$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa File: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (raw, json) Hash identifier: MUZL9eraGFNL4f2EprdjnjHoz0kBevYykoLOXX4XeBk= Subject key identifier: 5B:75:0A:00:44:DD:C7:C3:F9:54:56:8F:41:38:59:7E:FD:0D:08:B6 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 5335A2FEC35284E7BCBC01F0E5D3BE641BDCB4D4 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa Signing time: Tue 10 Jun 2025 16:00:12 +0000 ROA not before: Tue 10 Jun 2025 16:00:12 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:35:a2:fe:c3:52:84:e7:bc:bc:01:f0:e5:d3:be:64:1b:dc:b4:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 10 16:00:12 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=b6fc3a7c3980914afb1a81a9d054e65ecbbd0df6269969512de66013251092f5, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:47:ca:4c:d4:61:86:15:29:d3:e4:f6:f4:ba: a6:1a:4a:47:f6:ad:54:77:e3:89:d5:7a:64:8e:f8: 99:e8:35:b5:af:d7:1d:77:6a:53:a6:c8:1f:73:97: 9e:59:f4:91:36:e8:43:33:49:c4:ca:76:9b:90:4c: 45:ef:2c:23:ac:de:2d:45:c4:64:80:d1:67:dd:27: b4:78:94:5e:b0:b5:2e:8b:52:ae:1c:22:96:46:a2: ee:f0:5f:ab:57:71:43:09:d9:65:1e:10:1d:bf:b4: 2b:ab:c2:a0:58:01:fa:cf:d0:8b:6a:52:66:14:58: 3b:af:26:50:37:3d:fa:bc:53:d2:bf:d5:b4:38:2b: 38:e7:88:96:30:b4:bc:d3:7f:8d:53:d1:38:47:b5: 72:da:6f:bb:74:c9:bc:1f:17:5c:66:38:1d:37:24: d1:f9:12:e8:e0:5b:91:99:1c:6c:d4:40:89:3b:28: 90:8c:92:8f:e7:43:c1:11:74:ea:7b:e2:8b:35:f1: 07:94:0d:c4:df:06:a8:19:76:86:82:fc:05:00:d1: 3c:00:cc:ad:16:4e:3d:70:24:8b:94:11:a7:0a:a4: e5:d8:d5:33:e3:e0:ab:49:75:98:6b:44:b1:c8:9b: 49:98:49:dd:93:1c:cb:04:fa:cf:58:cb:f6:57:ca: b6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:75:0A:00:44:DD:C7:C3:F9:54:56:8F:41:38:59:7E:FD:0D:08:B6 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f8:8000::/40 Signature Algorithm: sha256WithRSAEncryption 08:ee:4a:bd:91:73:5f:dd:bd:37:8f:c2:8b:e3:e5:ae:0e:5a: ee:d1:1e:8a:9d:32:9c:e0:0f:f6:ca:ae:e4:8c:fd:4d:34:24: b4:0c:a6:e0:ce:94:89:f7:fc:f9:3f:da:1f:82:b5:a4:9e:87: 6f:f6:49:3b:28:20:b9:c1:2d:9b:12:7c:27:f6:09:a1:05:7b: dc:7b:34:b3:28:46:0f:55:98:d0:ad:9e:36:c5:0a:f4:dd:ef: c3:e1:a1:4b:e4:e5:3e:e7:f7:7c:68:92:fb:5c:bb:0c:a7:40: ce:f7:b1:3d:1e:a6:ee:bd:6e:fb:20:5b:95:40:69:70:b3:01: b4:83:f7:38:a4:01:f1:f7:c7:8b:35:c5:23:ce:39:01:4f:ba: fc:eb:90:d9:15:35:bb:5e:ff:24:ca:db:81:f7:f2:96:cc:4a: d3:83:bb:ce:73:fe:15:f4:b4:25:4b:b7:fb:88:d1:03:25:dc: fb:53:ba:b0:f7:6e:02:08:9b:93:8b:b4:62:9f:95:f7:4b:5d: 8f:33:f9:97:27:81:47:2f:77:d5:92:3c:c6:ba:73:8f:56:0d: 79:a2:ec:ff:fe:10:c4:5f:a5:51:79:73:68:2a:c9:38:e5:92: 87:14:02:49:75:ff:db:e2:ec:17:80:3d:4f:3a:68:29:29:7f: 0c:2c:e4:ba -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUzWi/sNShOe8vAHw5dO+ZBvctNQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxMDE2MDAxMloX DTI1MDcxNTIzNTk1OVowejFJMEcGA1UEBRNAYjZmYzNhN2MzOTgwOTE0YWZiMWE4 MWE5ZDA1NGU2NWVjYmJkMGRmNjI2OTk2OTUxMmRlNjYwMTMyNTEwOTJmNTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkEfKTNRhhhUp0+T29LqmGkpH9q1U d+OJ1XpkjviZ6DW1r9cdd2pTpsgfc5eeWfSRNuhDM0nEynabkExF7ywjrN4tRcRk gNFn3Se0eJResLUui1KuHCKWRqLu8F+rV3FDCdllHhAdv7Qrq8KgWAH6z9CLalJm FFg7ryZQNz36vFPSv9W0OCs454iWMLS803+NU9E4R7Vy2m+7dMm8HxdcZjgdNyTR +RLo4FuRmRxs1ECJOyiQjJKP50PBEXTqe+KLNfEHlA3E3waoGXaGgvwFANE8AMyt Fk49cCSLlBGnCqTl2NUz4+CrSXWYa0SxyJtJmEndkxzLBPrPWMv2V8q2EwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFt1CgBE3cfD+VRWj0E4WX79DQi2MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzU3Zjg0MzNjLWYxNjItNGIxMC04NTI3LWZiZjdjZGJiNmFhYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+IAwDQYJKoZIhvcNAQELBQADggEBAAjuSr2Rc1/dvTePwovj 5a4OWu7RHoqdMpzgD/bKruSM/U00JLQMpuDOlIn3/Pk/2h+CtaSeh2/2STsoILnB LZsSfCf2CaEFe9x7NLMoRg9VmNCtnjbFCvTd78PhoUvk5T7n93xokvtcuwynQM73 sT0epu69bvsgW5VAaXCzAbSD9zikAfH3x4s1xSPOOQFPuvzrkNkVNbte/yTK24H3 8pbMStODu85z/hX0tCVLt/uI0QMl3PtTurD3bgIIm5OLtGKflfdLXY8z+ZcngUcv d9WSPMa6c49WDXmi7P/+EMRfpVF5c2gqyTjlkocUAkl1/9vi7BeAPU86aCkpfwws 5Lo= -----END CERTIFICATE-----Generated at Sat Jun 14 05:42:26 2025 by rpki-client