$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa File: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (raw, json) Hash identifier: +STu06X203RA1zxVwDiyeI5RCrpGG6M6LplCLYkPaPc= Subject key identifier: A0:68:FB:99:3B:F9:A0:83:1E:15:22:40:8D:C7:BA:5C:D5:45:CB:27 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 46978326081F9DC40E0BB29455B52B9192099837 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa Signing time: Mon 26 May 2025 15:00:24 +0000 ROA not before: Mon 26 May 2025 15:00:24 +0000 ROA not after: Mon 30 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:97:83:26:08:1f:9d:c4:0e:0b:b2:94:55:b5:2b:91:92:09:98:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 26 15:00:24 2025 GMT Not After : Jun 30 23:59:59 2025 GMT Subject: serialNumber=525ff7a7c33493e60c9ffedad1e611b2ce123186ade7fad4fa9114787266aa7e, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:96:e8:1e:57:ee:a8:9b:ae:ab:b6:24:65:fd: 81:df:5e:53:c7:b2:29:d2:cd:a4:5f:f6:aa:27:8c: 7c:e2:0b:40:41:d4:fa:9c:18:58:57:80:86:87:d5: c8:51:20:7d:74:ad:91:4f:06:90:d2:8b:10:4f:43: cf:a4:d1:74:6e:17:b3:4a:71:1f:7a:f4:3f:7b:03: 23:59:4d:a9:b4:f5:c9:92:a0:01:17:4f:24:40:d4: 7f:92:4b:f7:db:69:1d:37:e0:e5:9d:35:40:ad:72: 12:ea:83:0e:10:58:17:8a:d1:ac:e4:f9:90:53:30: ad:7a:3e:37:e2:0f:64:ab:d1:95:4b:91:c8:a2:21: f1:85:19:ef:8a:d4:12:71:b1:32:bb:01:86:ee:3d: 20:79:f9:fe:03:5c:76:3d:8e:29:76:fb:c5:7a:34: dc:54:a3:3c:99:cb:2b:ea:94:42:2e:ec:25:7a:1d: d6:00:b9:64:c7:02:01:ce:83:a6:ee:96:09:47:41: ed:8b:69:8a:4f:a3:ea:ea:dc:c5:21:d8:9a:c7:39: c2:86:90:59:8c:3d:62:ee:5b:62:24:0f:61:9b:02: 31:59:40:8f:79:73:a7:0e:4f:e5:54:34:75:f9:52: 77:65:83:44:35:79:f6:14:ca:49:11:67:8e:a8:a1: fc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:68:FB:99:3B:F9:A0:83:1E:15:22:40:8D:C7:BA:5C:D5:45:CB:27 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 71:97:01:14:1a:a5:56:c5:3e:d8:30:f6:53:58:5d:2a:52:ed: 6e:82:62:c8:86:ef:ff:04:ac:76:aa:ca:e5:62:94:1e:67:af: 0a:6a:8d:1e:f0:4c:14:0a:76:ab:90:44:e1:5f:53:1e:34:15: 84:e7:33:47:31:af:22:bf:6d:1b:dd:47:85:1a:5b:39:12:d0: 85:13:c8:99:f3:62:fe:ed:0b:c0:ab:3e:8d:a8:7e:e1:be:20: 91:d6:11:b4:33:c8:e2:fc:a9:fc:c7:a6:df:2f:4a:fb:3e:bf: 32:37:52:e9:aa:4f:64:b8:f9:08:9e:b9:41:e6:2d:1f:1b:fc: 92:e0:44:6f:66:f2:2d:de:83:21:33:06:a3:56:da:17:ff:42: 5d:eb:90:a1:32:72:fc:a4:f1:14:7a:12:64:e2:6c:7f:a6:85: a3:b7:7d:f3:28:51:6a:52:62:f5:7a:ce:72:94:9b:32:8a:20: 54:79:df:c7:60:47:81:ad:46:27:c5:72:d0:d9:87:f5:59:c5: 81:81:76:96:ef:67:b6:bd:6c:a4:10:8d:fd:07:cf:4e:6f:98: 79:23:ca:3b:76:0b:8a:de:d1:57:de:1c:4b:07:c7:35:99:21: 15:7b:97:07:23:13:ff:72:40:dc:7c:45:80:7c:85:f6:db:54: bc:8c:f5:4f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURpeDJggfncQOC7KUVbUrkZIJmDcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDUyNjE1MDAyNFoX DTI1MDYzMDIzNTk1OVowejFJMEcGA1UEBRNANTI1ZmY3YTdjMzM0OTNlNjBjOWZm ZWRhZDFlNjExYjJjZTEyMzE4NmFkZTdmYWQ0ZmE5MTE0Nzg3MjY2YWE3ZTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZboHlfuqJuuq7YkZf2B315Tx7Ip 0s2kX/aqJ4x84gtAQdT6nBhYV4CGh9XIUSB9dK2RTwaQ0osQT0PPpNF0bhezSnEf evQ/ewMjWU2ptPXJkqABF08kQNR/kkv322kdN+DlnTVArXIS6oMOEFgXitGs5PmQ UzCtej434g9kq9GVS5HIoiHxhRnvitQScbEyuwGG7j0gefn+A1x2PY4pdvvFejTc VKM8mcsr6pRCLuwleh3WALlkxwIBzoOm7pYJR0Hti2mKT6Pq6tzFIdiaxznChpBZ jD1i7ltiJA9hmwIxWUCPeXOnDk/lVDR1+VJ3ZYNENXn2FMpJEWeOqKH8MQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKBo+5k7+aCDHhUiQI3HulzVRcsnMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2ZjZDZhZGFiLTA2ZjAtNDY3Ni05NTY4LTZkNGQ0OGY3NjU4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQBxlwEUGqVWxT7YMPZT WF0qUu1ugmLIhu//BKx2qsrlYpQeZ68Kao0e8EwUCnarkEThX1MeNBWE5zNHMa8i v20b3UeFGls5EtCFE8iZ82L+7QvAqz6NqH7hviCR1hG0M8ji/Kn8x6bfL0r7Pr8y N1Lpqk9kuPkInrlB5i0fG/yS4ERvZvIt3oMhMwajVtoX/0Jd65ChMnL8pPEUehJk 4mx/poWjt33zKFFqUmL1es5ylJsyiiBUed/HYEeBrUYnxXLQ2Yf1WcWBgXaW72e2 vWykEI39B89Ob5h5I8o7dguK3tFX3hxLB8c1mSEVe5cHIxP/ckDcfEWAfIX221S8 jPVP -----END CERTIFICATE-----Generated at Sat Jun 14 06:38:28 2025 by rpki-client