$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa File: 29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa (raw, json) Hash identifier: txWbdqn9OUs8WppbS7hYzUPAiwGuAGfVlwPu7qvFiqk= Subject key identifier: 4D:6B:6C:FA:0A:C1:A7:CC:A8:0D:3D:6F:81:E4:AB:5C:31:02:78:DC Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 242CB8A3B2DA404D5F6290A8BF6D444A7647D673 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa Signing time: Mon 04 Aug 2025 15:00:42 +0000 ROA not before: Mon 04 Aug 2025 15:00:42 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:2c:b8:a3:b2:da:40:4d:5f:62:90:a8:bf:6d:44:4a:76:47:d6:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 4 15:00:42 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=8dc05fe94b971116574568c06ae9131ea9d9e229863bcdba6118f408b100a4a7, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ec:f9:20:a5:66:16:db:e9:ec:8c:dd:e8:c9: 21:ac:94:3d:ef:a9:a7:b3:90:b0:22:16:64:5a:0c: 69:c9:55:64:3b:92:21:b2:48:8e:a7:f3:c5:7a:f9: 2c:58:74:72:ec:bc:e9:ba:f0:36:eb:e8:7b:ca:53: 2d:a2:65:3d:3c:93:0b:f9:ff:b8:88:51:02:83:2c: 46:b5:dd:88:55:c7:db:88:10:ab:be:43:32:fe:01: 9f:28:96:28:62:8a:3d:08:79:b3:de:8c:7d:02:20: f7:15:4e:bc:c0:22:00:b2:ec:cb:62:89:1f:0a:12: 14:d8:18:6e:2a:2c:0a:a9:70:87:d4:b9:42:17:d3: 5b:6c:56:08:88:a1:10:a2:f2:93:3d:cc:49:92:12: a2:c0:98:d4:2e:47:66:f8:92:14:86:de:cc:63:48: 34:66:74:8c:25:6e:13:47:13:8c:6a:64:67:4b:3c: 4c:df:28:8a:fd:0c:b3:1f:5f:cf:49:65:55:8f:57: 06:71:37:85:c6:90:70:f9:57:a6:f3:d0:ee:c4:82: 78:74:94:66:7d:fe:92:93:76:5d:7e:a0:17:78:83: 00:16:07:3f:df:e8:4c:7a:8f:f5:13:f1:e9:76:7e: 66:ef:76:61:94:b7:92:1a:35:5d:5f:8c:db:74:1a: b4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6B:6C:FA:0A:C1:A7:CC:A8:0D:3D:6F:81:E4:AB:5C:31:02:78:DC X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:c00::/38 Signature Algorithm: sha256WithRSAEncryption 67:67:c1:ab:0e:dd:b6:30:4d:3e:67:f5:6d:4c:e6:ae:72:b7: 31:63:be:33:77:61:da:1d:cc:bb:8b:1c:84:d4:ab:fb:e5:db: 19:51:91:55:42:4c:a7:a5:44:5e:a1:fd:6f:a3:94:37:c0:b4: 8d:30:72:7c:ca:8d:32:84:3b:8c:0f:c2:b2:f5:58:de:ef:db: d7:55:a8:da:09:03:e0:98:91:c2:1b:4b:30:51:0c:1e:82:01: 9f:7a:a7:a2:90:31:6c:56:be:39:93:6b:67:f1:eb:6b:b6:d0: 80:65:02:46:d4:2b:38:b3:a5:df:ee:6b:92:99:79:52:8b:b3: f3:7e:da:c4:92:42:e6:e9:01:de:4b:18:27:25:50:7e:d7:17: 4c:9e:f7:ce:56:4c:06:cd:be:2b:9d:f1:63:b4:9c:d7:2b:e0: 67:55:4d:76:61:42:8d:d1:12:73:19:87:87:ea:a4:32:90:38: fd:c5:88:1d:97:08:68:d5:b0:43:9a:b1:38:41:4c:30:0a:e6: 1c:27:85:07:c9:ef:4f:bf:20:1f:20:34:1f:84:02:e6:5a:7c: a8:56:88:79:78:f0:41:4a:ce:d5:cb:de:62:15:6b:37:9e:75: eb:2e:62:98:f3:0c:13:c0:c3:9f:c2:55:3d:64:76:70:ff:cd: 8a:db:69:87 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJCy4o7LaQE1fYpCov21ESnZH1nMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDgwNDE1MDA0MloX DTI1MDkwODIzNTk1OVowejFJMEcGA1UEBRNAOGRjMDVmZTk0Yjk3MTExNjU3NDU2 OGMwNmFlOTEzMWVhOWQ5ZTIyOTg2M2JjZGJhNjExOGY0MDhiMTAwYTRhNzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOz5IKVmFtvp7Izd6MkhrJQ976mn s5CwIhZkWgxpyVVkO5IhskiOp/PFevksWHRy7LzpuvA26+h7ylMtomU9PJML+f+4 iFECgyxGtd2IVcfbiBCrvkMy/gGfKJYoYoo9CHmz3ox9AiD3FU68wCIAsuzLYokf ChIU2BhuKiwKqXCH1LlCF9NbbFYIiKEQovKTPcxJkhKiwJjULkdm+JIUht7MY0g0 ZnSMJW4TRxOMamRnSzxM3yiK/QyzH1/PSWVVj1cGcTeFxpBw+Vem89DuxIJ4dJRm ff6Sk3ZdfqAXeIMAFgc/3+hMeo/1E/Hpdn5m73ZhlLeSGjVdX4zbdBq02wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFE1rbPoKwafMqA09b4Hkq1wxAnjcMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzI5ZmU0NDU0LWY3YTgtNDJmZC04YzM1LTc3YTZkNmY4ZTYwZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAwwDQYJKoZIhvcNAQELBQADggEBAGdnwasO3bYwTT5n9W1M 5q5ytzFjvjN3YdodzLuLHITUq/vl2xlRkVVCTKelRF6h/W+jlDfAtI0wcnzKjTKE O4wPwrL1WN7v29dVqNoJA+CYkcIbSzBRDB6CAZ96p6KQMWxWvjmTa2fx62u20IBl AkbUKzizpd/ua5KZeVKLs/N+2sSSQubpAd5LGCclUH7XF0ye985WTAbNviud8WO0 nNcr4GdVTXZhQo3REnMZh4fqpDKQOP3FiB2XCGjVsEOasThBTDAK5hwnhQfJ70+/ IB8gNB+EAuZafKhWiHl48EFKztXL3mIVazeedesuYpjzDBPAw5/CVT1kdnD/zYrb aYc= -----END CERTIFICATE-----Generated at Mon Aug 4 21:44:00 2025 by rpki-client