$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: k72dvEIhphRqBQHhkjQiFBMohBa7KL++E30mH8M3GkA= Subject key identifier: 7D:D9:B5:8F:0E:2A:01:01:6A:0E:2C:89:0E:13:28:5F:A7:B8:D1:20 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 581593685EDE44F5AD602D077A2A165363303ED1 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Wed 09 Jul 2025 00:00:24 +0000 ROA not before: Wed 09 Jul 2025 00:00:24 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:15:93:68:5e:de:44:f5:ad:60:2d:07:7a:2a:16:53:63:30:3e:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jul 9 00:00:24 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=c3c324cbd5c299ed8cf7ee9b681653ed34de48fe115fd890dd65f070fd72b7e0, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9c:43:d3:e0:69:1a:f7:ec:37:c9:af:cc:7a: e8:a7:53:fb:a8:59:17:95:6d:2a:c0:64:d7:fd:a6: 20:19:b1:8f:9f:be:5d:0c:2b:21:af:62:15:15:0c: 63:80:f7:2e:b3:83:01:eb:6a:a0:16:1f:89:63:51: 55:a8:71:a5:46:8c:c8:fd:64:ce:68:19:1b:ab:68: 95:0f:30:5b:74:41:2c:b5:04:bf:0d:bf:3f:b2:59: 6d:59:9b:34:b5:4b:55:2a:98:9b:8b:cc:ef:6d:47: d2:35:e4:5c:4e:87:81:59:e2:20:39:45:79:2a:89: 48:29:d4:bb:fb:76:da:d7:b2:13:8b:32:76:92:42: 4b:3b:20:39:bc:d7:e2:d2:f4:de:5b:4c:54:e0:2a: 7b:e1:ae:6f:3e:ae:22:7e:d7:9a:2c:30:5e:2a:01: 5b:a8:47:49:66:a1:08:65:f1:c3:1d:18:13:e2:ad: f1:51:a3:ff:0e:6f:e2:b3:d3:0d:7f:9a:78:9c:0a: 06:ad:05:d5:2b:3b:67:1c:d6:53:cc:be:d4:33:fe: 47:90:1e:9a:9e:e9:cf:bb:6a:77:65:25:eb:9c:05: 14:35:b6:eb:a1:99:17:44:1d:78:23:c1:5b:e0:46: af:d6:14:cb:3a:cd:36:c7:3f:76:cf:6a:a4:a8:14: 80:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:D9:B5:8F:0E:2A:01:01:6A:0E:2C:89:0E:13:28:5F:A7:B8:D1:20 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption ad:38:ac:6e:49:60:c0:b3:ea:2e:89:aa:fb:aa:bf:5c:fd:73: 5b:07:70:f6:53:42:ca:51:41:ce:9d:08:36:71:e4:25:ee:43: f6:63:4e:39:cc:e9:53:6f:7c:f6:59:98:aa:eb:e5:65:7d:aa: bb:ae:0f:7b:2c:3e:a7:57:ff:20:ac:42:8e:b7:9e:47:47:aa: 54:59:08:01:32:7a:e5:12:e2:b8:d3:65:24:1e:7a:1a:b8:97: 23:22:3b:12:13:84:8d:3e:62:70:2e:6c:79:67:44:68:70:f1: 6b:70:51:f6:92:04:ac:4f:d1:18:67:11:3a:90:7a:ae:12:37: 94:cd:ef:c1:05:a5:e2:2d:54:ed:28:18:12:17:49:93:08:43: 07:10:b4:83:15:1e:e3:d4:59:0d:34:66:46:24:75:b5:37:6b: de:85:3c:fc:a4:fc:0d:88:36:93:2d:4b:21:ec:cc:31:9e:0c: f2:20:d3:85:f7:32:99:90:08:38:2c:6b:02:b9:82:d1:e4:3e: 7a:d8:9f:96:9e:e7:e0:a1:5b:68:9b:e2:d2:6b:40:8f:74:98: 43:99:89:c9:0b:26:62:68:60:9b:02:d9:be:ae:9d:ae:3e:1c: e3:58:ad:a1:f8:e7:36:99:fc:02:73:84:a6:3f:67:b1:41:05: a7:87:e8:1d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUWBWTaF7eRPWtYC0HeioWU2MwPtEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDcwOTAwMDAyNFoX DTI1MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYzNjMzI0Y2JkNWMyOTllZDhjZjdl ZTliNjgxNjUzZWQzNGRlNDhmZTExNWZkODkwZGQ2NWYwNzBmZDcyYjdlMDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5xD0+BpGvfsN8mvzHrop1P7qFkX lW0qwGTX/aYgGbGPn75dDCshr2IVFQxjgPcus4MB62qgFh+JY1FVqHGlRozI/WTO aBkbq2iVDzBbdEEstQS/Db8/slltWZs0tUtVKpibi8zvbUfSNeRcToeBWeIgOUV5 KolIKdS7+3ba17ITizJ2kkJLOyA5vNfi0vTeW0xU4Cp74a5vPq4ifteaLDBeKgFb qEdJZqEIZfHDHRgT4q3xUaP/Dm/is9MNf5p4nAoGrQXVKztnHNZTzL7UM/5HkB6a nunPu2p3ZSXrnAUUNbbroZkXRB14I8Fb4Eav1hTLOs02xz92z2qkqBSAQwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFH3ZtY8OKgEBag4siQ4TKF+nuNEgMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQCtOKxuSWDAs+ouiar7 qr9c/XNbB3D2U0LKUUHOnQg2ceQl7kP2Y045zOlTb3z2WZiq6+Vlfaq7rg97LD6n V/8grEKOt55HR6pUWQgBMnrlEuK402UkHnoauJcjIjsSE4SNPmJwLmx5Z0RocPFr cFH2kgSsT9EYZxE6kHquEjeUze/BBaXiLVTtKBgSF0mTCEMHELSDFR7j1FkNNGZG JHW1N2vehTz8pPwNiDaTLUsh7MwxngzyINOF9zKZkAg4LGsCuYLR5D562J+Wnufg oVtom+LSa0CPdJhDmYnJCyZiaGCbAtm+rp2uPhzjWK2h+Oc2mfwCc4SmP2exQQWn h+gd -----END CERTIFICATE-----Generated at Tue Jul 22 11:47:31 2025 by rpki-client