$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: sQ5OCtaRdJY0Zpr45MRDr/UV/ADuE74DBqDQfFgixsY= Subject key identifier: A9:4F:1D:88:C0:A8:9D:06:CB:7D:AA:21:C1:4E:1E:E3:D9:B5:38:0A Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 48DB7CAEDD7E6FB6F1AA9918D8744A9EF7A2C695 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Mon 31 Mar 2025 15:01:17 +0000 ROA not before: Mon 31 Mar 2025 15:01:17 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:db:7c:ae:dd:7e:6f:b6:f1:aa:99:18:d8:74:4a:9e:f7:a2:c6:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000 Validity Not Before: Mar 31 15:01:17 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:55:64:d9:96:ea:30:1c:32:db:e3:59:8d:27: e2:fb:92:48:9e:0e:ce:0c:de:e3:2e:54:06:4f:80: d8:71:9b:a3:03:0b:18:4a:39:1e:61:90:d8:e0:fc: 75:ff:6a:04:48:b0:b3:15:27:db:41:ac:fa:c4:bd: ac:ea:5a:ab:a6:46:0b:53:1a:39:81:57:7e:59:e7: 9b:fc:6f:01:75:72:51:6a:ba:01:8e:92:be:80:32: dc:b0:dc:17:c3:78:45:0b:75:d1:d5:80:4d:ab:4c: 3e:77:dc:12:e3:eb:df:f0:23:13:e2:b7:0f:62:39: 55:a2:6d:90:3d:f1:1d:b0:bc:61:d9:8d:9b:bb:d1: af:fc:b6:1e:45:d3:31:d5:f9:68:28:29:86:20:29: 83:c5:c7:e2:40:2f:59:f1:54:72:cb:56:95:ee:87: f2:1b:9f:ab:e1:ee:06:13:f2:95:59:1b:3c:e9:5c: bc:25:32:24:81:28:eb:0c:c8:38:83:e8:e1:cd:f9: 20:f7:48:9d:94:4c:72:d6:18:cf:38:93:28:4a:a4: f4:c6:a2:b9:a8:5e:12:2c:96:23:01:16:3f:43:ba: c4:8a:1e:90:12:dc:2f:ea:a8:79:fe:18:2b:29:67: 95:a8:57:ad:ff:27:f8:0b:46:fd:18:b7:0e:b0:75: 8d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4F:1D:88:C0:A8:9D:06:CB:7D:AA:21:C1:4E:1E:E3:D9:B5:38:0A X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 0c:e0:91:01:97:a5:aa:da:bf:ec:fe:a9:7c:42:30:67:1e:b5: d3:00:3c:3a:69:2d:a4:b0:e2:d0:6b:fe:0f:e1:c7:f7:ca:e7: 4f:64:52:94:f4:e1:3f:af:2c:78:be:76:41:2a:fa:b6:c9:2c: 08:d7:88:ed:d2:7f:cb:56:4e:f7:7f:1c:78:a6:82:0f:18:d1: 1f:b4:c5:49:04:a2:39:f3:56:3c:33:04:50:26:e6:91:42:1f: 63:94:32:58:db:88:32:52:bf:17:60:9d:0a:74:d3:77:74:ce: 7c:45:91:be:55:36:88:84:d5:29:22:2c:76:07:1a:29:bb:bf: 78:60:50:22:16:c8:68:9a:43:2f:05:50:0e:ae:e9:1f:c6:54: 20:02:69:d3:81:28:11:20:0b:d9:c6:d2:e3:6b:9c:84:dc:e8: 87:af:b9:52:06:df:18:54:ff:06:e3:b2:27:d2:84:7a:80:ff: 52:31:f4:83:c2:05:3e:c5:12:e2:0d:fa:1d:69:34:98:20:c9: 7a:9b:69:32:4a:8b:a7:0e:cd:bb:7f:1a:5f:dc:2c:28:64:f6: 70:a3:6a:dd:ab:21:fa:7d:79:f0:21:9c:b5:f1:57:b7:41:c5: 99:7b:b6:b3:9a:be:44:62:70:2e:41:22:f9:8c:9b:6c:06:84: 48:04:db:73 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUSNt8rt1+b7bxqpkY2HRKnveixpUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDMzMTE1MDExN1oX DTI1MDUwNTIzNTk1OVowejFJMEcGA1UEBRNAZTk4Yjk3ODk0ZGQ4ZTc5MjQwN2Q1 ZGFkYTQwMGQ2NzI5ZWE2M2Y3NjEyZTgzOTM1YzUwMzVlYjFhNmEzZDAyZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFVk2ZbqMBwy2+NZjSfi+5JIng7O DN7jLlQGT4DYcZujAwsYSjkeYZDY4Px1/2oESLCzFSfbQaz6xL2s6lqrpkYLUxo5 gVd+Weeb/G8BdXJRaroBjpK+gDLcsNwXw3hFC3XR1YBNq0w+d9wS4+vf8CMT4rcP YjlVom2QPfEdsLxh2Y2bu9Gv/LYeRdMx1floKCmGICmDxcfiQC9Z8VRyy1aV7ofy G5+r4e4GE/KVWRs86Vy8JTIkgSjrDMg4g+jhzfkg90idlExy1hjPOJMoSqT0xqK5 qF4SLJYjARY/Q7rEih6QEtwv6qh5/hgrKWeVqFet/yf4C0b9GLcOsHWNkQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKlPHYjAqJ0Gy32qIcFOHuPZtTgKMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQAM4JEBl6Wq2r/s/ql8 QjBnHrXTADw6aS2ksOLQa/4P4cf3yudPZFKU9OE/ryx4vnZBKvq2ySwI14jt0n/L Vk73fxx4poIPGNEftMVJBKI581Y8MwRQJuaRQh9jlDJY24gyUr8XYJ0KdNN3dM58 RZG+VTaIhNUpIix2Bxopu794YFAiFshomkMvBVAOrukfxlQgAmnTgSgRIAvZxtLj a5yE3OiHr7lSBt8YVP8G47In0oR6gP9SMfSDwgU+xRLiDfodaTSYIMl6m2kySoun Ds27fxpf3CwoZPZwo2rdqyH6fXnwIZy18Ve3QcWZe7azmr5EYnAuQSL5jJtsBoRI BNtz -----END CERTIFICATE-----Generated at Fri Apr 4 23:32:48 2025 by rpki-client