$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80e736af-9d57-41cb-8afc-93289d28a342.roa File: 80e736af-9d57-41cb-8afc-93289d28a342.roa (raw, json) Hash identifier: Mw7C/VSKMRtileIZjos54xr6p/GaNvbpvsj7hWW4Fqo= Subject key identifier: C8:AB:A8:59:BC:E8:45:72:0A:98:A9:84:A6:9B:A9:30:0D:32:43:E9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 50988B87ACDF22B52A13703A237577F26E7F6EAE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80e736af-9d57-41cb-8afc-93289d28a342.roa Signing time: Wed 14 May 2025 00:51:39 +0000 ROA not before: Wed 14 May 2025 00:51:39 +0000 ROA not after: Wed 18 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:7080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:98:8b:87:ac:df:22:b5:2a:13:70:3a:23:75:77:f2:6e:7f:6e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 14 00:51:39 2025 GMT Not After : Jun 18 23:59:59 2025 GMT Subject: serialNumber=0c15e8845daaf458e3f56f1d3140da6f773686dcdcae591cc89cfe569daa8545, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e2:67:c0:1f:32:98:09:eb:28:88:f0:b2:22: 2f:bb:49:f9:96:95:cb:02:a3:23:bc:5a:7c:8f:f0: ef:23:8c:97:f1:97:36:ef:7a:7c:1e:93:30:ed:b6: e3:1d:af:b6:ce:f1:aa:e6:a1:ec:56:95:b8:93:09: 3d:2d:0e:6c:c2:f8:40:fe:d7:d7:e2:c6:25:0c:4e: a7:59:f2:b7:f8:d3:52:e7:28:f2:0c:2c:26:a3:b9: 5a:86:9c:21:62:c0:0f:49:c9:6e:a5:c2:b0:c0:1b: c1:a0:05:67:35:53:d4:c6:2c:ca:b8:72:18:99:0f: fe:1e:f2:1b:4c:f7:c0:09:47:c5:0d:9d:49:40:58: ba:72:58:31:88:05:f6:2b:87:25:2c:33:a7:cb:82: b5:05:22:ed:90:94:73:15:9c:94:16:8c:17:a5:bd: 1e:93:44:ad:33:38:f0:64:c4:3d:fd:70:78:16:61: 6d:ed:9c:9b:1e:a4:ea:4c:57:e9:49:62:72:8e:55: e7:74:c6:78:94:d7:63:14:63:b0:eb:3b:97:e3:65: 51:00:46:ad:cf:d8:fa:90:d4:45:5e:0b:31:26:11: f6:e1:6b:c9:dc:55:bf:6f:1a:81:0f:b7:22:75:f6: fe:bf:85:c1:af:bc:7a:ab:9a:fd:55:58:49:63:a0: 0b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:AB:A8:59:BC:E8:45:72:0A:98:A9:84:A6:9B:A9:30:0D:32:43:E9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80e736af-9d57-41cb-8afc-93289d28a342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:7080::/46 Signature Algorithm: sha256WithRSAEncryption 77:eb:76:53:77:d5:c6:21:04:bc:f9:91:8a:da:92:7e:c2:f4: 9b:8f:da:90:f3:fe:0c:b0:1c:32:ff:8c:18:fa:16:19:4a:f0: 1f:c3:c2:98:6a:0d:dd:a9:93:ef:02:b9:ed:ad:9e:5e:f8:84: 85:c8:0c:9b:6c:68:82:75:4b:b9:57:51:49:6b:68:17:6d:75: 74:25:db:c9:84:79:40:52:ec:ca:e0:cd:46:54:4e:b8:28:c3: 9f:16:3c:4b:07:d7:b1:af:6f:e0:3f:f2:7a:06:0e:d9:c3:95: a2:ff:fb:de:87:ff:7f:83:38:59:62:e2:11:cc:fc:19:71:75: 37:b0:44:74:6d:72:94:0a:a8:6c:a8:4e:43:3f:dc:86:aa:a7: b3:86:62:39:47:a9:00:0f:01:56:90:7b:e7:70:f7:99:2e:99: 47:24:a0:9e:53:22:27:d4:e1:46:3a:da:f6:ad:56:4d:7c:13: 71:1d:5e:10:dd:37:35:3d:74:a4:9c:ef:66:11:ac:db:a2:42: c4:04:66:7d:40:90:a9:1b:b0:c6:bb:0a:ea:ad:cd:02:bc:cb: d0:0a:ef:e7:56:b3:7f:18:6f:7f:45:d6:25:ed:56:3f:40:84: 22:8c:39:1b:7b:d9:87:d5:55:2c:9b:ff:f5:6d:c8:8a:a2:de: e7:00:3c:b4 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUUJiLh6zfIrUqE3A6I3V38m5/bq4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNDAwNTEzOVoX DTI1MDYxODIzNTk1OVowejFJMEcGA1UEBRNAMGMxNWU4ODQ1ZGFhZjQ1OGUzZjU2 ZjFkMzE0MGRhNmY3NzM2ODZkY2RjYWU1OTFjYzg5Y2ZlNTY5ZGFhODU0NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreJnwB8ymAnrKIjwsiIvu0n5lpXL AqMjvFp8j/DvI4yX8Zc273p8HpMw7bbjHa+2zvGq5qHsVpW4kwk9LQ5swvhA/tfX 4sYlDE6nWfK3+NNS5yjyDCwmo7lahpwhYsAPSclupcKwwBvBoAVnNVPUxizKuHIY mQ/+HvIbTPfACUfFDZ1JQFi6clgxiAX2K4clLDOny4K1BSLtkJRzFZyUFowXpb0e k0StMzjwZMQ9/XB4FmFt7ZybHqTqTFfpSWJyjlXndMZ4lNdjFGOw6zuX42VRAEat z9j6kNRFXgsxJhH24WvJ3FW/bxqBD7cidfb+v4XBr7x6q5r9VVhJY6ALCQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMirqFm86EVyCpiphKabqTANMkPpMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzgwZTczNmFmLTlkNTctNDFjYi04YWZjLTkzMjg5ZDI4YTM0Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba+3CAMA0GCSqGSIb3DQEBCwUAA4IBAQB363ZTd9XGIQS8+ZGK 2pJ+wvSbj9qQ8/4MsBwy/4wY+hYZSvAfw8KYag3dqZPvArntrZ5e+ISFyAybbGiC dUu5V1FJa2gXbXV0JdvJhHlAUuzK4M1GVE64KMOfFjxLB9exr2/gP/J6Bg7Zw5Wi //veh/9/gzhZYuIRzPwZcXU3sER0bXKUCqhsqE5DP9yGqqezhmI5R6kADwFWkHvn cPeZLplHJKCeUyIn1OFGOtr2rVZNfBNxHV4Q3Tc1PXSknO9mEazbokLEBGZ9QJCp G7DGuwrqrc0CvMvQCu/nVrN/GG9/RdYl7VY/QIQijDkbe9mH1VUsm//1bciKot7n ADy0 -----END CERTIFICATE-----Generated at Tue Jun 3 23:33:17 2025 by rpki-client