$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b424c862-bbee-4123-87b5-a8a734d27574.roa File: b424c862-bbee-4123-87b5-a8a734d27574.roa (raw, json) Hash identifier: wNh4Q00LQYtVdQz8UafiX5fiK9UXrKe3xseXi4SdcV8= Subject key identifier: 02:60:12:1B:83:20:E2:E9:21:DD:A1:0B:18:5E:81:9C:56:5D:DE:0E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 56F839A384454782351F2DD564D9D795C23C5D15 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b424c862-bbee-4123-87b5-a8a734d27574.roa Signing time: Wed 30 Jul 2025 00:10:08 +0000 ROA not before: Wed 30 Jul 2025 00:10:08 +0000 ROA not after: Wed 03 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f8:39:a3:84:45:47:82:35:1f:2d:d5:64:d9:d7:95:c2:3c:5d:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 30 00:10:08 2025 GMT Not After : Sep 3 23:59:59 2025 GMT Subject: serialNumber=83ab80f4457041b2fc087781b4f9b00d2ef9c796116c5a6f97e2dea908dcb4c2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:33:e6:f8:6c:40:a5:20:40:6a:57:0a:ce:99: 6a:5d:e7:12:e2:f2:0f:22:b5:16:2b:51:44:18:8d: 73:68:b2:31:bb:07:87:5b:24:88:ad:53:05:a2:01: ba:81:81:89:cb:9c:03:88:74:98:fa:74:2c:9d:06: 12:3e:16:7c:69:da:f2:d2:b0:71:11:27:73:c1:05: f8:54:7f:c0:4b:e1:47:e5:37:e1:53:56:26:03:7e: 72:09:74:97:79:d3:57:3c:fa:5c:27:84:4c:11:0b: 42:ff:3d:55:e3:e3:57:cc:bf:f7:4f:28:be:0f:34: a9:77:ba:85:68:a3:94:c0:f2:b2:c4:0c:09:a9:4f: 04:2c:7a:46:fd:25:1e:7c:bc:11:0f:12:2b:1f:57: 00:67:b9:2f:2b:f9:6d:6b:ab:6c:05:1e:37:b3:68: 9d:9f:da:b8:08:25:f7:86:4b:43:81:88:e0:e2:fa: e2:25:84:b4:34:4a:f9:ee:10:b4:6b:2c:00:cb:fb: 03:7f:4d:0d:76:e5:10:d7:68:e1:21:a1:17:49:72: aa:b8:81:c0:17:90:d2:02:4d:fc:29:92:80:fb:4a: ed:1c:81:ca:25:f0:3d:ae:4b:04:46:9f:b5:90:d8: 28:ae:7f:59:42:4e:98:56:a1:a2:09:9d:ba:c2:1d: 4e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:60:12:1B:83:20:E2:E9:21:DD:A1:0B:18:5E:81:9C:56:5D:DE:0E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b424c862-bbee-4123-87b5-a8a734d27574.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:8c0::/48 Signature Algorithm: sha256WithRSAEncryption 56:db:57:a7:b0:c3:73:a9:d1:e7:9c:59:45:ee:22:db:6a:7b: e0:f8:ed:42:aa:48:d0:cf:5e:2c:d3:d2:54:aa:18:ff:59:6d: 60:ea:bf:f3:71:ea:5f:aa:a7:89:2c:87:06:ba:24:45:c0:8f: 5a:b6:48:ff:51:62:89:c3:93:97:4a:f6:2e:fa:9b:54:8a:f4: cf:23:a0:70:67:a4:ad:44:b3:03:f8:57:92:bc:13:cf:ad:c3: 12:06:7d:ae:3c:5e:5c:d8:fa:55:b2:e7:da:e1:c3:dd:98:49: 6d:0f:b8:ee:d4:a3:74:a7:b1:55:fd:b0:86:4f:09:00:8b:0a: ab:96:84:14:bf:a8:92:53:71:be:a5:97:60:42:92:ff:65:64: f1:42:b5:fc:76:b9:8d:75:fb:66:88:8a:0e:b3:6d:7a:d5:21: 56:99:6f:30:46:45:d5:93:c7:9d:a4:63:6d:82:37:73:52:52: 49:b8:7a:ef:2e:59:e0:49:51:32:8f:50:cf:2a:2d:fc:41:c5: 5b:20:a9:0d:4b:d0:db:06:21:4c:0d:91:e6:4e:04:60:5a:ae: 23:bc:c5:6c:5a:e4:e9:eb:de:04:35:de:5a:6a:c8:76:93:c3: 53:3e:b6:9b:e6:9d:a4:a4:ff:b9:52:15:b5:22:07:75:6f:85: a5:7b:a3:a3 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUVvg5o4RFR4I1Hy3VZNnXlcI8XRUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDczMDAwMTAwOFoX DTI1MDkwMzIzNTk1OVowejFJMEcGA1UEBRNAODNhYjgwZjQ0NTcwNDFiMmZjMDg3 NzgxYjRmOWIwMGQyZWY5Yzc5NjExNmM1YTZmOTdlMmRlYTkwOGRjYjRjMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDPm+GxApSBAalcKzplqXecS4vIP IrUWK1FEGI1zaLIxuweHWySIrVMFogG6gYGJy5wDiHSY+nQsnQYSPhZ8adry0rBx ESdzwQX4VH/AS+FH5TfhU1YmA35yCXSXedNXPPpcJ4RMEQtC/z1V4+NXzL/3Tyi+ DzSpd7qFaKOUwPKyxAwJqU8ELHpG/SUefLwRDxIrH1cAZ7kvK/lta6tsBR43s2id n9q4CCX3hktDgYjg4vriJYS0NEr57hC0aywAy/sDf00NduUQ12jhIaEXSXKquIHA F5DSAk38KZKA+0rtHIHKJfA9rksERp+1kNgorn9ZQk6YVqGiCZ26wh1OmwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAJgEhuDIOLpId2hCxhegZxWXd4OMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I0MjRjODYyLWJiZWUtNDEyMy04N2I1LWE4YTczNGQyNzU3NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/wjAMA0GCSqGSIb3DQEBCwUAA4IBAQBW21ensMNzqdHnnFlF 7iLbanvg+O1CqkjQz14s09JUqhj/WW1g6r/zcepfqqeJLIcGuiRFwI9atkj/UWKJ w5OXSvYu+ptUivTPI6BwZ6StRLMD+FeSvBPPrcMSBn2uPF5c2PpVsufa4cPdmElt D7ju1KN0p7FV/bCGTwkAiwqrloQUv6iSU3G+pZdgQpL/ZWTxQrX8drmNdftmiIoO s2161SFWmW8wRkXVk8edpGNtgjdzUlJJuHrvLlngSVEyj1DPKi38QcVbIKkNS9Db BiFMDZHmTgRgWq4jvMVsWuTp694ENd5aash2k8NTPrab5p2kpP+5UhW1Igd1b4Wl e6Oj -----END CERTIFICATE-----Generated at Thu Jul 31 01:00:36 2025 by rpki-client