$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa File: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (raw, json) Hash identifier: +LzVgL5yEjod9LZPg1MR/BXJI5ka7btRTQXKRa2t5J4= Subject key identifier: BE:B5:B7:C4:C7:92:A2:C3:A7:41:77:52:B1:4E:10:BE:03:9E:5F:A7 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5B851D622F69E7EB5105F63FD503AD6608C3C92D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa Signing time: Sat 14 Jun 2025 00:00:41 +0000 ROA not before: Sat 14 Jun 2025 00:00:41 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:85:1d:62:2f:69:e7:eb:51:05:f6:3f:d5:03:ad:66:08:c3:c9:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 14 00:00:41 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=4da29b177acf2af4d06a975eec5edb5ba1c643ad24e2da9ef1649cd6f118a28a, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:72:0c:94:1d:bf:c9:ba:13:14:9c:58:33:b6: ea:a2:5b:91:8e:de:8c:83:10:3e:f9:ad:d7:2a:42: 91:dc:a2:ca:31:ba:c7:eb:67:85:ab:0b:5c:c4:74: 28:37:b9:3a:f9:34:4b:60:6d:2e:9e:3c:13:1c:63: e5:11:43:4e:30:91:6a:34:de:d5:c4:ed:5c:79:5b: 38:15:fa:79:b1:f3:99:0b:df:f5:bd:45:b3:89:08: df:30:8e:40:66:18:bc:97:eb:f4:a0:d6:80:ae:10: a1:fe:a5:a8:a9:ce:ff:1c:47:46:01:1a:05:9b:a7: 20:7b:90:e3:6d:ef:c2:c4:d7:4e:22:26:aa:e8:9e: 3f:3d:4a:c9:32:e7:f9:b6:45:51:e2:7c:d2:f9:b1: 62:3e:36:2f:d4:66:db:a6:97:f0:f7:19:ba:4a:a9: ce:7e:f7:66:1e:11:ea:65:89:e8:93:94:98:22:e7: 97:02:07:3e:84:71:c3:46:45:5c:bf:a8:9a:89:d0: 72:e0:c4:d2:9a:fd:9e:80:e3:f8:93:e0:82:7a:cd: b7:ae:9f:83:1b:09:a8:64:eb:68:c1:5b:de:6d:48: c8:67:91:06:49:55:fb:c4:01:c8:65:cb:9e:bd:f1: 4f:ff:9a:40:04:d5:09:31:96:86:00:20:f4:19:b5: 51:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B5:B7:C4:C7:92:A2:C3:A7:41:77:52:B1:4E:10:BE:03:9E:5F:A7 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/48 Signature Algorithm: sha256WithRSAEncryption 27:58:25:3b:16:85:7a:ba:9a:52:15:18:4c:cf:d3:fa:63:e5: 82:1e:8b:0e:aa:3a:65:ec:64:87:fc:69:97:8c:12:8a:77:03: b4:8b:82:22:c7:12:97:65:35:be:5c:45:97:a8:9d:48:fd:41: 9b:9a:f7:45:b9:e9:97:85:be:2a:54:32:a8:9f:6c:da:7c:de: 41:2f:8f:6a:6d:1b:e0:d3:a8:b7:f8:b4:32:f0:12:44:16:96: cf:a3:61:3e:27:8c:95:bb:cd:b0:07:78:61:26:75:61:19:c0: 4b:80:eb:f5:a3:f9:89:55:17:bf:ad:e0:18:1d:38:77:b9:ba: 56:14:21:f2:20:8e:71:22:a1:97:76:d5:64:63:8c:60:72:64: 4e:03:54:52:d6:e2:88:f5:0f:35:ba:3d:c6:6b:4e:2f:dd:01: 26:53:20:50:c4:e9:8f:1a:21:f5:a6:51:58:6b:de:dd:2c:92: 27:47:dc:b7:66:e0:6b:59:1f:01:67:f9:49:92:6f:e9:cd:49: 89:52:fd:7c:eb:b8:4f:e2:0d:bf:4d:b1:7f:00:e2:fc:00:19: 5f:43:f4:02:f0:ab:95:d8:e9:08:10:83:d4:2a:1d:eb:f1:d4: da:8b:99:2c:df:f5:51:0b:71:b1:92:c8:4f:a3:ab:d3:17:1c: fc:13:25:0d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUW4UdYi9p5+tRBfY/1QOtZgjDyS0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDYxNDAwMDA0MVoX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNANGRhMjliMTc3YWNmMmFmNGQwNmE5 NzVlZWM1ZWRiNWJhMWM2NDNhZDI0ZTJkYTllZjE2NDljZDZmMTE4YTI4YTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXIMlB2/yboTFJxYM7bqoluRjt6M gxA++a3XKkKR3KLKMbrH62eFqwtcxHQoN7k6+TRLYG0unjwTHGPlEUNOMJFqNN7V xO1ceVs4Ffp5sfOZC9/1vUWziQjfMI5AZhi8l+v0oNaArhCh/qWoqc7/HEdGARoF m6cge5Djbe/CxNdOIiaq6J4/PUrJMuf5tkVR4nzS+bFiPjYv1Gbbppfw9xm6SqnO fvdmHhHqZYnok5SYIueXAgc+hHHDRkVcv6iaidBy4MTSmv2egOP4k+CCes23rp+D GwmoZOtowVvebUjIZ5EGSVX7xAHIZcuevfFP/5pABNUJMZaGACD0GbVRswIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFL61t8THkqLDp0F3UrFOEL4Dnl+nMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzM4MWZjNmU2LTVkNDktNDFiYy1iNTg0LWQ5NDM3YzY4ZTNjZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAnWCU7FoV6uppSFRhM z9P6Y+WCHosOqjpl7GSH/GmXjBKKdwO0i4IixxKXZTW+XEWXqJ1I/UGbmvdFuemX hb4qVDKon2zafN5BL49qbRvg06i3+LQy8BJEFpbPo2E+J4yVu82wB3hhJnVhGcBL gOv1o/mJVRe/reAYHTh3ubpWFCHyII5xIqGXdtVkY4xgcmROA1RS1uKI9Q81uj3G a04v3QEmUyBQxOmPGiH1plFYa97dLJInR9y3ZuBrWR8BZ/lJkm/pzUmJUv1867hP 4g2/TbF/AOL8ABlfQ/QC8KuV2OkIEIPUKh3r8dTai5ks3/VRC3GxkshPo6vTFxz8 EyUN -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:32 2025 by rpki-client