$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa File: 9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa (raw, json) Hash identifier: u6hydWCGubhfa1u0onVkKmrmNthyK22Z7tt4Rf9Yybo= Subject key identifier: 65:0F:5D:98:4D:E6:15:23:4E:7A:C9:C9:A9:12:B9:C6:EE:87:C7:72 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 73E88DC8488A2EAA84C1B9B4CC93F1A300DAB134 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa Signing time: Fri 16 May 2025 15:00:19 +0000 ROA not before: Fri 16 May 2025 15:00:19 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e8:8d:c8:48:8a:2e:aa:84:c1:b9:b4:cc:93:f1:a3:00:da:b1:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 15:00:19 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=a5a6b5098b40113ca28c2fb55b4368656763a0ed2a753e7d65850e8413b65d65, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:76:43:c7:4c:5b:76:8a:28:2e:69:46:02:29: 1d:d5:b9:8c:47:a0:19:ed:3b:40:6a:72:7b:e4:9f: b3:ec:e8:f8:ea:84:47:1e:01:42:ab:c5:4f:53:f4: 9c:f3:38:60:3d:6e:b1:4d:b9:8b:09:50:aa:10:fd: 93:30:6d:f6:9a:9d:55:82:b4:59:a6:ce:1d:0e:6e: 1b:71:2d:90:44:6e:ed:b2:e4:b7:99:1b:16:b7:a6: 3d:f7:3c:e6:35:7a:01:84:0e:76:18:23:bf:7b:4e: 85:b9:17:87:e6:dc:8c:7a:f1:49:1f:6b:80:50:a3: 87:3c:e4:fe:84:ca:15:35:c0:a3:3e:69:80:11:12: 34:5b:04:69:c4:19:cd:46:ab:6e:80:ab:7d:23:c4: e2:f6:06:6f:31:87:36:02:15:3e:01:29:ed:f0:e3: 8e:c6:34:6a:a8:b2:3f:5d:6d:b1:bf:4a:0f:6e:0a: 8b:1f:02:17:21:73:ca:1e:4e:ab:a6:1a:47:fb:ef: 1e:8f:6a:2d:f1:28:a5:fa:0d:3e:ce:9b:de:d3:94: ba:f6:1a:d9:72:59:3f:79:04:7d:01:d2:79:f5:8d: 90:96:50:17:b1:22:46:51:ed:11:85:ee:5f:30:a2: d3:44:36:e6:f6:4d:45:ac:b4:89:8f:b5:7f:a9:d8: 4d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0F:5D:98:4D:E6:15:23:4E:7A:C9:C9:A9:12:B9:C6:EE:87:C7:72 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:2000::/40 Signature Algorithm: sha256WithRSAEncryption 70:ee:cd:c3:01:af:72:ef:6a:d4:65:5e:64:53:e3:74:ea:74: 26:1a:34:bd:d2:8a:47:d5:cd:72:3e:90:c7:d3:48:f6:74:05: db:37:33:de:c2:96:31:57:a7:1f:43:8f:80:da:89:3b:08:74: 03:5f:6e:37:92:bc:a1:ab:55:2e:73:10:19:23:54:48:24:62: 26:9e:3b:9f:ee:91:aa:6d:72:10:2d:62:bf:fc:38:36:a1:80: c2:fa:6d:ea:75:e9:aa:00:a5:0c:db:50:40:60:91:c9:d2:47: 7c:c2:37:f2:74:4a:8e:5b:f6:de:f2:bb:77:f3:bf:be:9f:fc: fc:15:a1:bf:55:6f:0e:7f:0f:20:58:6e:9c:41:2e:64:ec:93: c8:9c:f2:0d:db:cb:bc:ce:0c:e0:31:e6:30:a8:69:1e:c6:58: fd:3e:b1:7a:9b:d8:11:93:c5:50:b0:7c:d8:36:7c:73:a3:9b: ff:2f:a8:17:78:e7:a1:cc:d2:d5:6c:0c:40:87:f1:39:86:6f: 34:f3:0b:8d:fd:02:8e:17:72:8c:c3:b3:6a:d7:10:b6:99:3a: 5c:84:a6:83:d9:f5:8c:22:9d:8e:86:f3:a2:e5:ab:ac:f8:b2: 93:f3:b7:af:c3:ee:3d:bb:4c:60:0a:01:bc:4d:a6:d1:32:89: be:98:87:7f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUc+iNyEiKLqqEwbm0zJPxowDasTQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjE1MDAxOVoX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNAYTVhNmI1MDk4YjQwMTEzY2EyOGMy ZmI1NWI0MzY4NjU2NzYzYTBlZDJhNzUzZTdkNjU4NTBlODQxM2I2NWQ2NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2XZDx0xbdoooLmlGAikd1bmMR6AZ 7TtAanJ75J+z7Oj46oRHHgFCq8VPU/Sc8zhgPW6xTbmLCVCqEP2TMG32mp1VgrRZ ps4dDm4bcS2QRG7tsuS3mRsWt6Y99zzmNXoBhA52GCO/e06FuReH5tyMevFJH2uA UKOHPOT+hMoVNcCjPmmAERI0WwRpxBnNRqtugKt9I8Ti9gZvMYc2AhU+ASnt8OOO xjRqqLI/XW2xv0oPbgqLHwIXIXPKHk6rphpH++8ej2ot8Sil+g0+zpve05S69hrZ clk/eQR9AdJ59Y2QllAXsSJGUe0Rhe5fMKLTRDbm9k1FrLSJj7V/qdhNgQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGUPXZhN5hUjTnrJyakSucbuh8dyMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhZGJiNzIyLTc3ZmQtNDNmNy05ZDY1LWZlZjhiZjQxYWI0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauSAwDQYJKoZIhvcNAQELBQADggEBAHDuzcMBr3LvatRlXmRT 43TqdCYaNL3SikfVzXI+kMfTSPZ0Bds3M97CljFXpx9Dj4DaiTsIdANfbjeSvKGr VS5zEBkjVEgkYiaeO5/ukaptchAtYr/8ODahgML6bep16aoApQzbUEBgkcnSR3zC N/J0So5b9t7yu3fzv76f/PwVob9Vbw5/DyBYbpxBLmTsk8ic8g3by7zODOAx5jCo aR7GWP0+sXqb2BGTxVCwfNg2fHOjm/8vqBd456HM0tVsDECH8TmGbzTzC439Ao4X cozDs2rXELaZOlyEpoPZ9YwinY6G86Llq6z4spPzt6/D7j27TGAKAbxNptEyib6Y h38= -----END CERTIFICATE-----Generated at Mon Jun 2 06:15:25 2025 by rpki-client