$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d360aed-98af-4b86-84d2-f1b86117b0a2.roa File: 7d360aed-98af-4b86-84d2-f1b86117b0a2.roa (raw, json) Hash identifier: rju6mi9aKW9L5W4EDGnwXJ6cgKpON6Yx05w+hL2ZTZY= Subject key identifier: C6:C9:2F:3C:64:C2:DE:27:F5:34:02:1A:AB:49:C5:9E:52:50:12:8F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5537C1730A54889F092C4F6F8F750A8C51169BE9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d360aed-98af-4b86-84d2-f1b86117b0a2.roa Signing time: Wed 14 May 2025 00:51:36 +0000 ROA not before: Wed 14 May 2025 00:51:36 +0000 ROA not after: Wed 18 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:b0c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:37:c1:73:0a:54:88:9f:09:2c:4f:6f:8f:75:0a:8c:51:16:9b:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 14 00:51:36 2025 GMT Not After : Jun 18 23:59:59 2025 GMT Subject: serialNumber=b9d7ed945445b28682e58a377693ca61de8471e73f22b8c10cd36c87231320db, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4c:1f:90:e8:50:59:0c:b9:43:5e:6b:8c:be: 0d:e1:f8:6f:52:88:8b:4a:88:e5:29:6c:01:ee:12: 60:cd:fd:a5:03:02:df:b7:4b:7c:dc:fe:dc:e6:42: 1d:58:ac:54:4b:35:14:8e:a2:8c:b1:73:52:21:e3: 12:21:c9:fd:b6:ec:36:72:f5:13:b3:f6:80:dd:bb: 19:30:f6:bd:2a:83:38:b3:b6:67:9a:ea:1b:45:5a: 69:c7:22:24:66:6c:40:43:f7:9d:54:da:f0:f7:59: 9b:0c:e0:72:2b:c9:a5:63:49:42:55:74:6d:a1:f9: 07:f9:54:27:d0:31:89:67:9f:db:68:5e:07:1f:2b: 27:50:db:ae:79:37:83:2e:da:3b:e0:d2:4b:95:d0: 39:a7:94:71:40:8e:b5:1d:fe:26:07:e2:b6:4d:41: 63:6d:c7:a0:05:53:98:7c:36:eb:7a:06:29:2a:0a: 28:ad:e8:9c:76:f9:19:78:c1:f3:04:47:05:53:e1: fa:1b:90:55:fd:e3:e9:96:ec:27:2f:45:7f:57:17: ff:ab:1d:dc:71:62:23:68:01:8a:55:7e:60:b4:c3: 82:e0:37:9b:60:f3:3a:07:33:7b:9c:46:41:69:79: c1:1d:07:4f:91:53:97:df:31:8f:4d:d3:5b:1c:47: 33:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C9:2F:3C:64:C2:DE:27:F5:34:02:1A:AB:49:C5:9E:52:50:12:8F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d360aed-98af-4b86-84d2-f1b86117b0a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:b0c0::/46 Signature Algorithm: sha256WithRSAEncryption 35:25:c9:d2:b2:c7:8d:2a:9c:3f:2a:cb:38:0f:ab:02:e2:8e: dc:6e:cf:3b:ea:4e:1d:4d:67:18:b3:32:99:ec:e9:c2:2f:14: 43:73:62:3f:3b:9e:31:7b:03:e8:cb:30:25:59:35:76:fb:42: 3a:cd:f0:65:0c:91:19:6a:b4:2f:c7:04:1a:b2:16:6c:46:98: b8:15:04:ba:5e:31:d0:32:d8:8d:4e:8d:38:5c:b4:df:03:5f: fb:98:7f:f7:35:43:60:09:b0:9c:0a:3e:11:42:7b:f9:a4:1e: d7:89:47:16:ef:30:12:3e:e0:ad:74:54:99:02:8e:f6:38:ea: 8a:5f:d8:b4:8d:9f:fc:e6:04:d9:1a:a7:28:68:77:f8:95:3f: d7:49:1c:57:29:b9:93:12:65:74:9b:e1:66:71:ab:d8:bd:23: 30:6d:31:72:de:23:bd:97:cd:4c:8a:f5:3b:88:e0:b6:c4:ac: 62:be:ab:98:99:91:2f:76:7c:be:54:91:46:e5:94:a5:28:64: bd:49:61:34:ed:03:b8:d4:05:3e:de:c6:aa:75:6b:ca:68:42: 30:4e:6f:dc:06:55:bc:99:05:3e:59:b0:07:37:aa:f5:2b:e6: d4:92:d3:a2:9b:e4:e2:21:4e:66:9c:ec:82:99:cc:7e:26:1d: 1d:b5:c4:26 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUVTfBcwpUiJ8JLE9vj3UKjFEWm+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNDAwNTEzNloX DTI1MDYxODIzNTk1OVowejFJMEcGA1UEBRNAYjlkN2VkOTQ1NDQ1YjI4NjgyZTU4 YTM3NzY5M2NhNjFkZTg0NzFlNzNmMjJiOGMxMGNkMzZjODcyMzEzMjBkYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkwfkOhQWQy5Q15rjL4N4fhvUoiL SojlKWwB7hJgzf2lAwLft0t83P7c5kIdWKxUSzUUjqKMsXNSIeMSIcn9tuw2cvUT s/aA3bsZMPa9KoM4s7ZnmuobRVppxyIkZmxAQ/edVNrw91mbDOByK8mlY0lCVXRt ofkH+VQn0DGJZ5/baF4HHysnUNuueTeDLto74NJLldA5p5RxQI61Hf4mB+K2TUFj bcegBVOYfDbregYpKgooreicdvkZeMHzBEcFU+H6G5BV/ePpluwnL0V/Vxf/qx3c cWIjaAGKVX5gtMOC4DebYPM6BzN7nEZBaXnBHQdPkVOX3zGPTdNbHEcz8QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMbJLzxkwt4n9TQCGqtJxZ5SUBKPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdkMzYwYWVkLTk4YWYtNGI4Ni04NGQyLWYxYjg2MTE3YjBhMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAbaabDAMA0GCSqGSIb3DQEBCwUAA4IBAQA1JcnSsseNKpw/Kss4 D6sC4o7cbs876k4dTWcYszKZ7OnCLxRDc2I/O54xewPoyzAlWTV2+0I6zfBlDJEZ arQvxwQashZsRpi4FQS6XjHQMtiNTo04XLTfA1/7mH/3NUNgCbCcCj4RQnv5pB7X iUcW7zASPuCtdFSZAo72OOqKX9i0jZ/85gTZGqcoaHf4lT/XSRxXKbmTEmV0m+Fm cavYvSMwbTFy3iO9l81MivU7iOC2xKxivquYmZEvdny+VJFG5ZSlKGS9SWE07QO4 1AU+3saqdWvKaEIwTm/cBlW8mQU+WbAHN6r1K+bUktOim+TiIU5mnOyCmcx+Jh0d tcQm -----END CERTIFICATE-----Generated at Tue Jun 3 23:33:04 2025 by rpki-client