$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa File: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (raw, json) Hash identifier: GYNLnThQB7bW8bhrDE1n/ki1t89Hqkneyal1MRIyqRU= Subject key identifier: 87:5C:7C:5C:FC:A1:2A:D6:72:A2:BC:8E:53:11:96:09:5E:33:B5:6A Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7C75F36CCD0F020850DA436571C9B35489163B4A Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa Signing time: Sat 14 Jun 2025 00:00:40 +0000 ROA not before: Sat 14 Jun 2025 00:00:40 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:75:f3:6c:cd:0f:02:08:50:da:43:65:71:c9:b3:54:89:16:3b:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:40 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=33884e5b5f9a84cf172c702e8a25b8c51b709e49358e08fadcfe8e33f6c92288, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ff:fe:3c:d3:5a:c9:a5:d7:07:8a:c7:9f:05: 59:92:e6:63:79:0d:e1:bb:ab:fd:e0:0f:c0:77:08: a9:01:72:cc:d8:45:7f:4d:da:38:53:d2:fa:c4:33: c2:29:85:39:ab:64:9b:f6:c9:99:0e:0d:ae:ab:1b: c1:29:51:c7:ca:3d:91:3a:ab:ea:a0:c5:f9:13:20: 20:64:e7:b2:0f:17:77:c3:e9:8a:28:73:49:5f:eb: cf:ca:b1:04:f1:62:66:58:29:d6:f6:af:30:3a:3a: 90:9a:6d:32:dc:88:b0:fd:2a:0c:e3:09:5f:0d:19: 13:aa:c8:24:65:43:4d:89:1e:34:76:7d:56:20:3a: 29:c2:6f:73:4b:0d:10:c0:8f:29:51:e7:bc:ff:78: af:21:2f:90:c8:da:ab:5b:af:28:2b:52:e3:1a:46: 3e:7b:8f:65:45:5d:14:30:f7:b0:4e:cc:5a:8d:95: 72:32:60:b8:9c:1c:0a:0b:d7:54:c7:2f:01:2a:25: eb:cb:5f:b2:3f:b9:ec:3a:3e:19:d1:c8:32:3b:d5: ea:57:07:5b:57:c4:5f:f6:e1:ee:ac:5c:3c:e9:4f: f1:3b:04:a7:3c:0e:38:99:9a:07:31:9e:18:d0:c0: ba:20:89:d8:9d:f0:f4:08:92:f4:72:89:90:ae:56: fa:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5C:7C:5C:FC:A1:2A:D6:72:A2:BC:8E:53:11:96:09:5E:33:B5:6A X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f1::/32 Signature Algorithm: sha256WithRSAEncryption 78:55:85:d2:9c:84:63:96:b4:e5:c3:76:da:93:e1:e4:ed:be: 22:25:17:10:3c:a7:13:47:88:0c:de:19:70:f2:d5:6c:6a:29: 2c:c8:6d:90:73:0b:2b:cc:f5:84:74:3d:88:f7:ad:0e:07:49: 4b:a8:b8:b5:ee:66:cc:4d:5b:82:cb:5b:7a:4b:80:af:b7:a8: f0:d5:89:bd:ff:3b:db:96:61:35:00:95:9a:ff:70:0e:cd:23: 68:ae:39:24:ab:0b:72:8c:f4:e7:e2:3c:60:3e:9b:bf:d1:93: b5:d8:c0:53:fd:24:62:5d:3b:47:22:82:5e:21:19:02:3d:f3: 8b:60:07:46:bf:d9:c5:f4:42:50:bc:78:8a:c7:50:58:cc:c5: 23:6b:b8:e4:62:ba:80:4c:5a:21:bb:44:c8:c6:9d:29:ae:38: 94:d8:ed:eb:a0:32:ef:41:11:fa:e5:f6:6a:72:c9:26:0a:d6: e9:b2:09:77:b1:ab:19:74:8a:a4:a3:c9:46:ed:9a:b1:8d:65: c9:f5:60:26:b2:a2:1d:a8:a1:86:5e:68:02:20:5d:c1:35:1d: 89:16:00:6b:b9:c4:9e:ab:3e:c2:fb:26:7d:b5:e7:5a:5b:db: ea:ea:2d:ee:03:e0:e4:3a:7e:c8:68:de:30:48:33:b9:e1:6d: 47:7f:ba:12 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUfHXzbM0PAghQ2kNlccmzVIkWO0owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDA0MFoX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAMzM4ODRlNWI1ZjlhODRjZjE3MmM3 MDJlOGEyNWI4YzUxYjcwOWU0OTM1OGUwOGZhZGNmZThlMzNmNmM5MjI4ODEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyv/+PNNayaXXB4rHnwVZkuZjeQ3h u6v94A/AdwipAXLM2EV/Tdo4U9L6xDPCKYU5q2Sb9smZDg2uqxvBKVHHyj2ROqvq oMX5EyAgZOeyDxd3w+mKKHNJX+vPyrEE8WJmWCnW9q8wOjqQmm0y3Iiw/SoM4wlf DRkTqsgkZUNNiR40dn1WIDopwm9zSw0QwI8pUee8/3ivIS+QyNqrW68oK1LjGkY+ e49lRV0UMPewTsxajZVyMmC4nBwKC9dUxy8BKiXry1+yP7nsOj4Z0cgyO9XqVwdb V8Rf9uHurFw86U/xOwSnPA44mZoHMZ4Y0MC6IInYnfD0CJL0comQrlb6oQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFIdcfFz8oSrWcqK8jlMRlgleM7VqMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzY0YWEwMzM3LTRjZjktNDJjNy1iMjM2LTRjZDM2ZTY5MDA1ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+A8TANBgkqhkiG9w0BAQsFAAOCAQEAeFWF0pyEY5a05cN22pPh 5O2+IiUXEDynE0eIDN4ZcPLVbGopLMhtkHMLK8z1hHQ9iPetDgdJS6i4te5mzE1b gstbekuAr7eo8NWJvf8725ZhNQCVmv9wDs0jaK45JKsLcoz05+I8YD6bv9GTtdjA U/0kYl07RyKCXiEZAj3zi2AHRr/ZxfRCULx4isdQWMzFI2u45GK6gExaIbtEyMad Ka44lNjt66Ay70ER+uX2anLJJgrW6bIJd7GrGXSKpKPJRu2asY1lyfVgJrKiHaih hl5oAiBdwTUdiRYAa7nEnqs+wvsmfbXnWlvb6uot7gPg5Dp+yGjeMEgzueFtR3+6 Eg== -----END CERTIFICATE-----Generated at Sat Jun 14 05:45:31 2025 by rpki-client