$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dfeb39ad-2644-4f2a-b23e-18f51ccd49e3.roa File: dfeb39ad-2644-4f2a-b23e-18f51ccd49e3.roa (raw, json) Hash identifier: 51cUQJ4rFkBnmxQOpCMP1MqRCGPRbBW3I9bXh7lxbSA= Subject key identifier: 0F:31:A9:EF:74:55:E8:7D:10:EE:C2:BD:E0:72:B2:69:66:EF:8B:3D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1B94AF4F33D9FB20852ECBA66E6BEF265F648F3E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dfeb39ad-2644-4f2a-b23e-18f51ccd49e3.roa Signing time: Wed 14 May 2025 00:40:07 +0000 ROA not before: Wed 14 May 2025 00:40:07 +0000 ROA not after: Wed 18 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:94:af:4f:33:d9:fb:20:85:2e:cb:a6:6e:6b:ef:26:5f:64:8f:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 14 00:40:07 2025 GMT Not After : Jun 18 23:59:59 2025 GMT Subject: serialNumber=81521176a4dd22ad73d3303a7c35fadac355d022477a74b31b3fcbd2fcf1a210, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:57:62:06:7d:ac:5b:ec:51:86:55:a9:44:bb: 86:6e:f8:2a:09:b3:e0:04:dc:b3:4d:52:3d:7b:52: 83:e0:09:94:d7:fd:14:f4:13:e0:25:af:7f:76:74: e1:e6:fe:a1:9a:0f:bf:73:e1:dc:ce:9a:d5:e5:e7: 84:df:4e:64:00:a1:dd:ec:d2:b7:c2:c2:54:2d:e2: ce:30:44:f9:ab:99:f7:04:6a:c3:a7:ae:d7:74:33: 61:ab:96:1f:d6:c3:9e:53:d2:7b:f5:59:0e:09:2a: b1:15:26:77:2d:d0:45:0b:5c:00:74:cb:3f:ac:25: bf:18:23:38:e0:5f:90:6b:76:4b:85:44:8c:47:8f: 90:ac:08:7f:d6:21:09:1a:e7:5a:4a:d9:bf:77:9c: ea:c4:85:0f:a4:cd:e7:3b:42:9c:4e:6e:ed:9f:57: aa:2b:f9:79:a9:0c:b7:8c:0b:12:5b:96:b1:e0:51: c6:36:c5:99:0d:dc:c3:8c:7c:4c:a0:f1:1d:c0:60: 08:b9:da:11:94:91:ff:a1:44:ea:33:6d:d5:33:1e: 1c:23:da:27:43:4d:d9:36:e2:ad:7d:c9:3d:a0:09: 3b:98:e2:90:36:bc:12:2f:4d:8f:4e:f4:4c:6d:eb: d9:02:44:76:3e:93:4b:92:ed:15:6c:55:96:d6:78: 71:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:31:A9:EF:74:55:E8:7D:10:EE:C2:BD:E0:72:B2:69:66:EF:8B:3D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dfeb39ad-2644-4f2a-b23e-18f51ccd49e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 9c:ef:7d:23:48:fd:41:43:31:30:f6:fd:7a:68:e6:20:e9:e1: 80:49:49:38:97:09:a1:48:6d:c5:01:ab:e7:f3:5c:57:cf:b5: 7e:20:21:06:69:6f:cc:af:f9:22:60:f5:f2:a5:71:87:8b:b3: ba:cc:99:bc:19:bb:04:ef:2d:b9:d1:b7:ae:23:97:46:f3:7c: 4b:22:f6:e8:66:b2:4f:09:72:06:df:9a:e2:c7:11:4c:c7:c7: 36:7e:14:6e:30:5b:84:a7:fc:da:e0:01:40:97:31:ef:62:11: b8:94:b3:c4:dd:c4:0f:6a:ac:ca:24:f0:99:a0:bb:a1:e1:c6: 9e:3f:95:d7:3b:b6:30:ab:3c:0b:14:27:d8:e0:47:70:e6:93: 8c:b4:7e:b4:c7:75:da:24:ab:30:a1:46:c7:a4:00:99:23:48: e7:85:78:54:49:60:05:8f:70:02:48:ab:3c:f7:0b:6a:be:48: 0b:00:44:de:cb:47:7f:ed:5d:29:2c:ee:ae:a5:77:4f:16:6b: 8c:cd:08:eb:c2:bd:2a:56:03:0d:ac:f3:31:38:1d:34:4e:a2: 55:46:e3:20:2b:74:70:e5:a7:ac:ed:3c:52:22:36:40:47:81: 79:99:c7:08:25:30:30:9b:0e:a2:35:e3:c6:1c:e8:8d:47:b7: 0c:fc:68:fd -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUG5SvTzPZ+yCFLsumbmvvJl9kjz4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNDAwNDAwN1oX DTI1MDYxODIzNTk1OVowejFJMEcGA1UEBRNAODE1MjExNzZhNGRkMjJhZDczZDMz MDNhN2MzNWZhZGFjMzU1ZDAyMjQ3N2E3NGIzMWIzZmNiZDJmY2YxYTIxMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxldiBn2sW+xRhlWpRLuGbvgqCbPg BNyzTVI9e1KD4AmU1/0U9BPgJa9/dnTh5v6hmg+/c+HczprV5eeE305kAKHd7NK3 wsJULeLOMET5q5n3BGrDp67XdDNhq5Yf1sOeU9J79VkOCSqxFSZ3LdBFC1wAdMs/ rCW/GCM44F+Qa3ZLhUSMR4+QrAh/1iEJGudaStm/d5zqxIUPpM3nO0KcTm7tn1eq K/l5qQy3jAsSW5ax4FHGNsWZDdzDjHxMoPEdwGAIudoRlJH/oUTqM23VMx4cI9on Q03ZNuKtfck9oAk7mOKQNrwSL02PTvRMbevZAkR2PpNLku0VbFWW1nhxyQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFA8xqe90Veh9EO7CveBysmlm74s9MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RmZWIzOWFkLTI2NDQtNGYyYS1iMjNlLTE4ZjUxY2NkNDllMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYRDAMA0GCSqGSIb3DQEBCwUAA4IBAQCc730jSP1BQzEw9v16 aOYg6eGASUk4lwmhSG3FAavn81xXz7V+ICEGaW/Mr/kiYPXypXGHi7O6zJm8GbsE 7y250beuI5dG83xLIvboZrJPCXIG35rixxFMx8c2fhRuMFuEp/za4AFAlzHvYhG4 lLPE3cQPaqzKJPCZoLuh4caeP5XXO7YwqzwLFCfY4Edw5pOMtH60x3XaJKswoUbH pACZI0jnhXhUSWAFj3ACSKs89wtqvkgLAETey0d/7V0pLO6upXdPFmuMzQjrwr0q VgMNrPMxOB00TqJVRuMgK3Rw5aes7TxSIjZAR4F5mccIJTAwmw6iNePGHOiNR7cM /Gj9 -----END CERTIFICATE-----Generated at Tue Jun 3 23:15:42 2025 by rpki-client