$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d73c0a51-ab7b-4878-bdff-e08b6181edbd.roa File: d73c0a51-ab7b-4878-bdff-e08b6181edbd.roa (raw, json) Hash identifier: ewGJtwQeKohVuiP5Wn0rDWHlEz+2OZW4r5l49M2asRE= Subject key identifier: EB:B0:91:92:49:A5:50:5E:6B:FF:43:F0:04:12:05:F4:61:17:B1:0D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 52EECBF02671CE3A7F2120C11127968967BEA801 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d73c0a51-ab7b-4878-bdff-e08b6181edbd.roa Signing time: Wed 23 Jul 2025 00:00:07 +0000 ROA not before: Wed 23 Jul 2025 00:00:07 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da20::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:ee:cb:f0:26:71:ce:3a:7f:21:20:c1:11:27:96:89:67:be:a8:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 23 00:00:07 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=d1cfb219a1438f0a4d71231cd429112ac08fe0f4b3aa95409b8f1966891e76f3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:b9:dc:cf:59:43:f3:e1:87:eb:b1:a3:f8: 1c:c0:4f:66:fd:cd:ef:7b:02:b5:24:71:5a:9a:a7: f3:6e:03:f6:c3:6b:6d:78:19:d7:9c:d8:97:15:a6: 8f:28:05:69:ad:8d:0f:af:07:e1:4f:88:72:79:81: 1d:86:6a:24:13:00:79:94:2d:d2:f0:26:92:a0:3a: 62:40:ac:8c:52:61:4c:e2:98:02:e0:e5:c3:e2:fa: b2:d6:3f:14:e8:4c:13:92:c7:09:00:91:88:8b:57: 38:c8:c8:8e:87:fb:a3:46:fc:7c:74:82:9d:93:02: 4d:7f:1d:47:16:df:ac:2d:7d:d0:f0:e8:dc:29:e7: 25:31:6c:c9:d6:ff:c4:8e:0a:a1:46:a0:06:8b:d5: 86:0a:1f:8f:bc:31:aa:67:e9:b4:87:98:af:d6:73: 90:2b:75:28:4e:b4:a4:a6:23:a8:48:18:7b:c2:53: 11:30:68:40:9c:cb:4d:e9:3f:22:c0:5a:93:4f:0f: 14:85:70:01:d7:72:67:28:3e:2e:80:58:ef:84:66: 5e:a6:7e:d4:ca:a8:83:6a:79:97:14:cf:29:26:17: 77:1b:9b:73:5b:18:6a:e4:89:88:81:f9:1f:66:1e: ba:44:91:50:a0:d5:b5:c1:0a:21:f0:a4:25:9c:24: b5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B0:91:92:49:A5:50:5E:6B:FF:43:F0:04:12:05:F4:61:17:B1:0D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d73c0a51-ab7b-4878-bdff-e08b6181edbd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da20::/28 Signature Algorithm: sha256WithRSAEncryption 79:10:ce:a7:51:b4:a9:96:60:c0:ee:2e:36:66:e0:71:bf:d3: 5a:da:8c:a7:81:36:17:cf:84:49:39:89:29:27:19:a2:5b:5c: a3:f2:7a:27:b8:ef:ff:13:6b:fb:f1:e2:b9:36:48:73:d5:f6: d2:a3:da:fd:14:d1:08:27:31:67:97:87:6d:ac:e8:77:d7:fd: a0:58:19:5d:64:2a:61:87:99:49:6b:73:79:f4:4f:67:70:9a: d4:93:cd:43:8c:b2:09:5d:fb:a6:df:1b:dc:45:10:f5:ed:b1: 21:4f:6b:21:e4:12:f9:8d:ef:30:62:73:f0:3e:3e:b4:5e:59: 9d:47:da:0f:06:3b:3b:48:ae:25:e5:f7:53:f8:16:8d:eb:c1: 6c:8e:7e:c6:fa:f5:df:c3:ca:ea:7b:40:af:80:c6:a9:8f:4c: 72:0f:78:de:1d:0d:07:9a:85:64:b8:9e:aa:73:d6:dd:2c:7a: b5:5d:1e:ff:99:af:b9:9f:fb:02:1f:0b:5b:4d:67:07:7e:a7: be:8a:70:05:76:67:f9:ce:1c:bf:83:76:5c:2b:dc:73:aa:82: b6:67:cb:dd:0c:e7:b0:7d:0e:c8:ec:2b:e7:d5:7e:63:4c:2b: 8c:eb:0c:2a:af:17:ae:d0:b3:0d:b9:0a:c9:0d:0d:df:18:30: 80:d5:64:d0 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUUu7L8CZxzjp/ISDBESeWiWe+qAEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcyMzAwMDAwN1oX DTI1MDgyNzIzNTk1OVowejFJMEcGA1UEBRNAZDFjZmIyMTlhMTQzOGYwYTRkNzEy MzFjZDQyOTExMmFjMDhmZTBmNGIzYWE5NTQwOWI4ZjE5NjY4OTFlNzZmMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKO53M9ZQ/Phh+uxo/gcwE9m/c3v ewK1JHFamqfzbgP2w2tteBnXnNiXFaaPKAVprY0PrwfhT4hyeYEdhmokEwB5lC3S 8CaSoDpiQKyMUmFM4pgC4OXD4vqy1j8U6EwTkscJAJGIi1c4yMiOh/ujRvx8dIKd kwJNfx1HFt+sLX3Q8OjcKeclMWzJ1v/EjgqhRqAGi9WGCh+PvDGqZ+m0h5iv1nOQ K3UoTrSkpiOoSBh7wlMRMGhAnMtN6T8iwFqTTw8UhXAB13JnKD4ugFjvhGZepn7U yqiDanmXFM8pJhd3G5tzWxhq5ImIgfkfZh66RJFQoNW1wQoh8KQlnCS1ZwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFOuwkZJJpVBea/9D8AQSBfRhF7ENMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q3M2MwYTUxLWFiN2ItNDg3OC1iZGZmLWUwOGI2MTgxZWRiZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUEJAbaIDANBgkqhkiG9w0BAQsFAAOCAQEAeRDOp1G0qZZgwO4uNmbg cb/TWtqMp4E2F8+ESTmJKScZoltco/J6J7jv/xNr+/HiuTZIc9X20qPa/RTRCCcx Z5eHbazod9f9oFgZXWQqYYeZSWtzefRPZ3Ca1JPNQ4yyCV37pt8b3EUQ9e2xIU9r IeQS+Y3vMGJz8D4+tF5ZnUfaDwY7O0iuJeX3U/gWjevBbI5+xvr138PK6ntAr4DG qY9Mcg943h0NB5qFZLieqnPW3Sx6tV0e/5mvuZ/7Ah8LW01nB36nvopwBXZn+c4c v4N2XCvcc6qCtmfL3QznsH0OyOwr59V+Y0wrjOsMKq8XrtCzDbkKyQ0N3xgwgNVk 0A== -----END CERTIFICATE-----Generated at Thu Jul 31 01:02:13 2025 by rpki-client