$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa File: 7c327d37-0e2d-447d-aa31-66e378c4d35d.roa (raw, json) Hash identifier: f7rxcVt2DsKxT31Syyfz5cdDTZ+mUzkRZOyQi6bZraE= Subject key identifier: E5:5F:DB:EE:6C:A3:8B:52:5E:D9:32:1F:5A:D0:DE:DB:68:22:9A:DB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 322CFD8AAF59C7CFC7C54575418481D7DE88C173 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa Signing time: Fri 15 Aug 2025 00:00:28 +0000 ROA not before: Fri 15 Aug 2025 00:00:28 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:b080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 00:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:2c:fd:8a:af:59:c7:cf:c7:c5:45:75:41:84:81:d7:de:88:c1:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Aug 15 00:00:28 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=daeffb2f346b6500a44f2667380c5c793bca48c4cf4e18720aa40dd5a03e2e1b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8a:f4:da:c7:0a:ac:4c:e3:de:2c:b2:07:85: 31:c2:2c:17:0e:b7:90:72:18:de:3b:64:d5:0b:a6: ab:69:65:b3:cd:38:db:46:fe:62:17:67:8f:64:b1: 78:a5:56:19:4e:54:dd:15:c7:6e:e6:14:32:39:9e: 17:fd:6d:79:8c:6a:51:61:42:10:0e:61:9f:0d:bd: b4:8c:a1:c0:8a:4a:83:0e:6b:a7:a9:6d:6b:d9:1e: 00:17:06:b4:24:da:89:72:14:f2:4f:97:07:8e:40: e7:c7:b9:89:7b:1b:e0:26:ec:84:bc:ba:8b:96:99: 64:14:16:96:09:6c:eb:d2:df:c9:b6:e1:39:41:00: 64:5c:e2:ad:92:92:9b:ff:03:b8:95:4a:a3:40:6b: 81:cb:22:fe:33:b5:7d:54:bd:c1:34:2e:24:a4:f8: 43:ec:d1:94:46:9a:8d:fc:7e:f3:a6:f5:96:63:01: 8b:1c:4d:b2:d9:7b:c5:ad:db:89:e6:c7:12:06:5a: bb:e4:4a:f7:1b:f7:46:50:42:32:35:af:d2:8b:cb: 50:d0:41:aa:6d:ce:fb:a5:84:fb:c5:0f:c4:4d:16: ef:25:09:bb:6b:2a:36:ba:67:0c:19:b0:ec:86:b7: de:81:37:07:24:e9:4f:a1:31:85:8b:37:52:71:04: 61:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5F:DB:EE:6C:A3:8B:52:5E:D9:32:1F:5A:D0:DE:DB:68:22:9A:DB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:b080::/46 Signature Algorithm: sha256WithRSAEncryption 44:8a:4b:59:c1:a6:a8:e2:df:38:2e:bc:56:54:74:e4:80:5e: fd:9d:08:48:ee:7c:49:85:7f:20:21:5b:1d:c6:c7:33:c8:96: 56:0c:dc:3e:35:e5:be:67:5a:0f:82:4c:b4:90:2b:ec:a5:de: 8b:ab:56:a2:80:36:08:dd:4d:d1:4a:cf:2a:52:c3:f4:d3:cd: e4:0c:7a:65:82:07:ca:2d:4a:a4:5a:fc:c7:0c:25:21:bb:4f: b2:fe:02:12:d6:a5:f5:a5:39:ba:62:65:47:25:ee:ae:d2:61: f9:b7:16:9a:ba:73:03:10:82:af:c7:1a:ac:a9:df:0e:88:5f: fb:72:23:a4:57:5c:e1:c8:69:1e:51:c8:1b:e8:c9:d8:9e:8b: e1:d9:f3:ac:af:78:9a:15:b2:3e:6a:db:b7:ed:0d:7e:c7:82: 60:0e:5f:16:77:22:7e:37:67:90:0f:60:be:60:45:55:c3:f1: de:34:fb:b3:38:ef:30:60:2f:18:e2:56:94:27:09:e2:58:6d: f2:87:2d:97:66:fc:4e:5c:3b:b2:de:db:5f:51:3f:97:a2:38: 37:c5:a2:16:9f:e5:ab:e8:7c:c0:33:a6:12:e3:52:d8:90:55: 19:50:53:8c:c9:85:15:bb:a1:55:84:84:35:3b:48:0f:60:f8: e8:9c:78:02 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMiz9iq9Zx8/HxUV1QYSB196IwXMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDgxNTAwMDAyOFoX DTI1MDkxOTIzNTk1OVowejFJMEcGA1UEBRNAZGFlZmZiMmYzNDZiNjUwMGE0NGYy NjY3MzgwYzVjNzkzYmNhNDhjNGNmNGUxODcyMGFhNDBkZDVhMDNlMmUxYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Ir02scKrEzj3iyyB4UxwiwXDreQ chjeO2TVC6araWWzzTjbRv5iF2ePZLF4pVYZTlTdFcdu5hQyOZ4X/W15jGpRYUIQ DmGfDb20jKHAikqDDmunqW1r2R4AFwa0JNqJchTyT5cHjkDnx7mJexvgJuyEvLqL lplkFBaWCWzr0t/JtuE5QQBkXOKtkpKb/wO4lUqjQGuByyL+M7V9VL3BNC4kpPhD 7NGURpqN/H7zpvWWYwGLHE2y2XvFrduJ5scSBlq75Er3G/dGUEIyNa/Si8tQ0EGq bc77pYT7xQ/ETRbvJQm7ayo2umcMGbDshrfegTcHJOlPoTGFizdScQRhxwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFOVf2+5so4tSXtkyH1rQ3ttoIprbMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdjMzI3ZDM3LTBlMmQtNDQ3ZC1hYTMxLTY2ZTM3OGM0ZDM1ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba87CAMA0GCSqGSIb3DQEBCwUAA4IBAQBEiktZwaao4t84LrxW VHTkgF79nQhI7nxJhX8gIVsdxsczyJZWDNw+NeW+Z1oPgky0kCvspd6Lq1aigDYI 3U3RSs8qUsP0083kDHplggfKLUqkWvzHDCUhu0+y/gIS1qX1pTm6YmVHJe6u0mH5 txaaunMDEIKvxxqsqd8OiF/7ciOkV1zhyGkeUcgb6MnYnovh2fOsr3iaFbI+atu3 7Q1+x4JgDl8WdyJ+N2eQD2C+YEVVw/HeNPuzOO8wYC8Y4laUJwniWG3yhy2XZvxO XDuy3ttfUT+Xojg3xaIWn+Wr6HzAM6YS41LYkFUZUFOMyYUVu6FVhIQ1O0gPYPjo nHgC -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:29 2025 by rpki-client