$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa File: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (raw, json) Hash identifier: kJuAABBMqnIeYIoMqdCsUfjYd1db7aBbBCYk1Y9PjGw= Subject key identifier: 95:12:29:C0:6A:A7:F9:0F:C6:FB:79:03:EC:AE:FC:08:D1:94:B7:9D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 10F13F56E7DBBF54763E731C9333D59AE47F4202 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa Signing time: Sat 14 Jun 2025 00:00:04 +0000 ROA not before: Sat 14 Jun 2025 00:00:04 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f1:3f:56:e7:db:bf:54:76:3e:73:1c:93:33:d5:9a:e4:7f:42:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 14 00:00:04 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=90c972b2888a9426ffa83e3adec0413100fad5ec8850f85692790688991c65b7, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5b:43:b3:4f:fe:a0:96:12:9f:e6:ce:a4:0b: 56:3e:ef:92:d0:ae:80:62:f2:35:d5:16:68:20:72: 1e:99:a7:cb:39:cd:66:00:1c:12:39:6e:77:0c:9f: 53:c0:72:65:14:8d:d3:0b:f5:73:ec:4e:4c:4a:bd: 55:28:a5:57:ab:51:1e:4f:f7:4e:5c:03:26:81:41: 7a:16:84:b8:21:15:bc:1e:8e:a3:7c:cc:71:69:3d: fd:2c:cf:49:3b:34:d0:f2:4d:66:70:13:fd:8b:44: e9:16:d5:b0:37:8e:38:28:b8:ad:0e:28:b6:7e:72: c0:c4:53:89:69:2d:5a:d5:42:a0:42:78:21:8f:5a: 28:79:a6:b2:e7:e7:98:90:9f:b9:10:4a:83:65:ab: 3b:81:89:9c:5d:3e:21:ed:4a:c4:d7:8b:c5:9d:f4: 6a:b0:3c:fc:50:3f:e9:7f:99:71:19:cc:e4:93:61: 93:01:89:66:33:fb:fd:b8:de:b1:70:7d:4b:2b:d8: 2e:8c:ac:bd:66:39:e7:ab:ea:8d:5b:f5:08:e9:0b: 03:a0:8e:e5:e1:62:8c:fe:b4:a3:3a:ac:16:23:96: 3e:79:5e:1e:3c:b4:10:01:ca:50:51:c8:67:cc:4f: e1:77:d3:9f:3f:ab:47:a0:97:09:6d:d1:34:07:a9: 9c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:12:29:C0:6A:A7:F9:0F:C6:FB:79:03:EC:AE:FC:08:D1:94:B7:9D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:4000::/48 Signature Algorithm: sha256WithRSAEncryption 47:38:fc:c6:c3:53:68:98:84:06:a4:38:8d:10:dd:4f:a9:5d: 93:46:97:49:18:2d:dd:40:f1:25:91:04:0d:44:ce:c4:15:79: 90:89:73:5e:ed:b4:10:d9:0a:98:68:65:36:e6:9b:6b:25:52: 8b:68:d0:f4:c6:ad:09:ec:50:74:3f:c9:e1:63:7a:9a:79:bf: da:f6:8f:f8:0b:44:8c:78:09:67:ab:ef:49:fe:39:63:f5:d5: aa:32:77:32:28:9d:d3:50:78:08:05:91:b5:c2:f6:51:75:b5: d8:76:ba:81:b1:d0:e4:14:7b:03:c8:65:ad:4d:cf:99:eb:0c: f3:89:e2:ae:4e:ca:10:88:a4:d2:40:88:d5:83:e3:4d:07:ff: c4:3f:19:96:29:37:29:33:b3:1e:f2:c5:f4:e3:20:8f:b5:45: e2:60:aa:0c:5a:54:71:07:13:72:48:bc:dd:5a:c6:7c:1a:e6: b4:38:07:f5:bb:b1:eb:fc:92:95:4d:39:bc:92:b5:71:73:f5: 54:a0:65:ab:86:fc:34:27:e9:83:f6:90:8e:31:a9:bb:01:7a: 59:17:23:28:31:61:51:17:72:cb:09:8f:89:36:01:dc:7d:4b: d4:05:c2:a8:fd:67:83:17:66:64:e7:37:2f:52:c4:e2:6d:24: ff:8c:d8:58 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUEPE/Vufbv1R2PnMckzPVmuR/QgIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxNDAwMDAwNFoX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAOTBjOTcyYjI4ODhhOTQyNmZmYTgz ZTNhZGVjMDQxMzEwMGZhZDVlYzg4NTBmODU2OTI3OTA2ODg5OTFjNjViNzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVtDs0/+oJYSn+bOpAtWPu+S0K6A YvI11RZoIHIemafLOc1mABwSOW53DJ9TwHJlFI3TC/Vz7E5MSr1VKKVXq1EeT/dO XAMmgUF6FoS4IRW8Ho6jfMxxaT39LM9JOzTQ8k1mcBP9i0TpFtWwN444KLitDii2 fnLAxFOJaS1a1UKgQnghj1ooeaay5+eYkJ+5EEqDZas7gYmcXT4h7UrE14vFnfRq sDz8UD/pf5lxGczkk2GTAYlmM/v9uN6xcH1LK9gujKy9Zjnnq+qNW/UI6QsDoI7l 4WKM/rSjOqwWI5Y+eV4ePLQQAcpQUchnzE/hd9OfP6tHoJcJbdE0B6mcKwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJUSKcBqp/kPxvt5A+yu/AjRlLedMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzhjMTcwNTg0LTdjOWItNDE0Yi04Y2JhLWE5MzRhMGE3OWJiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAEAAMA0GCSqGSIb3DQEBCwUAA4IBAQBHOPzGw1NomIQGpDiN EN1PqV2TRpdJGC3dQPElkQQNRM7EFXmQiXNe7bQQ2QqYaGU25ptrJVKLaND0xq0J 7FB0P8nhY3qaeb/a9o/4C0SMeAlnq+9J/jlj9dWqMncyKJ3TUHgIBZG1wvZRdbXY drqBsdDkFHsDyGWtTc+Z6wzzieKuTsoQiKTSQIjVg+NNB//EPxmWKTcpM7Me8sX0 4yCPtUXiYKoMWlRxBxNySLzdWsZ8Gua0OAf1u7Hr/JKVTTm8krVxc/VUoGWrhvw0 J+mD9pCOMam7AXpZFyMoMWFRF3LLCY+JNgHcfUvUBcKo/WeDF2Zk5zcvUsTibST/ jNhY -----END CERTIFICATE-----Generated at Sat Jun 14 06:34:14 2025 by rpki-client