$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa File: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (raw, json) Hash identifier: vLePjheWIBidvSYTolGG5JENCJMMWvRqZesSaqaMVIo= Subject key identifier: EB:54:F5:6A:74:AE:27:A7:1A:AE:A2:2F:71:ED:76:13:4A:E8:0D:40 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 57800FB267CAA395D44181B2FFE135F9CC35432B Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa Signing time: Tue 10 Jun 2025 16:00:08 +0000 ROA not before: Tue 10 Jun 2025 16:00:08 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fa:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:80:0f:b2:67:ca:a3:95:d4:41:81:b2:ff:e1:35:f9:cc:35:43:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 10 16:00:08 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=96e49b7d51ccf03b15defc3259e2e912c3b6321d9f79621d1f9fe822b1b3637e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1c:ec:5e:7e:03:e5:d2:f9:3b:ca:61:e7:27: c0:1d:67:4f:5d:49:95:15:d4:52:a5:c5:38:3b:c1: 13:4c:28:7e:32:a1:00:ac:c6:bc:0f:e6:fd:85:71: 55:37:6c:67:7e:01:e3:ff:53:99:2f:db:e8:14:a2: 11:09:1c:ea:8a:d4:c5:b1:20:0e:13:09:9b:1d:3c: e7:c8:2a:ad:30:dc:e7:79:a1:b1:e5:ce:48:eb:c2: 8f:36:bc:10:2f:ee:1b:bf:94:64:41:90:fc:ed:c3: a4:e5:bb:ed:ef:18:f6:c5:be:60:18:84:54:77:84: 07:0a:d7:ce:5b:98:41:e0:85:3f:c8:9e:f5:3b:a3: 36:64:b7:78:52:1c:8f:f2:b5:a6:b4:8e:9d:d8:7c: f6:7f:fe:5c:0b:17:d0:4f:83:d9:36:73:08:20:60: a1:00:e3:63:2e:36:80:ad:a9:9b:ee:e0:28:40:79: 47:9c:9e:bf:1a:cd:9b:98:ee:d4:26:cd:b8:a4:ae: cf:f5:6d:5a:41:14:4c:9e:d3:26:3f:05:ee:e6:5a: db:47:ee:43:04:93:30:30:4d:a0:ea:43:6c:5b:b7: 17:f6:9b:f8:8c:48:49:a3:30:53:57:d4:9e:fe:ff: 11:d2:df:57:ce:b6:7d:23:19:74:5e:4c:02:51:0e: f1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:54:F5:6A:74:AE:27:A7:1A:AE:A2:2F:71:ED:76:13:4A:E8:0D:40 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fa:8000::/40 Signature Algorithm: sha256WithRSAEncryption b2:16:6b:54:cb:ef:73:e2:09:32:e3:7d:aa:c0:34:cf:96:cb: c4:d0:7a:2e:f8:69:c4:6d:e5:5a:a2:9e:6b:b4:6c:27:e2:bb: 2e:54:ed:2e:9e:e4:ce:f0:c5:3a:35:e4:ce:47:f6:67:4e:94: b1:f7:b6:2c:7c:fe:a6:b1:b6:0a:c6:5e:3a:9c:77:f4:85:5d: 5e:70:08:62:a3:b3:f1:da:05:82:14:7a:77:4d:a8:4b:b8:8e: a9:23:09:43:ab:b4:f7:f5:11:6c:55:25:e3:b5:e1:b3:cf:a7: 30:bc:45:bf:04:5e:35:f3:33:2d:1e:24:30:7f:d5:0b:63:e0: 5b:4e:55:7a:38:ba:11:aa:a3:00:45:7e:98:57:63:29:2f:19: 95:06:bb:e6:72:95:0a:0b:ea:83:5f:a3:ca:9b:bb:25:d9:c7: d6:18:de:7e:e1:5e:64:06:fd:32:ae:65:15:78:b8:17:44:31: 8f:77:32:1b:3f:fc:73:ad:7d:83:de:08:7d:80:37:51:8d:93: 85:ff:83:35:2e:3c:14:6c:53:55:b7:9e:c3:e9:f2:21:6c:4f: b1:cc:22:84:e1:a6:cd:53:c0:f2:4f:ae:66:50:ae:9f:11:52: 5b:4f:7e:8d:0d:d5:3a:bf:1d:8b:56:f5:7f:7d:81:8c:c3:82: 16:13:ec:e5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUV4APsmfKo5XUQYGy/+E1+cw1QyswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxMDE2MDAwOFoX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAOTZlNDliN2Q1MWNjZjAzYjE1ZGVm YzMyNTllMmU5MTJjM2I2MzIxZDlmNzk2MjFkMWY5ZmU4MjJiMWIzNjM3ZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxzsXn4D5dL5O8ph5yfAHWdPXUmV FdRSpcU4O8ETTCh+MqEArMa8D+b9hXFVN2xnfgHj/1OZL9voFKIRCRzqitTFsSAO EwmbHTznyCqtMNzneaGx5c5I68KPNrwQL+4bv5RkQZD87cOk5bvt7xj2xb5gGIRU d4QHCtfOW5hB4IU/yJ71O6M2ZLd4UhyP8rWmtI6d2Hz2f/5cCxfQT4PZNnMIIGCh AONjLjaAramb7uAoQHlHnJ6/Gs2bmO7UJs24pK7P9W1aQRRMntMmPwXu5lrbR+5D BJMwME2g6kNsW7cX9pv4jEhJozBTV9Se/v8R0t9XzrZ9Ixl0XkwCUQ7xAQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOtU9Wp0rienGq6iL3HtdhNK6A1AMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzM1Mzc2OTFjLTFhMTAtNDY5OS1hOGEwLTRjZWM1MGEzNTUzNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+oAwDQYJKoZIhvcNAQELBQADggEBALIWa1TL73PiCTLjfarA NM+Wy8TQei74acRt5Vqinmu0bCfiuy5U7S6e5M7wxTo15M5H9mdOlLH3tix8/qax tgrGXjqcd/SFXV5wCGKjs/HaBYIUendNqEu4jqkjCUOrtPf1EWxVJeO14bPPpzC8 Rb8EXjXzMy0eJDB/1Qtj4FtOVXo4uhGqowBFfphXYykvGZUGu+ZylQoL6oNfo8qb uyXZx9YY3n7hXmQG/TKuZRV4uBdEMY93Mhs//HOtfYPeCH2AN1GNk4X/gzUuPBRs U1W3nsPp8iFsT7HMIoThps1TwPJPrmZQrp8RUltPfo0N1Tq/HYtW9X99gYzDghYT 7OU= -----END CERTIFICATE-----Generated at Sat Jun 14 05:59:06 2025 by rpki-client