$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa File: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (raw, json) Hash identifier: EM/wLBcx+yETdxMtjuuIJ16u4qTtAzlLoTse1oXlWgk= Subject key identifier: C1:BF:45:DA:35:A2:BD:B0:21:92:E2:43:97:29:B6:D2:41:7B:35:44 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 741CEAC37FCB65D9169C75215D7351E9873FFD72 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa Signing time: Mon 04 Aug 2025 15:00:52 +0000 ROA not before: Mon 04 Aug 2025 15:00:52 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:1c:ea:c3:7f:cb:65:d9:16:9c:75:21:5d:73:51:e9:87:3f:fd:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 4 15:00:52 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=c4c057c029a9fde5007c4c064795d3cd6855ac05631010f157ad72c9deffd161, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f3:71:bf:b4:87:b9:33:fa:f1:53:4c:53:c6: 4b:88:e4:01:48:9f:74:28:ce:ac:d0:57:57:8e:a4: 55:3c:89:6e:85:59:a5:5f:97:96:fe:4c:51:3a:4c: f4:d7:d9:8a:b2:18:23:96:ae:fd:d6:76:66:cf:ab: eb:71:41:75:f6:58:31:d0:81:37:3b:5b:88:ea:c1: 52:68:db:42:ad:e8:79:7d:51:f0:4e:7d:e5:88:e9: c0:d5:2d:7e:5b:82:35:81:61:9e:7c:7b:91:45:d7: 7d:40:66:b9:95:82:a5:6c:2e:e3:54:bb:ef:c4:b5: 1e:71:c5:d7:02:31:30:2a:95:28:bb:a8:73:34:48: 56:02:d3:53:f1:5e:69:9f:f3:46:2f:80:3f:da:de: 58:e6:d6:aa:3d:2c:a8:f6:92:33:91:e4:9f:c9:ed: 96:0b:99:cb:a9:1a:0b:9a:0d:86:8d:23:5e:91:48: 71:43:7b:95:85:ea:a2:2e:49:36:99:3b:d0:3b:9d: 96:f1:c8:0e:b6:7f:e6:22:54:89:3a:c1:92:8f:a9: aa:c5:51:d9:26:27:62:03:33:a8:f7:a9:79:ba:9b: af:0a:9c:70:5d:aa:5e:4c:9c:c3:8c:98:41:c6:d3: 96:37:8d:91:10:c3:e9:01:2b:18:ee:51:e6:28:90: 1e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:BF:45:DA:35:A2:BD:B0:21:92:E2:43:97:29:B6:D2:41:7B:35:44 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:800::/38 Signature Algorithm: sha256WithRSAEncryption 54:91:61:b2:cb:50:1d:5c:00:08:fd:73:29:36:8a:3e:8f:02: 21:be:46:f6:3b:cf:bd:75:aa:1d:af:5f:6f:a1:69:77:19:71: 06:e0:60:c9:82:db:e4:91:48:15:ef:18:05:a2:65:79:a8:1c: af:c2:78:78:a8:ee:22:7c:e5:3a:e6:a3:64:c1:f4:3f:26:c3: 61:b5:d4:cd:53:e4:09:00:aa:b8:a1:6a:8b:48:69:ef:4a:05: d3:ab:03:cf:8d:81:55:1f:ab:bd:d8:25:7f:4a:5a:f2:be:c5: 51:c8:c4:df:52:21:c0:e8:fb:26:a1:47:05:bf:c8:c4:f4:85: 18:e9:39:b3:93:38:61:3e:ba:7d:09:36:70:18:61:08:1b:6c: d1:ac:d8:bf:91:04:01:e8:c6:8d:ba:45:28:01:00:d0:7d:e8: 92:dd:55:65:40:76:a1:ba:87:c2:be:07:39:cb:43:2c:e4:18: 3a:7e:ee:f5:31:7d:d4:71:c8:7a:98:1a:d9:64:57:29:94:b2: 4d:66:8c:35:d6:42:32:19:55:bd:ef:23:98:8d:95:1f:0c:b6: 43:d2:12:aa:cb:b3:24:13:82:52:7a:2d:c4:ec:7f:02:76:42: 2c:c0:6c:9d:75:95:4c:51:49:fb:69:30:23:85:c9:e7:4c:ec: a4:db:e1:43 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdBzqw3/LZdkWnHUhXXNR6Yc//XIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDgwNDE1MDA1MloX DTI1MDkwODIzNTk1OVowejFJMEcGA1UEBRNAYzRjMDU3YzAyOWE5ZmRlNTAwN2M0 YzA2NDc5NWQzY2Q2ODU1YWMwNTYzMTAxMGYxNTdhZDcyYzlkZWZmZDE2MTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvNxv7SHuTP68VNMU8ZLiOQBSJ90 KM6s0FdXjqRVPIluhVmlX5eW/kxROkz019mKshgjlq791nZmz6vrcUF19lgx0IE3 O1uI6sFSaNtCreh5fVHwTn3liOnA1S1+W4I1gWGefHuRRdd9QGa5lYKlbC7jVLvv xLUeccXXAjEwKpUou6hzNEhWAtNT8V5pn/NGL4A/2t5Y5taqPSyo9pIzkeSfye2W C5nLqRoLmg2GjSNekUhxQ3uVheqiLkk2mTvQO52W8cgOtn/mIlSJOsGSj6mqxVHZ JidiAzOo96l5upuvCpxwXapeTJzDjJhBxtOWN42REMPpASsY7lHmKJAeHwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMG/Rdo1or2wIZLiQ5cpttJBezVEMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBmZWVkZDE4LTJiNzEtNDhkNS1hMmVlLTA3Y2E5MGI0ZDIwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAgwDQYJKoZIhvcNAQELBQADggEBAFSRYbLLUB1cAAj9cyk2 ij6PAiG+RvY7z711qh2vX2+haXcZcQbgYMmC2+SRSBXvGAWiZXmoHK/CeHio7iJ8 5Trmo2TB9D8mw2G11M1T5AkAqrihaotIae9KBdOrA8+NgVUfq73YJX9KWvK+xVHI xN9SIcDo+yahRwW/yMT0hRjpObOTOGE+un0JNnAYYQgbbNGs2L+RBAHoxo26RSgB ANB96JLdVWVAdqG6h8K+BznLQyzkGDp+7vUxfdRxyHqYGtlkVymUsk1mjDXWQjIZ Vb3vI5iNlR8MtkPSEqrLsyQTglJ6LcTsfwJ2QizAbJ11lUxRSftpMCOFyedM7KTb 4UM= -----END CERTIFICATE-----Generated at Mon Aug 4 21:31:18 2025 by rpki-client