$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa File: 29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa (raw, json) Hash identifier: rrl41l3kM1NMGhRxb1xFye9IiMmGqENhct4HM9/2VGo= Subject key identifier: 47:BD:B4:C3:C0:3D:CC:35:7B:AE:97:B9:FF:D4:C6:64:E2:06:DA:9F Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 5A1B5FCCD8B05B8A89D60E4FF8B2A5120267BDD1 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa Signing time: Fri 25 Apr 2025 00:00:39 +0000 ROA not before: Fri 25 Apr 2025 00:00:39 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 00:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:1b:5f:cc:d8:b0:5b:8a:89:d6:0e:4f:f8:b2:a5:12:02:67:bd:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 25 00:00:39 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=1fe4a5f280fa9aa942811dee484ddb7a0846b6e81c97f659ca89f3066b122b55, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:1e:74:17:78:07:65:c8:de:f6:c1:54:84:58: ea:82:da:73:e0:6b:79:e2:87:21:f4:47:7c:e7:96: 83:54:78:af:d1:b4:12:97:cb:26:d5:2d:ed:c3:b4: 8c:df:6c:30:83:08:35:79:7e:d6:0d:67:1c:65:08: 08:d3:52:5e:a2:45:c6:80:a8:8c:03:a7:78:02:ef: b8:60:57:39:3d:d8:7d:7b:c7:14:1f:5f:f8:cb:28: aa:73:f3:c0:34:e2:e7:da:15:b5:55:7f:0a:66:9c: b7:87:b1:fe:a1:69:c6:53:b9:cf:01:45:14:11:3e: 93:08:e6:6e:ee:07:08:4e:e9:1c:25:f3:37:d4:38: 37:cf:fa:41:be:83:98:c7:52:44:f7:f9:54:56:13: f3:dd:2c:b2:a9:9b:2b:44:7c:dd:15:6d:e6:8b:60: 99:f6:5d:4f:cf:c9:99:17:93:8e:7c:2e:1a:e5:c7: 6f:ec:20:e0:83:35:e3:24:a2:38:11:f3:75:9a:19: 80:44:44:8d:63:25:a5:99:be:c4:60:6a:ed:df:c6: 4e:bc:a9:27:34:1b:9e:d3:1a:0f:28:8a:c9:b7:aa: 27:ab:89:1a:fd:5a:d8:78:80:99:cf:1a:73:b0:46: 34:c8:75:3c:2e:c5:60:7c:74:f6:bd:d5:91:1c:80: c5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:BD:B4:C3:C0:3D:CC:35:7B:AE:97:B9:FF:D4:C6:64:E2:06:DA:9F X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:c00::/38 Signature Algorithm: sha256WithRSAEncryption 8e:7a:59:45:1f:97:6a:bc:78:17:b2:96:51:29:62:1b:b2:7e: 9e:12:e3:f3:42:c0:3d:df:62:6f:70:45:c5:af:dc:0d:c1:91: 47:62:b8:1a:e8:64:cd:49:24:a9:91:a6:18:a8:45:56:68:78: e3:db:43:a1:1f:cb:89:21:54:98:f1:57:aa:9f:b9:49:0f:c4: 4d:d3:e7:90:8b:48:74:6d:89:8f:6f:67:4f:f4:9d:45:9c:39: b1:64:27:7a:b5:70:8d:3a:96:d3:43:75:c5:96:fc:ae:30:cc: 17:61:48:9d:62:06:5c:9c:f8:80:bc:96:54:3f:7f:d4:36:cd: 99:84:46:53:10:32:3d:e3:b2:62:2e:5f:8f:34:eb:3c:23:dc: b2:0a:11:d5:67:c2:f1:54:aa:88:ae:72:82:02:bb:c3:ea:26: a0:72:9e:87:29:03:b4:db:76:e7:f5:62:22:66:c4:25:01:9d: ad:2b:63:76:db:88:03:84:70:ce:9e:34:ab:a0:3c:cc:a3:ab: 91:8d:68:b7:70:7d:f1:ef:83:b9:cd:62:c1:52:ab:6d:37:f7: 2d:3e:78:6d:d9:22:1f:17:07:2b:0f:06:eb:08:a6:f9:cd:cd: 3d:b6:ea:38:02:2a:d4:1b:c8:54:17:49:d8:45:21:8d:56:36: 77:b4:cf:fe -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWhtfzNiwW4qJ1g5P+LKlEgJnvdEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDQyNTAwMDAzOVoX DTI1MDUzMDIzNTk1OVowejFJMEcGA1UEBRNAMWZlNGE1ZjI4MGZhOWFhOTQyODEx ZGVlNDg0ZGRiN2EwODQ2YjZlODFjOTdmNjU5Y2E4OWYzMDY2YjEyMmI1NTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkR50F3gHZcje9sFUhFjqgtpz4Gt5 4och9Ed855aDVHiv0bQSl8sm1S3tw7SM32wwgwg1eX7WDWccZQgI01JeokXGgKiM A6d4Au+4YFc5Pdh9e8cUH1/4yyiqc/PANOLn2hW1VX8KZpy3h7H+oWnGU7nPAUUU ET6TCOZu7gcITukcJfM31Dg3z/pBvoOYx1JE9/lUVhPz3SyyqZsrRHzdFW3mi2CZ 9l1Pz8mZF5OOfC4a5cdv7CDggzXjJKI4EfN1mhmARESNYyWlmb7EYGrt38ZOvKkn NBue0xoPKIrJt6onq4ka/VrYeICZzxpzsEY0yHU8LsVgfHT2vdWRHIDFIwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEe9tMPAPcw1e66Xuf/UxmTiBtqfMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzI5ZmU0NDU0LWY3YTgtNDJmZC04YzM1LTc3YTZkNmY4ZTYwZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAwwDQYJKoZIhvcNAQELBQADggEBAI56WUUfl2q8eBeyllEp Yhuyfp4S4/NCwD3fYm9wRcWv3A3BkUdiuBroZM1JJKmRphioRVZoeOPbQ6Efy4kh VJjxV6qfuUkPxE3T55CLSHRtiY9vZ0/0nUWcObFkJ3q1cI06ltNDdcWW/K4wzBdh SJ1iBlyc+IC8llQ/f9Q2zZmERlMQMj3jsmIuX4806zwj3LIKEdVnwvFUqoiucoIC u8PqJqBynocpA7Tbduf1YiJmxCUBna0rY3bbiAOEcM6eNKugPMyjq5GNaLdwffHv g7nNYsFSq2039y0+eG3ZIh8XBysPBusIpvnNzT226jgCKtQbyFQXSdhFIY1WNne0 z/4= -----END CERTIFICATE-----Generated at Sat Apr 26 08:25:06 2025 by rpki-client