$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e516b28b-c549-41c8-a3c8-97331669f493.roa File: e516b28b-c549-41c8-a3c8-97331669f493.roa (raw, json) Hash identifier: 9Vwk/G0JHh/Qr1tcNm5jIqE5jTPRKEmwUUEfXoZl6V4= Subject key identifier: 6E:FB:54:E5:92:58:00:70:58:6B:06:D1:46:84:8B:27:1A:CD:53:09 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 622149D904DBBED4D46B8B22A44A36B87DB0985C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e516b28b-c549-41c8-a3c8-97331669f493.roa Signing time: Wed 14 May 2025 00:50:16 +0000 ROA not before: Wed 14 May 2025 00:50:16 +0000 ROA not after: Wed 18 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:c800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:21:49:d9:04:db:be:d4:d4:6b:8b:22:a4:4a:36:b8:7d:b0:98:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 14 00:50:16 2025 GMT Not After : Jun 18 23:59:59 2025 GMT Subject: serialNumber=8c69c08a47707a0bbe95d753a4fe6865d48d68dd1f86675b2f6836499751cb7d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a0:56:33:f4:e0:72:7c:95:4b:f5:f3:e1:78: 7e:b1:eb:d1:94:8c:f7:54:25:00:94:f3:92:7e:dd: d5:42:35:cc:85:51:b6:3a:15:29:92:08:89:ba:8b: 37:63:23:47:25:fc:f4:a2:47:78:51:fc:d9:22:ce: 6f:1e:7b:6a:74:53:de:6e:97:31:b0:c9:00:57:b7: 50:95:8b:65:00:5d:6b:ee:79:d9:85:84:9d:57:93: bb:11:69:72:e5:00:54:71:1c:a0:c0:d5:6c:c4:39: 44:fa:7f:68:d6:24:95:ed:b9:4d:5f:1c:be:40:3d: ff:8f:fb:ba:1e:51:06:62:d3:c2:55:32:6e:7b:65: 28:e2:f2:06:c8:2f:94:e8:a0:33:be:82:e9:2b:fe: cd:02:bb:51:b1:6d:6f:c0:80:08:da:1c:f2:1d:31: 70:46:7e:02:c8:93:cf:d6:2a:54:dd:a4:0b:16:82: 09:b2:dc:3e:2e:62:71:30:e3:f1:5a:9b:36:54:93: 16:b0:f5:ea:3d:97:49:f0:a8:05:1f:65:88:2b:59: 56:f9:b8:17:74:a3:86:bf:48:f2:95:d4:a8:d8:ef: 51:4c:2a:04:1b:29:a7:81:2a:aa:c6:d7:e4:d0:d2: 97:9b:5f:9f:f8:bf:d7:c3:03:00:2a:93:0c:e4:d2: 1a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:FB:54:E5:92:58:00:70:58:6B:06:D1:46:84:8B:27:1A:CD:53:09 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e516b28b-c549-41c8-a3c8-97331669f493.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:c800::/40 Signature Algorithm: sha256WithRSAEncryption 19:8e:0c:c4:43:0c:d1:ed:cc:b6:b7:93:79:aa:27:5b:cd:0a: d8:bc:73:4c:5f:7e:2c:2c:0d:bb:62:49:5a:a5:1c:23:c6:60: a9:d8:59:23:e1:ec:40:b1:df:40:d9:f1:39:85:a3:d3:15:99: d0:01:72:32:5a:72:a2:53:60:bc:fb:e0:70:6a:38:c2:44:79: e2:65:71:39:db:50:f4:5f:37:14:8c:79:73:29:22:c8:43:af: 49:eb:4f:8c:c9:d2:e8:2f:ce:da:c4:ea:de:e5:c1:bd:51:5f: f7:3b:8a:a1:77:01:25:70:35:eb:6b:0e:7d:a9:a1:22:7e:85: a7:c0:25:8b:cc:07:e2:95:a7:b3:1a:54:fb:c8:17:dc:e6:d3: a4:97:52:21:c0:26:a6:84:54:a4:98:43:ab:cc:7e:4e:49:fd: c2:fd:04:61:c5:51:e6:ee:3e:81:20:db:de:0b:4d:a7:94:a5: dc:94:5b:ed:2d:7d:04:7c:a8:de:ef:a7:69:9d:d1:17:83:66: 50:5f:d2:0a:ff:d4:62:b2:2a:31:30:bd:b7:5a:4b:d3:00:71: 4f:b3:be:d9:9b:f9:3b:11:25:98:44:99:cb:96:48:67:fd:04: 9e:66:7a:cd:df:22:9b:74:b3:a2:a4:96:93:0c:35:1d:ca:aa: c3:b0:d3:95 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYiFJ2QTbvtTUa4sipEo2uH2wmFwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNDAwNTAxNloX DTI1MDYxODIzNTk1OVowejFJMEcGA1UEBRNAOGM2OWMwOGE0NzcwN2EwYmJlOTVk NzUzYTRmZTY4NjVkNDhkNjhkZDFmODY2NzViMmY2ODM2NDk5NzUxY2I3ZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6BWM/TgcnyVS/Xz4Xh+sevRlIz3 VCUAlPOSft3VQjXMhVG2OhUpkgiJuos3YyNHJfz0okd4UfzZIs5vHntqdFPebpcx sMkAV7dQlYtlAF1r7nnZhYSdV5O7EWly5QBUcRygwNVsxDlE+n9o1iSV7blNXxy+ QD3/j/u6HlEGYtPCVTJue2Uo4vIGyC+U6KAzvoLpK/7NArtRsW1vwIAI2hzyHTFw Rn4CyJPP1ipU3aQLFoIJstw+LmJxMOPxWps2VJMWsPXqPZdJ8KgFH2WIK1lW+bgX dKOGv0jyldSo2O9RTCoEGymngSqqxtfk0NKXm1+f+L/XwwMAKpMM5NIabQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFG77VOWSWABwWGsG0UaEiycazVMJMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U1MTZiMjhiLWM1NDktNDFjOC1hM2M4LTk3MzMxNjY5ZjQ5My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8sgwDQYJKoZIhvcNAQELBQADggEBABmODMRDDNHtzLa3k3mq J1vNCti8c0xffiwsDbtiSVqlHCPGYKnYWSPh7ECx30DZ8TmFo9MVmdABcjJacqJT YLz74HBqOMJEeeJlcTnbUPRfNxSMeXMpIshDr0nrT4zJ0ugvztrE6t7lwb1RX/c7 iqF3ASVwNetrDn2poSJ+hafAJYvMB+KVp7MaVPvIF9zm06SXUiHAJqaEVKSYQ6vM fk5J/cL9BGHFUebuPoEg294LTaeUpdyUW+0tfQR8qN7vp2md0ReDZlBf0gr/1GKy KjEwvbdaS9MAcU+zvtmb+TsRJZhEmcuWSGf9BJ5mes3fIpt0s6KklpMMNR3KqsOw 05U= -----END CERTIFICATE-----Generated at Tue Jun 3 23:16:55 2025 by rpki-client