$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa File: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (raw, json) Hash identifier: XYrP3JzpiwlerGjCAvRn6JBEt/Vx6ALc20coGmCve4I= Subject key identifier: A7:B6:D2:90:67:34:A0:88:C4:C9:D1:CD:3A:33:E4:0F:31:EC:EE:AA Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5457E7548CFFB77797DD0D24F57086E6475EC754 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa Signing time: Sat 14 Jun 2025 00:00:42 +0000 ROA not before: Sat 14 Jun 2025 00:00:42 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:57:e7:54:8c:ff:b7:77:97:dd:0d:24:f5:70:86:e6:47:5e:c7:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 14 00:00:42 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=bebeae0b43d5e93f28374fd12d243b41d584cfef777a6fe03bbcedf593fbf986, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:50:67:5e:2d:0d:d9:ca:f9:4e:2c:02:f5:0e: fb:dc:75:99:b7:89:3e:b5:59:21:3e:8a:02:44:95: 6a:e5:7f:3a:b2:0e:41:5f:be:b6:3a:46:da:a3:0b: a0:f0:2f:ce:1a:a7:dd:de:7a:07:c8:61:79:3f:d0: cd:d7:9f:d7:fa:0c:ba:6e:12:63:9b:e6:aa:e1:ac: 87:65:bd:c6:06:f8:2f:13:ed:f3:b4:a2:4d:a3:c6: 5d:2a:dc:bc:32:62:45:23:30:16:4e:2f:2f:d4:45: b6:59:7e:5b:bf:0e:e4:65:e6:5d:cf:25:f1:b1:0e: 80:df:95:81:1b:a3:8e:ef:2c:ae:88:85:dd:f0:3f: 46:bc:cf:77:5a:c0:1a:e9:36:03:77:b7:e4:25:38: 2c:7b:1f:76:0f:54:d9:af:5e:4f:ef:ee:25:76:dd: 83:01:d8:cf:32:f4:14:6c:47:ef:70:59:1b:92:ec: 9b:ab:fd:89:ee:b3:cf:67:b9:eb:93:e0:67:c6:97: d9:a1:f3:b6:98:2a:3f:39:6b:be:74:71:08:eb:90: f8:1d:ad:55:57:2e:76:8f:b6:fa:bd:6b:be:85:e7: ca:fc:40:90:16:52:00:d0:b8:26:41:5c:fb:50:3c: 33:c9:ce:a8:e3:c6:31:5b:d6:f5:5f:55:d4:ef:bb: b7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B6:D2:90:67:34:A0:88:C4:C9:D1:CD:3A:33:E4:0F:31:EC:EE:AA X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/32 Signature Algorithm: sha256WithRSAEncryption 73:e4:e1:aa:8e:d7:5f:45:53:f4:44:08:6c:da:60:f1:5a:7f: cc:d6:71:64:4f:38:98:63:72:2f:4e:f0:7c:d5:60:60:07:37: 1c:3d:b7:dc:11:d1:96:4b:07:ff:57:41:af:f0:42:ba:f2:26: e6:58:3b:d5:d0:70:83:e4:0a:2c:77:16:f4:f4:8a:f8:8e:fc: f9:e4:6c:17:dd:fa:30:d4:c1:ac:48:c1:cb:63:81:95:a8:ab: 76:6c:b7:c6:97:89:70:27:08:e1:1f:62:b7:78:16:0d:66:06: 66:f3:79:8a:4d:25:91:7e:af:04:6d:9b:55:d9:2d:bd:68:6d: 1c:90:c3:a7:72:9c:de:97:1b:08:3c:44:ef:e5:7e:2e:a4:19: db:21:0d:43:b5:83:30:29:e7:64:1a:f6:1d:c3:45:6a:b8:26: 82:5e:f1:9a:e0:c6:c6:9d:69:f0:df:f8:0b:98:04:41:fd:e5: e6:a0:e7:f6:de:07:ea:39:1d:bc:c6:b1:36:41:c4:0f:71:64: 1e:1e:74:c4:02:a5:2e:11:a9:ca:cd:aa:b6:2d:26:3d:79:19: fc:db:06:70:c9:ef:d9:10:b6:29:c8:90:5d:0a:86:7b:3c:0b: 79:03:1d:e7:fb:9a:f7:c9:65:e8:1f:76:95:00:59:9e:31:9c: 6e:fc:68:e2 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUVFfnVIz/t3eX3Q0k9XCG5kdex1QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDYxNDAwMDA0MloX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAYmViZWFlMGI0M2Q1ZTkzZjI4Mzc0 ZmQxMmQyNDNiNDFkNTg0Y2ZlZjc3N2E2ZmUwM2JiY2VkZjU5M2ZiZjk4NjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVBnXi0N2cr5TiwC9Q773HWZt4k+ tVkhPooCRJVq5X86sg5BX762Okbaowug8C/OGqfd3noHyGF5P9DN15/X+gy6bhJj m+aq4ayHZb3GBvgvE+3ztKJNo8ZdKty8MmJFIzAWTi8v1EW2WX5bvw7kZeZdzyXx sQ6A35WBG6OO7yyuiIXd8D9GvM93WsAa6TYDd7fkJTgsex92D1TZr15P7+4ldt2D AdjPMvQUbEfvcFkbkuybq/2J7rPPZ7nrk+BnxpfZofO2mCo/OWu+dHEI65D4Ha1V Vy52j7b6vWu+hefK/ECQFlIA0LgmQVz7UDwzyc6o48YxW9b1X1XU77u3KwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFKe20pBnNKCIxMnRzToz5A8x7O6qMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2NjMmY3MDkzLTIxYTYtNDAwZi05ZGIxLTkzYzJmZTAyYmMxYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAOzADANBgkqhkiG9w0BAQsFAAOCAQEAc+Thqo7XX0VT9EQIbNpg 8Vp/zNZxZE84mGNyL07wfNVgYAc3HD233BHRlksH/1dBr/BCuvIm5lg71dBwg+QK LHcW9PSK+I78+eRsF936MNTBrEjBy2OBlairdmy3xpeJcCcI4R9it3gWDWYGZvN5 ik0lkX6vBG2bVdktvWhtHJDDp3Kc3pcbCDxE7+V+LqQZ2yENQ7WDMCnnZBr2HcNF argmgl7xmuDGxp1p8N/4C5gEQf3l5qDn9t4H6jkdvMaxNkHED3FkHh50xAKlLhGp ys2qti0mPXkZ/NsGcMnv2RC2KciQXQqGezwLeQMd5/ua98ll6B92lQBZnjGcbvxo 4g== -----END CERTIFICATE-----Generated at Sat Jun 14 06:03:13 2025 by rpki-client