$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e9cef150-9fbc-4bd4-ba7c-48636358bea6.roa File: e9cef150-9fbc-4bd4-ba7c-48636358bea6.roa (raw, json) Hash identifier: DK1QElUqxOaxWIxCFNC6cY2z5xEubF0JtWRfJUexrT8= Subject key identifier: D2:DF:36:F6:B8:FD:48:BB:D0:F3:E1:D5:D8:17:AC:26:39:A1:FE:E6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5EB9770408A15CE981267D35F985C0E418A5B9AA Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e9cef150-9fbc-4bd4-ba7c-48636358bea6.roa Signing time: Fri 16 May 2025 15:11:27 +0000 ROA not before: Fri 16 May 2025 15:11:27 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:c800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b9:77:04:08:a1:5c:e9:81:26:7d:35:f9:85:c0:e4:18:a5:b9:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 15:11:27 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=651315d674c4c595b0e8a522c3288b81da58d3620087fefff35126cc12868afa, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1a:89:11:eb:a7:35:84:46:73:20:64:4b:02: 21:94:2b:00:e8:95:49:ba:2b:65:6d:59:c7:da:ef: 43:8a:76:e0:2c:a4:94:04:9d:e8:bc:00:82:61:1b: 1a:7c:ad:28:55:f5:53:2f:45:4b:16:23:83:7e:36: 9d:a4:38:cd:6f:a2:ce:2a:a9:10:b1:0d:6c:b6:99: a0:b8:ed:6c:48:23:b6:0d:b1:e3:02:2d:e5:1f:61: 79:bc:81:e0:9c:13:6c:7a:42:b7:f6:28:3b:2d:3d: ac:e0:4a:78:d8:1a:17:62:18:c9:26:8f:ab:47:01: 26:20:4c:9f:6f:c6:4f:5d:32:0d:80:a4:39:b9:1f: 5e:9e:1b:70:b7:0c:71:d8:3b:00:6e:59:2e:97:0b: 38:d6:77:82:30:6f:74:f0:88:9c:d2:43:8a:f1:58: 0b:63:5a:76:1d:d5:db:b1:55:f4:6b:49:51:97:d5: 4a:2e:7b:7c:25:6b:bb:44:ef:03:c3:9d:ea:ee:4d: 68:de:02:9c:07:a1:03:b8:33:79:88:bb:b0:f0:26: d0:07:f5:51:59:f1:26:0b:a1:5b:ee:39:3c:10:4c: 17:53:35:ce:14:82:16:6a:f9:f6:e7:c6:42:d8:07: 1d:54:c1:cc:bd:39:c6:95:75:11:00:5d:e4:14:08: 66:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:DF:36:F6:B8:FD:48:BB:D0:F3:E1:D5:D8:17:AC:26:39:A1:FE:E6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e9cef150-9fbc-4bd4-ba7c-48636358bea6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:c800::/40 Signature Algorithm: sha256WithRSAEncryption a5:cd:16:39:16:5e:96:69:95:90:ec:fc:b5:68:1a:7b:ae:f6: 0b:fb:51:b7:08:c6:e6:1c:c2:63:3c:fb:a9:7b:9c:60:1c:08: 10:69:fb:6a:54:10:d3:16:c7:4b:84:74:cf:f3:54:98:ba:13: 2c:5a:3e:1c:5c:38:cd:5a:47:db:1d:76:9b:47:b3:a1:5f:34: 57:66:12:c0:46:5c:42:2e:e4:a9:93:9c:a4:24:4a:75:09:8a: 16:d2:8b:ec:00:01:05:93:30:d3:3e:d4:1d:2a:09:d3:dc:bf: 48:e2:aa:54:60:25:81:7d:38:dc:2d:66:4b:38:08:4c:47:3f: 70:77:4b:65:07:0c:97:43:2f:01:be:8a:4d:ab:29:b2:ea:e5: 55:13:9f:3c:21:b2:9d:38:ef:8e:dc:d4:b7:6d:8e:2a:1e:3f: 95:41:ab:dc:0a:9e:1a:56:1f:4d:43:0b:f4:f4:38:22:dd:7b: 1d:5e:1f:dd:9e:a7:8f:9b:d0:3d:0a:f9:da:b8:85:36:b2:81: 10:9d:0f:ce:c6:3d:07:cb:0c:2e:b6:93:d8:a3:bc:85:ab:81: 71:1f:74:40:38:e9:95:62:cb:dc:91:32:f8:15:99:c9:44:77: 9d:ba:44:4a:24:2d:48:81:ef:c8:ca:57:e1:b0:b7:25:43:f6: bf:88:fe:77 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXrl3BAihXOmBJn01+YXA5BiluaowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjE1MTEyN1oX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNANjUxMzE1ZDY3NGM0YzU5NWIwZThh NTIyYzMyODhiODFkYTU4ZDM2MjAwODdmZWZmZjM1MTI2Y2MxMjg2OGFmYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyRqJEeunNYRGcyBkSwIhlCsA6JVJ uitlbVnH2u9DinbgLKSUBJ3ovACCYRsafK0oVfVTL0VLFiODfjadpDjNb6LOKqkQ sQ1stpmguO1sSCO2DbHjAi3lH2F5vIHgnBNsekK39ig7LT2s4Ep42BoXYhjJJo+r RwEmIEyfb8ZPXTINgKQ5uR9enhtwtwxx2DsAblkulws41neCMG908Iic0kOK8VgL Y1p2HdXbsVX0a0lRl9VKLnt8JWu7RO8Dw53q7k1o3gKcB6EDuDN5iLuw8CbQB/VR WfEmC6Fb7jk8EEwXUzXOFIIWavn258ZC2AcdVMHMvTnGlXURAF3kFAhm1wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNLfNva4/Ui70PPh1dgXrCY5of7mMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U5Y2VmMTUwLTlmYmMtNGJkNC1iYTdjLTQ4NjM2MzU4YmVhNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8cgwDQYJKoZIhvcNAQELBQADggEBAKXNFjkWXpZplZDs/LVo Gnuu9gv7UbcIxuYcwmM8+6l7nGAcCBBp+2pUENMWx0uEdM/zVJi6EyxaPhxcOM1a R9sddptHs6FfNFdmEsBGXEIu5KmTnKQkSnUJihbSi+wAAQWTMNM+1B0qCdPcv0ji qlRgJYF9ONwtZks4CExHP3B3S2UHDJdDLwG+ik2rKbLq5VUTnzwhsp04747c1Ldt jioeP5VBq9wKnhpWH01DC/T0OCLdex1eH92ep4+b0D0K+dq4hTaygRCdD87GPQfL DC62k9ijvIWrgXEfdEA46ZViy9yRMvgVmclEd526REokLUiB78jKV+GwtyVD9r+I /nc= -----END CERTIFICATE-----Generated at Mon Jun 2 06:29:28 2025 by rpki-client