$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa File: c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa (raw, json) Hash identifier: RgQ+BwWGqKHJ3G38uBtI23uzhJXnGezzTJGtq9xUllk= Subject key identifier: 3D:CB:49:B8:FB:E3:26:31:B4:76:BD:28:46:EF:2A:4D:11:A7:C8:C5 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7539E68B51396E0B86A0253AEA332F6ABD26BB24 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa Signing time: Mon 31 Mar 2025 15:01:09 +0000 ROA not before: Mon 31 Mar 2025 15:01:09 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:39:e6:8b:51:39:6e:0b:86:a0:25:3a:ea:33:2f:6a:bd:26:bb:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000 Validity Not Before: Mar 31 15:01:09 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e2:3f:25:96:94:41:3f:a9:17:48:5e:05:63: 66:5c:9a:29:19:aa:55:fd:11:70:e4:6c:b2:b0:c7: f1:58:e2:6f:af:51:19:67:98:f7:e9:57:85:bb:88: 01:4d:69:de:e9:42:f8:ca:0e:f7:62:09:7e:52:1e: 6d:fc:05:a8:ab:a1:6a:2b:9e:a5:ab:13:f6:ee:bc: 3c:ad:e1:3a:66:7e:79:6b:b6:49:39:63:7c:92:1e: c1:ea:9f:79:9b:69:a5:e1:d4:61:a6:78:ee:b9:8b: fb:d0:2c:ae:fd:db:a3:f5:cb:9e:03:e8:96:fa:0a: 2d:fd:88:43:77:b0:62:65:a1:32:d0:c4:79:6e:67: 54:ce:cc:a2:7e:25:1d:e4:1c:25:f4:a2:ea:22:23: 28:9c:06:c8:1e:d1:d5:68:cf:7b:12:31:fa:e9:80: 1f:99:b9:f4:57:cb:30:52:e9:c9:a4:a6:9f:2f:ff: 9a:c1:b8:de:c1:95:69:e4:f8:60:5e:7f:de:00:28: b5:c4:94:18:57:75:f7:25:78:98:bf:c4:cb:d4:1e: 98:10:61:a9:72:e0:e6:40:a4:60:01:9c:7f:8c:60: 81:d3:72:0a:40:a7:44:dc:d0:23:e7:d1:69:09:85: e8:31:11:4d:0d:4a:f1:0a:e8:fb:76:ec:7d:4e:0f: 26:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:CB:49:B8:FB:E3:26:31:B4:76:BD:28:46:EF:2A:4D:11:A7:C8:C5 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 24:df:bd:2e:68:94:2d:e7:64:09:e0:38:c3:d9:f3:94:0a:fc: 15:a2:ec:7f:23:82:0c:1a:b3:74:4c:46:8c:89:ce:a9:fb:94: b4:29:64:21:40:90:46:96:a9:7f:35:8c:56:89:81:f3:00:06: 74:4f:cc:3e:7b:17:d2:d1:d6:c9:7a:0d:a7:39:c8:90:ae:56: 91:e7:18:20:76:ac:45:ba:f9:19:39:bd:d2:5d:69:4d:ef:1a: 73:6c:53:eb:97:01:93:7b:ff:3d:fb:17:c9:79:5c:89:79:62: 32:ef:20:fe:44:86:42:23:0e:7d:6f:98:ef:d6:85:a8:94:a5: 2d:c9:00:f2:7a:4b:73:ca:6e:92:d3:11:9c:ee:b6:cc:b0:a0: f8:c7:52:f7:36:38:1f:ce:71:52:e7:dd:60:6b:95:b6:51:5d: 6b:f5:df:a1:90:17:e3:92:6f:57:ed:ca:f7:c0:84:7e:49:d9: 12:c7:c9:b1:ec:1e:23:52:8f:63:08:d3:e2:20:b9:cd:0f:08: ac:13:21:4b:03:c3:46:f6:48:73:a7:4f:98:33:55:92:0b:bc: 56:90:be:2f:17:2b:b8:c7:82:27:50:89:11:23:f4:07:4f:42: 26:bd:d8:86:56:b5:c4:94:89:c2:7d:b5:64:3f:9a:66:46:e3: 57:f8:4a:a5 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdTnmi1E5bguGoCU66jMvar0muyQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDMzMTE1MDEwOVoX DTI1MDUwNTIzNTk1OVowejFJMEcGA1UEBRNAZWY4YmM3M2E3YTg5ZGFmMDM1Y2Nm YTM1ODJlM2U5NWM2MWQ5ZDhjOWFjZGUzMWYyNzMwMzJlYmM3OTQyYzYzZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6eI/JZaUQT+pF0heBWNmXJopGapV /RFw5GyysMfxWOJvr1EZZ5j36VeFu4gBTWne6UL4yg73Ygl+Uh5t/AWoq6FqK56l qxP27rw8reE6Zn55a7ZJOWN8kh7B6p95m2ml4dRhpnjuuYv70Cyu/duj9cueA+iW +got/YhDd7BiZaEy0MR5bmdUzsyifiUd5Bwl9KLqIiMonAbIHtHVaM97EjH66YAf mbn0V8swUunJpKafL/+awbjewZVp5PhgXn/eACi1xJQYV3X3JXiYv8TL1B6YEGGp cuDmQKRgAZx/jGCB03IKQKdE3NAj59FpCYXoMRFNDUrxCuj7dux9Tg8m9QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFD3LSbj74yYxtHa9KEbvKk0Rp8jFMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M5ZjdkYmQyLTFjN2UtNDJlOC1hN2Y5LTAwYmQ3NmU3MDI0OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/0DAMA0GCSqGSIb3DQEBCwUAA4IBAQAk370uaJQt52QJ4DjD 2fOUCvwVoux/I4IMGrN0TEaMic6p+5S0KWQhQJBGlql/NYxWiYHzAAZ0T8w+exfS 0dbJeg2nOciQrlaR5xggdqxFuvkZOb3SXWlN7xpzbFPrlwGTe/89+xfJeVyJeWIy 7yD+RIZCIw59b5jv1oWolKUtyQDyektzym6S0xGc7rbMsKD4x1L3NjgfznFS591g a5W2UV1r9d+hkBfjkm9X7cr3wIR+SdkSx8mx7B4jUo9jCNPiILnNDwisEyFLA8NG 9khzp0+YM1WSC7xWkL4vFyu4x4InUIkRI/QHT0ImvdiGVrXElInCfbVkP5pmRuNX +Eql -----END CERTIFICATE-----Generated at Fri Apr 4 23:22:31 2025 by rpki-client