$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa File: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (raw, json) Hash identifier: HNOJexHqOZvJgzTU4l/gj2U+4OMzKF0Qf9D/FP/fAWI= Subject key identifier: 67:41:AF:58:00:AA:E5:64:B8:FC:E0:E4:D7:68:67:E7:6D:98:54:CA Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 1A9719380372AF04F0B973F4E54B2F25EA17265E Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa Signing time: Sat 14 Jun 2025 00:00:22 +0000 ROA not before: Sat 14 Jun 2025 00:00:22 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:97:19:38:03:72:af:04:f0:b9:73:f4:e5:4b:2f:25:ea:17:26:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:22 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=d9f766cb81439450b028d02427838b5e066f727d7ea5a6e6ea48f742bfd5eb7b, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ff:95:d3:40:83:3f:2c:fe:2a:d8:21:26:91: 65:ac:5a:45:d7:45:1a:89:94:86:71:d5:04:9f:74: 2e:d2:35:76:dd:b1:c5:4c:4c:b8:7e:ff:2e:d8:21: 84:cf:4d:d5:6a:3c:32:f0:bd:5d:cf:8f:d1:1c:91: 4d:9e:8d:ef:49:40:3e:b2:24:99:1b:99:1d:3a:ed: 13:b8:8a:65:35:39:27:4e:20:ad:12:2c:eb:6e:ab: 65:4f:cb:d3:5d:b7:47:26:45:21:2e:56:6d:bc:26: 19:f1:dc:e2:05:66:00:37:e1:64:47:3f:88:d2:c5: 6b:c5:88:04:17:79:94:e1:a4:42:3b:68:20:b4:1b: f7:50:64:35:27:21:36:c0:b4:7f:e2:8f:09:fe:ff: af:1c:ef:d9:ca:33:a0:ca:e6:a8:87:81:26:42:5d: a8:12:28:3e:fe:ed:95:28:b5:d0:74:71:1e:7f:37: 7d:62:51:28:96:79:1f:5c:6c:fe:92:6e:d2:bd:09: 34:00:d2:3c:7b:bb:27:3d:f3:c1:40:fa:df:17:85: 6f:95:ac:68:dd:43:d1:f5:94:cf:39:82:57:d9:7d: f8:12:18:9f:a1:25:ff:bb:00:e9:db:82:d7:4c:d0: 5e:29:41:ac:03:af:a1:c5:89:fa:00:f8:b9:ba:b6: 3a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:41:AF:58:00:AA:E5:64:B8:FC:E0:E4:D7:68:67:E7:6D:98:54:CA X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:800::/38 Signature Algorithm: sha256WithRSAEncryption b9:c8:ad:2a:12:d5:15:dd:8f:73:51:16:e8:17:d3:87:cf:7d: 63:1b:d5:36:fb:dd:3d:8b:37:78:4a:2d:2b:7d:91:c6:ce:b4: d5:62:30:b1:00:3f:4d:d5:c2:55:05:f3:51:75:cd:94:4e:3b: 4f:02:10:49:c5:18:33:a8:e2:97:67:19:df:45:d4:76:ae:5a: 9e:62:ca:b3:64:93:ff:bf:3c:31:0e:3d:01:91:b4:ba:68:b4: 64:39:55:df:67:ab:02:fa:d2:5f:9a:4f:f9:a5:ce:9a:77:c0: 2b:75:3f:38:05:43:ac:34:9f:9c:f7:11:88:f5:87:1c:92:0a: ba:87:7e:ad:ec:08:52:d6:36:fe:9b:71:4f:98:e2:de:85:49: 52:ea:0f:79:12:ec:f1:68:83:63:ed:a0:f4:a2:4e:17:39:56: b2:a4:6b:1f:f8:f9:a0:02:e4:ed:08:0b:80:03:56:46:ae:c0: 68:b0:8c:80:8a:77:7d:2f:46:84:96:8b:e3:1d:85:68:e1:74: bb:3d:7b:4a:0f:b2:3f:85:7e:3c:c5:22:f0:ed:b9:00:eb:43: c9:8b:9e:a0:be:f3:6a:75:75:9d:43:31:06:53:fe:d8:d6:a7: f9:48:c1:0a:46:ee:bb:d8:6f:89:9d:d0:fd:bc:43:77:26:53: ef:8f:8d:d5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUGpcZOANyrwTwuXP05UsvJeoXJl4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDAyMloX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAZDlmNzY2Y2I4MTQzOTQ1MGIwMjhk MDI0Mjc4MzhiNWUwNjZmNzI3ZDdlYTVhNmU2ZWE0OGY3NDJiZmQ1ZWI3YjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/+V00CDPyz+KtghJpFlrFpF10Ua iZSGcdUEn3Qu0jV23bHFTEy4fv8u2CGEz03Vajwy8L1dz4/RHJFNno3vSUA+siSZ G5kdOu0TuIplNTknTiCtEizrbqtlT8vTXbdHJkUhLlZtvCYZ8dziBWYAN+FkRz+I 0sVrxYgEF3mU4aRCO2ggtBv3UGQ1JyE2wLR/4o8J/v+vHO/ZyjOgyuaoh4EmQl2o Eig+/u2VKLXQdHEefzd9YlEolnkfXGz+km7SvQk0ANI8e7snPfPBQPrfF4Vvlaxo 3UPR9ZTPOYJX2X34EhifoSX/uwDp24LXTNBeKUGsA6+hxYn6APi5urY6owIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGdBr1gAquVkuPzg5NdoZ+dtmFTKMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBmZWVkZDE4LTJiNzEtNDhkNS1hMmVlLTA3Y2E5MGI0ZDIwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAgwDQYJKoZIhvcNAQELBQADggEBALnIrSoS1RXdj3NRFugX 04fPfWMb1Tb73T2LN3hKLSt9kcbOtNViMLEAP03VwlUF81F1zZROO08CEEnFGDOo 4pdnGd9F1HauWp5iyrNkk/+/PDEOPQGRtLpotGQ5Vd9nqwL60l+aT/mlzpp3wCt1 PzgFQ6w0n5z3EYj1hxySCrqHfq3sCFLWNv6bcU+Y4t6FSVLqD3kS7PFog2PtoPSi Thc5VrKkax/4+aAC5O0IC4ADVkauwGiwjICKd30vRoSWi+MdhWjhdLs9e0oPsj+F fjzFIvDtuQDrQ8mLnqC+82p1dZ1DMQZT/tjWp/lIwQpG7rvYb4md0P28Q3cmU++P jdU= -----END CERTIFICATE-----Generated at Sat Jun 14 05:42:30 2025 by rpki-client