$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa File: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (raw, json) Hash identifier: kPLHCsy2l74vwSA5+P4eXKvqQQMOMSB0DZH/6ZT6CX0= Subject key identifier: A5:51:4F:D9:1A:9D:CF:6C:1B:1E:75:53:9D:FD:9B:DB:6A:9E:32:7E Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 614C950D7493D39E4525278EFC51CBAA610B8030 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa Signing time: Tue 25 Mar 2025 16:50:05 +0000 ROA not before: Tue 25 Mar 2025 16:50:05 +0000 ROA not after: Tue 29 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:4c:95:0d:74:93:d3:9e:45:25:27:8e:fc:51:cb:aa:61:0b:80:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000 Validity Not Before: Mar 25 16:50:05 2025 GMT Not After : Apr 29 23:59:59 2025 GMT Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:33:3f:a7:f6:f5:c7:d4:93:2d:33:29:18: c9:d7:6c:57:fc:f6:4b:c0:1d:45:b1:0f:c5:7f:4c: 45:bb:32:4e:92:8c:07:31:76:90:d8:3d:f2:b2:f0: a3:07:8a:8b:c9:00:53:e3:80:22:25:28:67:af:b2: 69:4b:f5:4c:b0:a0:fc:bd:e4:8d:85:d6:3f:5f:5d: ba:bb:11:04:13:ea:9c:7d:c8:0b:86:7e:21:3f:93: 23:03:92:f2:89:ed:06:60:f5:47:f9:d3:ca:dc:a5: a9:e9:0e:94:8d:27:32:17:2a:8f:2e:05:18:4f:52: e2:2d:bb:a4:27:2d:f7:ba:72:64:49:2a:78:a7:47: 32:40:bc:1e:91:d1:e3:e8:40:48:3b:f7:2f:d9:3a: 0d:ab:4c:ba:c3:78:aa:e7:6d:7a:f8:86:05:6c:54: 7a:dd:b7:fe:ae:21:c3:d6:84:26:80:55:8e:da:01: 61:a7:83:d8:ef:c8:6a:29:0c:e1:4f:b0:7e:f1:08: 8a:c0:49:3e:8d:a0:3f:a8:72:aa:ff:ba:16:80:eb: de:d5:61:3d:6c:e7:e1:93:53:77:6e:d4:99:97:be: 8b:9b:99:2c:8b:c4:99:45:6a:9a:f5:2b:05:8c:eb: b7:18:ee:d8:79:f4:fb:76:a4:42:50:8f:d6:91:2f: da:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:51:4F:D9:1A:9D:CF:6C:1B:1E:75:53:9D:FD:9B:DB:6A:9E:32:7E X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:8000::/40 Signature Algorithm: sha256WithRSAEncryption 7b:8a:da:cf:20:00:98:c0:6f:63:a1:0e:29:9f:12:7c:75:ca: b0:e7:ec:5d:cf:a6:55:6f:c6:ac:05:dc:27:af:8e:42:16:90: 73:f1:98:ed:10:7c:e4:98:37:2a:03:9a:e9:70:7a:e9:8e:f2: 61:3a:ac:4b:57:b4:a5:0e:fb:ca:19:16:91:37:32:62:c5:d0: 38:64:a0:fb:74:1a:c1:cf:d8:31:e9:f7:9e:46:e1:a5:b8:a3: 56:12:c5:da:04:cc:6b:a8:8b:ea:2d:0e:ae:65:7a:40:6f:3e: 13:aa:d7:27:1f:83:0c:ec:77:32:05:5d:84:aa:ef:55:c6:e6: 1a:65:f3:3d:43:cd:92:d2:94:d6:31:8e:e3:35:f6:b7:cc:21: 29:6a:cf:b3:2d:0d:df:e7:36:a0:06:57:ca:9f:a8:ab:53:74: a8:eb:4f:5d:aa:46:fe:f1:31:e6:37:94:be:b1:9b:94:b3:6f: 32:dc:87:0f:61:95:7a:1b:fb:50:f7:52:d1:32:88:e0:54:bc: c7:fe:f2:d1:f6:90:2e:3d:01:40:c0:7f:e1:22:94:ed:a1:e9: a1:ff:5a:c0:a3:6c:7f:85:3c:62:a3:47:69:1f:7b:5d:ae:71: e9:ab:ca:ce:8c:39:f9:fc:5f:f0:d5:7f:e8:1b:78:49:23:ea: 47:08:a5:b4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYUyVDXST055FJSeO/FHLqmELgDAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDMyNTE2NTAwNVoX DTI1MDQyOTIzNTk1OVowejFJMEcGA1UEBRNAMTExNWZlYjc5OWY3MGRhYWQ4ZWIx ZWM3OGU5NDFhMTg4MGQxMzdkODRjMWE5NGE4YzcwMWYxMzg5NWIxZTg1YjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGozP6f29cfUky0zKRjJ12xX/PZL wB1FsQ/Ff0xFuzJOkowHMXaQ2D3ysvCjB4qLyQBT44AiJShnr7JpS/VMsKD8veSN hdY/X126uxEEE+qcfcgLhn4hP5MjA5Lyie0GYPVH+dPK3KWp6Q6UjScyFyqPLgUY T1LiLbukJy33unJkSSp4p0cyQLwekdHj6EBIO/cv2ToNq0y6w3iq5216+IYFbFR6 3bf+riHD1oQmgFWO2gFhp4PY78hqKQzhT7B+8QiKwEk+jaA/qHKq/7oWgOve1WE9 bOfhk1N3btSZl76Lm5ksi8SZRWqa9SsFjOu3GO7YefT7dqRCUI/WkS/aGwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKVRT9kanc9sGx51U539m9tqnjJ+MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIyNDdmMzRmLWU1YjEtNDIzYy1hYzBmLTcxNDJhZDg2YmQ5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+YAwDQYJKoZIhvcNAQELBQADggEBAHuK2s8gAJjAb2OhDimf Enx1yrDn7F3PplVvxqwF3CevjkIWkHPxmO0QfOSYNyoDmulweumO8mE6rEtXtKUO +8oZFpE3MmLF0DhkoPt0GsHP2DHp955G4aW4o1YSxdoEzGuoi+otDq5lekBvPhOq 1ycfgwzsdzIFXYSq71XG5hpl8z1DzZLSlNYxjuM19rfMISlqz7MtDd/nNqAGV8qf qKtTdKjrT12qRv7xMeY3lL6xm5SzbzLchw9hlXob+1D3UtEyiOBUvMf+8tH2kC49 AUDAf+EilO2h6aH/WsCjbH+FPGKjR2kfe12ucemrys6MOfn8X/DVf+gbeEkj6kcI pbQ= -----END CERTIFICATE-----Generated at Fri Apr 4 23:22:31 2025 by rpki-client