$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa File: 788c3900-e4d5-439b-b231-3a69b5354901.roa (raw, json) Hash identifier: KVXEhoAgMB5J/lVsllsfM0d16FEPyXmIFrwG+04t2YA= Subject key identifier: 5E:B9:35:AA:22:BE:CD:72:49:8F:F3:95:86:0F:C2:1D:02:80:E4:55 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 281043CC73FF2FA551C5F76933C42C816DCA96D4 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa Signing time: Sat 14 Jun 2025 00:00:34 +0000 ROA not before: Sat 14 Jun 2025 00:00:34 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:10:43:cc:73:ff:2f:a5:51:c5:f7:69:33:c4:2c:81:6d:ca:96:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:34 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=9a3797d36a5ea2c91d639c89571542fce7f97f27d58fc94f75ec4c67cf71b9b0, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:90:8b:03:c3:29:f1:cc:b0:eb:b6:73:8f:c7: cd:f8:bb:c9:07:bd:a6:1f:0a:94:8c:1e:b8:a0:05: 4f:45:2d:3c:be:7a:41:96:6d:d2:5a:0c:5a:a9:f9: 0b:fd:76:4b:57:54:43:d9:93:51:32:da:a5:c0:5b: 7c:ac:9b:81:44:c7:f8:4b:68:bb:1d:4c:5f:02:7a: 2b:e4:26:ed:0b:9c:f1:a3:4e:24:56:88:e5:c8:f6: 70:76:46:ff:35:09:15:c7:e7:fb:1f:f4:eb:9d:94: 05:12:65:43:2f:53:47:f4:bb:2b:43:0d:d2:8a:3c: b6:af:4b:a3:7b:55:ee:57:3f:8a:b7:a7:d9:33:1d: a1:38:03:84:af:93:a2:da:62:1b:e4:f8:51:69:40: 4b:42:4a:67:68:b6:c1:d0:7a:62:46:d7:f7:0f:c0: 9c:26:f6:be:27:22:54:46:89:88:a0:f6:f9:fb:d7: c5:f5:10:3a:08:23:f6:4a:a4:ce:6e:4d:6f:2e:0e: a2:84:37:61:5d:01:59:14:31:a8:16:c5:c7:f2:31: b1:99:5b:49:8d:7a:59:bf:1c:91:3a:44:f8:fa:ac: 01:1c:ff:03:d3:26:dd:10:f2:08:05:c5:80:86:3a: 94:8c:12:8a:13:45:c5:a0:24:f0:94:d1:0b:3a:a0: f4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B9:35:AA:22:BE:CD:72:49:8F:F3:95:86:0F:C2:1D:02:80:E4:55 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/38 Signature Algorithm: sha256WithRSAEncryption 4a:61:73:38:72:50:15:55:fd:16:d0:9f:d7:e6:fa:73:09:48: d6:33:14:9d:12:61:b7:21:64:6e:36:e3:14:25:46:23:84:6a: 15:fb:d2:f0:54:ea:59:3e:de:c1:2f:fd:b2:3d:73:fd:65:77: bd:3c:fd:72:c8:fd:21:05:44:2b:90:f4:ac:17:b7:e1:f3:17: 26:e0:c3:55:50:c7:8a:a9:94:34:ea:5e:32:99:73:5e:e7:b9: 25:5a:9b:db:cb:35:df:5f:25:49:6f:d5:22:aa:0f:48:cf:79: 70:fd:0f:26:99:b8:6a:6d:59:6b:cb:3b:cc:da:60:8a:c7:c3: e1:c4:7b:f4:78:20:59:c2:77:d7:15:f2:8d:ed:44:dc:1d:aa: ec:fa:4a:65:98:3d:c9:de:be:6c:5c:35:c7:dc:34:7e:46:0b: 8e:8c:58:75:a8:24:59:23:86:50:e5:5e:77:58:0c:f8:ba:c8: 72:83:db:f2:db:a4:57:25:32:c9:df:ea:f4:e8:ec:76:06:5d: 1a:9b:4b:d7:86:ae:dc:5f:46:36:9b:b4:6a:11:50:f3:65:d4: 9c:5e:b7:90:c1:42:ff:3c:e6:3c:59:d1:65:c9:4b:5d:aa:7a: dc:43:3e:dc:72:e6:b3:65:96:c5:11:d9:2f:53:ed:73:e0:e8: f1:47:fe:cf -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKBBDzHP/L6VRxfdpM8QsgW3KltQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDAzNFoX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAOWEzNzk3ZDM2YTVlYTJjOTFkNjM5 Yzg5NTcxNTQyZmNlN2Y5N2YyN2Q1OGZjOTRmNzVlYzRjNjdjZjcxYjliMDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJCLA8Mp8cyw67Zzj8fN+LvJB72m HwqUjB64oAVPRS08vnpBlm3SWgxaqfkL/XZLV1RD2ZNRMtqlwFt8rJuBRMf4S2i7 HUxfAnor5CbtC5zxo04kVojlyPZwdkb/NQkVx+f7H/TrnZQFEmVDL1NH9LsrQw3S ijy2r0uje1XuVz+Kt6fZMx2hOAOEr5Oi2mIb5PhRaUBLQkpnaLbB0HpiRtf3D8Cc Jva+JyJURomIoPb5+9fF9RA6CCP2SqTObk1vLg6ihDdhXQFZFDGoFsXH8jGxmVtJ jXpZvxyROkT4+qwBHP8D0ybdEPIIBcWAhjqUjBKKE0XFoCTwlNELOqD0fQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFF65Naoivs1ySY/zlYYPwh0CgORVMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzc4OGMzOTAwLWU0ZDUtNDM5Yi1iMjMxLTNhNjliNTM1NDkwMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAEphczhyUBVV/RbQn9fm +nMJSNYzFJ0SYbchZG424xQlRiOEahX70vBU6lk+3sEv/bI9c/1ld708/XLI/SEF RCuQ9KwXt+HzFybgw1VQx4qplDTqXjKZc17nuSVam9vLNd9fJUlv1SKqD0jPeXD9 DyaZuGptWWvLO8zaYIrHw+HEe/R4IFnCd9cV8o3tRNwdquz6SmWYPcnevmxcNcfc NH5GC46MWHWoJFkjhlDlXndYDPi6yHKD2/LbpFclMsnf6vTo7HYGXRqbS9eGrtxf RjabtGoRUPNl1Jxet5DBQv885jxZ0WXJS12qetxDPtxy5rNllsUR2S9T7XPg6PFH /s8= -----END CERTIFICATE-----Generated at Sat Jun 14 05:59:03 2025 by rpki-client