$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa File: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (raw, json) Hash identifier: O/s4N0IDoUrv4cNgC55Le+OBRoEA1tjJAgJ+aC2TdvE= Subject key identifier: C5:47:0B:D8:43:F8:18:1E:AA:6B:D4:BA:05:DA:C4:AB:90:D1:4B:9C Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 320AEB1CF44117B691CC380135186607434736E5 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa Signing time: Fri 01 Aug 2025 00:50:07 +0000 ROA not before: Fri 01 Aug 2025 00:50:07 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:0a:eb:1c:f4:41:17:b6:91:cc:38:01:35:18:66:07:43:47:36:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 1 00:50:07 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=9d2e8823663b4f3c34ec3261a3ce7874abdd74d8ff2894900ab5b11aa99b8a9a, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:92:a1:75:be:9a:91:7f:83:8c:f8:d8:d8:5f: 9d:d9:ff:df:18:74:67:d5:ef:a5:ea:53:f7:bf:7f: be:dc:7d:81:8a:87:56:3d:be:a5:0d:d3:73:0f:41: 8b:ed:da:ed:3f:ee:df:66:64:25:73:fa:e5:20:ff: 55:65:09:28:27:60:d7:fd:12:39:39:39:44:36:14: f6:af:38:ae:b7:5b:fe:a9:f4:2d:60:ca:b5:6c:3b: 45:10:e7:86:a3:bd:8d:ab:84:88:f2:66:1e:ca:ee: 70:6c:3b:47:06:48:d1:10:a7:99:d8:7e:93:3c:ce: 81:83:59:4f:6d:36:43:d5:45:2e:ef:0b:1d:25:bf: ab:eb:54:42:a5:4c:80:1a:df:5b:bf:2d:27:03:4b: 4e:8d:53:0a:c6:12:bd:ee:0e:87:6e:f6:d9:cc:4f: 36:2b:99:94:5d:b6:0c:8f:d7:a0:92:3d:3f:ea:5b: 5a:9a:b0:98:ae:ed:d4:33:df:d0:2f:44:81:13:a7: 4d:27:f2:ab:d9:7f:48:8f:76:74:dc:25:07:a5:a2: 43:b5:fd:84:eb:18:69:88:59:c1:fb:8f:6a:2a:f4: b8:f4:30:b0:c7:e5:57:8c:a5:4b:44:d6:0f:99:97: fa:7f:d1:68:3d:e4:d6:87:df:3e:87:6d:a4:96:49: 33:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:47:0B:D8:43:F8:18:1E:AA:6B:D4:BA:05:DA:C4:AB:90:D1:4B:9C X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:8000::/40 Signature Algorithm: sha256WithRSAEncryption 9d:19:39:d6:20:8c:c1:b7:60:47:57:39:f6:4a:5b:ba:89:0a: 18:4a:11:7e:9f:ef:ff:61:f6:68:83:33:72:15:7b:b1:e0:32: 66:30:63:0c:f9:29:ae:d8:90:a7:58:b6:8a:70:ee:c8:28:c8: b6:52:25:06:b1:71:20:30:e0:6d:7e:73:f3:43:51:43:9d:08: 1c:09:ea:89:ec:2d:a6:eb:c8:6c:b2:72:71:ea:ab:b2:f1:84: 20:ae:82:10:6c:90:a7:3f:43:b6:78:73:95:15:dc:d0:4c:cc: 9c:a0:8e:3a:19:f6:6e:74:b7:0d:36:54:d0:19:ae:52:9a:36: 7f:43:58:eb:2c:7f:a5:0d:6c:40:06:59:13:74:7c:69:e2:07: d4:b7:9f:39:99:20:c1:b9:28:c5:d3:ff:60:9a:ae:2b:3c:73: ca:f3:14:0a:fb:2a:9e:5e:a1:62:88:60:6a:b9:d8:6e:37:f4: 7c:e4:49:4f:2f:a7:18:de:60:b0:5c:2a:f2:11:bd:52:5a:41: 6f:2f:21:9a:3e:4c:99:c6:d3:39:47:cf:21:00:59:8d:63:3b: e3:41:68:b8:a5:53:4d:d8:4a:cb:d4:15:22:ff:d5:d7:08:c8: 68:6d:58:fc:c0:e2:83:ee:9e:07:a5:4e:c6:2c:27:4b:ca:18: b7:a8:0c:0d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMgrrHPRBF7aRzDgBNRhmB0NHNuUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDgwMTAwNTAwN1oX DTI1MDkwNTIzNTk1OVowejFJMEcGA1UEBRNAOWQyZTg4MjM2NjNiNGYzYzM0ZWMz MjYxYTNjZTc4NzRhYmRkNzRkOGZmMjg5NDkwMGFiNWIxMWFhOTliOGE5YTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZKhdb6akX+DjPjY2F+d2f/fGHRn 1e+l6lP3v3++3H2BiodWPb6lDdNzD0GL7drtP+7fZmQlc/rlIP9VZQkoJ2DX/RI5 OTlENhT2rziut1v+qfQtYMq1bDtFEOeGo72Nq4SI8mYeyu5wbDtHBkjREKeZ2H6T PM6Bg1lPbTZD1UUu7wsdJb+r61RCpUyAGt9bvy0nA0tOjVMKxhK97g6HbvbZzE82 K5mUXbYMj9egkj0/6ltamrCYru3UM9/QL0SBE6dNJ/Kr2X9Ij3Z03CUHpaJDtf2E 6xhpiFnB+49qKvS49DCwx+VXjKVLRNYPmZf6f9FoPeTWh98+h22klkkzJwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMVHC9hD+BgeqmvUugXaxKuQ0UucMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIyNDdmMzRmLWU1YjEtNDIzYy1hYzBmLTcxNDJhZDg2YmQ5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+YAwDQYJKoZIhvcNAQELBQADggEBAJ0ZOdYgjMG3YEdXOfZK W7qJChhKEX6f7/9h9miDM3IVe7HgMmYwYwz5Ka7YkKdYtopw7sgoyLZSJQaxcSAw 4G1+c/NDUUOdCBwJ6onsLabryGyycnHqq7LxhCCughBskKc/Q7Z4c5UV3NBMzJyg jjoZ9m50tw02VNAZrlKaNn9DWOssf6UNbEAGWRN0fGniB9S3nzmZIMG5KMXT/2Ca ris8c8rzFAr7Kp5eoWKIYGq52G439HzkSU8vpxjeYLBcKvIRvVJaQW8vIZo+TJnG 0zlHzyEAWY1jO+NBaLilU03YSsvUFSL/1dcIyGhtWPzA4oPungelTsYsJ0vKGLeo DA0= -----END CERTIFICATE-----Generated at Mon Aug 4 21:31:16 2025 by rpki-client