$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa File: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (raw, json) Hash identifier: ZLdqIvKjyaLEbpnsX0gZnI1IYjOjUDwq3aM878VlCQQ= Subject key identifier: E6:3A:18:29:19:42:49:FF:20:AF:9C:02:06:26:BA:EE:0F:77:98:C0 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 2E662819D635FD8BA41B2239F417C0F50DC09F07 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa Signing time: Fri 25 Apr 2025 00:00:55 +0000 ROA not before: Fri 25 Apr 2025 00:00:55 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 00:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:66:28:19:d6:35:fd:8b:a4:1b:22:39:f4:17:c0:f5:0d:c0:9f:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 25 00:00:55 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=5ffa772168bffe10e4c7c855b66c8ec244071089833e10cb1f81f32c0fcd7850, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c7:71:82:56:2c:1e:2f:76:1f:2f:1e:2e:b0: f9:f9:a8:07:96:f8:18:d1:06:f4:2c:94:87:25:ea: e4:5b:f3:46:88:fa:7f:20:a2:ce:54:59:20:f5:6c: dc:ac:33:25:5a:8e:ab:2c:46:0d:f0:87:58:48:16: fe:6d:d7:b9:74:46:1f:2f:f4:db:38:02:20:8c:d8: 21:c0:63:04:98:37:ae:b0:7a:c5:08:a5:2e:93:a4: aa:6b:39:41:f4:4c:ae:c2:7c:c4:53:b2:7e:5e:73: 0b:b3:68:a7:e3:e8:94:5d:07:ca:1d:7e:17:0f:c7: 21:49:fd:33:b4:4e:57:79:13:c4:3f:87:49:7f:dc: 4f:38:17:fc:b4:87:31:76:54:86:0e:0b:49:af:1f: 8a:cb:cb:b4:c7:69:86:0f:26:fc:b9:78:b3:6a:a5: 2f:8c:9c:53:e9:d9:01:0e:8e:ef:b4:ec:6a:27:50: 0c:db:d8:3c:ea:31:8a:2e:94:35:f7:f9:c1:61:bd: 83:bf:2a:44:ce:88:d7:aa:2d:3e:28:13:e3:fe:f0: 6b:ae:c0:32:3b:da:7f:0f:fe:29:24:11:bf:e6:29: 6b:e9:6e:a5:9e:3b:17:f0:84:aa:28:64:a1:89:2a: 71:7b:9d:7e:99:ef:4b:0f:cb:49:b8:e3:91:84:84: 1b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3A:18:29:19:42:49:FF:20:AF:9C:02:06:26:BA:EE:0F:77:98:C0 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 84:31:ba:ec:0e:b0:8f:b1:8b:d3:c4:58:a7:39:92:16:46:74: 86:fb:b0:6b:49:87:53:3c:a7:3e:ab:08:83:29:ab:a9:19:41: e6:ee:14:82:3c:e6:98:99:f6:78:d1:71:a0:e2:a7:c5:02:1a: 06:e8:a4:6a:ae:55:d7:b1:bf:5d:44:61:ff:b0:16:7a:9b:f3: bd:c9:57:8b:f6:cb:38:0a:9d:8c:6b:60:56:d1:1d:d2:dc:5d: d4:2c:8c:91:ee:c9:7d:40:a3:3e:7c:79:00:47:46:87:18:39: e0:01:e5:93:c3:d8:ac:b1:c3:c4:a3:77:03:55:12:df:0f:3e: c9:d6:19:e4:d8:3a:74:95:c2:61:e9:30:5f:1e:68:53:de:0e: bd:34:14:69:e9:76:65:e0:9d:21:87:65:4d:29:63:4f:3b:7b: 76:2f:05:6c:ba:f7:c1:14:c9:30:d7:cd:5c:43:ce:17:65:04: f7:90:87:93:9e:5f:8d:9c:aa:9a:6a:56:c0:c2:98:ce:db:a0: c1:e3:29:47:d3:d3:4e:07:1e:a9:24:d8:12:ac:d3:d9:38:9a: d4:3f:e6:dd:2f:e0:96:87:01:ba:2a:2f:03:22:97:f8:59:a6: cd:a2:19:01:e2:a2:4d:ad:33:66:92:17:6b:1b:58:d7:86:55: 65:e4:1a:ff -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIULmYoGdY1/YukGyI59BfA9Q3AnwcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDQyNTAwMDA1NVoX DTI1MDUzMDIzNTk1OVowejFJMEcGA1UEBRNANWZmYTc3MjE2OGJmZmUxMGU0Yzdj ODU1YjY2YzhlYzI0NDA3MTA4OTgzM2UxMGNiMWY4MWYzMmMwZmNkNzg1MDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcdxglYsHi92Hy8eLrD5+agHlvgY 0Qb0LJSHJerkW/NGiPp/IKLOVFkg9WzcrDMlWo6rLEYN8IdYSBb+bde5dEYfL/Tb OAIgjNghwGMEmDeusHrFCKUuk6SqazlB9EyuwnzEU7J+XnMLs2in4+iUXQfKHX4X D8chSf0ztE5XeRPEP4dJf9xPOBf8tIcxdlSGDgtJrx+Ky8u0x2mGDyb8uXizaqUv jJxT6dkBDo7vtOxqJ1AM29g86jGKLpQ19/nBYb2DvypEzojXqi0+KBPj/vBrrsAy O9p/D/4pJBG/5ilr6W6lnjsX8ISqKGShiSpxe51+me9LD8tJuOORhIQbgwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOY6GCkZQkn/IK+cAgYmuu4Pd5jAMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzk3N2Y5MGUyLWQyNTctNGRkZS05NzQwLWIwMzkxNDU4ZDhlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQCEMbrsDrCPsYvTxFinOZIW RnSG+7BrSYdTPKc+qwiDKaupGUHm7hSCPOaYmfZ40XGg4qfFAhoG6KRqrlXXsb9d RGH/sBZ6m/O9yVeL9ss4Cp2Ma2BW0R3S3F3ULIyR7sl9QKM+fHkAR0aHGDngAeWT w9isscPEo3cDVRLfDz7J1hnk2Dp0lcJh6TBfHmhT3g69NBRp6XZl4J0hh2VNKWNP O3t2LwVsuvfBFMkw181cQ84XZQT3kIeTnl+NnKqaalbAwpjO26DB4ylH09NOBx6p JNgSrNPZOJrUP+bdL+CWhwG6Ki8DIpf4WabNohkB4qJNrTNmkhdrG1jXhlVl5Br/ -----END CERTIFICATE-----Generated at Sat Apr 26 08:25:07 2025 by rpki-client