsR/tDS+bFbr6yf+OXL5bKlhmeLXMZGrYTeYUTVs4mkk MJvrLsrxRgl4HGhCIIrI2kPdEXGAYezDT41GkaHv0i7CKXXCSjJvoNFRtjIwxknB kyE= -----END CERTIFICATE-----Generated at Thu Jul 31 01:05:48 2025 by rpki-client