$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa File: 788c3900-e4d5-439b-b231-3a69b5354901.roa (raw, json) Hash identifier: jMos05YzoHNHx4gf202J5ZlGBdSj7kQWQ/0GvK9Ulos= Subject key identifier: 4D:D8:85:4A:8B:2E:6C:0A:78:3A:EC:67:60:F0:1C:50:40:05:39:F7 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 36F5AB432E37AA37A6C7B7D48C5AD6F0D3D0C0F5 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa Signing time: Mon 04 Aug 2025 15:00:04 +0000 ROA not before: Mon 04 Aug 2025 15:00:04 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f5:ab:43:2e:37:aa:37:a6:c7:b7:d4:8c:5a:d6:f0:d3:d0:c0:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 4 15:00:04 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=d691543cd932ce9fc928dc6ee042f769214011da28e0358e2545ed9eb5543a64, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:b0:8a:5d:23:e2:31:09:2c:34:c5:65:ca: 32:5c:54:7f:69:19:79:9c:a2:0f:57:26:7a:38:cd: b2:be:90:de:2f:4e:13:85:da:99:0c:6c:56:af:0b: 78:dc:62:60:15:7a:9c:35:ca:69:7b:52:4f:cc:92: 3a:57:58:52:79:46:a9:33:54:d3:ef:b2:bb:1f:29: fd:9d:57:98:4e:6b:8f:56:ea:d2:34:f7:22:58:db: 95:8f:d7:10:3f:b7:6f:30:40:d5:0a:f9:e7:e7:b3: a3:36:90:57:9e:34:1b:3a:57:19:d1:22:b2:9c:24: a7:0b:6d:17:20:85:4e:19:e1:9c:cf:ed:7a:8a:db: 1f:fe:7b:1a:52:6a:89:5b:45:9b:be:6b:df:4a:8f: 91:a9:94:2a:59:f0:2b:0e:fe:f2:03:b2:0c:6f:7a: 81:eb:0a:a8:e1:8d:b3:6e:2c:a8:21:c9:b3:47:bc: 5e:ad:89:55:d8:3f:39:36:83:60:74:27:9a:ff:02: b8:0a:62:26:26:e5:49:31:7b:7c:aa:9f:b3:04:fc: 6e:41:db:f0:c8:2d:da:40:0a:df:b2:e3:25:10:12: 60:6e:5e:10:b2:93:b3:c3:cb:08:a0:05:a7:c6:12: e7:5c:73:54:23:e4:fa:f7:a0:d1:03:14:37:2e:c0: ff:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D8:85:4A:8B:2E:6C:0A:78:3A:EC:67:60:F0:1C:50:40:05:39:F7 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/38 Signature Algorithm: sha256WithRSAEncryption 84:d0:b8:d5:ba:df:33:ff:85:87:c9:87:25:f0:cd:20:f1:fe: f4:35:6b:35:d1:e6:c3:7e:ec:87:98:b0:3c:cc:a7:49:01:9c: 50:4a:35:fe:5d:8f:45:12:7d:dc:ec:1c:74:bc:7b:95:15:2e: a6:1b:5a:92:2e:ea:79:9b:cd:a5:90:52:88:53:92:5d:ad:9d: 6f:0b:5b:65:04:72:95:dc:b8:59:0a:a2:53:f4:33:60:59:19: cd:d1:aa:e5:7f:4f:44:35:ce:09:94:21:d3:90:0b:1e:c5:ee: 11:ac:21:f2:86:09:5b:8b:cc:e1:7c:b5:58:19:97:8f:7d:85: 46:dc:c0:1f:ad:0d:f3:d3:69:b1:b9:7b:1a:02:d4:99:c3:9a: 18:17:5d:4d:af:b1:01:61:04:22:2e:37:7f:59:32:38:60:4b: ca:8b:c3:0a:68:19:8b:f5:5e:67:87:f2:d0:0f:ea:36:a9:c3: 79:2a:ea:4c:7a:ad:f9:34:bb:17:2f:3e:6e:53:ee:37:79:b9: 16:9e:2c:73:b8:17:30:23:f5:1e:22:dd:3d:78:e2:5b:8f:c5: ed:e6:c7:54:81:4b:b5:29:b4:a3:8b:17:ab:6d:a8:16:ef:11: c3:a9:e7:8d:df:ab:d8:3d:7e:28:b0:fa:7b:e6:de:16:d6:cd: 92:77:53:4f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNvWrQy43qjemx7fUjFrW8NPQwPUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDgwNDE1MDAwNFoX DTI1MDkwODIzNTk1OVowejFJMEcGA1UEBRNAZDY5MTU0M2NkOTMyY2U5ZmM5Mjhk YzZlZTA0MmY3NjkyMTQwMTFkYTI4ZTAzNThlMjU0NWVkOWViNTU0M2E2NDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/Swil0j4jEJLDTFZcoyXFR/aRl5 nKIPVyZ6OM2yvpDeL04ThdqZDGxWrwt43GJgFXqcNcppe1JPzJI6V1hSeUapM1TT 77K7Hyn9nVeYTmuPVurSNPciWNuVj9cQP7dvMEDVCvnn57OjNpBXnjQbOlcZ0SKy nCSnC20XIIVOGeGcz+16itsf/nsaUmqJW0WbvmvfSo+RqZQqWfArDv7yA7IMb3qB 6wqo4Y2zbiyoIcmzR7xerYlV2D85NoNgdCea/wK4CmImJuVJMXt8qp+zBPxuQdvw yC3aQArfsuMlEBJgbl4QspOzw8sIoAWnxhLnXHNUI+T696DRAxQ3LsD/NwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFE3YhUqLLmwKeDrsZ2DwHFBABTn3MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzc4OGMzOTAwLWU0ZDUtNDM5Yi1iMjMxLTNhNjliNTM1NDkwMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAITQuNW63zP/hYfJhyXw zSDx/vQ1azXR5sN+7IeYsDzMp0kBnFBKNf5dj0USfdzsHHS8e5UVLqYbWpIu6nmb zaWQUohTkl2tnW8LW2UEcpXcuFkKolP0M2BZGc3RquV/T0Q1zgmUIdOQCx7F7hGs IfKGCVuLzOF8tVgZl499hUbcwB+tDfPTabG5exoC1JnDmhgXXU2vsQFhBCIuN39Z MjhgS8qLwwpoGYv1XmeH8tAP6japw3kq6kx6rfk0uxcvPm5T7jd5uRaeLHO4FzAj 9R4i3T144luPxe3mx1SBS7UptKOLF6ttqBbvEcOp543fq9g9fiiw+nvm3hbWzZJ3 U08= -----END CERTIFICATE-----Generated at Tue Aug 5 08:10:41 2025 by rpki-client