$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa File: 8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa (raw, json) Hash identifier: Vm1LliTtoM4uXQZmHHE6H1ymMEJQ/EEzgMy1Vh3ixtw= Subject key identifier: 28:6F:81:52:17:BE:89:98:35:4A:AF:35:31:43:5D:B8:75:B7:9D:2B Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 03C05FBE86F5E49447F21242A59FDA482C770D15 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa Signing time: Sat 14 Jun 2025 00:00:20 +0000 ROA not before: Sat 14 Jun 2025 00:00:20 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:c0:5f:be:86:f5:e4:94:47:f2:12:42:a5:9f:da:48:2c:77:0d:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:20 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=b330b86bc04f52d33724261e8b5f224c36253200019dcc0be59fdbba45b2c3aa, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1d:96:89:92:f7:4a:b4:c8:eb:fb:56:71:6b: 81:da:02:5f:f5:2d:40:09:91:c7:41:79:12:fe:24: f5:08:8c:0c:90:ba:c3:11:3f:9c:79:63:b0:a8:60: 92:db:69:f4:59:ec:d2:4f:2f:4d:36:32:d3:55:4b: 34:31:06:88:6b:aa:d2:50:7d:14:6b:de:c9:a4:83: 29:24:f7:29:ab:8a:cd:e3:17:03:f7:92:bb:8b:f6: 21:0f:0f:37:fd:13:e9:3f:c6:a2:a5:77:c5:3d:e1: 23:ea:a9:42:3a:09:46:5b:70:94:3f:c0:73:f2:7e: 6b:85:7a:0e:da:55:ba:91:d2:2b:5a:e9:c9:e6:47: 44:61:f7:2c:8f:e8:76:a8:78:8e:6d:51:4b:60:7f: 06:ab:7a:d7:52:81:34:27:fc:19:69:87:6e:14:86: 3d:80:08:03:ea:34:21:96:50:bb:12:7d:88:62:b2: 18:73:48:a0:41:2d:59:96:8a:83:08:15:76:12:bb: f6:ff:44:d0:a7:d5:dd:54:40:de:68:82:63:de:08: 2f:c2:55:17:76:56:4f:1b:50:76:ee:5f:1a:e9:2e: 81:bc:78:64:f7:01:b3:5d:5a:2f:88:5b:53:4e:58: 91:66:9d:00:53:f7:0e:83:64:97:46:94:25:77:ab: fe:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6F:81:52:17:BE:89:98:35:4A:AF:35:31:43:5D:B8:75:B7:9D:2B X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:400::/38 Signature Algorithm: sha256WithRSAEncryption 99:2d:a2:34:54:ec:4e:ae:2c:11:25:58:d3:94:29:c4:46:4d: e7:32:8b:67:66:10:3b:7d:b7:ff:91:ec:ff:26:95:57:0a:e0: 30:03:79:47:ab:e9:51:9b:75:66:e6:40:2b:14:fc:81:1f:2f: af:58:98:b4:67:5f:93:60:3d:db:74:9e:0b:aa:0d:cb:42:c4: 98:15:08:91:79:f2:b6:d2:18:03:2a:9f:44:62:84:98:12:66: 0a:e1:f5:af:dd:3d:7f:32:8b:e4:64:0d:7b:57:bc:7e:79:d5: eb:90:8e:27:38:3e:2c:36:c0:ef:52:93:cf:c2:b9:d0:95:52: 0b:16:05:b3:d2:0b:8d:f3:53:69:54:a7:42:b7:78:4a:8a:da: c9:cb:8e:96:38:f2:ad:23:ea:a3:1e:cb:c8:5f:69:2c:5d:ef: a9:fa:b1:7b:49:2f:6b:c8:6a:27:1c:a7:17:64:8f:a7:d3:41: 16:2b:4d:b6:6c:50:c4:d8:56:de:e2:27:aa:ea:99:36:2c:6b: 0c:b3:8d:e8:95:1c:ea:ea:fb:0f:d4:09:a7:a0:8e:c5:7d:a4: f3:d6:35:33:d3:93:cb:6d:35:2e:a2:3e:d9:ec:e1:47:a8:63: 59:89:77:5d:b7:38:ed:1b:a3:88:f9:ba:b8:bd:93:00:c3:21: 3c:ab:ae:34 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUA8Bfvob15JRH8hJCpZ/aSCx3DRUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDAyMFoX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAYjMzMGI4NmJjMDRmNTJkMzM3MjQy NjFlOGI1ZjIyNGMzNjI1MzIwMDAxOWRjYzBiZTU5ZmRiYmE0NWIyYzNhYTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzB2WiZL3SrTI6/tWcWuB2gJf9S1A CZHHQXkS/iT1CIwMkLrDET+ceWOwqGCS22n0WezSTy9NNjLTVUs0MQaIa6rSUH0U a97JpIMpJPcpq4rN4xcD95K7i/YhDw83/RPpP8aipXfFPeEj6qlCOglGW3CUP8Bz 8n5rhXoO2lW6kdIrWunJ5kdEYfcsj+h2qHiObVFLYH8Gq3rXUoE0J/wZaYduFIY9 gAgD6jQhllC7En2IYrIYc0igQS1ZloqDCBV2Erv2/0TQp9XdVEDeaIJj3ggvwlUX dlZPG1B27l8a6S6BvHhk9wGzXVoviFtTTliRZp0AU/cOg2SXRpQld6v+2QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFChvgVIXvomYNUqvNTFDXbh1t50rMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzhiZjMxMWU5LWQyN2YtNDZmYS04ZjA1LTJlZDZiMTc2YjViOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAQwDQYJKoZIhvcNAQELBQADggEBAJktojRU7E6uLBElWNOU KcRGTecyi2dmEDt9t/+R7P8mlVcK4DADeUer6VGbdWbmQCsU/IEfL69YmLRnX5Ng Pdt0nguqDctCxJgVCJF58rbSGAMqn0RihJgSZgrh9a/dPX8yi+RkDXtXvH551euQ jic4Piw2wO9Sk8/CudCVUgsWBbPSC43zU2lUp0K3eEqK2snLjpY48q0j6qMey8hf aSxd76n6sXtJL2vIaiccpxdkj6fTQRYrTbZsUMTYVt7iJ6rqmTYsawyzjeiVHOrq +w/UCaegjsV9pPPWNTPTk8ttNS6iPtns4UeoY1mJd123OO0bo4j5uri9kwDDITyr rjQ= -----END CERTIFICATE-----Generated at Sat Jun 14 05:44:33 2025 by rpki-client