$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa File: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (raw, json) Hash identifier: qWmi8xQ0CDGhmMvjM4kvTaOhA9UdZYREhO0gjQHilNA= Subject key identifier: 77:EE:E6:3A:FD:7D:A8:98:9C:3C:AA:19:67:0A:DB:FE:38:0F:93:D2 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 5B41A6145FDA5D94086252D29CC60FF1F31BFBE5 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa Signing time: Sat 14 Jun 2025 00:00:21 +0000 ROA not before: Sat 14 Jun 2025 00:00:21 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:41:a6:14:5f:da:5d:94:08:62:52:d2:9c:c6:0f:f1:f3:1b:fb:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jun 14 00:00:21 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=57d56500f56d037a322724ec70fe42367ff268e32b8038e7dcfe58891d2a0295, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a6:ad:7e:f3:aa:7b:27:a0:c2:8f:6b:45:a7: eb:22:d3:62:1b:21:b6:c6:d4:05:82:ab:fb:8c:f7: a1:eb:73:3a:7e:30:17:bb:81:09:70:c8:50:75:b8: be:a9:7c:5c:a4:71:b7:86:d5:a5:67:d3:ea:cd:d1: 2f:29:09:f5:aa:c9:0c:9e:9d:49:b8:65:49:80:a5: b0:7a:a7:8e:cd:bc:ef:71:9f:4c:72:93:7a:c7:ac: 30:de:a9:5a:61:73:5e:3b:06:e3:3a:f7:64:30:36: 7a:36:85:ef:cf:59:15:77:da:37:82:da:e8:b4:e5: 77:df:9c:68:0e:93:bd:55:7c:93:de:98:02:2c:1a: 6a:ef:fd:29:db:29:ad:07:ce:b8:bb:de:18:56:98: 6f:55:af:24:e7:5f:00:99:0a:20:b4:e9:10:de:44: 7a:f2:c9:0d:7b:fb:11:3d:5b:b7:3c:b7:05:af:ac: 88:c7:eb:7f:89:7c:7f:39:27:df:f9:f1:6f:bc:12: e6:e5:35:e6:99:92:63:88:e4:64:3c:61:a0:52:e8: a6:aa:6b:21:c9:5d:8e:32:50:ca:f8:2c:f7:05:59: 9b:06:f4:90:63:d6:0e:60:e8:76:56:61:34:b6:c5: 72:75:b5:7c:fa:07:8d:44:6c:cd:5e:2c:67:15:b4: 1c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:EE:E6:3A:FD:7D:A8:98:9C:3C:AA:19:67:0A:DB:FE:38:0F:93:D2 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018::/38 Signature Algorithm: sha256WithRSAEncryption 18:84:1f:ba:80:de:4d:b2:16:cf:a2:48:b3:51:fd:20:8e:71: f9:17:3b:4d:40:d4:23:6e:b9:0e:2a:78:47:79:dd:c5:5e:ff: ef:07:af:60:ed:53:99:2a:11:25:5c:70:c2:ca:73:5d:78:54: e1:fe:47:6b:8e:e1:1c:5d:87:0b:1d:07:16:89:72:d4:2f:11: 57:a2:49:5b:b8:d5:d8:7d:d4:35:99:39:67:eb:fc:9f:e7:be: f5:20:cf:2a:75:3b:a5:24:c9:c7:d9:cb:02:d6:92:ee:dc:aa: a5:81:97:18:fc:0a:7b:a6:9d:05:e5:23:63:20:07:3f:29:e4: 07:ac:5f:fc:25:d1:d3:f3:10:86:b9:41:01:06:2b:e4:57:9f: 35:c3:20:58:c9:b7:c3:5c:77:a3:19:51:ac:19:92:43:6a:67: fc:30:38:ca:34:4d:4e:79:3f:aa:d5:ba:63:19:95:67:fe:87: 58:0e:85:22:c2:53:7b:e3:38:8e:e6:e1:d0:6c:07:07:7a:52: 71:f8:53:12:8c:d3:67:15:b8:8a:a7:e0:11:14:64:fb:b3:65: 44:4a:10:a3:81:25:d6:d2:9f:eb:04:7d:bd:26:59:5a:54:d7: 1a:d2:04:5d:1d:a8:ae:d3:1e:04:d3:c2:75:6b:6b:27:d4:97: e1:68:fd:f5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUW0GmFF/aXZQIYlLSnMYP8fMb++UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDYxNDAwMDAyMVoX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNANTdkNTY1MDBmNTZkMDM3YTMyMjcy NGVjNzBmZTQyMzY3ZmYyNjhlMzJiODAzOGU3ZGNmZTU4ODkxZDJhMDI5NTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKatfvOqeyegwo9rRafrItNiGyG2 xtQFgqv7jPeh63M6fjAXu4EJcMhQdbi+qXxcpHG3htWlZ9PqzdEvKQn1qskMnp1J uGVJgKWweqeOzbzvcZ9McpN6x6ww3qlaYXNeOwbjOvdkMDZ6NoXvz1kVd9o3gtro tOV335xoDpO9VXyT3pgCLBpq7/0p2ymtB864u94YVphvVa8k518AmQogtOkQ3kR6 8skNe/sRPVu3PLcFr6yIx+t/iXx/OSff+fFvvBLm5TXmmZJjiORkPGGgUuimqmsh yV2OMlDK+Cz3BVmbBvSQY9YOYOh2VmE0tsVydbV8+geNRGzNXixnFbQcNwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHfu5jr9faiYnDyqGWcK2/44D5PSMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2ZjYzQyOTNjLWIyNGYtNGZhYy05Mzk1LTU0NmY3NDhiM2IxMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAAwDQYJKoZIhvcNAQELBQADggEBABiEH7qA3k2yFs+iSLNR /SCOcfkXO01A1CNuuQ4qeEd53cVe/+8Hr2DtU5kqESVccMLKc114VOH+R2uO4Rxd hwsdBxaJctQvEVeiSVu41dh91DWZOWfr/J/nvvUgzyp1O6UkycfZywLWku7cqqWB lxj8CnumnQXlI2MgBz8p5AesX/wl0dPzEIa5QQEGK+RXnzXDIFjJt8Ncd6MZUawZ kkNqZ/wwOMo0TU55P6rVumMZlWf+h1gOhSLCU3vjOI7m4dBsBwd6UnH4UxKM02cV uIqn4BEUZPuzZURKEKOBJdbSn+sEfb0mWVpU1xrSBF0dqK7THgTTwnVrayfUl+Fo /fU= -----END CERTIFICATE-----Generated at Sat Jun 14 05:57:58 2025 by rpki-client