$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa File: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (raw, json) Hash identifier: wBe+pOFeZb0WBJC1wG2nFVSQwanGcJYKZNFCHRV7gUo= Subject key identifier: 2E:A5:FD:98:77:46:85:A5:1D:C5:3C:5C:4B:B4:EC:12:12:E9:01:72 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 51FB7E37AE12F27B92BA52A6A747EBE07D8909AA Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa Signing time: Fri 01 Aug 2025 00:50:12 +0000 ROA not before: Fri 01 Aug 2025 00:50:12 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:fb:7e:37:ae:12:f2:7b:92:ba:52:a6:a7:47:eb:e0:7d:89:09:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 1 00:50:12 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=9066742299c1db377f2efe43a1eda109af795d2b66793e761cd286b1248a0263, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d5:94:56:39:92:5e:60:6d:03:d9:e1:88:95: 5d:4e:27:c2:b4:23:31:91:86:56:30:18:e7:b4:0f: 3e:c4:d8:2a:01:24:50:53:5d:89:34:2b:0b:d8:d3: 2f:08:a0:36:72:22:1f:00:4e:fc:61:eb:53:a2:6e: 8e:c9:ae:6c:48:c5:15:65:72:71:a9:0d:68:9b:bb: c2:3a:fc:09:ee:52:2d:e1:a6:78:48:07:e9:86:20: c2:8d:ba:1f:cb:ba:62:50:cc:6b:af:aa:09:bf:2a: f3:bf:aa:e1:5c:e3:1d:33:26:5d:8f:12:aa:30:c5: d4:5e:74:56:e0:7c:01:fb:88:d5:20:db:eb:64:01: 3a:fb:2f:6a:85:a1:11:85:e8:0d:03:3b:01:ae:81: 6c:55:f4:81:2b:11:42:24:7e:87:21:91:78:90:e4: 00:3e:d5:56:11:72:5f:90:ea:f7:c5:ea:3c:b4:d5: 0e:07:b0:2a:57:78:d2:8e:78:23:3c:6f:c6:f8:40: 2d:e0:4c:35:d9:ec:79:ef:bc:a0:96:42:5b:2a:21: 3d:3f:11:3e:62:90:76:e2:a1:60:5c:b0:50:3e:07: 99:0d:d7:a2:5e:5a:fc:c4:63:5f:68:52:4e:dc:5c: c3:d4:ef:2a:47:1f:89:ff:3a:01:cd:d7:62:b2:23: 76:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A5:FD:98:77:46:85:A5:1D:C5:3C:5C:4B:B4:EC:12:12:E9:01:72 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:8000::/40 Signature Algorithm: sha256WithRSAEncryption 3b:ef:87:74:a3:4a:14:40:15:6e:36:85:51:7d:8d:8d:9e:b2: 3c:22:1d:45:21:7d:24:1b:a7:05:51:34:90:e1:59:49:67:89: b0:bd:82:1f:67:a1:5e:fe:69:32:82:d3:5e:08:2c:9a:1c:81: 18:ce:eb:d1:17:64:0b:94:ce:3f:31:d7:a2:06:47:bc:94:e7: 2c:42:5e:10:fa:fc:b9:87:2c:44:ff:f0:db:1e:f9:15:4a:4f: 2c:73:9f:67:92:d9:70:ec:63:64:98:a3:53:b4:33:74:ba:84: 21:3c:0e:3b:fb:22:40:c1:1d:1b:ca:00:1c:58:cc:bb:d9:35: 1f:e4:c7:97:25:99:11:be:a1:3d:ae:b0:56:b7:15:97:11:73: fd:f0:96:08:bc:1c:c9:75:79:5b:0b:af:9b:44:82:cd:6f:a7: 62:a4:55:90:66:bd:0c:a4:7f:70:69:b9:46:1f:a7:b9:e6:d4: f4:0a:41:88:bc:fb:69:32:7d:1b:04:07:5c:0a:e2:7f:64:e4: da:28:8b:4a:c7:d1:29:ab:fe:ec:c1:c1:82:6f:c9:b8:8d:d1: f3:c6:1b:b2:2f:4e:3e:14:b4:e5:14:76:d5:dd:11:25:8f:b4: e1:99:fa:ed:c3:ba:35:ea:c9:8b:a4:e0:c6:5d:b3:f4:2d:07: 0d:f5:12:2f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUft+N64S8nuSulKmp0fr4H2JCaowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDgwMTAwNTAxMloX DTI1MDkwNTIzNTk1OVowejFJMEcGA1UEBRNAOTA2Njc0MjI5OWMxZGIzNzdmMmVm ZTQzYTFlZGExMDlhZjc5NWQyYjY2NzkzZTc2MWNkMjg2YjEyNDhhMDI2MzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtWUVjmSXmBtA9nhiJVdTifCtCMx kYZWMBjntA8+xNgqASRQU12JNCsL2NMvCKA2ciIfAE78YetTom6Oya5sSMUVZXJx qQ1om7vCOvwJ7lIt4aZ4SAfphiDCjbofy7piUMxrr6oJvyrzv6rhXOMdMyZdjxKq MMXUXnRW4HwB+4jVINvrZAE6+y9qhaERhegNAzsBroFsVfSBKxFCJH6HIZF4kOQA PtVWEXJfkOr3xeo8tNUOB7AqV3jSjngjPG/G+EAt4Ew12ex577yglkJbKiE9PxE+ YpB24qFgXLBQPgeZDdeiXlr8xGNfaFJO3FzD1O8qRx+J/zoBzddisiN2vQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFC6l/Zh3RoWlHcU8XEu07BIS6QFyMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M2YzhjMmM4LTI2MTAtNGI0Ni05ZTU1LTY3YzEyY2VjY2JiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/oAwDQYJKoZIhvcNAQELBQADggEBADvvh3SjShRAFW42hVF9 jY2esjwiHUUhfSQbpwVRNJDhWUlnibC9gh9noV7+aTKC014ILJocgRjO69EXZAuU zj8x16IGR7yU5yxCXhD6/LmHLET/8Nse+RVKTyxzn2eS2XDsY2SYo1O0M3S6hCE8 Djv7IkDBHRvKABxYzLvZNR/kx5clmRG+oT2usFa3FZcRc/3wlgi8HMl1eVsLr5tE gs1vp2KkVZBmvQykf3BpuUYfp7nm1PQKQYi8+2kyfRsEB1wK4n9k5Nooi0rH0Smr /uzBwYJvybiN0fPGG7IvTj4UtOUUdtXdESWPtOGZ+u3DujXqyYuk4MZds/QtBw31 Ei8= -----END CERTIFICATE-----Generated at Mon Aug 4 21:43:54 2025 by rpki-client