$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa File: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (raw, json) Hash identifier: eIPIEV1ML8RPxdKU+LU3s72D7TLFVVebBtaAalDWqpA= Subject key identifier: D5:02:B1:EF:71:E8:12:74:5C:B3:0F:62:05:67:E9:CE:3E:66:9F:EA Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 09E077A1BEF3C5987C61B6D2DF47751A4AD6C906 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa Signing time: Wed 09 Jul 2025 00:00:35 +0000 ROA not before: Wed 09 Jul 2025 00:00:35 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e0:77:a1:be:f3:c5:98:7c:61:b6:d2:df:47:75:1a:4a:d6:c9:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Jul 9 00:00:35 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=132d44851b6ead0bada39d6c240d928f7520baceec75e972f456c20c9e80b504, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2e:44:57:e8:20:76:8d:e3:e9:5e:6d:9a:6c: 31:40:28:9d:2f:75:ff:8a:fb:9e:3d:19:f1:01:85: 50:7e:1a:3a:e5:23:f6:31:b2:1e:ff:ef:cb:b5:2c: 19:74:61:90:ae:69:4c:7d:63:d4:7c:0b:34:20:5f: a6:e2:5c:d2:44:08:59:9f:4e:8b:2e:67:0e:0d:f3: 7b:5e:af:3b:bd:75:1c:6a:56:1e:3f:68:ba:1e:b5: b3:94:de:49:39:7a:bd:bd:03:8d:6e:16:2c:cc:05: 8e:d8:d8:a9:d0:cc:c2:e8:81:c5:be:5e:60:f4:ea: ea:9d:33:48:32:60:1c:18:39:14:ff:6a:60:da:9f: b0:7d:c2:da:36:e2:1e:ed:fd:2e:27:30:9d:f6:b2: 91:5f:e8:3b:c6:d3:8a:12:c3:0a:c4:f0:41:82:53: 9f:8b:a3:14:7d:95:34:93:f3:60:bc:1b:e1:e4:d5: d7:d5:39:41:9b:07:65:c8:81:da:af:22:79:c6:9d: a0:ab:cd:80:d5:cc:d5:2e:c8:ef:ac:66:38:ec:12: 06:62:a2:83:b2:b5:ad:b6:8d:37:86:01:b2:b2:25: 1c:c7:94:11:22:26:3b:19:fd:69:cf:fc:0f:f9:84: f0:13:33:12:c3:26:2d:02:75:3d:58:16:24:35:fa: 1a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:02:B1:EF:71:E8:12:74:5C:B3:0F:62:05:67:E9:CE:3E:66:9F:EA X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018::/38 Signature Algorithm: sha256WithRSAEncryption 99:25:f5:9a:ec:26:16:ad:90:cb:e3:98:7d:68:7f:8f:a5:3b: 01:b3:f8:18:aa:cf:3a:0f:d8:f8:30:13:c7:76:60:5f:9b:22: 58:03:c1:d3:59:a2:11:df:8a:73:90:46:d6:fe:aa:a9:98:08: 39:61:fd:89:b3:da:9a:42:03:4d:96:38:fb:8e:42:76:03:11: 6d:98:35:86:c5:8a:23:32:d6:06:bc:78:75:af:d2:89:20:23: df:a4:27:79:d0:d1:8b:01:38:67:de:d9:c5:00:3b:84:a3:08: 43:fa:f0:28:31:fb:8b:fc:ea:6f:4a:fb:a8:b3:8c:85:7b:dd: f1:54:00:06:a0:81:98:82:3c:bb:44:ec:20:74:fd:ed:61:ae: d0:01:dd:ec:f4:3f:84:2b:57:f8:a6:3e:05:8c:e5:e1:cc:97: d5:74:09:70:bc:2b:66:8b:0a:17:1a:c5:43:44:9f:89:36:2d: 8c:35:b5:df:8c:43:ef:67:2e:08:b8:8f:df:90:d5:ec:06:6c: 5c:fd:1e:01:b8:f6:7a:2c:88:15:2a:68:d3:59:e1:8b:92:e0: bc:6f:d6:9c:a7:54:76:5d:99:c8:b4:79:ac:62:a8:5a:17:c4: 19:e2:73:fc:e8:91:64:13:fe:8b:bc:28:79:4e:b8:a1:c5:fb: aa:bb:e3:26 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCeB3ob7zxZh8YbbS30d1GkrWyQYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDcwOTAwMDAzNVoX DTI1MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMTMyZDQ0ODUxYjZlYWQwYmFkYTM5 ZDZjMjQwZDkyOGY3NTIwYmFjZWVjNzVlOTcyZjQ1NmMyMGM5ZTgwYjUwNDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsC5EV+ggdo3j6V5tmmwxQCidL3X/ ivuePRnxAYVQfho65SP2MbIe/+/LtSwZdGGQrmlMfWPUfAs0IF+m4lzSRAhZn06L LmcODfN7Xq87vXUcalYeP2i6HrWzlN5JOXq9vQONbhYszAWO2Nip0MzC6IHFvl5g 9OrqnTNIMmAcGDkU/2pg2p+wfcLaNuIe7f0uJzCd9rKRX+g7xtOKEsMKxPBBglOf i6MUfZU0k/NgvBvh5NXX1TlBmwdlyIHaryJ5xp2gq82A1czVLsjvrGY47BIGYqKD srWtto03hgGysiUcx5QRIiY7Gf1pz/wP+YTwEzMSwyYtAnU9WBYkNfoa5wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNUCse9x6BJ0XLMPYgVn6c4+Zp/qMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2ZjYzQyOTNjLWIyNGYtNGZhYy05Mzk1LTU0NmY3NDhiM2IxMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAAwDQYJKoZIhvcNAQELBQADggEBAJkl9ZrsJhatkMvjmH1o f4+lOwGz+BiqzzoP2PgwE8d2YF+bIlgDwdNZohHfinOQRtb+qqmYCDlh/Ymz2ppC A02WOPuOQnYDEW2YNYbFiiMy1ga8eHWv0okgI9+kJ3nQ0YsBOGfe2cUAO4SjCEP6 8Cgx+4v86m9K+6izjIV73fFUAAaggZiCPLtE7CB0/e1hrtAB3ez0P4QrV/imPgWM 5eHMl9V0CXC8K2aLChcaxUNEn4k2LYw1td+MQ+9nLgi4j9+Q1ewGbFz9HgG49nos iBUqaNNZ4YuS4Lxv1pynVHZdmci0eaxiqFoXxBnic/zokWQT/ou8KHlOuKHF+6q7 4yY= -----END CERTIFICATE-----Generated at Tue Jul 22 19:31:06 2025 by rpki-client