$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: +OCDrN6931fhdFRCCwuyCFIEBUyoOQdtXVdFKakUnDs= Subject key identifier: 2A:DE:05:10:E1:FA:D5:B7:04:DF:22:F1:2D:91:4E:0E:39:61:96:F8 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6A9583E0D54B00D0784B67D2461B21294950157D Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Mon 04 Aug 2025 15:00:38 +0000 ROA not before: Mon 04 Aug 2025 15:00:38 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:95:83:e0:d5:4b:00:d0:78:4b:67:d2:46:1b:21:29:49:50:15:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 4 15:00:38 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=75bf46b745ce9a4f67147ed515642b3f4c713fbfd1006ad9ef12cd1100217b7e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ec:68:54:dd:1c:e1:c4:22:ba:46:af:bf:79: a4:b8:18:e9:49:06:98:38:b9:53:9a:85:28:f3:7c: 60:ed:d9:59:92:df:a1:24:e1:e8:df:a6:23:51:d5: 36:0a:19:7e:41:f5:c7:51:c1:08:27:d2:1e:f1:b9: c9:77:5a:bb:80:f9:8b:e1:17:ea:2e:34:92:21:bd: 56:e2:16:8a:80:77:33:27:75:61:01:75:32:5c:15: 5c:e5:09:b6:27:f1:02:78:09:85:47:84:58:36:f2: cf:f2:a2:7e:a9:f1:fa:45:70:c3:a8:df:a8:df:84: 5c:52:3a:61:3e:f4:70:9e:e4:e4:f0:5b:b5:fc:34: d0:f3:d9:b1:9a:3c:d3:78:22:d2:eb:8d:18:e6:3a: 36:b4:07:d5:a0:92:fc:4c:d5:93:f2:58:8e:c9:df: 64:40:29:9a:b9:52:6f:a0:e0:ab:02:5c:e3:19:df: ec:80:85:78:5a:0e:6a:b6:e6:26:10:c5:6d:5a:e2: 21:c6:6f:a4:7d:52:be:42:a3:0d:5c:b1:27:fe:69: 7c:27:0e:af:44:a4:c8:f2:ea:78:a6:7f:ad:b5:12: 09:f0:8c:01:c5:b8:63:da:54:eb:1b:94:b5:03:7e: 53:a1:70:c9:cd:23:cf:7b:7d:29:eb:ab:5b:b4:14: 8e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:DE:05:10:E1:FA:D5:B7:04:DF:22:F1:2D:91:4E:0E:39:61:96:F8 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 08:52:69:14:48:33:93:00:95:76:a8:b5:ff:a5:4a:8a:81:98: c6:44:32:30:09:42:89:35:48:d4:62:82:94:eb:9e:8a:12:ab: 4d:b6:48:10:11:29:c4:e3:ce:22:55:89:56:9b:52:b6:af:39: 03:b4:b0:1b:c5:d3:37:18:db:6a:d3:a3:4e:43:2c:c6:c0:ec: 96:ed:c7:83:ad:ee:73:87:91:34:53:03:9c:6f:c1:6a:90:b5: fa:fb:2a:68:4b:49:c6:18:a2:48:e5:5c:ce:63:11:61:4e:76: 0c:c2:41:5d:c4:aa:76:70:78:95:2a:73:3c:1d:e7:dd:ab:7d: 7a:e0:e3:d6:ab:a1:e9:d9:8a:56:c9:4b:96:34:90:39:d3:67: cc:b9:82:24:9b:c0:fe:1e:71:6f:33:48:9f:af:f5:7a:dc:ad: a4:6d:8a:15:b5:a7:9a:ee:06:73:14:77:6c:2d:01:89:cd:a8: 4f:63:18:00:bc:da:ab:9f:35:12:99:28:31:db:d3:b1:6a:92: 3c:74:f7:f0:fb:f8:17:6a:f3:97:b0:cd:ef:d5:42:cd:ae:65: 43:90:e1:fd:1f:03:17:93:fd:78:51:51:2e:61:0b:34:d2:a8: d8:28:bf:93:28:3e:c1:9a:c5:14:53:c0:f3:22:6d:ff:74:0d: ca:d6:1a:09 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUapWD4NVLANB4S2fSRhshKUlQFX0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDgwNDE1MDAzOFoX DTI1MDkwODIzNTk1OVowejFJMEcGA1UEBRNANzViZjQ2Yjc0NWNlOWE0ZjY3MTQ3 ZWQ1MTU2NDJiM2Y0YzcxM2ZiZmQxMDA2YWQ5ZWYxMmNkMTEwMDIxN2I3ZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+xoVN0c4cQiukavv3mkuBjpSQaY OLlTmoUo83xg7dlZkt+hJOHo36YjUdU2Chl+QfXHUcEIJ9Ie8bnJd1q7gPmL4Rfq LjSSIb1W4haKgHczJ3VhAXUyXBVc5Qm2J/ECeAmFR4RYNvLP8qJ+qfH6RXDDqN+o 34RcUjphPvRwnuTk8Fu1/DTQ89mxmjzTeCLS640Y5jo2tAfVoJL8TNWT8liOyd9k QCmauVJvoOCrAlzjGd/sgIV4Wg5qtuYmEMVtWuIhxm+kfVK+QqMNXLEn/ml8Jw6v RKTI8up4pn+ttRIJ8IwBxbhj2lTrG5S1A35ToXDJzSPPe30p66tbtBSO9QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCreBRDh+tW3BN8i8S2RTg45YZb4MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQAIUmkUSDOTAJV2qLX/ pUqKgZjGRDIwCUKJNUjUYoKU656KEqtNtkgQESnE484iVYlWm1K2rzkDtLAbxdM3 GNtq06NOQyzGwOyW7ceDre5zh5E0UwOcb8FqkLX6+ypoS0nGGKJI5VzOYxFhTnYM wkFdxKp2cHiVKnM8Hefdq3164OPWq6Hp2YpWyUuWNJA502fMuYIkm8D+HnFvM0if r/V63K2kbYoVtaea7gZzFHdsLQGJzahPYxgAvNqrnzUSmSgx29OxapI8dPfw+/gX avOXsM3v1ULNrmVDkOH9HwMXk/14UVEuYQs00qjYKL+TKD7BmsUUU8DzIm3/dA3K 1hoJ -----END CERTIFICATE-----Generated at Tue Aug 5 08:22:47 2025 by rpki-client