$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d3f3d6-c3fa-4c51-aa7c-9d3df1d2fcb8.roa File: a0d3f3d6-c3fa-4c51-aa7c-9d3df1d2fcb8.roa (raw, json) Hash identifier: iFzCMOzeKtQXtmZ4rcm7XYNxGXXdTVThMEJVz3xQUTU= Subject key identifier: 4C:27:0E:37:74:1B:78:C0:A6:38:A8:AB:BB:6F:9E:76:5D:41:E1:A8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 233FFF14EEA8E87C72B3D654818E2199410352A4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d3f3d6-c3fa-4c51-aa7c-9d3df1d2fcb8.roa Signing time: Fri 16 May 2025 00:10:32 +0000 ROA not before: Fri 16 May 2025 00:10:32 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:2880::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:3f:ff:14:ee:a8:e8:7c:72:b3:d6:54:81:8e:21:99:41:03:52:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 00:10:32 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=34d6af1bd659a0bb75810aa70e11c95585a351cbee4198dc7c20376bf9e92cdf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d2:bb:b5:b3:cd:8d:8e:e6:34:89:b9:24:61: 7e:f8:65:40:d3:8e:af:e3:2b:d4:ad:ee:39:bf:c1: 35:9c:8c:84:06:2b:46:f4:ce:4e:c6:3c:df:04:1e: 3b:5f:1a:32:55:f3:bd:7a:36:78:73:ff:20:30:35: 88:01:5e:85:60:f4:08:33:d3:62:0e:3b:b1:36:c5: 66:53:6c:3a:ab:de:2c:8e:af:35:1e:3a:e8:16:a8: 5b:21:86:d0:1c:eb:a2:44:20:0c:78:68:45:e6:62: 83:4a:9b:11:54:63:d7:1c:f6:fb:e3:0a:ac:14:57: ad:cd:64:6d:35:15:da:0c:45:39:ba:57:e7:df:b5: 3b:6d:ef:a1:e4:ee:39:17:79:84:57:2f:34:0f:ac: a5:7e:81:e0:b3:e9:9f:b8:bf:8b:a0:d0:db:d2:01: f3:0d:29:3a:ab:32:64:90:f1:a0:f7:db:e4:97:c7: 0f:c5:4e:f4:ce:7f:86:51:c4:45:4a:62:89:06:2d: 71:04:17:f8:ce:b0:07:55:ec:da:f9:e9:26:92:88: fa:c8:0d:9b:e5:49:08:38:79:6f:08:49:cc:d7:d6: fd:e2:b4:46:e2:ec:77:62:4c:c6:90:cd:d3:5e:21: 61:84:16:74:50:97:d6:1d:9a:25:58:1e:1b:a5:67: de:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:27:0E:37:74:1B:78:C0:A6:38:A8:AB:BB:6F:9E:76:5D:41:E1:A8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d3f3d6-c3fa-4c51-aa7c-9d3df1d2fcb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:2880::/46 Signature Algorithm: sha256WithRSAEncryption 30:4c:58:95:40:19:8a:bf:6c:9b:40:0c:74:15:c9:de:98:ea: 04:27:6e:9b:5c:a1:2d:f4:09:33:6f:57:e4:0d:b1:d4:88:93: 7a:a4:d6:06:e0:d2:00:6a:a1:3b:ef:c7:48:1e:d5:48:f5:3f: b8:5e:3f:d8:05:8b:b5:68:28:08:3f:35:f0:34:01:90:d6:ee: 4f:da:42:4b:55:ee:55:63:fe:7c:54:d4:c5:3b:73:e6:75:fe: 12:f9:91:b3:1a:35:ae:39:fd:b4:e2:80:3b:1c:f2:05:13:9f: 00:02:8a:cb:6b:f6:b9:d0:c5:3f:e6:23:f4:43:83:33:95:bf: 72:09:26:c4:93:55:8b:79:82:81:92:0e:62:6d:3d:7a:71:fb: dc:65:2f:69:04:9d:76:30:07:2f:f0:a8:56:d2:6b:13:ba:22: b6:98:c8:c5:79:b1:06:36:ee:4d:f5:74:d4:05:5e:d6:4d:98: a4:dd:17:18:9b:61:38:7a:bd:2f:ed:57:74:e8:e4:12:73:3d: 31:92:44:98:78:d9:43:8e:e3:58:29:83:ed:d1:db:7e:24:d8: db:44:b8:9c:04:b6:fc:2d:cf:74:1e:54:bc:d5:19:2f:90:12: c4:b5:ab:b4:8b:d1:4c:9e:0b:c1:e3:a6:e1:2a:98:50:52:08: e7:62:a0:a8 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUIz//FO6o6Hxys9ZUgY4hmUEDUqQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjAwMTAzMloX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNAMzRkNmFmMWJkNjU5YTBiYjc1ODEw YWE3MGUxMWM5NTU4NWEzNTFjYmVlNDE5OGRjN2MyMDM3NmJmOWU5MmNkZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNK7tbPNjY7mNIm5JGF++GVA046v 4yvUre45v8E1nIyEBitG9M5OxjzfBB47XxoyVfO9ejZ4c/8gMDWIAV6FYPQIM9Ni DjuxNsVmU2w6q94sjq81HjroFqhbIYbQHOuiRCAMeGhF5mKDSpsRVGPXHPb74wqs FFetzWRtNRXaDEU5ulfn37U7be+h5O45F3mEVy80D6ylfoHgs+mfuL+LoNDb0gHz DSk6qzJkkPGg99vkl8cPxU70zn+GUcRFSmKJBi1xBBf4zrAHVeza+ekmkoj6yA2b 5UkIOHlvCEnM19b94rRG4ux3YkzGkM3TXiFhhBZ0UJfWHZolWB4bpWfe2QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEwnDjd0G3jApjioq7tvnnZdQeGoMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EwZDNmM2Q2LWMzZmEtNGM1MS1hYTdjLTlkM2RmMWQyZmNiOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba+yiAMA0GCSqGSIb3DQEBCwUAA4IBAQAwTFiVQBmKv2ybQAx0 FcnemOoEJ26bXKEt9Akzb1fkDbHUiJN6pNYG4NIAaqE778dIHtVI9T+4Xj/YBYu1 aCgIPzXwNAGQ1u5P2kJLVe5VY/58VNTFO3Pmdf4S+ZGzGjWuOf204oA7HPIFE58A AorLa/a50MU/5iP0Q4Mzlb9yCSbEk1WLeYKBkg5ibT16cfvcZS9pBJ12MAcv8KhW 0msTuiK2mMjFebEGNu5N9XTUBV7WTZik3RcYm2E4er0v7Vd06OQScz0xkkSYeNlD juNYKYPt0dt+JNjbRLicBLb8Lc90HlS81RkvkBLEtau0i9FMngvB46bhKphQUgjn YqCo -----END CERTIFICATE-----Generated at Tue Jun 3 23:09:25 2025 by rpki-client