$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa File: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (raw, json) Hash identifier: SQnYf28UeqO6nE2b991mx1cJqNJcf6Fb6QoFAjd6/lo= Subject key identifier: EB:60:6A:11:0C:D3:4C:83:D2:9A:A9:0B:3E:CE:86:24:D7:18:71:33 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3B7D3F8117A299AFDB5C647699464389A77F600A Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa Signing time: Sat 14 Jun 2025 00:00:07 +0000 ROA not before: Sat 14 Jun 2025 00:00:07 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:7d:3f:81:17:a2:99:af:db:5c:64:76:99:46:43:89:a7:7f:60:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:07 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=838eda95982538d6f4d6e13515dc5fcb28478391a110b0a7ebe858df45d47195, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c4:42:fd:81:f8:d7:7a:8f:91:43:d7:d7:a0: fd:23:b8:06:96:94:9c:b8:3b:c9:fd:20:fb:2b:be: 3b:45:49:a7:e4:24:2a:a8:56:25:aa:10:db:13:4e: d0:b3:21:e6:a7:4e:68:1b:4a:c1:aa:06:19:bb:1e: f6:ac:28:6f:78:71:04:ac:f1:ed:b9:dd:a2:4b:1f: 08:0f:13:71:88:75:92:d5:96:1c:0a:fd:e8:90:f5: 5b:5e:25:bb:9e:7b:55:d7:b1:21:49:86:10:3d:e4: 0b:cd:c2:28:dd:4c:45:c8:8e:20:b1:52:ea:eb:ae: f7:27:64:2d:7a:27:f0:0c:63:08:fa:a5:d2:dc:18: 50:24:3d:d1:a6:07:cb:67:77:bc:8c:9c:3e:f2:d4: 8e:47:30:6a:35:cc:1b:70:e1:2c:e6:bb:fc:76:38: 6c:d1:75:68:c5:11:98:b0:92:28:91:a9:85:67:88: 50:cf:4b:2e:42:af:b8:25:a2:d4:dd:4f:ca:d0:21: f9:89:8b:23:9a:87:b7:c9:aa:59:49:ce:ca:ef:c6: fb:1f:73:68:26:ea:65:49:a3:cb:c8:62:8b:7d:35: 7a:26:5b:48:4f:7e:be:ea:b1:63:20:67:7a:45:ec: 34:36:d5:33:0f:4b:0e:24:76:b6:09:33:8f:ef:47: 7a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:60:6A:11:0C:D3:4C:83:D2:9A:A9:0B:3E:CE:86:24:D7:18:71:33 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4000::/40 Signature Algorithm: sha256WithRSAEncryption 50:60:7f:6c:30:b0:eb:05:c1:19:f3:21:4b:e6:43:84:e9:2d: 48:08:1f:89:dd:f4:b4:eb:41:e4:40:5c:3a:5c:f2:e3:43:a0: b1:76:b4:7d:54:c6:7d:da:b0:dc:34:e3:08:5b:8d:7b:aa:07: 99:d1:18:92:26:d4:94:b1:3b:61:48:5b:e5:4b:9a:19:98:77: cb:d7:4b:e9:d9:74:66:22:41:0a:81:dd:ac:51:46:bc:9a:35: 6b:74:8b:b8:12:0f:e2:a5:2e:0d:e3:bb:55:3e:70:bb:6e:f7: c4:b7:79:95:43:3f:40:e2:40:93:bf:d1:5c:28:c4:6c:87:ad: a7:08:6e:b8:8b:3e:9b:7e:13:b1:63:53:75:9c:54:4a:1e:31: 15:d4:2b:cd:30:68:f8:81:3b:f9:24:e0:36:e8:af:cb:9c:c1: c8:d8:e3:51:bf:b9:a8:04:af:53:33:00:4f:ca:b1:60:b8:0c: 9b:5e:ce:62:0d:58:12:b9:72:92:27:b9:8b:db:68:18:d8:0c: fd:9c:09:f0:15:a4:87:09:6c:e0:da:c2:4d:90:85:66:c7:74: 51:f9:ea:49:a6:78:f7:6a:3a:e4:d5:37:9b:5e:2e:97:dd:4b: 1b:b1:70:7c:54:07:f7:3c:29:dc:60:8a:2b:0d:7f:f9:f0:e7: a5:28:d7:9e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUO30/gReima/bXGR2mUZDiad/YAowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDAwN1oX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAODM4ZWRhOTU5ODI1MzhkNmY0ZDZl MTM1MTVkYzVmY2IyODQ3ODM5MWExMTBiMGE3ZWJlODU4ZGY0NWQ0NzE5NTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2cRC/YH413qPkUPX16D9I7gGlpSc uDvJ/SD7K747RUmn5CQqqFYlqhDbE07QsyHmp05oG0rBqgYZux72rChveHEErPHt ud2iSx8IDxNxiHWS1ZYcCv3okPVbXiW7nntV17EhSYYQPeQLzcIo3UxFyI4gsVLq 6673J2QteifwDGMI+qXS3BhQJD3RpgfLZ3e8jJw+8tSORzBqNcwbcOEs5rv8djhs 0XVoxRGYsJIokamFZ4hQz0suQq+4JaLU3U/K0CH5iYsjmoe3yapZSc7K78b7H3No JuplSaPLyGKLfTV6JltIT36+6rFjIGd6Rew0NtUzD0sOJHa2CTOP70d6TwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOtgahEM00yD0pqpCz7OhiTXGHEzMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M3YjQ5MWU0LTc2YWUtNDMwNS04MTMyLWE2NzBiNDFjNjZmZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/0AwDQYJKoZIhvcNAQELBQADggEBAFBgf2wwsOsFwRnzIUvm Q4TpLUgIH4nd9LTrQeRAXDpc8uNDoLF2tH1Uxn3asNw04whbjXuqB5nRGJIm1JSx O2FIW+VLmhmYd8vXS+nZdGYiQQqB3axRRryaNWt0i7gSD+KlLg3ju1U+cLtu98S3 eZVDP0DiQJO/0VwoxGyHracIbriLPpt+E7FjU3WcVEoeMRXUK80waPiBO/kk4Dbo r8ucwcjY41G/uagEr1MzAE/KsWC4DJtezmINWBK5cpInuYvbaBjYDP2cCfAVpIcJ bODawk2QhWbHdFH56kmmePdqOuTVN5teLpfdSxuxcHxUB/c8KdxgiisNf/nw56Uo 154= -----END CERTIFICATE-----Generated at Sat Jun 14 06:10:37 2025 by rpki-client