$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa File: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (raw, json) Hash identifier: 7WZD52SEBAG6uTxYqqTB6xw/vytAtamqbC1cdR6fbiA= Subject key identifier: 9E:21:35:0F:26:7E:47:9B:2C:5A:21:F4:58:6A:9E:C2:6E:13:52:3A Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 734164F3602BA1B6E0A93D0816FAA34351C7B24B Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa Signing time: Sat 14 Jun 2025 00:00:35 +0000 ROA not before: Sat 14 Jun 2025 00:00:35 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:41:64:f3:60:2b:a1:b6:e0:a9:3d:08:16:fa:a3:43:51:c7:b2:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:35 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=a7061f7b511fb06cf9b61d1236c6bdacaadc6412d069cdd063b47b2fcd84a6c4, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d1:42:4f:86:0b:44:89:91:c3:0e:68:52:c4: 49:1e:ad:d3:52:b3:f4:74:ea:ae:b7:aa:2e:43:1d: 4a:b4:1a:3d:65:41:4e:15:8e:7f:e5:24:ab:91:8b: 92:ef:91:b3:a1:15:25:8c:99:88:7e:93:46:ba:f1: 77:6a:33:de:7b:12:af:b7:90:cf:71:c0:8d:e3:cd: a3:94:3f:6d:0f:7d:bb:84:62:30:03:8d:21:93:a5: b7:a3:3b:d6:74:ef:7b:7f:80:88:04:e3:95:e4:e0: ff:2e:95:60:4f:71:96:a7:89:22:a7:64:ce:40:58: 32:0c:d5:ba:1b:16:46:a9:1e:f4:e3:93:c4:84:75: bd:a7:f7:5b:06:21:a3:3e:4c:d6:00:83:f3:32:4a: 82:47:4a:36:fd:30:53:76:01:83:0b:59:18:fd:01: 20:18:6f:46:27:63:29:16:e2:fc:0f:e2:4c:bb:34: ae:74:72:1f:73:17:0f:0f:64:f3:93:4d:81:09:0c: cf:00:c2:ab:20:50:16:81:05:01:43:0a:0b:69:87: c3:36:88:de:db:f2:43:2e:2c:fe:39:27:54:83:92: 67:c8:b2:76:a1:ac:03:9d:b7:42:99:a4:d4:4e:7c: 86:db:55:5e:3f:ad:f6:e2:4f:51:e5:b7:ce:ac:59: d4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:21:35:0F:26:7E:47:9B:2C:5A:21:F4:58:6A:9E:C2:6E:13:52:3A X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 7c:a9:8b:1c:29:cd:da:42:81:ad:08:3c:70:79:88:2b:23:7b: b8:8f:27:05:6c:05:d5:98:a9:37:46:13:68:76:9e:1c:44:b2: bf:4b:98:a8:f7:be:10:8f:a0:70:86:41:07:71:9a:3e:28:43: 25:5a:20:62:b9:41:80:e0:c8:67:6a:0d:3f:f0:ae:24:a1:91: 41:dc:3a:26:b4:59:1e:8f:3f:04:f8:ee:bf:87:c3:15:54:6c: 3c:da:f8:75:5b:8d:d7:5b:4f:66:e3:9f:45:53:23:c9:b3:2a: 5a:a8:13:8e:8c:ad:b8:13:b2:52:67:5e:69:56:81:79:3e:23: bd:ed:c7:1d:14:0e:ed:3c:d0:35:7c:4f:3d:b5:3d:a0:2a:f4: 6e:d4:52:22:e9:76:55:f9:65:0e:18:9f:92:e7:e7:05:36:65: 42:c6:d5:76:d1:9b:e7:5b:e6:d0:2c:b2:ed:c7:f7:ac:7b:15: 7f:45:6a:0b:ef:b2:07:fb:b3:1e:63:53:f4:7e:8c:b8:0b:89: b6:1d:75:af:41:26:b8:70:fd:8f:78:fe:f0:48:8e:49:79:c8: 26:90:dc:b8:c2:94:72:8d:2b:78:72:1e:39:a2:a7:bb:9c:76: 19:58:b6:a4:f7:57:9c:78:8d:d9:01:e4:1d:92:06:f3:af:78: 36:26:2b:42 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUc0Fk82ArobbgqT0IFvqjQ1HHskswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDAzNVoX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAYTcwNjFmN2I1MTFmYjA2Y2Y5YjYx ZDEyMzZjNmJkYWNhYWRjNjQxMmQwNjljZGQwNjNiNDdiMmZjZDg0YTZjNDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNFCT4YLRImRww5oUsRJHq3TUrP0 dOqut6ouQx1KtBo9ZUFOFY5/5SSrkYuS75GzoRUljJmIfpNGuvF3ajPeexKvt5DP ccCN482jlD9tD327hGIwA40hk6W3ozvWdO97f4CIBOOV5OD/LpVgT3GWp4kip2TO QFgyDNW6GxZGqR7045PEhHW9p/dbBiGjPkzWAIPzMkqCR0o2/TBTdgGDC1kY/QEg GG9GJ2MpFuL8D+JMuzSudHIfcxcPD2Tzk02BCQzPAMKrIFAWgQUBQwoLaYfDNoje 2/JDLiz+OSdUg5JnyLJ2oawDnbdCmaTUTnyG21VeP6324k9R5bfOrFnUWQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFJ4hNQ8mfkebLFoh9FhqnsJuE1I6MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzk3N2Y5MGUyLWQyNTctNGRkZS05NzQwLWIwMzkxNDU4ZDhlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQB8qYscKc3aQoGtCDxweYgr I3u4jycFbAXVmKk3RhNodp4cRLK/S5io974Qj6BwhkEHcZo+KEMlWiBiuUGA4Mhn ag0/8K4koZFB3DomtFkejz8E+O6/h8MVVGw82vh1W43XW09m459FUyPJsypaqBOO jK24E7JSZ15pVoF5PiO97ccdFA7tPNA1fE89tT2gKvRu1FIi6XZV+WUOGJ+S5+cF NmVCxtV20ZvnW+bQLLLtx/esexV/RWoL77IH+7MeY1P0foy4C4m2HXWvQSa4cP2P eP7wSI5JecgmkNy4wpRyjSt4ch45oqe7nHYZWLak91eceI3ZAeQdkgbzr3g2JitC -----END CERTIFICATE-----Generated at Sat Jun 14 05:54:57 2025 by rpki-client