$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa File: c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa (raw, json) Hash identifier: DF8XI6WjPS52VQHKFuLk2e3ZMsQ6f2k7M9jAPMu+Ies= Subject key identifier: E2:88:89:F1:43:5A:B3:66:27:98:FD:68:7A:B5:BE:16:4B:D3:A2:52 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 44584B3BCE5C51B9686B3D90FD5A85BA3BEF73F2 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa Signing time: Sat 14 Jun 2025 00:00:06 +0000 ROA not before: Sat 14 Jun 2025 00:00:06 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:58:4b:3b:ce:5c:51:b9:68:6b:3d:90:fd:5a:85:ba:3b:ef:73:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:06 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=31f7aae5cefd3bd65284cc4502fd5be17f347f86944fcce890f817d8a0d226ca, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b7:3f:40:a6:d5:c5:5c:ca:8e:c9:69:ea:06: b1:45:a0:2d:70:63:7c:54:e2:34:e8:6f:ef:3c:82: c2:c0:1e:56:9c:7c:ec:26:ed:e5:6f:86:b9:eb:68: dc:3b:45:38:8a:d9:22:75:1c:2e:4a:b1:42:0b:ad: 6b:d4:c3:12:0e:61:1e:dc:20:52:66:d5:08:a2:a1: 95:d5:aa:30:47:5b:d5:2c:84:f2:03:0d:5b:9d:2f: 54:ce:f4:f1:7a:fd:fa:7e:82:0d:84:ad:bd:8d:02: 4d:17:40:29:f1:e3:6d:54:e0:d6:ea:72:4f:3e:2e: 3a:a4:ad:f1:c2:24:5f:2a:04:dd:09:d4:df:06:e4: fb:de:f5:4a:2e:3b:10:d9:67:35:83:b9:f4:95:05: 63:b8:6b:74:23:d0:ed:4c:b0:e0:87:cd:aa:34:d6: 2c:ab:46:64:36:f8:0e:b2:16:32:58:69:7f:d5:45: ab:5a:79:cb:35:25:4f:17:94:4e:bc:63:84:49:25: 7d:53:73:e9:db:c8:06:da:d0:f8:dc:b6:4f:44:bf: 5c:da:31:d3:80:0f:58:06:83:1f:23:c9:9f:6f:ef: a9:fa:d3:b1:4b:07:5d:26:00:54:1b:de:8b:90:48: c2:44:7c:9e:40:91:e5:a5:f1:90:d7:82:b5:55:e7: 0e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:88:89:F1:43:5A:B3:66:27:98:FD:68:7A:B5:BE:16:4B:D3:A2:52 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 8f:0b:c5:14:86:a1:eb:96:a6:de:88:89:dc:08:c2:45:a3:0a: 42:f8:95:9c:67:23:1c:36:3e:2d:28:cc:ab:41:ec:f6:03:f6: e6:35:f1:03:0d:32:28:84:a6:b4:6a:78:9a:eb:6d:ef:bd:a2: b5:ed:77:6f:5d:c0:1e:06:54:65:ed:3d:64:0c:1b:41:1a:df: e8:e0:a1:0c:bd:ce:4f:89:5c:00:1a:2f:e1:98:84:46:5d:45: eb:46:be:50:3e:cd:73:2c:7e:4e:20:78:f3:0e:0c:af:5b:24: 63:f2:24:05:f7:fb:3a:13:0b:1d:d7:29:21:7c:0f:8f:95:81: 45:9e:66:d8:3c:7f:69:24:c2:79:e3:5a:5f:bb:bf:68:5f:01: 3a:85:b2:d7:78:f4:81:21:d9:86:a6:6d:8f:cf:1b:8f:ca:17: ca:db:55:9a:eb:66:40:b0:9f:39:d3:cb:4e:d3:74:83:37:af: 25:59:ea:0c:00:62:a0:7e:20:3c:5c:d9:21:92:6d:0b:32:02: 04:67:91:ed:66:75:de:17:cc:a7:ea:c3:3e:88:52:5b:5a:5a: ff:e2:83:11:99:cd:86:eb:f6:5c:e4:ea:89:27:92:94:27:74: 23:3c:66:39:c9:61:82:f7:c0:39:d9:b0:03:fc:c3:2f:be:4b: 15:90:64:54 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURFhLO85cUbloaz2Q/VqFujvvc/IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDAwNloX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAMzFmN2FhZTVjZWZkM2JkNjUyODRj YzQ1MDJmZDViZTE3ZjM0N2Y4Njk0NGZjY2U4OTBmODE3ZDhhMGQyMjZjYTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLc/QKbVxVzKjslp6gaxRaAtcGN8 VOI06G/vPILCwB5WnHzsJu3lb4a562jcO0U4itkidRwuSrFCC61r1MMSDmEe3CBS ZtUIoqGV1aowR1vVLITyAw1bnS9UzvTxev36foINhK29jQJNF0Ap8eNtVODW6nJP Pi46pK3xwiRfKgTdCdTfBuT73vVKLjsQ2Wc1g7n0lQVjuGt0I9DtTLDgh82qNNYs q0ZkNvgOshYyWGl/1UWrWnnLNSVPF5ROvGOESSV9U3Pp28gG2tD43LZPRL9c2jHT gA9YBoMfI8mfb++p+tOxSwddJgBUG96LkEjCRHyeQJHlpfGQ14K1VecO0QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFOKIifFDWrNmJ5j9aHq1vhZL06JSMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M5ZjdkYmQyLTFjN2UtNDJlOC1hN2Y5LTAwYmQ3NmU3MDI0OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/0DAMA0GCSqGSIb3DQEBCwUAA4IBAQCPC8UUhqHrlqbeiInc CMJFowpC+JWcZyMcNj4tKMyrQez2A/bmNfEDDTIohKa0ania623vvaK17XdvXcAe BlRl7T1kDBtBGt/o4KEMvc5PiVwAGi/hmIRGXUXrRr5QPs1zLH5OIHjzDgyvWyRj 8iQF9/s6Ewsd1ykhfA+PlYFFnmbYPH9pJMJ541pfu79oXwE6hbLXePSBIdmGpm2P zxuPyhfK21Wa62ZAsJ8508tO03SDN68lWeoMAGKgfiA8XNkhkm0LMgIEZ5HtZnXe F8yn6sM+iFJbWlr/4oMRmc2G6/Zc5OqJJ5KUJ3QjPGY5yWGC98A52bAD/MMvvksV kGRU -----END CERTIFICATE-----Generated at Sat Jun 14 05:40:20 2025 by rpki-client