$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8d98555-8cba-45bc-a7cb-74d7b44bfbf5.roa File: e8d98555-8cba-45bc-a7cb-74d7b44bfbf5.roa (raw, json) Hash identifier: tmrFRph5/BH7S9UdNDNMh6Tqc1prcbVkrLiaHTLc9AE= Subject key identifier: 8D:B4:6C:5D:C1:B5:3A:00:32:5F:86:12:BB:26:1D:19:1B:CD:21:A2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1ADE6D90DB1738E5D0EF13E25F6F6B5B2237F98F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8d98555-8cba-45bc-a7cb-74d7b44bfbf5.roa Signing time: Tue 29 Jul 2025 00:20:10 +0000 ROA not before: Tue 29 Jul 2025 00:20:10 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:de:6d:90:db:17:38:e5:d0:ef:13:e2:5f:6f:6b:5b:22:37:f9:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 29 00:20:10 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=48697211819d96640cbbefe305172715fbf31ed6fe9d89f3ce93fb68794320bb, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:38:7f:44:64:d9:db:80:d1:2d:07:67:40:c8: c5:09:c9:fc:b1:e3:92:cd:07:70:91:66:2a:cd:25: bf:da:fa:e6:1f:57:b5:55:6f:4f:a0:a9:2b:da:13: 9a:42:5c:75:85:89:52:ca:d9:ba:66:02:6d:be:00: f9:34:bb:49:37:75:90:f2:63:03:ff:0b:ea:3a:e6: 37:c6:9a:c0:22:d3:9d:5c:2c:47:be:56:49:f2:aa: ab:4f:4c:93:c6:c4:ea:d7:a8:4e:e0:10:50:b5:e8: 0a:a0:b5:1b:4d:14:c1:0a:d7:db:4d:9c:ef:83:f0: f3:65:66:dc:7a:69:c2:90:36:a9:70:05:78:45:60: fd:b9:70:ec:5d:8b:d9:4b:ea:af:ef:08:53:1f:c2: fc:0d:f5:3b:5d:bd:01:ad:7d:0a:fa:74:a1:39:2e: b9:1b:b5:d0:5f:0d:61:22:e5:9f:fd:24:8d:a8:fe: 94:69:78:5f:5b:10:04:f7:d8:e8:63:ac:fe:cf:b1: b4:51:96:1a:db:6f:a7:61:1d:04:1b:6f:f1:1d:f4: d4:d9:b6:29:df:95:b7:41:78:c0:fc:bf:a2:2b:b6: cb:86:3a:60:e0:49:70:a9:a4:94:d3:86:7e:57:f4: e6:da:f8:8f:6a:ee:ec:ec:84:0f:bc:ee:9a:a7:87: 7f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B4:6C:5D:C1:B5:3A:00:32:5F:86:12:BB:26:1D:19:1B:CD:21:A2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8d98555-8cba-45bc-a7cb-74d7b44bfbf5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:a080::/48 Signature Algorithm: sha256WithRSAEncryption 6f:28:de:cd:61:85:80:15:9f:e4:42:83:67:96:1f:96:27:94: 44:1a:d9:34:69:f8:d0:11:df:63:f3:86:44:47:dc:c8:d1:86: 5b:16:43:c6:36:ec:1d:f0:5f:f7:4e:ad:ba:39:22:5c:ab:1b: fa:4c:e7:fc:bb:b8:37:96:d4:09:82:5a:ef:a2:71:0b:fd:70: 81:23:30:a6:9b:1f:86:20:b1:69:dc:fc:b7:b0:ad:49:ac:06: 09:f2:19:7d:51:3d:00:f8:8c:d8:72:84:26:fa:78:6f:21:a9: b3:90:ea:5d:fe:28:31:fb:94:c1:5d:ad:16:98:41:04:24:b1: 7f:ea:a5:a0:00:6f:90:9d:b7:e8:2c:79:6a:b9:d9:2d:9d:ce: 3a:6d:3a:d7:de:b6:94:ca:15:81:b6:ff:d2:2a:de:38:80:49: 2b:d2:e1:47:16:64:7f:e4:0a:79:0f:5d:79:51:4e:5b:8b:bf: 5f:3c:d2:3c:18:12:7d:40:95:87:8b:88:17:9d:f8:a1:ff:9c: 62:8c:0c:b0:e7:bc:6b:c0:cd:74:37:cd:2a:d3:08:de:c6:22: 71:53:36:e0:dd:91:3e:7e:23:8c:b9:ce:4a:5a:57:ac:e6:48: da:55:98:6f:06:8c:64:dd:f5:7d:38:fc:a3:8e:25:4d:eb:5c: 75:5e:0f:e6 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGt5tkNsXOOXQ7xPiX29rWyI3+Y8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDcyOTAwMjAxMFoX DTI1MDkwMjIzNTk1OVowejFJMEcGA1UEBRNANDg2OTcyMTE4MTlkOTY2NDBjYmJl ZmUzMDUxNzI3MTVmYmYzMWVkNmZlOWQ4OWYzY2U5M2ZiNjg3OTQzMjBiYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjh/RGTZ24DRLQdnQMjFCcn8seOS zQdwkWYqzSW/2vrmH1e1VW9PoKkr2hOaQlx1hYlSytm6ZgJtvgD5NLtJN3WQ8mMD /wvqOuY3xprAItOdXCxHvlZJ8qqrT0yTxsTq16hO4BBQtegKoLUbTRTBCtfbTZzv g/DzZWbcemnCkDapcAV4RWD9uXDsXYvZS+qv7whTH8L8DfU7Xb0BrX0K+nShOS65 G7XQXw1hIuWf/SSNqP6UaXhfWxAE99joY6z+z7G0UZYa22+nYR0EG2/xHfTU2bYp 35W3QXjA/L+iK7bLhjpg4ElwqaSU04Z+V/Tm2viPau7s7IQPvO6ap4d/6QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFI20bF3BtToAMl+GErsmHRkbzSGiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U4ZDk4NTU1LThjYmEtNDViYy1hN2NiLTc0ZDdiNDRiZmJmNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/6CAMA0GCSqGSIb3DQEBCwUAA4IBAQBvKN7NYYWAFZ/kQoNn lh+WJ5REGtk0afjQEd9j84ZER9zI0YZbFkPGNuwd8F/3Tq26OSJcqxv6TOf8u7g3 ltQJglrvonEL/XCBIzCmmx+GILFp3Py3sK1JrAYJ8hl9UT0A+IzYcoQm+nhvIamz kOpd/igx+5TBXa0WmEEEJLF/6qWgAG+QnbfoLHlqudktnc46bTrX3raUyhWBtv/S Kt44gEkr0uFHFmR/5Ap5D115UU5bi79fPNI8GBJ9QJWHi4gXnfih/5xijAyw57xr wM10N80q0wjexiJxUzbg3ZE+fiOMuc5KWles5kjaVZhvBoxk3fV9OPyjjiVN61x1 Xg/m -----END CERTIFICATE-----Generated at Thu Jul 31 01:02:12 2025 by rpki-client