$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa File: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (raw, json) Hash identifier: AgrBNt94un01cvYI4wvlLa7XBGC9jjjIJQ1LwwDEqpo= Subject key identifier: FC:CA:71:4D:C7:81:00:99:5F:17:9D:08:6A:98:AA:BA:0D:D2:20:36 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 62D836630EBB0B8DC883108FD9152561275F1D14 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa Signing time: Tue 10 Jun 2025 16:00:11 +0000 ROA not before: Tue 10 Jun 2025 16:00:11 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:d8:36:63:0e:bb:0b:8d:c8:83:10:8f:d9:15:25:61:27:5f:1d:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 10 16:00:11 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=9fdffed3a2be1f384cf861972cdd5d9e15c19990c28d8526a1adac5b17a76ddd, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:74:c4:8c:9d:9c:38:d0:cc:25:aa:c1:79:a0: b1:0a:19:99:4b:ad:1a:f6:b0:b2:48:ab:fb:b4:d4: 5b:59:aa:fa:a5:9e:49:fa:64:a2:1f:45:a7:aa:01: 6e:f2:53:2c:97:2c:54:41:ef:f5:e8:30:8c:68:56: 00:99:8c:39:5a:99:a7:63:90:8e:80:39:9d:73:48: cc:d9:d3:8d:16:1c:da:0b:6e:b8:f9:77:aa:01:56: 93:29:28:1e:f5:05:d3:ca:26:4d:ac:d4:2a:50:5e: 6b:30:39:10:1d:0d:63:b9:24:53:ec:56:81:c5:dc: cc:e6:41:8e:85:dc:6d:7d:5d:46:25:d4:0b:57:18: 17:d6:6e:c0:c3:64:bc:b2:5a:61:63:2a:0f:a4:aa: 61:4d:7c:42:8a:3e:8a:5b:e9:94:08:48:94:c2:b3: c0:0b:9d:aa:ee:2a:be:00:ac:1e:b3:f2:f5:7f:0e: 90:1e:30:7e:81:31:6e:41:96:82:19:e0:a1:e5:cb: d4:e8:71:f6:9f:e1:77:39:91:d1:95:9f:d9:cb:ef: 95:92:4a:4f:14:36:c8:07:b3:f4:87:1e:4d:24:9b: 81:a1:bd:40:ec:07:40:35:36:91:2f:e7:70:ce:cf: af:e1:74:1e:a2:f6:c2:1a:d6:57:fa:d0:67:bd:ae: 3a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:CA:71:4D:C7:81:00:99:5F:17:9D:08:6A:98:AA:BA:0D:D2:20:36 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:4000::/40 Signature Algorithm: sha256WithRSAEncryption b3:e5:7d:45:3a:1f:f6:bb:89:40:99:55:e3:ed:57:09:d5:93: bb:01:e0:0d:58:d8:6e:9c:4c:27:c2:5d:e5:15:51:ab:bc:d6: 7a:b9:ae:3e:23:4a:b1:02:17:8e:f3:1a:7b:30:db:75:98:ad: b0:0c:c8:12:2c:0b:3c:7f:c9:39:ff:57:b8:c4:78:ed:d2:44: 67:d0:7a:f1:00:bc:e1:24:f6:7f:84:67:fe:c0:d6:90:21:e6: 14:54:6c:78:12:72:e1:b8:0a:ed:e3:f0:a7:ea:bc:46:63:e6: 2d:c3:99:da:73:fa:9e:8f:5d:9f:be:65:47:51:aa:80:f6:d6: 3e:3f:ad:58:f5:b4:38:40:5f:79:ac:65:99:67:74:bb:8c:05: 69:6b:c7:7e:6f:09:e7:85:5b:9d:6d:98:50:76:dc:4f:fe:9a: 61:01:c4:81:82:81:3e:c6:b6:30:6d:4b:c5:8a:9c:8a:20:85: 0e:a7:2c:43:c6:30:11:6a:b2:77:aa:79:b9:38:1c:f2:36:7b: 34:fc:ce:c1:e1:68:98:d6:9c:f5:8c:4e:d9:9d:a1:e9:84:b6: d7:9d:be:4f:c7:c5:fb:00:21:a2:6e:35:7b:66:0a:43:f7:aa: ca:8d:3e:01:2c:44:35:03:9a:86:a7:49:be:c4:c2:98:75:4c: 97:de:7a:c7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYtg2Yw67C43IgxCP2RUlYSdfHRQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxMDE2MDAxMVoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAOWZkZmZlZDNhMmJlMWYzODRjZjg2 MTk3MmNkZDVkOWUxNWMxOTk5MGMyOGQ4NTI2YTFhZGFjNWIxN2E3NmRkZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHTEjJ2cONDMJarBeaCxChmZS60a 9rCySKv7tNRbWar6pZ5J+mSiH0WnqgFu8lMslyxUQe/16DCMaFYAmYw5WpmnY5CO gDmdc0jM2dONFhzaC264+XeqAVaTKSge9QXTyiZNrNQqUF5rMDkQHQ1juSRT7FaB xdzM5kGOhdxtfV1GJdQLVxgX1m7Aw2S8slphYyoPpKphTXxCij6KW+mUCEiUwrPA C52q7iq+AKwes/L1fw6QHjB+gTFuQZaCGeCh5cvU6HH2n+F3OZHRlZ/Zy++VkkpP FDbIB7P0hx5NJJuBob1A7AdANTaRL+dwzs+v4XQeovbCGtZX+tBnva46WQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPzKcU3HgQCZXxedCGqYqroN0iA2MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBhZTA1ODg5LWViNmQtNDE0Yy04OGU5LWJjMjkzMTcxZjUzMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+UAwDQYJKoZIhvcNAQELBQADggEBALPlfUU6H/a7iUCZVePt VwnVk7sB4A1Y2G6cTCfCXeUVUau81nq5rj4jSrECF47zGnsw23WYrbAMyBIsCzx/ yTn/V7jEeO3SRGfQevEAvOEk9n+EZ/7A1pAh5hRUbHgScuG4Cu3j8KfqvEZj5i3D mdpz+p6PXZ++ZUdRqoD21j4/rVj1tDhAX3msZZlndLuMBWlrx35vCeeFW51tmFB2 3E/+mmEBxIGCgT7GtjBtS8WKnIoghQ6nLEPGMBFqsneqebk4HPI2ezT8zsHhaJjW nPWMTtmdoemEttedvk/HxfsAIaJuNXtmCkP3qsqNPgEsRDUDmoanSb7Ewph1TJfe esc= -----END CERTIFICATE-----Generated at Sat Jun 14 06:00:01 2025 by rpki-client