$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa File: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (raw, json) Hash identifier: 5iRYt+0JBVr+UOGkTmbz5VPiJqlAOOELKbguARfv8iE= Subject key identifier: B3:8C:82:47:9A:82:0C:1B:0F:09:EE:BC:4D:BE:47:73:E0:9C:F2:EB Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 2510229582DCC46744522E1D41F8AB6319CDFDBF Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa Signing time: Sat 14 Jun 2025 00:00:16 +0000 ROA not before: Sat 14 Jun 2025 00:00:16 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:10:22:95:82:dc:c4:67:44:52:2e:1d:41:f8:ab:63:19:cd:fd:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:16 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=0f07467a1aa9c0e4a94f8447a49dd6dd73ee5fc181db4cdb6e2f3a6cdab7ae41, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:2b:11:b6:ec:09:9e:66:7e:cd:1a:5c:a4:a3: ff:e1:4d:3b:9a:4a:dc:7f:f4:69:f3:b7:cc:9c:f1: 23:e3:5d:44:16:44:57:66:40:63:8b:54:be:32:55: f3:10:8f:17:e1:e7:dd:bd:dd:be:46:6c:41:fe:48: 1a:66:9d:ce:7b:1b:47:7e:c5:48:6b:53:b3:87:a1: 87:14:c2:08:1b:01:7f:ab:f3:eb:b8:5e:04:81:4c: 00:ca:3b:4c:d1:42:f1:e5:76:cb:9a:f6:e6:07:f6: 9b:72:51:1e:fa:65:6f:ca:94:9a:5c:d4:60:08:88: cd:bc:9b:0b:e9:e9:06:40:91:69:f8:4a:a1:4f:86: ac:4d:62:96:cb:42:e6:dd:36:2c:ef:5a:9e:1e:ba: b2:d7:de:a8:41:11:7a:fe:43:2f:cc:9d:59:3a:7f: 14:1e:38:7a:8e:70:02:ba:e0:32:a5:61:65:cb:66: 8a:a6:dd:30:db:09:4c:27:cc:67:79:fa:45:3e:23: 49:af:34:e8:53:c0:5c:32:11:96:ee:f5:f2:50:f5: 7e:9c:40:8a:f2:ee:bc:a0:a3:a2:70:fa:7c:69:a4: a7:83:b7:4c:cb:ec:c5:6f:6f:14:fd:cc:e3:8d:4e: b6:dd:b8:26:a5:9d:c5:cc:9f:93:45:25:7a:69:00: 0e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8C:82:47:9A:82:0C:1B:0F:09:EE:BC:4D:BE:47:73:E0:9C:F2:EB X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:800::/38 Signature Algorithm: sha256WithRSAEncryption 50:89:3c:71:24:63:cf:a2:4e:34:ae:71:ca:69:e4:e2:13:4d: 6a:3d:58:8a:dd:08:0a:7b:1b:eb:2a:6a:d2:62:b1:da:52:08: 26:f4:30:91:8c:71:fc:93:50:74:e0:3f:75:5d:61:b5:7d:c2: 63:5c:9d:37:12:aa:18:f3:10:03:72:d4:e6:33:07:f9:15:11: 36:91:45:3c:51:e3:17:c8:f5:87:8e:15:28:9e:c2:56:4a:df: 0d:d3:99:c6:93:44:6f:9d:e6:18:a4:ec:a6:c6:f4:7c:52:f6: 5c:1c:f5:ff:a4:34:8e:b9:37:fc:6d:92:84:62:67:51:3e:3c: 16:ad:77:ac:19:a1:9b:44:32:1a:f5:e0:12:6f:f2:99:ed:0c: b0:7a:50:e4:dc:db:e3:46:2e:03:dc:2f:4c:fe:a2:a4:47:73: d4:e4:89:7c:23:2a:c2:01:4f:73:2b:8d:08:33:8d:13:4c:d7: d1:ed:d7:bb:97:3f:8f:7f:9b:57:ef:37:ac:63:cf:ec:38:c1: 76:79:c6:04:4c:2e:9b:92:04:7f:af:c4:f3:87:89:6a:69:a0: 7d:e1:52:c5:18:1a:cb:f1:66:bc:d8:d4:d9:c9:86:6c:73:79: f4:ac:6f:66:9f:fa:3a:24:c7:e3:13:97:e6:0b:1c:1e:fe:b0: 6a:62:96:b3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJRAilYLcxGdEUi4dQfirYxnN/b8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDAxNloX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAMGYwNzQ2N2ExYWE5YzBlNGE5NGY4 NDQ3YTQ5ZGQ2ZGQ3M2VlNWZjMTgxZGI0Y2RiNmUyZjNhNmNkYWI3YWU0MTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhisRtuwJnmZ+zRpcpKP/4U07mkrc f/Rp87fMnPEj411EFkRXZkBji1S+MlXzEI8X4efdvd2+RmxB/kgaZp3OextHfsVI a1Ozh6GHFMIIGwF/q/PruF4EgUwAyjtM0ULx5XbLmvbmB/abclEe+mVvypSaXNRg CIjNvJsL6ekGQJFp+EqhT4asTWKWy0Lm3TYs71qeHrqy196oQRF6/kMvzJ1ZOn8U Hjh6jnACuuAypWFly2aKpt0w2wlMJ8xnefpFPiNJrzToU8BcMhGW7vXyUPV+nECK 8u68oKOicPp8aaSng7dMy+zFb28U/czjjU623bgmpZ3FzJ+TRSV6aQAOZQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLOMgkeaggwbDwnuvE2+R3PgnPLrMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzAxOGRlYTBkLTQyZWItNGQ1OC04OTE0LTYzNmQyNWNhM2IzYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAgwDQYJKoZIhvcNAQELBQADggEBAFCJPHEkY8+iTjSuccpp 5OITTWo9WIrdCAp7G+sqatJisdpSCCb0MJGMcfyTUHTgP3VdYbV9wmNcnTcSqhjz EANy1OYzB/kVETaRRTxR4xfI9YeOFSiewlZK3w3TmcaTRG+d5hik7KbG9HxS9lwc 9f+kNI65N/xtkoRiZ1E+PBatd6wZoZtEMhr14BJv8pntDLB6UOTc2+NGLgPcL0z+ oqRHc9TkiXwjKsIBT3MrjQgzjRNM19Ht17uXP49/m1fvN6xjz+w4wXZ5xgRMLpuS BH+vxPOHiWppoH3hUsUYGsvxZrzY1NnJhmxzefSsb2af+jokx+MTl+YLHB7+sGpi lrM= -----END CERTIFICATE-----Generated at Sat Jun 14 05:49:36 2025 by rpki-client