$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/4bbd1bdf-866e-4b25-9ac6-e929a05080b9.roa File: 4bbd1bdf-866e-4b25-9ac6-e929a05080b9.roa (raw, json) Hash identifier: F5hKqKTHPcXnLrPQKABZPfxyPw5XI4b6/R5dMYHO+qk= Subject key identifier: 3D:CA:D7:5D:9D:C1:AE:72:65:41:94:75:9E:CA:FA:70:DA:F4:37:D6 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 6C3AE1965A7E4CB5F50AE41811D8012FA29034DD Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/4bbd1bdf-866e-4b25-9ac6-e929a05080b9.roa Signing time: Tue 10 Jun 2025 16:00:03 +0000 ROA not before: Tue 10 Jun 2025 16:00:03 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2403:b300:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:3a:e1:96:5a:7e:4c:b5:f5:0a:e4:18:11:d8:01:2f:a2:90:34:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 10 16:00:03 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=160e2e15b99f143e5d486f76aaefba9b8a5d2e58adac698762ba0ca565f8b60f, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:43:1b:59:08:89:55:d5:75:98:2c:91:bd:ba: 53:0e:33:1f:7a:1f:3e:f7:8e:5e:73:87:76:0a:6d: 5b:b5:bf:a8:94:2e:5d:7e:16:11:09:25:3f:c8:59: c3:71:13:b2:67:92:34:e5:b5:3a:80:3b:7f:bd:db: 26:3c:58:c7:9c:e2:f4:fb:3d:a9:d1:99:a2:16:b3: aa:ce:b8:7e:f5:81:ae:d3:d5:5f:04:da:74:d5:e3: e7:97:70:44:5d:02:a4:1d:92:c2:25:bb:ec:68:aa: 4f:9b:42:e6:51:e6:48:d8:9a:e9:fa:7a:eb:51:06: d3:a8:7d:5f:e0:eb:c5:c5:4b:51:49:fe:f9:d8:fc: b5:6e:2f:e3:56:dc:a2:e9:59:bc:b9:44:65:66:17: eb:2c:e8:73:c8:94:1d:83:2a:af:29:48:d7:1b:a9: 26:50:af:44:60:19:46:08:ab:32:07:3f:b4:a1:22: 2b:8f:89:ca:87:b3:df:3a:67:02:da:1e:5e:b3:dc: 38:f4:e4:60:c1:e7:88:da:52:78:fb:f3:05:6e:b2: dc:19:8f:e2:b7:7e:43:4f:12:89:bd:b8:0f:e3:76: 58:87:03:73:3e:68:98:42:e1:1d:61:af:b2:60:ab: 7f:e5:7e:5c:cc:d6:5c:6a:96:c1:0e:db:11:7a:24: 13:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:CA:D7:5D:9D:C1:AE:72:65:41:94:75:9E:CA:FA:70:DA:F4:37:D6 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/4bbd1bdf-866e-4b25-9ac6-e929a05080b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:1000::/48 Signature Algorithm: sha256WithRSAEncryption 38:2e:8b:57:6f:ea:cc:ea:07:66:ea:ab:fa:d3:c7:2b:61:0a: d9:06:3d:42:c6:e6:50:0d:57:85:be:54:a3:62:1b:00:ac:b1: 31:19:b3:e5:2f:f3:a6:44:43:ca:e9:f5:ba:59:83:30:69:64: 2c:0e:36:69:6e:2a:d5:b8:7b:e1:9d:fb:22:66:dd:f7:9d:b9: 69:36:01:cf:37:ff:32:97:63:f3:98:b2:e1:7c:98:65:4e:dd: 5e:73:b8:0b:5e:7d:2b:55:6e:ea:10:62:3a:03:9d:fb:2c:9c: 28:4d:33:e8:ef:d9:48:b0:19:07:65:f2:97:19:9b:2d:97:5e: 81:b1:28:b1:df:86:8e:e6:7d:17:45:76:41:bf:0b:24:91:5c: 94:75:1b:a6:82:16:0a:34:44:d2:0c:55:a3:d0:fc:18:8b:c6: 1f:f8:a8:e1:a4:1c:19:f5:49:8a:88:ed:05:e2:22:17:67:71: c7:3d:dd:8d:d8:a7:2b:7c:9f:14:d2:2b:ae:21:4d:b7:51:32: 15:7d:ce:17:7e:3e:dd:5e:86:0d:30:8b:13:36:39:ca:f7:8e: 32:8f:9a:d2:81:c0:1d:77:a1:14:ae:7d:cb:a4:59:c8:d2:f9: 1f:74:07:8a:3e:28:46:86:5a:64:f1:0a:d4:cb:f0:fb:65:de: f6:64:32:00 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUbDrhllp+TLX1CuQYEdgBL6KQNN0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDYxMDE2MDAwM1oX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAMTYwZTJlMTViOTlmMTQzZTVkNDg2 Zjc2YWFlZmJhOWI4YTVkMmU1OGFkYWM2OTg3NjJiYTBjYTU2NWY4YjYwZjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzEMbWQiJVdV1mCyRvbpTDjMfeh8+ 945ec4d2Cm1btb+olC5dfhYRCSU/yFnDcROyZ5I05bU6gDt/vdsmPFjHnOL0+z2p 0ZmiFrOqzrh+9YGu09VfBNp01ePnl3BEXQKkHZLCJbvsaKpPm0LmUeZI2Jrp+nrr UQbTqH1f4OvFxUtRSf752Py1bi/jVtyi6Vm8uURlZhfrLOhzyJQdgyqvKUjXG6km UK9EYBlGCKsyBz+0oSIrj4nKh7PfOmcC2h5es9w49ORgweeI2lJ4+/MFbrLcGY/i t35DTxKJvbgP43ZYhwNzPmiYQuEdYa+yYKt/5X5czNZcapbBDtsReiQTZQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFD3K112dwa5yZUGUdZ7K+nDa9DfWMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzRiYmQxYmRmLTg2NmUtNGIyNS05YWM2LWU5MjlhMDUwODBiOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzABAAMA0GCSqGSIb3DQEBCwUAA4IBAQA4LotXb+rM6gdm6qv6 08crYQrZBj1CxuZQDVeFvlSjYhsArLExGbPlL/OmREPK6fW6WYMwaWQsDjZpbirV uHvhnfsiZt33nblpNgHPN/8yl2PzmLLhfJhlTt1ec7gLXn0rVW7qEGI6A537LJwo TTPo79lIsBkHZfKXGZstl16BsSix34aO5n0XRXZBvwskkVyUdRumghYKNETSDFWj 0PwYi8Yf+KjhpBwZ9UmKiO0F4iIXZ3HHPd2N2KcrfJ8U0iuuIU23UTIVfc4Xfj7d XoYNMIsTNjnK944yj5rSgcAdd6EUrn3LpFnI0vkfdAeKPihGhlpk8QrUy/D7Zd72 ZDIA -----END CERTIFICATE-----Generated at Sun Jun 15 09:00:14 2025 by rpki-client