$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa File: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (raw, json) Hash identifier: debWm3i8TxmMdTOthG41rvQYO3ngTHRoFh3p/PeIoCo= Subject key identifier: 5E:5E:51:95:DC:54:2D:49:5C:BC:A9:D4:98:40:7E:85:3F:7C:C9:CA Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 10A1BA6D597063BA9F2BFA7C851CAF92800EDF0C Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa Signing time: Fri 01 Aug 2025 00:50:05 +0000 ROA not before: Fri 01 Aug 2025 00:50:05 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a1:ba:6d:59:70:63:ba:9f:2b:fa:7c:85:1c:af:92:80:0e:df:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Aug 1 00:50:05 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=c8094210f6c62dae7080f3995513172adc4560140faa122679911e5091b4d477, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:48:a1:18:dc:12:9e:26:7a:75:1f:20:20:9a: 86:91:85:c0:b9:f4:a7:74:9b:50:a0:0c:c7:77:d0: e5:3a:58:cb:d3:5f:fa:3f:76:00:d0:90:7a:0a:34: 0e:a2:6b:68:1f:f6:9b:10:a0:6a:74:42:44:28:96: 5d:a9:09:ae:3b:29:63:7a:95:7e:20:3a:dc:f9:31: 3f:75:17:a4:13:fb:8a:d3:4a:56:00:3f:6e:0f:a2: 22:31:56:49:c4:cc:5d:4f:71:d3:a2:e8:25:4a:af: e6:8a:73:72:14:0c:79:2f:34:ff:30:9b:74:00:45: 67:4e:56:b7:d0:f9:98:25:f4:8e:31:b6:9c:53:ca: 00:47:20:da:63:53:07:64:a5:1b:58:68:67:65:50: c4:1f:a5:29:0b:bc:70:b5:72:9e:21:6c:65:c5:46: 66:16:25:dc:11:cb:7e:26:0c:eb:57:0a:05:98:d1: b1:5d:71:6a:d2:10:8d:47:27:a6:ca:14:75:47:5f: 73:b3:63:cf:24:ac:c1:32:79:08:13:f9:05:84:7c: 95:34:43:44:67:72:b6:f8:34:98:66:69:5d:44:22: 08:39:b5:86:9b:8a:00:0d:9d:06:d0:24:9b:65:1b: 9f:fb:15:9b:bf:dc:27:60:59:61:6f:9e:ca:c5:d1: 69:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5E:51:95:DC:54:2D:49:5C:BC:A9:D4:98:40:7E:85:3F:7C:C9:CA X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/32 Signature Algorithm: sha256WithRSAEncryption 37:10:5d:d1:1d:b6:58:70:ad:1b:3a:c0:e8:2c:71:8b:74:ef: 52:5e:0e:1c:44:11:24:60:f7:b0:f1:d2:02:82:da:9f:78:4d: 21:b4:99:ae:ea:38:ea:1f:b7:c1:a9:8b:ec:7c:55:da:17:25: b1:e2:04:9c:5f:03:25:38:96:e2:aa:bc:ad:96:a4:5d:97:b4: 0b:3a:d4:13:41:39:38:1b:21:43:86:ec:f4:87:6b:ee:ac:9d: cd:c5:68:dd:a1:a6:30:d5:07:3b:c9:10:68:30:80:40:d0:a2: 9a:15:d5:1d:9c:da:f7:8b:f1:c4:09:75:d7:c1:de:c8:33:61: a0:8f:37:88:01:23:d0:8c:db:65:d2:51:49:49:a0:83:d7:23: 9c:de:b5:14:14:db:22:8a:0c:d2:6f:9b:b7:e7:a8:07:8e:5b: 39:5f:12:f1:33:1c:5b:b8:f3:9e:f2:8c:2d:bb:bd:89:f3:75: 44:f6:15:89:bf:99:ca:fd:8c:68:a5:4e:6a:7b:e8:e9:a3:28: 8e:fb:f0:d9:3e:9e:ab:d8:ee:70:ef:f3:38:20:69:99:ed:17: 0c:5a:b5:67:b1:9b:9f:53:ca:30:1d:78:f1:1b:36:92:69:3b: 55:c4:5e:81:3a:bc:2e:9b:01:10:17:ea:9c:34:8d:10:45:04: 16:73:bb:ea -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUEKG6bVlwY7qfK/p8hRyvkoAO3wwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDgwMTAwNTAwNVoX DTI1MDkwNTIzNTk1OVowejFJMEcGA1UEBRNAYzgwOTQyMTBmNmM2MmRhZTcwODBm Mzk5NTUxMzE3MmFkYzQ1NjAxNDBmYWExMjI2Nzk5MTFlNTA5MWI0ZDQ3NzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0ihGNwSniZ6dR8gIJqGkYXAufSn dJtQoAzHd9DlOljL01/6P3YA0JB6CjQOomtoH/abEKBqdEJEKJZdqQmuOyljepV+ IDrc+TE/dRekE/uK00pWAD9uD6IiMVZJxMxdT3HTouglSq/minNyFAx5LzT/MJt0 AEVnTla30PmYJfSOMbacU8oARyDaY1MHZKUbWGhnZVDEH6UpC7xwtXKeIWxlxUZm FiXcEct+JgzrVwoFmNGxXXFq0hCNRyemyhR1R19zs2PPJKzBMnkIE/kFhHyVNENE Z3K2+DSYZmldRCIIObWGm4oADZ0G0CSbZRuf+xWbv9wnYFlhb57KxdFptwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFF5eUZXcVC1JXLyp1JhAfoU/fMnKMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2NjMmY3MDkzLTIxYTYtNDAwZi05ZGIxLTkzYzJmZTAyYmMxYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAOzADANBgkqhkiG9w0BAQsFAAOCAQEANxBd0R22WHCtGzrA6Cxx i3TvUl4OHEQRJGD3sPHSAoLan3hNIbSZruo46h+3wamL7HxV2hclseIEnF8DJTiW 4qq8rZakXZe0CzrUE0E5OBshQ4bs9Idr7qydzcVo3aGmMNUHO8kQaDCAQNCimhXV HZza94vxxAl118HeyDNhoI83iAEj0IzbZdJRSUmgg9cjnN61FBTbIooM0m+bt+eo B45bOV8S8TMcW7jznvKMLbu9ifN1RPYVib+Zyv2MaKVOanvo6aMojvvw2T6eq9ju cO/zOCBpme0XDFq1Z7Gbn1PKMB148Rs2kmk7VcRegTq8LpsBEBfqnDSNEEUEFnO7 6g== -----END CERTIFICATE-----Generated at Mon Aug 4 14:15:00 2025 by rpki-client