$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa File: 97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa (raw, json) Hash identifier: 1Oz/007QYDRSEiu4afCtSyYu9eq8Gjj0t3uqHpOnYSQ= Subject key identifier: 40:05:87:6D:B8:3B:8D:2E:65:83:7B:4F:DD:3F:BB:15:D9:D3:BB:D8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5B667D0B3730B1CE1CF977FFF2048C1B79EA67FF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa Signing time: Mon 02 Jun 2025 15:00:10 +0000 ROA not before: Mon 02 Jun 2025 15:00:10 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2b::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:66:7d:0b:37:30:b1:ce:1c:f9:77:ff:f2:04:8c:1b:79:ea:67:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 2 15:00:10 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=6aa4df0d89e84b098043d1ec96df9d1e83e067ef2afdc77939510a92fa3a057f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c4:d6:70:39:6b:84:41:b8:27:ba:47:f3:2c: 98:c3:d6:5a:2d:5a:b2:b9:96:7c:b7:c8:51:a6:87: ce:3e:07:1b:b7:0b:4a:3c:e7:a4:4d:8b:a3:82:c5: 66:1c:64:32:26:a7:90:d7:b5:65:19:31:3b:90:4d: f6:bb:47:0a:7e:67:eb:10:b6:5a:e5:e0:34:9f:6c: 66:e3:9a:ba:1c:00:04:d0:8c:37:d4:e6:33:9e:58: 7b:96:bf:0b:61:5f:b0:6a:c6:df:05:0c:e3:ef:d8: d0:06:33:67:fd:55:3a:85:01:8d:3a:d1:b4:9b:ab: 38:ad:2a:6f:d3:dd:8a:a3:41:e9:06:30:e5:c0:ed: e0:7b:df:90:ce:a0:46:f9:6c:c9:ef:3e:ab:ee:d4: 7f:fb:7b:93:de:9a:6e:c0:6a:2b:c4:46:9c:7a:8a: 47:15:1b:2d:f1:49:de:57:e4:83:aa:eb:df:9f:ac: af:bc:3b:80:48:1b:4c:a8:29:16:9c:7a:76:c4:bb: ca:91:d3:70:81:ad:0c:f0:67:a3:ee:c0:aa:05:5c: 53:04:5d:7e:30:a6:c5:b0:a3:c3:8b:4d:f5:35:45: fe:02:53:70:b9:60:44:9b:f1:28:c5:55:3a:f0:ff: ad:69:86:65:af:3c:f3:b2:96:27:5f:d3:59:7a:91: a1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:05:87:6D:B8:3B:8D:2E:65:83:7B:4F:DD:3F:BB:15:D9:D3:BB:D8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2b::/36 Signature Algorithm: sha256WithRSAEncryption 1f:46:08:aa:79:70:c3:a9:97:11:dd:76:f7:8c:14:2f:ca:e4: c0:f0:79:e8:ac:cd:1b:e2:3b:95:e6:0a:77:c6:0e:26:ea:b3: 37:28:4f:32:cb:c8:a9:0e:c2:b1:47:df:dc:1c:79:c0:67:46: 39:05:df:c0:fe:5c:5c:5f:96:dc:22:c3:69:1d:54:45:a6:84: 38:52:ee:7c:ef:6f:d7:35:d2:0d:28:ed:ae:66:bf:d7:bf:db: ff:43:66:23:97:84:bb:c3:ee:da:e2:b0:3b:c7:41:b2:6f:b4: a2:60:7c:7f:bc:0a:76:d0:f0:db:03:01:8a:a4:b8:8b:30:b9: a8:16:67:33:66:ac:1c:65:b3:d9:2e:84:fa:54:9b:d2:14:e4: 65:ff:d3:4a:2b:eb:05:d4:7b:78:ff:11:0f:57:74:21:1d:cb: 94:6c:69:ae:63:e2:92:7f:f2:f3:ce:4a:ab:8b:9e:8e:da:82: 50:10:4b:16:91:2a:86:53:c4:2a:52:35:9c:31:e9:91:8b:29: b9:06:f4:68:5c:05:14:0b:e4:c5:aa:14:0f:02:5f:b8:79:64: 63:93:38:b8:78:ef:bd:3d:e9:60:9b:8a:49:ca:1d:4b:b8:7e: 6f:3d:23:c5:98:f0:d0:e4:5b:c6:8f:f2:9f:17:ba:41:68:0e: 15:93:6f:ab -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUW2Z9Czcwsc4c+Xf/8gSMG3nqZ/8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYwMjE1MDAxMFoX DTI1MDcwNzIzNTk1OVowejFJMEcGA1UEBRNANmFhNGRmMGQ4OWU4NGIwOTgwNDNk MWVjOTZkZjlkMWU4M2UwNjdlZjJhZmRjNzc5Mzk1MTBhOTJmYTNhMDU3ZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMTWcDlrhEG4J7pH8yyYw9ZaLVqy uZZ8t8hRpofOPgcbtwtKPOekTYujgsVmHGQyJqeQ17VlGTE7kE32u0cKfmfrELZa 5eA0n2xm45q6HAAE0Iw31OYznlh7lr8LYV+wasbfBQzj79jQBjNn/VU6hQGNOtG0 m6s4rSpv092Ko0HpBjDlwO3ge9+QzqBG+WzJ7z6r7tR/+3uT3ppuwGorxEaceopH FRst8UneV+SDquvfn6yvvDuASBtMqCkWnHp2xLvKkdNwga0M8Gej7sCqBVxTBF1+ MKbFsKPDi031NUX+AlNwuWBEm/EoxVU68P+taYZlrzzzspYnX9NZepGhCwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEAFh224O40uZYN7T90/uxXZ07vYMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3YWNiMDllLWE0YWMtNDk4Yi1iZmE4LWZmMmQ4ZGEyYmYzYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKwAwDQYJKoZIhvcNAQELBQADggEBAB9GCKp5cMOplxHddveM FC/K5MDweeiszRviO5XmCnfGDibqszcoTzLLyKkOwrFH39wcecBnRjkF38D+XFxf ltwiw2kdVEWmhDhS7nzvb9c10g0o7a5mv9e/2/9DZiOXhLvD7trisDvHQbJvtKJg fH+8CnbQ8NsDAYqkuIswuagWZzNmrBxls9kuhPpUm9IU5GX/00or6wXUe3j/EQ9X dCEdy5Rsaa5j4pJ/8vPOSquLno7aglAQSxaRKoZTxCpSNZwx6ZGLKbkG9GhcBRQL 5MWqFA8CX7h5ZGOTOLh477096WCbiknKHUu4fm89I8WY8NDkW8aP8p8XukFoDhWT b6s= -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:16 2025 by rpki-client