$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa File: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (raw, json) Hash identifier: juLVh7fURSlpsiHj8BTH0+77LqYkVLYxDkqQ1Btb6+4= Subject key identifier: 37:F6:C6:BC:10:F8:29:AD:0B:80:1B:09:8C:C2:93:9F:51:FE:C1:C8 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 65B16A4008214B6C0E8C6A54DFA846233FD8573D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa Signing time: Mon 04 Aug 2025 15:00:04 +0000 ROA not before: Mon 04 Aug 2025 15:00:04 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 15:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:b1:6a:40:08:21:4b:6c:0e:8c:6a:54:df:a8:46:23:3f:d8:57:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Aug 4 15:00:04 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=aefda13c874ee9aa5e7536dfc5bc023177310b8e7a899b7fddb3dd20b4e8c7e1, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a0:a4:54:99:82:ea:50:12:50:73:50:86:37: a2:e1:c5:0a:29:b2:d8:4b:00:bd:e2:b7:de:a3:54: a8:45:3b:81:46:07:d3:80:2a:85:eb:09:4d:21:c8: 9e:21:6b:79:ac:a7:c1:cd:5f:6b:27:b2:a5:07:18: df:6b:a1:80:5e:41:1c:b8:f3:0d:cb:ce:c6:bc:35: bd:45:07:88:9e:ae:f3:f0:fc:59:4f:aa:e0:3f:29: 38:b0:32:c8:69:ce:35:78:15:10:1e:99:c9:99:e0: f5:c0:3b:68:db:08:2f:a3:3a:90:dc:8d:dd:86:2c: 7d:4b:9f:62:8a:4e:fa:fe:8f:91:80:1d:58:a4:a1: 49:00:8d:94:42:34:e3:d8:96:13:50:a7:c0:86:44: 55:28:1a:ee:7f:d6:c5:36:04:1c:36:9f:12:6a:0c: 3d:74:61:b8:44:df:92:15:08:1d:2d:63:41:0f:9a: b1:b1:e8:3d:8f:7d:65:88:89:3e:d2:81:c5:80:48: 7f:bf:01:15:06:73:c9:4b:aa:e7:da:44:ed:32:d7: df:a6:af:91:89:a9:2a:8c:99:5a:c1:4f:46:f0:b5: 4f:33:2f:06:7c:da:24:f7:7d:69:83:96:98:16:42: fe:b5:9e:4c:dd:1e:d6:39:98:6b:41:d0:59:a1:94: 9e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F6:C6:BC:10:F8:29:AD:0B:80:1B:09:8C:C2:93:9F:51:FE:C1:C8 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/48 Signature Algorithm: sha256WithRSAEncryption 30:05:5f:ea:1d:d0:40:42:fd:63:1a:e5:24:88:0d:e0:4e:2b: 27:99:7a:20:ef:61:bf:c3:89:92:13:f6:67:88:79:23:10:9d: 7b:fc:a2:15:67:6b:70:0c:b8:f6:49:47:a3:1e:a5:16:2e:49: 12:98:b4:41:38:98:b3:34:82:ab:c8:be:1f:22:88:bb:10:f5: dd:b2:a9:31:ed:7f:cc:cc:4c:2c:ac:46:ee:37:3a:c3:21:19: 0a:69:fc:04:97:89:07:c9:4f:6a:41:5a:74:65:34:26:c4:2f: 8b:b0:4d:8a:79:11:25:2b:a7:a0:74:fe:e2:bd:48:6c:1b:f1: 51:11:33:83:3e:9c:57:33:4d:78:53:11:8b:23:fc:6d:c1:5f: ab:d2:45:59:20:b8:18:35:e9:22:96:a7:73:04:3b:65:1e:f2: 4f:7b:6a:9d:59:ae:2e:86:43:24:cc:35:ee:c6:32:7d:91:04: a4:9f:22:ba:90:e6:95:9d:eb:e7:04:6e:d1:46:6b:4c:c2:db: c4:ec:24:8c:34:2d:fb:76:aa:e9:ac:19:8b:7f:63:5e:92:bd: 21:7c:97:90:36:74:31:af:fa:2e:1d:5a:11:66:79:32:d0:2d: 08:12:7a:ee:74:17:30:f3:8e:51:f7:98:8c:b1:8b:77:92:2a: 6c:01:88:6a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUZbFqQAghS2wOjGpU36hGIz/YVz0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDgwNDE1MDAwNFoX DTI1MDkwODIzNTk1OVowejFJMEcGA1UEBRNAYWVmZGExM2M4NzRlZTlhYTVlNzUz NmRmYzViYzAyMzE3NzMxMGI4ZTdhODk5YjdmZGRiM2RkMjBiNGU4YzdlMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkKCkVJmC6lASUHNQhjei4cUKKbLY SwC94rfeo1SoRTuBRgfTgCqF6wlNIcieIWt5rKfBzV9rJ7KlBxjfa6GAXkEcuPMN y87GvDW9RQeInq7z8PxZT6rgPyk4sDLIac41eBUQHpnJmeD1wDto2wgvozqQ3I3d hix9S59iik76/o+RgB1YpKFJAI2UQjTj2JYTUKfAhkRVKBruf9bFNgQcNp8Sagw9 dGG4RN+SFQgdLWNBD5qxseg9j31liIk+0oHFgEh/vwEVBnPJS6rn2kTtMtffpq+R iakqjJlawU9G8LVPMy8GfNok931pg5aYFkL+tZ5M3R7WOZhrQdBZoZSeFwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDf2xrwQ+CmtC4AbCYzCk59R/sHIMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzM4MWZjNmU2LTVkNDktNDFiYy1iNTg0LWQ5NDM3YzY4ZTNjZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAwBV/qHdBAQv1jGuUk iA3gTisnmXog72G/w4mSE/ZniHkjEJ17/KIVZ2twDLj2SUejHqUWLkkSmLRBOJiz NIKryL4fIoi7EPXdsqkx7X/MzEwsrEbuNzrDIRkKafwEl4kHyU9qQVp0ZTQmxC+L sE2KeRElK6egdP7ivUhsG/FRETODPpxXM014UxGLI/xtwV+r0kVZILgYNekilqdz BDtlHvJPe2qdWa4uhkMkzDXuxjJ9kQSknyK6kOaVnevnBG7RRmtMwtvE7CSMNC37 dqrprBmLf2Nekr0hfJeQNnQxr/ouHVoRZnky0C0IEnrudBcw845R95iMsYt3kips AYhq -----END CERTIFICATE-----Generated at Wed Aug 6 00:45:27 2025 by rpki-client