$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/6982f3ac-c7ae-423c-a028-517d7541d973.roa File: 6982f3ac-c7ae-423c-a028-517d7541d973.roa (raw, json) Hash identifier: O+f4fPRok5OcjlFoUBcYV4odcShUcF5ITkb1wQw8WQ8= Subject key identifier: AF:D5:F2:46:48:60:CA:E9:68:B1:95:8A:7C:83:FB:D2:3E:E8:2A:7D Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 522FB19117C742287D12E7CAD19078E690998387 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/6982f3ac-c7ae-423c-a028-517d7541d973.roa Signing time: Tue 10 Jun 2025 16:00:04 +0000 ROA not before: Tue 10 Jun 2025 16:00:04 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2f:b1:91:17:c7:42:28:7d:12:e7:ca:d1:90:78:e6:90:99:83:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 10 16:00:04 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=2bfd5829d4d416e6aa50db90aef7e3ac53edf27fbeb10ce9551efae3603d3216, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4a:01:3a:32:dc:c7:f9:7c:09:c0:df:97:99: 50:4a:93:8b:6e:84:ce:18:ed:3e:b3:22:8f:55:23: 99:82:e0:de:81:f9:77:5b:08:1b:52:2b:bd:ec:9d: 4c:a1:e3:f1:37:28:59:fa:61:35:c2:21:78:67:6d: f5:9a:63:4f:29:20:52:30:0e:39:19:0d:c6:ee:0a: 2d:1b:5a:96:ff:d6:9b:fc:bf:67:29:23:06:a4:e0: 0b:71:f0:3c:c0:81:98:31:b8:7f:73:3b:f2:f9:2a: 53:8a:9e:99:31:0b:b7:f5:c6:2b:71:ba:f3:ff:82: cc:ea:cb:2d:50:36:b6:9b:02:1a:ef:62:10:59:c8: 6b:39:c9:05:0c:95:fb:9a:b1:3e:6d:5c:15:d2:a5: 6a:46:ad:1b:00:34:95:21:3f:49:af:6a:02:1c:a8: 21:aa:2d:41:dc:ad:0d:d3:31:6e:f2:b1:50:ad:4a: 43:26:7b:2d:81:5d:8c:75:65:6b:9e:5e:0e:c8:1c: 71:c8:fd:cc:3e:dc:73:0b:d6:a2:d0:9f:7f:14:46: ff:01:2b:2f:47:7d:42:a3:d1:06:3c:91:b8:f4:59: 35:88:fc:c3:cd:f5:70:0b:0a:3e:ab:09:09:b5:26: 54:b0:48:84:5a:2a:11:1c:ee:29:36:fc:63:20:75: ab:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D5:F2:46:48:60:CA:E9:68:B1:95:8A:7C:83:FB:D2:3E:E8:2A:7D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/6982f3ac-c7ae-423c-a028-517d7541d973.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:1000::/40 Signature Algorithm: sha256WithRSAEncryption 3b:5c:22:93:e0:7c:d9:f1:2b:02:ad:ca:a5:bb:ff:bd:ec:36: 3d:9c:bf:5f:40:a1:38:34:02:61:b5:e3:81:07:3d:b0:a8:70: a3:81:fd:e7:2f:7f:3d:d6:32:53:65:b8:23:75:ff:dc:cd:64: a2:ac:0b:7e:f3:24:35:ec:f5:ca:2b:86:56:07:8e:e0:c0:fe: 48:0c:ba:25:6b:9c:43:4b:9f:20:72:a0:4a:70:86:a2:76:86: c5:e0:0f:dd:46:08:37:da:a5:a0:77:37:6d:4f:51:63:0b:39: e5:45:e8:48:8a:53:fa:8c:5d:f9:ca:96:c5:99:dc:13:6d:67: 0a:5f:e3:4a:0c:a2:ee:a1:a0:84:48:b8:2d:22:b4:ea:81:45: 35:04:1b:52:fd:1b:0d:17:3b:8b:70:9e:32:2e:f9:26:fd:ab: e0:b7:c6:e9:ed:65:0d:07:4f:f8:0d:14:26:37:b1:b7:75:8d: 28:00:f6:73:58:1e:8c:e8:75:5b:0d:bc:f9:3b:79:ef:2f:f6: fa:6e:13:58:4b:ae:6b:fb:2f:ee:dc:de:f8:aa:36:52:d9:48: 0b:ff:27:96:cd:f2:39:9f:08:41:6e:5f:2c:bf:4c:64:97:0a: e8:77:d3:a0:22:33:4a:59:f8:63:26:0a:62:92:80:26:9d:eb: 61:16:5e:f2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUi+xkRfHQih9EufK0ZB45pCZg4cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDYxMDE2MDAwNFoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAMmJmZDU4MjlkNGQ0MTZlNmFhNTBk YjkwYWVmN2UzYWM1M2VkZjI3ZmJlYjEwY2U5NTUxZWZhZTM2MDNkMzIxNjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EoBOjLcx/l8CcDfl5lQSpOLboTO GO0+syKPVSOZguDegfl3WwgbUiu97J1MoePxNyhZ+mE1wiF4Z231mmNPKSBSMA45 GQ3G7gotG1qW/9ab/L9nKSMGpOALcfA8wIGYMbh/czvy+SpTip6ZMQu39cYrcbrz /4LM6sstUDa2mwIa72IQWchrOckFDJX7mrE+bVwV0qVqRq0bADSVIT9Jr2oCHKgh qi1B3K0N0zFu8rFQrUpDJnstgV2MdWVrnl4OyBxxyP3MPtxzC9ai0J9/FEb/ASsv R31Co9EGPJG49Fk1iPzDzfVwCwo+qwkJtSZUsEiEWioRHO4pNvxjIHWr0QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFK/V8kZIYMrpaLGVinyD+9I+6Cp9MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzY5ODJmM2FjLWM3YWUtNDIzYy1hMDI4LTUxN2Q3NTQxZDk3My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAOzABAwDQYJKoZIhvcNAQELBQADggEBADtcIpPgfNnxKwKtyqW7 /73sNj2cv19AoTg0AmG144EHPbCocKOB/ecvfz3WMlNluCN1/9zNZKKsC37zJDXs 9corhlYHjuDA/kgMuiVrnENLnyByoEpwhqJ2hsXgD91GCDfapaB3N21PUWMLOeVF 6EiKU/qMXfnKlsWZ3BNtZwpf40oMou6hoIRIuC0itOqBRTUEG1L9Gw0XO4twnjIu +Sb9q+C3xuntZQ0HT/gNFCY3sbd1jSgA9nNYHozodVsNvPk7ee8v9vpuE1hLrmv7 L+7c3viqNlLZSAv/J5bN8jmfCEFuXyy/TGSXCuh306AiM0pZ+GMmCmKSgCad62EW XvI= -----END CERTIFICATE-----Generated at Sat Jun 14 06:19:10 2025 by rpki-client