$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/92a734ef-a252-48bc-a799-25426b153989.roa File: 92a734ef-a252-48bc-a799-25426b153989.roa (raw, json) Hash identifier: mC00gj3utIXtbTKJYCkHV1dtAPHVorNElc6kyQpsnw8= Subject key identifier: C4:35:B4:FB:06:FE:1D:9F:A4:F6:E7:95:8C:F6:34:4E:04:50:09:A6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 27452EA8FD8B6B46217C2A9151D95F328F248D11 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/92a734ef-a252-48bc-a799-25426b153989.roa Signing time: Tue 29 Jul 2025 00:21:17 +0000 ROA not before: Tue 29 Jul 2025 00:21:17 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:f000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:45:2e:a8:fd:8b:6b:46:21:7c:2a:91:51:d9:5f:32:8f:24:8d:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 29 00:21:17 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=8aa104b98c91002caa6fc6b9526f196588119ef01cb2cba02aa0d0df23c362ad, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0b:81:56:af:2b:fb:37:23:04:67:f0:ca:80: c3:6c:67:0f:76:33:30:ed:9c:ab:dd:2e:c5:86:d7: 47:9e:ed:6c:31:73:17:80:b8:c2:0d:b0:1a:69:fb: a3:1c:f9:a9:db:58:39:d6:f2:c0:92:00:ea:ea:76: 80:fa:19:c7:5f:2b:dd:de:43:26:01:4c:3f:d7:f4: 22:bc:ff:86:09:82:fc:31:6c:fe:df:73:0a:82:13: 66:cb:71:5b:85:18:28:fb:03:1d:80:d0:c4:9a:66: 1c:bb:c0:bd:25:d8:cb:b8:69:50:fd:aa:91:bb:94: c4:4e:77:15:e6:3d:a6:44:2f:b8:bf:85:6b:82:43: 1b:37:ee:6b:69:f7:1c:52:54:87:c7:50:2a:a0:af: 87:7f:45:5b:d4:ab:d8:3f:97:01:5c:ff:95:b8:c2: 8d:1c:86:de:0e:ca:5d:3e:3b:25:24:62:59:b5:5e: 7b:ac:50:ca:1d:35:9c:11:07:f8:a4:b1:5f:39:9e: 1b:31:26:75:33:f5:59:e5:56:c9:47:e5:55:60:3e: 11:52:22:36:f5:3e:51:67:3e:b6:2a:dc:cb:9c:62: dc:04:d9:99:0a:c2:54:65:33:45:30:db:91:b2:08: 9e:65:6b:37:4f:1f:6e:26:70:90:af:99:d6:c3:34: ed:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:35:B4:FB:06:FE:1D:9F:A4:F6:E7:95:8C:F6:34:4E:04:50:09:A6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/92a734ef-a252-48bc-a799-25426b153989.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:f000::/40 Signature Algorithm: sha256WithRSAEncryption bf:5b:40:7d:64:99:08:e3:54:99:99:cb:22:02:20:1a:bc:1d: 70:d7:01:5a:cb:46:9e:f2:95:f3:c3:de:f5:53:75:16:de:7b: 34:2b:88:9c:79:76:34:2d:75:ba:d8:be:73:57:1f:fa:06:11: fa:67:5c:09:da:8d:0e:6e:60:96:95:3a:69:ec:a5:aa:4a:38: 0e:7b:18:f8:a8:a6:5c:44:f3:34:89:3c:a0:9d:b2:61:5f:e2: 60:3f:55:75:40:33:c2:99:cc:cd:8a:ef:db:33:98:09:8a:72: ef:2d:19:31:41:50:31:74:60:5b:bc:6d:9c:db:a8:98:05:22: 1b:e6:2f:7a:c6:88:f4:cb:9f:76:95:b5:7d:7e:d2:82:f3:63: 62:73:45:b1:18:97:ae:62:4b:1a:25:2c:75:ca:6d:19:30:4e: 7d:b6:22:92:b6:09:3a:04:1a:77:89:4c:0a:dd:03:87:11:a3: d9:14:40:76:69:5e:7a:c4:87:da:f3:87:ac:6e:76:41:d1:67: 09:ae:35:33:63:f0:a2:62:67:19:8f:8a:c8:78:b2:df:58:b7: 63:b1:88:9e:0c:2b:56:de:e9:44:57:24:1e:5b:69:0c:d4:b0: a0:82:68:5d:ec:f8:ce:f2:08:a6:47:33:d8:81:0d:4d:2e:cb: 1e:bd:49:e3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJ0UuqP2La0YhfCqRUdlfMo8kjREwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcyOTAwMjExN1oX DTI1MDkwMjIzNTk1OVowejFJMEcGA1UEBRNAOGFhMTA0Yjk4YzkxMDAyY2FhNmZj NmI5NTI2ZjE5NjU4ODExOWVmMDFjYjJjYmEwMmFhMGQwZGYyM2MzNjJhZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1AuBVq8r+zcjBGfwyoDDbGcPdjMw 7Zyr3S7FhtdHnu1sMXMXgLjCDbAaafujHPmp21g51vLAkgDq6naA+hnHXyvd3kMm AUw/1/QivP+GCYL8MWz+33MKghNmy3FbhRgo+wMdgNDEmmYcu8C9JdjLuGlQ/aqR u5TETncV5j2mRC+4v4VrgkMbN+5rafccUlSHx1AqoK+Hf0Vb1KvYP5cBXP+VuMKN HIbeDspdPjslJGJZtV57rFDKHTWcEQf4pLFfOZ4bMSZ1M/VZ5VbJR+VVYD4RUiI2 9T5RZz62KtzLnGLcBNmZCsJUZTNFMNuRsgieZWs3Tx9uJnCQr5nWwzTtFwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMQ1tPsG/h2fpPbnlYz2NE4EUAmmMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkyYTczNGVmLWEyNTItNDhiYy1hNzk5LTI1NDI2YjE1Mzk4OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYfAwDQYJKoZIhvcNAQELBQADggEBAL9bQH1kmQjjVJmZyyIC IBq8HXDXAVrLRp7ylfPD3vVTdRbeezQriJx5djQtdbrYvnNXH/oGEfpnXAnajQ5u YJaVOmnspapKOA57GPioplxE8zSJPKCdsmFf4mA/VXVAM8KZzM2K79szmAmKcu8t GTFBUDF0YFu8bZzbqJgFIhvmL3rGiPTLn3aVtX1+0oLzY2JzRbEYl65iSxolLHXK bRkwTn22IpK2CToEGneJTArdA4cRo9kUQHZpXnrEh9rzh6xudkHRZwmuNTNj8KJi ZxmPish4st9Yt2OxiJ4MK1be6URXJB5baQzUsKCCaF3s+M7yCKZHM9iBDU0uyx69 SeM= -----END CERTIFICATE-----Generated at Thu Jul 31 01:04:15 2025 by rpki-client