$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c53a68e4-6b3d-4fba-a3e7-7c778c3b46b6.roa File: c53a68e4-6b3d-4fba-a3e7-7c778c3b46b6.roa (raw, json) Hash identifier: alqbOI4vY3jkZuOPsEwwpYiqRaraj3l2EKzwmrpF+W0= Subject key identifier: BC:D4:74:62:8C:FC:C0:9A:33:2F:0A:E7:66:D5:D9:E6:A9:69:80:36 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2645C4CB3E257D81AB60D8740D96780CAD6A8061 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c53a68e4-6b3d-4fba-a3e7-7c778c3b46b6.roa Signing time: Fri 16 May 2025 00:30:58 +0000 ROA not before: Fri 16 May 2025 00:30:58 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf7:b040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:45:c4:cb:3e:25:7d:81:ab:60:d8:74:0d:96:78:0c:ad:6a:80:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 00:30:58 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=432cf762ff4cc9c44110e18b9169b43acd023e2907798a6b0e9093022e6b8bbf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d5:82:ae:46:82:af:2d:36:5b:88:c6:36:0b: 01:0e:0f:ee:38:14:bb:ed:9d:c3:25:1b:34:6e:7c: 7e:17:06:d1:2d:7b:98:0c:d1:9e:52:c2:c3:eb:53: c1:07:61:0d:64:4b:30:b9:b2:de:1f:89:3e:39:f7: f6:02:3c:6d:9d:ca:6b:54:f1:5b:07:3c:5b:e5:90: 36:43:2a:8b:25:2a:8b:a7:db:fc:1b:6e:e1:fb:6f: 8f:d3:ed:d3:91:e8:a1:91:72:59:df:82:ea:d2:d5: 1d:c9:cc:be:0e:42:a6:5d:7d:39:ac:e2:60:79:3d: 4e:86:86:1c:0a:44:19:ab:f3:96:c2:9c:be:b0:43: 05:b2:3d:0b:72:35:17:82:02:a0:e6:77:81:96:0c: 80:2e:ab:21:1e:aa:e3:cc:71:93:87:d1:93:a5:0d: f6:f1:7d:64:83:5b:19:e6:55:fb:a8:d9:16:7b:33: d6:da:17:c0:c4:8b:8b:f1:40:87:0f:19:32:f3:6e: f7:a0:6f:3c:46:e7:71:c9:6a:08:24:cb:e6:7b:3f: 84:48:58:8d:12:8e:a9:03:2c:cc:6f:64:84:c7:ba: ae:c3:bd:c9:60:de:63:e3:4e:15:12:fc:b6:69:0d: e3:ee:a4:5d:56:28:3c:ea:15:c9:c8:fc:99:5f:1b: a1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D4:74:62:8C:FC:C0:9A:33:2F:0A:E7:66:D5:D9:E6:A9:69:80:36 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c53a68e4-6b3d-4fba-a3e7-7c778c3b46b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf7:b040::/46 Signature Algorithm: sha256WithRSAEncryption 61:c4:d3:da:a2:27:d5:8f:64:ce:45:08:d6:ae:61:cb:7d:9a: 48:f5:e7:96:64:d7:4b:52:6d:75:27:c2:2e:ab:dc:0b:b4:76: 12:18:9a:b0:a0:f1:bb:e3:48:36:af:3a:57:32:d4:ac:30:8e: 7b:ce:7c:5f:1e:26:f4:46:77:8b:d3:15:4c:5b:86:14:77:92: a5:79:79:ce:20:e3:2a:b3:aa:d2:ce:f6:7c:cd:36:01:19:21: b1:27:22:3c:1d:bd:52:7d:f9:5b:45:3f:e0:6c:ac:6d:1e:6b: 3d:b4:7c:ea:7f:2f:ba:a8:b1:58:af:e9:0a:2c:0c:c4:4c:7d: 86:f9:bc:57:85:ce:1b:92:ca:00:d2:4e:ea:39:2d:f6:fa:ec: 1b:82:e1:53:fa:d7:94:18:9a:1f:c7:5f:71:4d:02:2f:53:94: 03:46:b4:43:1d:70:b5:72:78:64:31:b4:34:6e:de:69:10:cc: d7:0e:0e:f7:7d:78:a8:13:9a:05:d0:fd:4d:cb:27:ab:ee:95: c6:36:72:6b:42:95:7f:26:6b:94:56:3e:82:d9:c3:57:b3:6f: 95:1f:b7:e8:3e:f9:81:54:b2:f9:29:05:8a:e5:0d:2b:c3:34: 2e:1a:d8:c5:99:97:fa:53:fa:ac:35:ce:f6:b7:33:8d:73:93: 06:0b:40:76 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUJkXEyz4lfYGrYNh0DZZ4DK1qgGEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjAwMzA1OFoX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNANDMyY2Y3NjJmZjRjYzljNDQxMTBl MThiOTE2OWI0M2FjZDAyM2UyOTA3Nzk4YTZiMGU5MDkzMDIyZTZiOGJiZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNWCrkaCry02W4jGNgsBDg/uOBS7 7Z3DJRs0bnx+FwbRLXuYDNGeUsLD61PBB2ENZEswubLeH4k+Off2AjxtncprVPFb Bzxb5ZA2QyqLJSqLp9v8G27h+2+P0+3TkeihkXJZ34Lq0tUdycy+DkKmXX05rOJg eT1OhoYcCkQZq/OWwpy+sEMFsj0LcjUXggKg5neBlgyALqshHqrjzHGTh9GTpQ32 8X1kg1sZ5lX7qNkWezPW2hfAxIuL8UCHDxky8273oG88RudxyWoIJMvmez+ESFiN Eo6pAyzMb2SEx7quw73JYN5j404VEvy2aQ3j7qRdVig86hXJyPyZXxuhdQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLzUdGKM/MCaMy8K52bV2eapaYA2MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M1M2E2OGU0LTZiM2QtNGZiYS1hM2U3LTdjNzc4YzNiNDZiNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba97BAMA0GCSqGSIb3DQEBCwUAA4IBAQBhxNPaoifVj2TORQjW rmHLfZpI9eeWZNdLUm11J8Iuq9wLtHYSGJqwoPG740g2rzpXMtSsMI57znxfHib0 RneL0xVMW4YUd5KleXnOIOMqs6rSzvZ8zTYBGSGxJyI8Hb1SfflbRT/gbKxtHms9 tHzqfy+6qLFYr+kKLAzETH2G+bxXhc4bksoA0k7qOS32+uwbguFT+teUGJofx19x TQIvU5QDRrRDHXC1cnhkMbQ0bt5pEMzXDg73fXioE5oF0P1Nyyer7pXGNnJrQpV/ JmuUVj6C2cNXs2+VH7foPvmBVLL5KQWK5Q0rwzQuGtjFmZf6U/qsNc72tzONc5MG C0B2 -----END CERTIFICATE-----Generated at Tue Jun 3 23:09:32 2025 by rpki-client