$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa File: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (raw, json) Hash identifier: wpho7RY5tuueZmvFx/4YVrFzjsbM3V6/8mgMQV4RAFQ= Subject key identifier: 49:7F:09:46:35:30:C6:8E:91:74:F6:FF:BE:C8:13:F3:B8:97:7A:19 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 57BDD441E4A36E7D1A1A25CA467A1C11E24FF4C6 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa Signing time: Fri 01 Aug 2025 00:50:13 +0000 ROA not before: Fri 01 Aug 2025 00:50:13 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:bd:d4:41:e4:a3:6e:7d:1a:1a:25:ca:46:7a:1c:11:e2:4f:f4:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 1 00:50:13 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=751ab238f22f0d92aba7a6705ac9b19214692ef7e4efc5998759c56e3265a491, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fd:0c:85:dc:12:1b:f7:ae:fc:e1:af:3b:7a: 21:2c:c8:8d:14:58:3c:d3:50:96:04:41:9a:0a:e9: e9:d0:fb:e8:c7:0e:a7:6a:3f:e3:c9:49:23:3d:c8: 4f:ea:fb:8f:39:45:18:7a:da:58:04:cc:d3:3d:d9: 63:0c:d7:b0:1c:be:39:b4:e4:61:e8:72:79:ba:64: 3b:41:38:40:6c:31:3b:fb:84:a3:a6:d8:26:fd:01: 7a:32:8c:2d:71:84:40:74:32:f5:b7:15:86:b3:dc: 0a:23:d7:1a:46:c9:49:1a:a6:de:d2:7d:ab:9a:f4: ad:6a:4d:9b:38:11:b1:86:9f:d5:1a:c8:60:d1:dd: f1:00:ad:9e:b8:91:bd:82:43:67:ff:e3:93:87:6e: 45:e0:b4:e5:27:c2:86:56:a1:cd:b0:e7:cb:9a:83: 07:ac:b0:d0:80:0a:5c:13:6f:e1:8b:d4:89:79:77: e0:0a:63:27:87:10:53:40:c3:c6:c8:1e:72:ed:6d: 56:57:39:55:12:6e:21:3e:e4:9f:46:0f:c1:28:ab: 2e:23:db:eb:4d:2e:b8:53:45:be:bc:cb:28:0e:a7: 4e:2b:b2:46:7f:cf:aa:c4:30:40:14:98:41:b9:d8: e7:19:8e:b4:6b:a6:a9:18:4b:c4:f4:94:61:62:c6: d7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7F:09:46:35:30:C6:8E:91:74:F6:FF:BE:C8:13:F3:B8:97:7A:19 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f8:8000::/40 Signature Algorithm: sha256WithRSAEncryption 44:bb:40:80:36:62:e4:9a:d3:ed:58:1b:39:8a:3b:1c:42:12: c0:b7:b4:76:48:3b:a8:3c:7a:23:94:da:f7:c3:3a:67:40:21: 63:8a:9e:c6:91:3b:68:88:1d:a1:bd:03:a9:0e:89:6b:08:15: 88:a7:2a:61:83:2b:97:75:0f:64:d2:3a:0d:34:e9:08:70:c9: 1f:c4:cf:b3:0b:e9:1c:32:1e:ac:d4:38:73:79:57:35:51:ba: 12:f5:7b:0e:b9:6e:35:06:4e:e3:c5:4c:a8:27:d0:02:b6:e5: 6a:f6:76:07:f0:df:8c:ac:77:a3:fc:6a:8f:05:56:63:1e:fc: d1:d5:b5:c4:91:0e:a3:ec:12:2a:32:0b:08:93:6b:b0:59:28: c8:02:57:4b:b4:fa:f3:02:b4:33:1f:8b:cf:be:de:95:d7:30: 8f:a1:51:3a:da:00:31:c1:67:78:84:b6:67:ac:94:82:f7:9c: 65:8b:32:84:ac:fc:f9:7f:27:d3:d1:86:7b:3d:cd:5a:e4:3d: 1a:8a:d6:ed:a9:ea:7a:42:8a:be:06:a0:9d:52:21:34:69:6d: d4:2f:7c:11:29:45:0c:0f:52:2c:a5:79:f5:ff:df:7c:ba:38: 2e:ed:06:5c:bd:6c:1e:15:54:31:94:cf:76:7b:84:3f:0c:fb: 64:0d:1d:b5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUV73UQeSjbn0aGiXKRnocEeJP9MYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDgwMTAwNTAxM1oX DTI1MDkwNTIzNTk1OVowejFJMEcGA1UEBRNANzUxYWIyMzhmMjJmMGQ5MmFiYTdh NjcwNWFjOWIxOTIxNDY5MmVmN2U0ZWZjNTk5ODc1OWM1NmUzMjY1YTQ5MTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsP0MhdwSG/eu/OGvO3ohLMiNFFg8 01CWBEGaCunp0Pvoxw6naj/jyUkjPchP6vuPOUUYetpYBMzTPdljDNewHL45tORh 6HJ5umQ7QThAbDE7+4Sjptgm/QF6MowtcYRAdDL1txWGs9wKI9caRslJGqbe0n2r mvStak2bOBGxhp/VGshg0d3xAK2euJG9gkNn/+OTh25F4LTlJ8KGVqHNsOfLmoMH rLDQgApcE2/hi9SJeXfgCmMnhxBTQMPGyB5y7W1WVzlVEm4hPuSfRg/BKKsuI9vr TS64U0W+vMsoDqdOK7JGf8+qxDBAFJhBudjnGY60a6apGEvE9JRhYsbXQQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEl/CUY1MMaOkXT2/77IE/O4l3oZMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzU3Zjg0MzNjLWYxNjItNGIxMC04NTI3LWZiZjdjZGJiNmFhYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+IAwDQYJKoZIhvcNAQELBQADggEBAES7QIA2YuSa0+1YGzmK OxxCEsC3tHZIO6g8eiOU2vfDOmdAIWOKnsaRO2iIHaG9A6kOiWsIFYinKmGDK5d1 D2TSOg006QhwyR/Ez7ML6RwyHqzUOHN5VzVRuhL1ew65bjUGTuPFTKgn0AK25Wr2 dgfw34ysd6P8ao8FVmMe/NHVtcSRDqPsEioyCwiTa7BZKMgCV0u0+vMCtDMfi8++ 3pXXMI+hUTraADHBZ3iEtmeslIL3nGWLMoSs/Pl/J9PRhns9zVrkPRqK1u2p6npC ir4GoJ1SITRpbdQvfBEpRQwPUiylefX/33y6OC7tBly9bB4VVDGUz3Z7hD8M+2QN HbU= -----END CERTIFICATE-----Generated at Mon Aug 4 21:30:58 2025 by rpki-client