$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94aecf12-a0a8-43cd-b24c-37950ef5429d.roa File: 94aecf12-a0a8-43cd-b24c-37950ef5429d.roa (raw, json) Hash identifier: QRphbIkJWn3y96cmu3IKZ3f3P2sd7LGTyqmTpr+EbvQ= Subject key identifier: 9A:11:30:65:2C:92:09:C5:2C:B7:48:72:C0:78:38:D1:BC:0F:7B:D0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0A17AA3CD21C4E9CC083775BFEFC4B30FC31EF10 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94aecf12-a0a8-43cd-b24c-37950ef5429d.roa Signing time: Mon 02 Jun 2025 15:00:53 +0000 ROA not before: Mon 02 Jun 2025 15:00:53 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da27::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:17:aa:3c:d2:1c:4e:9c:c0:83:77:5b:fe:fc:4b:30:fc:31:ef:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 2 15:00:53 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=8fc7499558b356838ad480b807fbc5f23e5d02c01fe32b594c04028301a3db81, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:74:cb:48:81:c7:4a:0e:82:df:cf:a1:8c:08: e5:2d:9b:e7:49:ce:e6:01:09:af:03:8e:92:aa:aa: fe:09:9e:5f:ac:b6:db:2d:87:1f:8c:fe:84:65:51: f2:3f:ce:41:db:c0:1a:64:0a:c4:e7:c8:c6:1d:de: 88:fe:f7:d6:bc:e3:5e:b6:96:14:9f:94:00:d8:24: 4b:ad:21:8b:bd:85:3d:51:e8:d6:49:3e:3b:b9:8c: 24:fa:81:86:d2:6b:33:3c:e8:af:8f:c1:05:8a:13: ee:a0:91:2f:0a:78:63:37:20:58:c5:2b:f4:65:ec: 72:19:ce:9c:74:9b:62:ed:49:2c:bc:03:a9:c0:48: bc:b4:ce:14:2d:c3:c5:f5:b8:78:f1:5c:cb:b8:25: 49:59:d8:6b:20:12:e7:87:61:28:c2:bf:98:4c:bd: 61:45:c7:74:97:df:4e:10:18:e8:aa:f6:db:84:58: 79:e0:7a:b2:2c:77:df:fe:34:02:d9:83:e9:de:10: 3b:10:ad:3b:1c:0b:92:29:9f:41:55:b2:00:e7:5d: a4:f2:d9:c5:78:6b:7c:20:cf:a3:48:1e:d4:98:62: b5:45:c7:3c:8c:f2:6b:08:98:02:0b:cf:77:b2:8d: 06:a1:3e:e0:21:75:d0:8e:8e:18:72:a8:49:e3:58: 61:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:11:30:65:2C:92:09:C5:2C:B7:48:72:C0:78:38:D1:BC:0F:7B:D0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94aecf12-a0a8-43cd-b24c-37950ef5429d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da27::/36 Signature Algorithm: sha256WithRSAEncryption 7f:1d:84:cd:7d:51:c1:de:2e:fc:f6:d3:05:19:d8:8f:e7:58: 8a:6c:c2:0f:af:0c:92:e7:81:50:25:15:a7:b2:10:87:4b:30: 82:5f:ae:5c:af:a3:b3:7a:99:40:30:a9:60:2a:39:ec:72:e8: d3:c7:a0:a1:49:51:f9:1e:ea:25:c4:a6:25:80:1a:d0:23:9c: 8f:4a:5b:64:ab:3c:fe:07:84:12:71:0b:c9:8c:72:39:21:cf: 0c:9f:e0:e1:bf:43:76:25:f3:bb:92:d2:4e:89:23:98:25:a9: 62:4a:be:34:40:84:20:18:41:dd:ac:40:6b:f1:32:6a:73:e0: e6:72:75:bd:d6:d8:87:cb:a4:03:8f:8d:6d:b3:2d:e8:8e:cb: 7d:86:3a:b5:38:9a:3b:74:81:33:18:fc:3a:8d:3f:1c:ee:03: 42:dc:26:f6:f4:e7:6f:cf:e4:78:20:00:99:a1:bb:40:8e:40: c9:ac:ae:fc:b8:5f:bd:85:93:2b:e9:6b:db:d7:3a:15:91:0e: aa:c6:9d:ac:2d:86:06:f7:bf:f4:96:b0:df:97:fa:f2:7d:af: 7c:41:32:5e:38:8f:37:b5:f9:a0:b7:bd:ea:99:3d:26:27:9f: 86:d1:ae:40:d6:82:1b:14:ca:cd:75:f9:6e:b8:cf:ff:86:db: dc:9a:61:ca -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCheqPNIcTpzAg3db/vxLMPwx7xAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwMjE1MDA1M1oX DTI1MDcwNzIzNTk1OVowejFJMEcGA1UEBRNAOGZjNzQ5OTU1OGIzNTY4MzhhZDQ4 MGI4MDdmYmM1ZjIzZTVkMDJjMDFmZTMyYjU5NGMwNDAyODMwMWEzZGI4MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiHTLSIHHSg6C38+hjAjlLZvnSc7m AQmvA46Sqqr+CZ5frLbbLYcfjP6EZVHyP85B28AaZArE58jGHd6I/vfWvONetpYU n5QA2CRLrSGLvYU9UejWST47uYwk+oGG0mszPOivj8EFihPuoJEvCnhjNyBYxSv0 ZexyGc6cdJti7UksvAOpwEi8tM4ULcPF9bh48VzLuCVJWdhrIBLnh2Eowr+YTL1h Rcd0l99OEBjoqvbbhFh54HqyLHff/jQC2YPp3hA7EK07HAuSKZ9BVbIA512k8tnF eGt8IM+jSB7UmGK1Rcc8jPJrCJgCC893so0GoT7gIXXQjo4YcqhJ41hhvQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJoRMGUskgnFLLdIcsB4ONG8D3vQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk0YWVjZjEyLWEwYTgtNDNjZC1iMjRjLTM3OTUwZWY1NDI5ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaJwAwDQYJKoZIhvcNAQELBQADggEBAH8dhM19UcHeLvz20wUZ 2I/nWIpswg+vDJLngVAlFaeyEIdLMIJfrlyvo7N6mUAwqWAqOexy6NPHoKFJUfke 6iXEpiWAGtAjnI9KW2SrPP4HhBJxC8mMcjkhzwyf4OG/Q3Yl87uS0k6JI5glqWJK vjRAhCAYQd2sQGvxMmpz4OZydb3W2IfLpAOPjW2zLeiOy32GOrU4mjt0gTMY/DqN PxzuA0LcJvb052/P5HggAJmhu0COQMmsrvy4X72Fkyvpa9vXOhWRDqrGnawthgb3 v/SWsN+X+vJ9r3xBMl44jze1+aC3veqZPSYnn4bRrkDWghsUys11+W64z/+G29ya Yco= -----END CERTIFICATE-----Generated at Tue Jun 3 23:12:18 2025 by rpki-client