$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f863355c-0a33-4eb1-b2bb-b0c40c0693cf.roa File: f863355c-0a33-4eb1-b2bb-b0c40c0693cf.roa (raw, json) Hash identifier: VBZTzWWKTiWeVZQFVlPtf1T9KX5LSbUCnrpSs3Ic4LA= Subject key identifier: FC:D7:8E:38:34:E2:D2:6F:77:45:FA:60:A7:09:B6:BC:56:C6:05:28 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 165A37C3479CD3D8979BA30C370F6BB854B04B78 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f863355c-0a33-4eb1-b2bb-b0c40c0693cf.roa Signing time: Wed 14 May 2025 00:10:45 +0000 ROA not before: Wed 14 May 2025 00:10:45 +0000 ROA not after: Wed 18 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:7000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:5a:37:c3:47:9c:d3:d8:97:9b:a3:0c:37:0f:6b:b8:54:b0:4b:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 14 00:10:45 2025 GMT Not After : Jun 18 23:59:59 2025 GMT Subject: serialNumber=27acbb6c5230fe8257e082ddf0b76bcc4e24e17329b024400f311ebef3088917, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f8:11:c8:13:9d:c9:95:14:20:a7:75:12:44: 8d:05:4c:89:3e:b8:66:46:68:5b:e2:69:47:bd:6f: c7:06:4d:5a:3c:88:8d:20:d3:82:4c:9e:2f:5f:76: 16:32:ef:fa:d5:ff:bd:09:fd:68:e7:89:ac:5b:18: 52:f8:c0:3f:13:a5:77:67:70:ab:91:ef:76:75:8d: 46:f7:78:0d:e3:27:2e:77:54:aa:f6:7e:92:11:40: 63:4a:35:92:22:b3:b2:9c:2b:6b:9e:d5:db:9c:28: ec:16:7c:26:2d:73:e7:f9:e6:40:31:8b:80:3a:a4: 17:30:b6:7b:51:c8:22:11:65:16:c8:57:58:6a:14: 9c:13:d0:93:cc:7d:a8:eb:25:de:c1:dd:62:29:ce: 36:a1:9a:04:4c:b5:3b:a4:57:41:a6:1c:46:e4:7b: e3:5e:32:4c:d6:95:77:92:f3:10:4a:e3:ce:58:1a: 18:d7:ed:2d:04:2d:08:e3:76:4c:b9:5e:c3:52:cd: 73:e6:94:69:94:64:01:67:a5:f2:73:65:bb:7a:a1: e0:03:b6:93:7e:ef:a8:37:9b:88:8d:21:0e:3f:1f: 56:13:63:e1:ea:55:07:6d:48:52:b8:99:a3:c5:2d: 78:7b:de:a0:5d:8e:a3:7e:de:74:3f:75:f7:9a:58: 60:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D7:8E:38:34:E2:D2:6F:77:45:FA:60:A7:09:B6:BC:56:C6:05:28 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f863355c-0a33-4eb1-b2bb-b0c40c0693cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:7000::/40 Signature Algorithm: sha256WithRSAEncryption 65:af:44:03:5d:62:e0:c9:d4:d8:d6:74:f2:40:51:a0:8f:82: ef:68:3b:58:07:e8:fb:9f:d1:d8:71:51:af:4f:10:65:fb:d1: 1d:80:00:fa:fa:f1:a5:95:48:65:70:a8:cc:23:82:19:c5:84: cb:52:0e:e6:aa:16:d0:19:09:b8:99:ae:1f:b9:93:88:d4:d8: 0a:b5:4b:65:c5:ad:9f:21:71:a0:5c:7e:a3:e1:ed:8d:27:42: 91:ab:fa:cc:43:c6:c0:db:75:87:bb:e0:65:ee:93:36:85:17: 03:8e:aa:2b:33:05:d5:1d:95:bb:83:59:2e:43:1d:cc:62:13: 67:1b:53:ba:d2:97:6c:82:1f:e5:8c:d4:dc:25:a6:4a:47:2a: 44:3e:b5:fd:84:50:f0:17:45:36:e0:a7:87:f5:40:9d:af:22: b7:5b:3a:1b:17:e6:d0:2b:e2:ec:fa:95:de:41:08:57:e8:fe: b2:76:e1:4b:4c:f8:d9:15:9d:4f:cd:01:b1:20:99:90:ac:56: 56:3d:00:68:a1:a4:be:4a:9a:38:9d:f1:56:08:28:26:35:d9: 10:55:60:9f:56:f1:c2:1a:a7:b0:73:b0:bd:c0:e5:99:bc:60: 1b:a6:3f:f9:ad:43:14:bc:78:7a:14:43:5c:8e:50:5f:a7:b4: 9a:e2:f4:80 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFlo3w0ec09iXm6MMNw9ruFSwS3gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNDAwMTA0NVoX DTI1MDYxODIzNTk1OVowejFJMEcGA1UEBRNAMjdhY2JiNmM1MjMwZmU4MjU3ZTA4 MmRkZjBiNzZiY2M0ZTI0ZTE3MzI5YjAyNDQwMGYzMTFlYmVmMzA4ODkxNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/gRyBOdyZUUIKd1EkSNBUyJPrhm Rmhb4mlHvW/HBk1aPIiNINOCTJ4vX3YWMu/61f+9Cf1o54msWxhS+MA/E6V3Z3Cr ke92dY1G93gN4ycud1Sq9n6SEUBjSjWSIrOynCtrntXbnCjsFnwmLXPn+eZAMYuA OqQXMLZ7UcgiEWUWyFdYahScE9CTzH2o6yXewd1iKc42oZoETLU7pFdBphxG5Hvj XjJM1pV3kvMQSuPOWBoY1+0tBC0I43ZMuV7DUs1z5pRplGQBZ6Xyc2W7eqHgA7aT fu+oN5uIjSEOPx9WE2Ph6lUHbUhSuJmjxS14e96gXY6jft50P3X3mlhg1QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPzXjjg04tJvd0X6YKcJtrxWxgUoMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y4NjMzNTVjLTBhMzMtNGViMS1iMmJiLWIwYzQwYzA2OTNjZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/3AwDQYJKoZIhvcNAQELBQADggEBAGWvRANdYuDJ1NjWdPJA UaCPgu9oO1gH6Puf0dhxUa9PEGX70R2AAPr68aWVSGVwqMwjghnFhMtSDuaqFtAZ CbiZrh+5k4jU2Aq1S2XFrZ8hcaBcfqPh7Y0nQpGr+sxDxsDbdYe74GXukzaFFwOO qiszBdUdlbuDWS5DHcxiE2cbU7rSl2yCH+WM1NwlpkpHKkQ+tf2EUPAXRTbgp4f1 QJ2vIrdbOhsX5tAr4uz6ld5BCFfo/rJ24UtM+NkVnU/NAbEgmZCsVlY9AGihpL5K mjid8VYIKCY12RBVYJ9W8cIap7BzsL3A5Zm8YBumP/mtQxS8eHoUQ1yOUF+ntJri 9IA= -----END CERTIFICATE-----Generated at Tue Jun 3 23:18:03 2025 by rpki-client