$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: fImL4bIawoME+GROI04IKhaKY6ZGz6ji3LMrTcbqlfo= Subject key identifier: 28:68:C2:16:86:64:AB:FD:E8:DD:C1:A9:39:AC:00:03:3A:CE:D1:CD Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0F5AECA564AEA3F1C7863EFC2001DFAC699AC311 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Fri 25 Apr 2025 00:00:34 +0000 ROA not before: Fri 25 Apr 2025 00:00:34 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 00:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:5a:ec:a5:64:ae:a3:f1:c7:86:3e:fc:20:01:df:ac:69:9a:c3:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 25 00:00:34 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=2ebea5a31f7c5fffb58358451f7cd9a43a211d6b870a19870162924719fbc01b, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:09:b0:50:94:17:06:91:d3:18:49:e7:68:16: 15:3d:01:f2:c2:ee:81:47:0b:0b:13:59:a2:38:54: c3:98:fa:fd:1f:38:28:f8:db:aa:fd:5c:46:8f:0c: ab:5e:b4:83:1d:f5:61:5e:74:7f:0e:e1:09:1c:58: 1c:64:71:66:2a:e5:13:6d:06:70:86:23:55:41:10: ad:d2:31:59:05:c3:21:d5:78:e1:d8:82:0a:71:12: f4:ef:da:12:ce:49:2a:47:24:3a:0d:8e:8a:0a:28: ad:f3:e7:d6:9e:30:1f:af:f3:a5:6b:b0:9d:7a:12: e1:80:c9:36:08:56:3e:0a:01:0c:64:36:0c:c6:70: 11:78:f4:12:83:f1:be:4f:a8:06:23:e7:7b:be:7e: 15:06:d0:93:e4:3c:ca:11:c6:d7:95:75:12:69:c8: 8e:a2:7e:d4:fb:88:2a:63:f5:1b:8d:2a:59:4c:f8: e4:0f:9d:ad:4f:ae:79:cd:4b:65:b1:3a:77:74:0f: 95:b3:ce:bb:b7:7a:06:43:05:e7:91:7e:94:e9:42: de:72:0c:fc:f9:8d:62:69:d2:1a:ea:a1:98:94:7e: 1a:7b:00:24:c3:50:7c:f6:cb:05:07:9a:42:7f:b8: 2f:61:e1:09:ff:9e:3e:63:de:89:44:6e:e5:43:4a: 0b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:68:C2:16:86:64:AB:FD:E8:DD:C1:A9:39:AC:00:03:3A:CE:D1:CD X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 30:1d:8b:b7:fe:4a:8e:3f:d2:f8:ac:dc:43:fe:3f:83:26:60: 94:3e:1a:63:ad:99:20:84:d0:9f:af:5b:1d:d9:4d:49:c7:d8: d8:63:ce:39:5a:d0:76:e9:10:8d:6c:05:ea:95:44:e8:5f:12: 1e:81:a6:e8:fa:d2:61:62:ae:a2:bb:00:76:7e:00:bc:7b:f2: 8b:67:fb:d7:ce:db:8c:d8:d7:ef:89:3d:81:4e:27:76:b7:e0: a1:ad:b6:a2:d7:e6:b2:6d:65:f3:61:8e:5c:12:ad:a1:71:a4: d9:00:1a:6f:15:c9:7b:26:17:cc:86:3f:bd:a6:1a:20:28:83: c8:30:8f:e5:f6:7c:64:12:f2:51:cb:de:50:22:93:55:1d:4c: 04:77:90:dd:ba:be:e7:76:10:cd:b7:98:1d:49:ec:97:87:7d: 3b:8f:5b:cf:41:b3:e5:f9:29:b8:9c:47:3c:5a:f0:7b:e2:d1: c4:e4:9c:75:0d:8a:9f:f7:a5:be:08:0c:09:61:3b:10:5e:b7: f8:9b:54:3e:87:a3:96:0c:89:c8:43:6e:16:43:aa:4f:f3:68: a0:e8:5e:38:af:fd:e3:f0:45:30:e8:e8:3b:2c:05:b3:53:c3: 78:5a:31:35:3f:d6:b9:93:82:e4:99:66:ec:af:85:68:5e:df: cc:8f:e3:57 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUD1rspWSuo/HHhj78IAHfrGmawxEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDQyNTAwMDAzNFoX DTI1MDUzMDIzNTk1OVowejFJMEcGA1UEBRNAMmViZWE1YTMxZjdjNWZmZmI1ODM1 ODQ1MWY3Y2Q5YTQzYTIxMWQ2Yjg3MGExOTg3MDE2MjkyNDcxOWZiYzAxYjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQmwUJQXBpHTGEnnaBYVPQHywu6B RwsLE1miOFTDmPr9Hzgo+Nuq/VxGjwyrXrSDHfVhXnR/DuEJHFgcZHFmKuUTbQZw hiNVQRCt0jFZBcMh1Xjh2IIKcRL079oSzkkqRyQ6DY6KCiit8+fWnjAfr/Ola7Cd ehLhgMk2CFY+CgEMZDYMxnARePQSg/G+T6gGI+d7vn4VBtCT5DzKEcbXlXUSaciO on7U+4gqY/UbjSpZTPjkD52tT655zUtlsTp3dA+Vs867t3oGQwXnkX6U6ULecgz8 +Y1iadIa6qGYlH4aewAkw1B89ssFB5pCf7gvYeEJ/54+Y96JRG7lQ0oLYwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFChowhaGZKv96N3BqTmsAAM6ztHNMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQAwHYu3/kqOP9L4rNxD /j+DJmCUPhpjrZkghNCfr1sd2U1Jx9jYY845WtB26RCNbAXqlUToXxIegabo+tJh Yq6iuwB2fgC8e/KLZ/vXztuM2NfviT2BTid2t+Chrbai1+aybWXzYY5cEq2hcaTZ ABpvFcl7JhfMhj+9phogKIPIMI/l9nxkEvJRy95QIpNVHUwEd5Ddur7ndhDNt5gd SeyXh307j1vPQbPl+Sm4nEc8WvB74tHE5Jx1DYqf96W+CAwJYTsQXrf4m1Q+h6OW DInIQ24WQ6pP82ig6F44r/3j8EUw6Og7LAWzU8N4WjE1P9a5k4LkmWbsr4VoXt/M j+NX -----END CERTIFICATE-----Generated at Sat Apr 26 08:24:59 2025 by rpki-client