$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/793c08d0-65bf-4078-a267-d0adfdb54fc8.roa File: 793c08d0-65bf-4078-a267-d0adfdb54fc8.roa (raw, json) Hash identifier: fZdczNJ2cZnPAHU/T8QoMy7sNp7WjVlytkDNy+Ko6o8= Subject key identifier: FA:31:F3:CC:DF:B1:D2:37:22:02:DC:92:AD:5B:96:68:BC:22:9D:CE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 43E337FA825484A58B1328ABFFE228A9CEFCBC9D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/793c08d0-65bf-4078-a267-d0adfdb54fc8.roa Signing time: Wed 14 May 2025 00:40:21 +0000 ROA not before: Wed 14 May 2025 00:40:21 +0000 ROA not after: Wed 18 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e3:37:fa:82:54:84:a5:8b:13:28:ab:ff:e2:28:a9:ce:fc:bc:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 14 00:40:21 2025 GMT Not After : Jun 18 23:59:59 2025 GMT Subject: serialNumber=40704fa8854e60a6c34c5f503479a3c855b20f731123c188150e6935236f4336, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c0:6e:f5:4b:5e:7d:37:fa:a5:03:58:98:e1: ee:21:be:3d:4d:92:2a:98:fc:b5:05:91:66:66:dc: 1f:45:0e:49:75:fd:6a:7b:4a:2b:49:52:3e:33:5f: 21:48:93:89:b8:9a:b3:4a:41:93:42:9e:de:6b:f2: 68:ed:1a:4f:74:47:b0:c6:bf:2a:c0:1b:50:2f:66: f4:f9:37:b4:de:c3:15:cf:ed:11:59:88:a8:1a:aa: b4:a0:26:83:f1:b0:bb:cb:bb:1d:8e:ba:4b:07:60: f0:2c:12:69:81:1a:61:8e:b9:d2:de:59:6b:8b:eb: 5b:39:48:91:19:3e:ae:6f:28:fc:7b:e3:e6:8e:94: c6:60:23:7e:23:6b:44:f3:28:01:2a:94:03:68:bc: 6d:27:36:e3:d7:71:06:f0:85:fa:de:d6:ff:eb:59: f5:0c:9c:ef:b9:16:5d:59:45:f1:e3:03:12:98:ae: 4b:72:77:75:1f:4a:28:dc:cc:1d:ed:60:ec:f7:d7: 95:a6:49:d2:dc:37:5a:35:1b:27:9f:a0:38:71:4a: 3e:f1:48:51:e8:d4:7d:64:84:10:7a:c6:0e:8f:09: ce:ba:45:99:fb:83:f7:5f:ea:50:0a:e7:8a:7f:e6: 68:8b:85:d9:26:0f:87:b8:d1:ab:a4:b4:98:ca:30: fa:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:31:F3:CC:DF:B1:D2:37:22:02:DC:92:AD:5B:96:68:BC:22:9D:CE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/793c08d0-65bf-4078-a267-d0adfdb54fc8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:4080::/48 Signature Algorithm: sha256WithRSAEncryption ac:09:9e:74:ff:87:58:45:4f:3c:07:83:9a:ad:1a:e7:0c:df: f5:6c:d9:ae:32:04:09:02:ad:43:a8:73:c5:b6:9a:fb:8c:02: bf:eb:64:49:c2:8f:50:79:b9:ac:1d:24:56:e7:09:5d:05:54: f6:85:2f:1e:ab:8a:b1:b4:47:11:30:86:1f:17:8e:d4:fc:42: 28:00:53:cb:bf:f8:ab:f3:d2:e2:34:8a:bf:16:d0:24:4e:8a: 99:93:7d:95:74:70:49:a7:bc:a4:57:ba:ab:f6:37:58:dc:e8: 58:25:c2:d8:77:d1:ca:80:2a:bb:19:49:92:f5:84:8b:0a:de: 74:a6:2f:ac:97:82:c7:98:ad:46:ab:4d:d8:c0:1c:28:44:4a: 43:60:2d:58:2d:10:60:fd:fe:88:38:5b:46:95:b7:3a:1a:f0: 59:ce:71:06:2c:73:d2:d3:bd:d7:43:e1:eb:98:6d:0d:c3:44: 53:8a:36:ba:25:ac:75:7c:88:c4:52:8c:78:e5:e4:94:c1:40: 83:be:b7:a2:5e:48:30:0b:54:36:c1:1a:72:6c:a3:ae:5f:30: 86:49:82:c6:4f:f1:84:b2:3c:92:ce:be:2e:9a:3c:ed:33:7b: c0:cc:1f:43:36:a3:6c:e6:54:f1:97:c0:6e:f5:5a:b3:a4:d6: dc:30:19:e8 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUQ+M3+oJUhKWLEyir/+Ioqc78vJ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNDAwNDAyMVoX DTI1MDYxODIzNTk1OVowejFJMEcGA1UEBRNANDA3MDRmYTg4NTRlNjBhNmMzNGM1 ZjUwMzQ3OWEzYzg1NWIyMGY3MzExMjNjMTg4MTUwZTY5MzUyMzZmNDMzNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscBu9UtefTf6pQNYmOHuIb49TZIq mPy1BZFmZtwfRQ5Jdf1qe0orSVI+M18hSJOJuJqzSkGTQp7ea/Jo7RpPdEewxr8q wBtQL2b0+Te03sMVz+0RWYioGqq0oCaD8bC7y7sdjrpLB2DwLBJpgRphjrnS3llr i+tbOUiRGT6ubyj8e+PmjpTGYCN+I2tE8ygBKpQDaLxtJzbj13EG8IX63tb/61n1 DJzvuRZdWUXx4wMSmK5Lcnd1H0oo3Mwd7WDs99eVpknS3DdaNRsnn6A4cUo+8UhR 6NR9ZIQQesYOjwnOukWZ+4P3X+pQCueKf+Zoi4XZJg+HuNGrpLSYyjD6TQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPox88zfsdI3IgLckq1blmi8Ip3OMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc5M2MwOGQwLTY1YmYtNDA3OC1hMjY3LWQwYWRmZGI1NGZjOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/0CAMA0GCSqGSIb3DQEBCwUAA4IBAQCsCZ50/4dYRU88B4Oa rRrnDN/1bNmuMgQJAq1DqHPFtpr7jAK/62RJwo9QebmsHSRW5wldBVT2hS8eq4qx tEcRMIYfF47U/EIoAFPLv/ir89LiNIq/FtAkToqZk32VdHBJp7ykV7qr9jdY3OhY JcLYd9HKgCq7GUmS9YSLCt50pi+sl4LHmK1Gq03YwBwoREpDYC1YLRBg/f6IOFtG lbc6GvBZznEGLHPS073XQ+HrmG0Nw0RTija6Jax1fIjEUox45eSUwUCDvreiXkgw C1Q2wRpybKOuXzCGSYLGT/GEsjySzr4umjztM3vAzB9DNqNs5lTxl8Bu9VqzpNbc MBno -----END CERTIFICATE-----Generated at Tue Jun 3 23:33:11 2025 by rpki-client