$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa File: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (raw, json) Hash identifier: qtoH8v6ASs+r4lTKMTOwtPd75VQjH8okZ0vZ3ji1WWM= Subject key identifier: 6A:E0:B6:48:41:C3:52:25:BB:18:30:50:77:E4:0B:E9:13:E0:50:83 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3A1E155F294F80DB4FA4B35D094DFC643D1A40B9 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa Signing time: Wed 09 Jul 2025 00:00:31 +0000 ROA not before: Wed 09 Jul 2025 00:00:31 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:1e:15:5f:29:4f:80:db:4f:a4:b3:5d:09:4d:fc:64:3d:1a:40:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jul 9 00:00:31 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=bbafa07f9c6e0474aeba245f0ce0b1631f533fe82729d80ced42ad18fd83c7ac, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cb:5e:ba:bc:66:7c:32:7e:84:78:20:29:3d: cb:de:19:8f:db:63:d2:15:0c:80:42:3f:4d:55:16: ec:37:8d:84:8a:3e:94:39:04:7d:80:28:eb:8b:96: e6:2c:3d:c6:8c:e1:c2:b0:13:1b:28:0b:cc:86:45: 63:69:cc:c3:db:b4:20:d0:c2:d9:a9:70:c5:ae:6d: 94:8e:82:9e:08:7f:f0:70:5a:98:28:b7:4e:6b:ea: 7b:7d:36:ce:b9:a4:dc:cc:3d:88:01:34:08:39:cb: 25:b1:d2:a4:a0:75:bf:48:d4:de:aa:c7:0e:c5:49: 6a:68:4d:bf:1b:5a:af:8f:de:11:ab:3c:ae:d2:db: 21:2b:df:6d:97:09:d9:2e:bb:dc:df:b6:33:2e:c3: 52:4d:07:f9:9a:ec:58:f1:7f:3c:24:03:09:e1:9e: 56:e0:86:85:c0:9a:f9:85:7c:01:6d:f8:71:89:da: 06:1e:2c:06:de:11:e7:b8:d6:23:0b:82:74:81:f5: fe:ef:49:27:8c:ee:bd:85:fb:3d:91:4a:42:72:c6: d1:3d:19:73:ef:36:9f:a1:3f:eb:0d:ca:88:fb:ad: 2e:bd:11:4d:f3:8f:99:ee:96:f1:a9:ac:00:45:ae: 5e:7a:ea:36:5e:e6:84:76:7d:f2:b4:aa:11:05:ff: 3b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E0:B6:48:41:C3:52:25:BB:18:30:50:77:E4:0B:E9:13:E0:50:83 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:800::/38 Signature Algorithm: sha256WithRSAEncryption 9e:d5:0d:85:6d:dc:55:ff:98:be:0e:8e:47:bf:ad:71:98:20: 12:d1:ad:79:40:21:3c:ce:09:15:8d:55:8c:8f:67:0f:8c:a6: 2f:b7:21:3c:b1:c8:15:34:4a:1b:6b:61:60:46:1f:3f:db:33: c9:98:78:77:7c:97:89:c7:12:2c:83:8c:b0:b1:3d:f1:c7:b0: 28:8e:ff:24:3b:c6:d2:ed:ca:e8:b6:0e:0a:c8:88:bc:b3:c8: be:2c:21:e5:9d:de:3e:4c:a2:7e:2a:7a:72:1e:7b:e2:10:12: 3c:aa:d3:03:37:5a:66:ea:64:f5:f5:28:38:bb:91:61:7a:58: 48:60:55:75:e1:44:27:3d:2c:b0:8e:2c:b3:fe:79:74:2a:be: f7:20:3f:58:4e:58:ff:1e:d2:6a:16:cd:09:31:b2:32:13:4f: 17:71:78:46:c5:0d:bb:f1:6e:21:7e:bc:bf:12:44:b7:1c:c3: 51:04:8f:94:d5:ed:84:31:d2:2c:62:d9:e3:c5:ba:ed:8d:9b: 47:b6:91:61:fb:08:22:66:83:d2:43:36:0d:c6:43:8b:d8:88: f7:d2:ad:53:fe:fa:6f:76:32:80:df:c9:ec:d2:e5:84:70:cd: a9:d6:d1:42:f3:fd:de:f8:f9:a3:47:27:08:2d:bf:94:2e:60: 75:36:81:a1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUOh4VXylPgNtPpLNdCU38ZD0aQLkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDcwOTAwMDAzMVoX DTI1MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYmJhZmEwN2Y5YzZlMDQ3NGFlYmEy NDVmMGNlMGIxNjMxZjUzM2ZlODI3MjlkODBjZWQ0MmFkMThmZDgzYzdhYzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsteurxmfDJ+hHggKT3L3hmP22PS FQyAQj9NVRbsN42Eij6UOQR9gCjri5bmLD3GjOHCsBMbKAvMhkVjaczD27Qg0MLZ qXDFrm2UjoKeCH/wcFqYKLdOa+p7fTbOuaTczD2IATQIOcslsdKkoHW/SNTeqscO xUlqaE2/G1qvj94Rqzyu0tshK99tlwnZLrvc37YzLsNSTQf5muxY8X88JAMJ4Z5W 4IaFwJr5hXwBbfhxidoGHiwG3hHnuNYjC4J0gfX+70knjO69hfs9kUpCcsbRPRlz 7zafoT/rDcqI+60uvRFN84+Z7pbxqawARa5eeuo2XuaEdn3ytKoRBf87ZQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGrgtkhBw1IluxgwUHfkC+kT4FCDMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzAxOGRlYTBkLTQyZWItNGQ1OC04OTE0LTYzNmQyNWNhM2IzYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAgwDQYJKoZIhvcNAQELBQADggEBAJ7VDYVt3FX/mL4Ojke/ rXGYIBLRrXlAITzOCRWNVYyPZw+Mpi+3ITyxyBU0ShtrYWBGHz/bM8mYeHd8l4nH EiyDjLCxPfHHsCiO/yQ7xtLtyui2DgrIiLyzyL4sIeWd3j5Mon4qenIee+IQEjyq 0wM3WmbqZPX1KDi7kWF6WEhgVXXhRCc9LLCOLLP+eXQqvvcgP1hOWP8e0moWzQkx sjITTxdxeEbFDbvxbiF+vL8SRLccw1EEj5TV7YQx0ixi2ePFuu2Nm0e2kWH7CCJm g9JDNg3GQ4vYiPfSrVP++m92MoDfyezS5YRwzanW0ULz/d74+aNHJwgtv5QuYHU2 gaE= -----END CERTIFICATE-----Generated at Tue Jul 22 11:45:06 2025 by rpki-client