$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fbed307e-fbcc-427b-978f-d6f6d64a91c6.roa File: fbed307e-fbcc-427b-978f-d6f6d64a91c6.roa (raw, json) Hash identifier: VSWkKg2wF3s4XTq4zfc3EKB1rdxNNb+6o0Wt+K4TgEM= Subject key identifier: FD:D1:9F:24:73:1B:73:9A:88:A6:13:EF:8A:0E:AF:0A:C1:84:2E:4A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5263630D60233EEA1530FEDCA6D6C3BCC455A5B2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fbed307e-fbcc-427b-978f-d6f6d64a91c6.roa Signing time: Fri 16 May 2025 15:00:15 +0000 ROA not before: Fri 16 May 2025 15:00:15 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:a000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:63:63:0d:60:23:3e:ea:15:30:fe:dc:a6:d6:c3:bc:c4:55:a5:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 15:00:15 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=70a5d8706173276552471374b439541e9261c8da1b95faf12ebc8fab6af61c12, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b8:5d:9b:b5:f8:0f:21:2d:99:e5:25:b5:a9: 40:f1:28:6b:1f:ca:e3:25:26:2f:63:c3:d8:7b:b0: 90:29:ac:e3:32:a6:e5:6e:9d:5d:f8:d4:0d:91:f8: aa:a9:6e:7a:75:31:33:db:42:a7:7b:77:a4:db:af: e4:1a:af:37:08:34:77:a2:07:ec:5e:e3:73:07:ca: f6:d2:57:92:3d:e7:0f:07:01:07:f3:e6:59:cb:04: f3:1d:b6:b3:de:58:00:e4:12:34:9a:e1:3d:cc:0d: c8:b3:d9:b2:6f:a8:5b:c3:34:7a:f1:0c:08:cc:34: d2:f9:15:45:2a:75:4e:f5:b6:a5:ee:8e:39:a9:a9: f2:6e:da:15:d5:39:ed:65:6f:04:05:5e:18:91:54: 08:fb:be:31:a1:7d:e5:13:fd:32:27:b8:66:f9:e3: 34:a3:63:31:c6:e1:c0:1e:33:f3:ae:ef:d0:54:c3: 5b:3a:9f:51:21:b7:43:1f:ee:16:5a:cc:da:6f:fd: a8:ed:b1:57:42:5d:95:3b:2e:d8:5f:c9:2e:ea:3f: 66:dd:0f:f6:50:31:2e:bb:e9:4c:db:8f:1c:e4:4e: f9:ae:39:24:72:52:d0:84:54:3b:ca:04:35:be:70: 17:18:32:38:8d:c8:43:46:4a:40:47:9c:fb:bc:72: 39:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D1:9F:24:73:1B:73:9A:88:A6:13:EF:8A:0E:AF:0A:C1:84:2E:4A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fbed307e-fbcc-427b-978f-d6f6d64a91c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:a000::/40 Signature Algorithm: sha256WithRSAEncryption 74:04:81:6a:42:95:d5:e0:2f:c7:63:b2:51:7a:2d:60:fe:68: 06:ef:eb:93:73:3d:b7:b6:da:aa:ae:fa:5a:e1:0a:23:7b:ab: 4b:0e:11:6d:bb:65:b1:a5:44:4a:2b:31:d8:1d:5d:0a:a8:12: f4:5c:16:c1:fb:e4:7a:24:9f:44:ca:e8:27:25:89:15:b2:3a: 94:b4:36:b2:17:03:c5:03:ac:cd:9d:de:55:f9:77:e8:f5:0c: 71:44:70:28:08:e2:bb:ec:c4:40:b5:1f:ce:90:d9:4b:c7:31: 41:12:70:eb:e8:f3:76:35:2d:ad:fd:87:d8:f5:56:a6:22:0d: 37:99:d2:3d:9c:2e:8f:cf:00:87:84:9b:dc:9e:22:4c:6f:d2: 3e:52:b7:00:91:ba:6a:93:01:36:ae:71:32:db:ca:f0:70:b3: bf:bd:e4:80:5d:df:fb:51:3a:f6:f2:73:06:e5:c2:39:aa:3a: b5:ed:ce:bd:3c:fa:54:4c:28:14:f2:84:35:0d:8b:97:25:bc: 17:f6:cc:f2:c3:38:1a:9b:09:ba:a1:fe:c3:be:a2:dc:e1:7a: 8b:e3:79:bf:53:2d:35:94:46:2b:55:be:28:bb:ea:1b:5b:4d: b8:e5:81:bc:1c:45:15:45:11:48:66:5c:f8:6e:ee:15:32:26: 1c:2a:39:e0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUmNjDWAjPuoVMP7cptbDvMRVpbIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDUxNjE1MDAxNVoX DTI1MDYyMDIzNTk1OVowejFJMEcGA1UEBRNANzBhNWQ4NzA2MTczMjc2NTUyNDcx Mzc0YjQzOTU0MWU5MjYxYzhkYTFiOTVmYWYxMmViYzhmYWI2YWY2MWMxMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7hdm7X4DyEtmeUltalA8ShrH8rj JSYvY8PYe7CQKazjMqblbp1d+NQNkfiqqW56dTEz20Kne3ek26/kGq83CDR3ogfs XuNzB8r20leSPecPBwEH8+ZZywTzHbaz3lgA5BI0muE9zA3Is9myb6hbwzR68QwI zDTS+RVFKnVO9bal7o45qanybtoV1TntZW8EBV4YkVQI+74xoX3lE/0yJ7hm+eM0 o2MxxuHAHjPzru/QVMNbOp9RIbdDH+4WWszab/2o7bFXQl2VOy7YX8ku6j9m3Q/2 UDEuu+lM248c5E75rjkkclLQhFQ7ygQ1vnAXGDI4jchDRkpAR5z7vHI56QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFP3RnyRzG3OaiKYT74oOrwrBhC5KMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZiZWQzMDdlLWZiY2MtNDI3Yi05NzhmLWQ2ZjZkNjRhOTFjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacKAwDQYJKoZIhvcNAQELBQADggEBAHQEgWpCldXgL8djslF6 LWD+aAbv65NzPbe22qqu+lrhCiN7q0sOEW27ZbGlREorMdgdXQqoEvRcFsH75Hok n0TK6CcliRWyOpS0NrIXA8UDrM2d3lX5d+j1DHFEcCgI4rvsxEC1H86Q2UvHMUES cOvo83Y1La39h9j1VqYiDTeZ0j2cLo/PAIeEm9yeIkxv0j5StwCRumqTATaucTLb yvBws7+95IBd3/tROvbycwblwjmqOrXtzr08+lRMKBTyhDUNi5clvBf2zPLDOBqb Cbqh/sO+otzheovjeb9TLTWURitVvii76htbTbjlgbwcRRVFEUhmXPhu7hUyJhwq OeA= -----END CERTIFICATE-----Generated at Tue Jun 3 23:13:05 2025 by rpki-client