$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa File: 7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa (raw, json) Hash identifier: +7nALl+c4xmJqCVva+G1z7xQLR1ATCGFtQ2QKMexHXE= Subject key identifier: CD:98:AF:E7:8A:13:1F:B6:97:93:09:C9:03:B9:95:FF:2F:7A:F4:6B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5C31D228C9C4DA637985E55F5749111AB53ADBC5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa Signing time: Fri 27 Jun 2025 00:01:00 +0000 ROA not before: Fri 27 Jun 2025 00:01:00 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da22::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 15:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:31:d2:28:c9:c4:da:63:79:85:e5:5f:57:49:11:1a:b5:3a:db:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 27 00:01:00 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=a1a4ed7eec51c3a6299a334a1c7e7e2bc9cd8361cfb3e53b1a9d3904f62de28b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cf:eb:82:8c:91:89:27:05:2d:95:11:ae:84: b8:cb:44:84:5c:a8:f4:4b:03:d2:0f:30:14:d2:f7: 85:1b:75:46:fb:5d:bb:33:33:fa:47:ca:db:55:65: 38:82:7c:54:0e:9f:59:d4:2f:ba:24:5a:44:ca:5e: cb:d0:39:4f:e3:c1:d7:76:32:7c:d1:96:06:7b:d3: 28:91:90:ba:d2:4a:67:5e:38:f8:98:9e:ea:b3:9c: 93:19:d3:0e:cd:20:b5:a2:23:69:5d:9c:d6:8f:ce: e8:4a:16:3f:57:8a:db:71:53:3b:19:9a:c2:4b:d5: 15:c0:b3:90:6a:33:41:7b:af:93:37:25:fe:95:ee: f7:a3:ae:c3:5e:5e:e7:f4:1a:13:c8:2e:98:33:9f: 26:94:81:73:35:0d:e3:65:ab:de:b6:ff:1a:65:29: 4c:23:41:5a:96:c4:49:30:df:c1:6a:29:38:81:1c: c6:b4:e7:9e:c9:b8:da:d2:68:d0:c8:95:18:5c:09: 9f:5e:b5:75:6d:70:64:11:1a:3e:4b:f4:46:c5:b5: 35:06:09:2d:bf:d8:e5:34:c8:68:93:43:56:76:a1: 46:0f:4f:e9:41:44:c6:66:0d:99:75:ce:a9:dc:cd: b8:e3:08:9a:38:60:dc:07:5f:73:5b:e2:36:b1:c0: f4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:98:AF:E7:8A:13:1F:B6:97:93:09:C9:03:B9:95:FF:2F:7A:F4:6B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da22::/36 Signature Algorithm: sha256WithRSAEncryption 6c:26:d4:b9:03:3e:02:36:f9:f7:f3:50:f5:77:7e:fe:e7:e5: e0:db:b0:9d:55:d6:73:6f:8a:73:c1:41:38:74:ae:c5:16:14: 6e:42:af:73:a5:a1:2d:4f:4f:1f:3c:fb:f6:b3:a8:c4:2d:42: d9:2f:dd:ec:12:65:2d:59:b9:e8:af:08:db:1c:00:c2:c1:d0: 5d:d3:fb:21:c8:5e:06:bf:63:92:97:d3:1d:b3:9a:89:a8:6a: b2:e7:b6:62:a3:83:f5:27:63:c6:ea:3e:0d:47:01:b7:91:13: 64:45:75:80:f4:2b:b1:43:f2:2e:a6:42:6c:f1:69:24:ce:0e: 9f:28:8b:e4:a4:af:20:0b:ad:b5:c7:97:e8:3d:52:25:22:cc: 91:71:f7:bf:c3:b6:41:ee:bf:41:e9:e9:1c:91:6e:a2:ac:24: 86:91:e2:08:78:42:4c:6c:cb:5e:c4:b8:4b:43:95:5e:83:f3: 06:2b:37:27:ed:80:ee:fa:e5:4e:1a:ad:13:89:2e:a4:65:2c: af:da:35:d0:e0:9f:df:02:94:5d:1c:fd:43:ac:d8:fc:1c:e0: de:27:cf:23:86:b3:34:8e:34:ae:8c:6d:ed:11:70:b4:84:31: 88:9a:70:13:79:f7:2d:8e:ba:41:dc:1e:ab:7d:f4:f5:ec:1e: 44:8c:8f:0d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXDHSKMnE2mN5heVfV0kRGrU628UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYyNzAwMDEwMFoX DTI1MDgwMTIzNTk1OVowejFJMEcGA1UEBRNAYTFhNGVkN2VlYzUxYzNhNjI5OWEz MzRhMWM3ZTdlMmJjOWNkODM2MWNmYjNlNTNiMWE5ZDM5MDRmNjJkZTI4YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08/rgoyRiScFLZURroS4y0SEXKj0 SwPSDzAU0veFG3VG+127MzP6R8rbVWU4gnxUDp9Z1C+6JFpEyl7L0DlP48HXdjJ8 0ZYGe9MokZC60kpnXjj4mJ7qs5yTGdMOzSC1oiNpXZzWj87oShY/V4rbcVM7GZrC S9UVwLOQajNBe6+TNyX+le73o67DXl7n9BoTyC6YM58mlIFzNQ3jZavetv8aZSlM I0FalsRJMN/Baik4gRzGtOeeybja0mjQyJUYXAmfXrV1bXBkERo+S/RGxbU1Bgkt v9jlNMhok0NWdqFGD0/pQUTGZg2Zdc6p3M244wiaOGDcB19zW+I2scD0WwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFM2Yr+eKEx+2l5MJyQO5lf8vevRrMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdlNGU3MTM3LTEzOGQtNGJhOC04YTE3LTgxYzNkNmQzYTk4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIgAwDQYJKoZIhvcNAQELBQADggEBAGwm1LkDPgI2+ffzUPV3 fv7n5eDbsJ1V1nNvinPBQTh0rsUWFG5Cr3OloS1PTx88+/azqMQtQtkv3ewSZS1Z ueivCNscAMLB0F3T+yHIXga/Y5KX0x2zmomoarLntmKjg/UnY8bqPg1HAbeRE2RF dYD0K7FD8i6mQmzxaSTODp8oi+SkryALrbXHl+g9UiUizJFx97/DtkHuv0Hp6RyR bqKsJIaR4gh4Qkxsy17EuEtDlV6D8wYrNyftgO765U4arROJLqRlLK/aNdDgn98C lF0c/UOs2Pwc4N4nzyOGszSONK6Mbe0RcLSEMYiacBN59y2OukHcHqt99PXsHkSM jw0= -----END CERTIFICATE-----Generated at Mon Jun 30 19:50:51 2025 by rpki-client