$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eec7ad5e-f656-4ebc-8be2-c3a42fd003c8.roa File: eec7ad5e-f656-4ebc-8be2-c3a42fd003c8.roa (raw, json) Hash identifier: RjiWNFK96GcoBDzOlX/jd/pPjWmVKl+87PaqV8dvtg0= Subject key identifier: 99:75:6A:A8:95:03:B4:20:D2:25:FB:F4:1D:60:B0:99:52:EB:86:CA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7A82E4B4EB417F77863894A0738E9D75F05505DD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eec7ad5e-f656-4ebc-8be2-c3a42fd003c8.roa Signing time: Fri 16 May 2025 15:10:58 +0000 ROA not before: Fri 16 May 2025 15:10:58 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da36:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:82:e4:b4:eb:41:7f:77:86:38:94:a0:73:8e:9d:75:f0:55:05:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 15:10:58 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=ea3c74bf687dd92b6344ffe3b63880c276d64d335354e9d32eda288c77673f3a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:74:78:02:c5:3f:38:52:e9:9b:3c:e9:9e:06: a5:ad:a2:50:fb:63:8e:38:83:34:24:ff:b9:0a:e2: b5:bf:e3:d4:fe:c2:03:8e:9d:73:08:76:2b:60:a9: 8e:2c:f4:4d:7c:a3:32:7a:c6:7a:a3:d4:8d:bc:7b: b5:ec:06:2e:7e:d1:d9:6f:3f:db:58:4e:84:39:3d: 33:95:74:ac:a9:cd:5d:b7:f5:77:ef:c6:92:f8:fe: 9c:0b:59:8e:97:91:b1:6d:08:6f:12:ac:3b:3f:aa: cc:5d:bf:a2:30:dd:93:b5:5d:0f:24:fd:3d:96:8c: 23:f2:85:7e:ba:5a:63:3b:58:58:c2:5a:38:c6:4c: d3:25:4f:5d:f1:23:b3:76:17:fb:b8:3a:ee:62:56: be:b7:db:3c:54:d6:bd:e4:48:19:18:68:f0:0e:e4: bd:3c:ae:bd:8c:d9:16:2a:64:0c:8e:01:fa:17:48: 65:28:17:9e:45:02:cd:fe:eb:08:a5:fb:cc:8b:3f: 7f:a1:b3:2b:a2:1e:2c:bb:db:f7:49:99:50:bc:b1: 8b:80:b9:0a:46:05:75:b9:19:42:11:5a:66:d1:eb: e2:87:b7:8a:41:68:c8:74:f1:c3:6d:63:9d:ca:76: 23:b4:cb:fb:eb:95:93:0f:eb:ca:8c:13:33:50:b0: 33:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:75:6A:A8:95:03:B4:20:D2:25:FB:F4:1D:60:B0:99:52:EB:86:CA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eec7ad5e-f656-4ebc-8be2-c3a42fd003c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da36:800::/40 Signature Algorithm: sha256WithRSAEncryption 62:2a:40:04:64:e8:ad:f3:2b:f9:da:0c:6a:2a:49:59:eb:b3: 38:84:0b:23:0b:2d:c0:c7:79:89:3f:93:20:1e:fd:65:8f:37: c6:90:e8:67:43:e5:d7:5f:9d:85:0e:af:a2:6b:13:25:4b:6e: 28:61:1e:68:bb:4c:fc:da:88:61:68:41:9b:f6:3f:0a:69:4c: 20:c6:ae:bd:23:ec:04:03:2f:6b:34:63:26:a4:b6:37:7e:e2: 60:fd:7e:9e:c1:8f:2e:c7:f7:8a:0b:47:bc:2c:75:c8:6f:f2: 79:2a:38:1f:9c:a1:b7:27:87:ac:c2:c2:d9:0f:ac:b9:1c:dc: 49:83:2d:76:dc:a6:b3:4c:dc:3c:f6:75:37:f3:8e:35:6a:a8: da:0f:55:92:6a:95:56:6c:41:33:99:b3:76:1b:be:99:25:d4: 7a:50:25:85:ea:96:2f:f2:80:fc:45:88:33:4e:c8:4c:22:38: ea:d5:78:f1:8e:2f:d2:92:8c:da:87:ec:95:ba:59:79:6f:da: 56:de:1f:f0:18:60:11:d0:5d:39:57:13:c0:93:a1:4d:7b:f8: b8:ff:00:bf:b9:92:fe:0a:6a:5c:b2:8f:43:90:40:81:ec:2d: ad:b2:a4:62:39:ff:17:22:90:f6:b2:08:8f:3c:66:ce:c2:df: b4:b5:f9:85 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUeoLktOtBf3eGOJSgc46ddfBVBd0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjE1MTA1OFoX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNAZWEzYzc0YmY2ODdkZDkyYjYzNDRm ZmUzYjYzODgwYzI3NmQ2NGQzMzUzNTRlOWQzMmVkYTI4OGM3NzY3M2YzYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXR4AsU/OFLpmzzpngalraJQ+2OO OIM0JP+5CuK1v+PU/sIDjp1zCHYrYKmOLPRNfKMyesZ6o9SNvHu17AYuftHZbz/b WE6EOT0zlXSsqc1dt/V378aS+P6cC1mOl5GxbQhvEqw7P6rMXb+iMN2TtV0PJP09 lowj8oV+ulpjO1hYwlo4xkzTJU9d8SOzdhf7uDruYla+t9s8VNa95EgZGGjwDuS9 PK69jNkWKmQMjgH6F0hlKBeeRQLN/usIpfvMiz9/obMroh4su9v3SZlQvLGLgLkK RgV1uRlCEVpm0evih7eKQWjIdPHDbWOdynYjtMv765WTD+vKjBMzULAznwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJl1aqiVA7Qg0iX79B1gsJlS64bKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VlYzdhZDVlLWY2NTYtNGViYy04YmUyLWMzYTQyZmQwMDNjOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaNggwDQYJKoZIhvcNAQELBQADggEBAGIqQARk6K3zK/naDGoq SVnrsziECyMLLcDHeYk/kyAe/WWPN8aQ6GdD5ddfnYUOr6JrEyVLbihhHmi7TPza iGFoQZv2PwppTCDGrr0j7AQDL2s0Yyaktjd+4mD9fp7Bjy7H94oLR7wsdchv8nkq OB+cobcnh6zCwtkPrLkc3EmDLXbcprNM3Dz2dTfzjjVqqNoPVZJqlVZsQTOZs3Yb vpkl1HpQJYXqli/ygPxFiDNOyEwiOOrVePGOL9KSjNqH7JW6WXlv2lbeH/AYYBHQ XTlXE8CToU17+Lj/AL+5kv4Kalyyj0OQQIHsLa2ypGI5/xcikPayCI88Zs7C37S1 +YU= -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:45 2025 by rpki-client