$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9016c8f8-5e23-4acf-929a-ba5a344b35b6.roa File: 9016c8f8-5e23-4acf-929a-ba5a344b35b6.roa (raw, json) Hash identifier: 9Ajv0I0Pud0iqX3lvVnEbpwuo7tDmkzkoPTGYp6fu/c= Subject key identifier: 77:2E:AD:23:79:C5:38:84:1C:08:CA:8E:08:E0:21:68:69:6B:DC:89 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 37045F5BB274AE6B91282D1F300B85D5675A8CFB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9016c8f8-5e23-4acf-929a-ba5a344b35b6.roa Signing time: Fri 16 May 2025 00:10:37 +0000 ROA not before: Fri 16 May 2025 00:10:37 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:4080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:04:5f:5b:b2:74:ae:6b:91:28:2d:1f:30:0b:85:d5:67:5a:8c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 00:10:37 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=95804cc01af87a8bbf56ed3ff10af2603428c12fe7804316c57156043b967af1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1b:de:f2:73:84:91:7c:0c:31:12:1a:f3:53: 08:43:49:ff:89:79:9a:a1:2e:5d:54:a4:7a:1c:da: 20:c7:d0:90:5c:17:30:4a:ac:0c:fa:51:43:b3:5a: ae:20:40:1e:6c:e8:b8:6a:28:45:b9:5b:97:83:75: 34:81:bb:bb:44:2c:17:0a:d3:17:b4:ea:2f:b8:96: 5f:66:29:12:6b:a1:1a:a4:7b:96:99:1a:b3:c3:53: 31:98:97:5a:4a:9b:3e:60:97:e6:6f:30:11:2f:ad: e0:5e:ef:a8:81:ca:06:44:0e:f2:3d:01:9f:9b:1e: 51:f0:a2:59:18:47:12:41:97:57:8e:be:e3:c4:ca: e0:26:90:0b:5a:85:0c:53:d6:c8:34:e7:a5:b0:c6: 68:8c:ca:9c:2b:17:56:2c:7f:3a:e5:de:5f:1c:a4: 25:3b:85:bf:9e:34:57:93:90:d9:a4:1b:31:30:2d: 53:f4:46:b5:83:95:18:92:da:f6:57:99:33:f1:7f: 5a:e6:3e:4f:f8:4f:b6:b7:a1:b4:70:0a:3a:23:e9: 3b:bf:a2:cb:ce:1f:b3:cd:05:e9:f7:b6:4d:55:40: c3:4d:06:72:49:6a:c5:bb:c6:5a:95:4e:da:24:bd: 4a:18:bf:66:26:90:e8:91:d0:44:5b:22:66:4f:f9: b8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2E:AD:23:79:C5:38:84:1C:08:CA:8E:08:E0:21:68:69:6B:DC:89 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9016c8f8-5e23-4acf-929a-ba5a344b35b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:4080::/46 Signature Algorithm: sha256WithRSAEncryption c7:ea:26:fa:6f:c0:c1:31:2a:3a:bf:33:a8:d5:59:88:47:f3: 20:bb:11:79:0d:17:f3:f2:c6:6e:d2:c6:4d:50:cd:80:e3:66: 60:90:22:3b:fb:9d:f9:a5:f3:65:af:ed:2b:f2:24:0a:17:ee: d1:1a:1f:b8:93:b1:96:94:18:be:8a:bd:fa:95:62:f1:57:24: d3:40:f6:48:23:29:bf:dc:b6:13:3d:79:de:13:55:e6:30:26: 55:50:d4:4a:7f:14:63:0e:77:70:63:cd:b4:b8:87:be:e2:e5: da:b1:a5:59:bd:60:e4:bd:1c:32:93:71:40:d3:88:5f:44:e3: 2d:83:f7:28:7f:56:96:37:31:ed:78:e4:16:24:77:12:0c:d8: 62:ec:a6:d4:6b:12:a4:9d:d0:9c:1b:3a:15:80:f4:57:6e:42: e6:3b:4b:1b:f8:49:55:3f:6a:61:a4:13:2d:ec:10:e6:89:a4: f7:35:56:3f:58:31:ce:02:15:cc:02:0b:5e:60:33:27:f8:c3: a5:8c:bf:2a:eb:7f:3d:84:1d:8d:3c:43:7e:72:bd:59:a6:06: 3a:0a:65:4a:84:6f:bb:42:6a:52:88:74:eb:4c:b9:78:28:a9: 61:92:b6:f4:01:cc:bf:ce:ee:cd:f1:fe:cf:c1:ed:35:65:57: cc:05:a6:fd -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUNwRfW7J0rmuRKC0fMAuF1WdajPswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjAwMTAzN1oX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNAOTU4MDRjYzAxYWY4N2E4YmJmNTZl ZDNmZjEwYWYyNjAzNDI4YzEyZmU3ODA0MzE2YzU3MTU2MDQzYjk2N2FmMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthve8nOEkXwMMRIa81MIQ0n/iXma oS5dVKR6HNogx9CQXBcwSqwM+lFDs1quIEAebOi4aihFuVuXg3U0gbu7RCwXCtMX tOovuJZfZikSa6EapHuWmRqzw1MxmJdaSps+YJfmbzARL63gXu+ogcoGRA7yPQGf mx5R8KJZGEcSQZdXjr7jxMrgJpALWoUMU9bINOelsMZojMqcKxdWLH865d5fHKQl O4W/njRXk5DZpBsxMC1T9Ea1g5UYktr2V5kz8X9a5j5P+E+2t6G0cAo6I+k7v6LL zh+zzQXp97ZNVUDDTQZySWrFu8ZalU7aJL1KGL9mJpDokdBEWyJmT/m4GwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHcurSN5xTiEHAjKjgjgIWhpa9yJMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkwMTZjOGY4LTVlMjMtNGFjZi05MjlhLWJhNWEzNDRiMzViNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAbaaUCAMA0GCSqGSIb3DQEBCwUAA4IBAQDH6ib6b8DBMSo6vzOo 1VmIR/MguxF5DRfz8sZu0sZNUM2A42ZgkCI7+535pfNlr+0r8iQKF+7RGh+4k7GW lBi+ir36lWLxVyTTQPZIIym/3LYTPXneE1XmMCZVUNRKfxRjDndwY820uIe+4uXa saVZvWDkvRwyk3FA04hfROMtg/cof1aWNzHteOQWJHcSDNhi7KbUaxKkndCcGzoV gPRXbkLmO0sb+ElVP2phpBMt7BDmiaT3NVY/WDHOAhXMAgteYDMn+MOljL8q6389 hB2NPEN+cr1ZpgY6CmVKhG+7QmpSiHTrTLl4KKlhkrb0Acy/zu7N8f7Pwe01ZVfM Bab9 -----END CERTIFICATE-----Generated at Tue Jun 3 23:18:12 2025 by rpki-client