$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa File: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (raw, json) Hash identifier: PSG4mgNW9IJkVz9wtofv/6/7O8YBEs5vDs/KnjUzeCQ= Subject key identifier: 56:C0:DC:B3:BF:EC:9A:D4:0E:8D:44:72:62:3A:CF:1B:48:B7:DE:A8 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7E0305B907CA317FDA746385C2B7C9ADCE5E5200 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa Signing time: Tue 20 May 2025 00:00:46 +0000 ROA not before: Tue 20 May 2025 00:00:46 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:03:05:b9:07:ca:31:7f:da:74:63:85:c2:b7:c9:ad:ce:5e:52:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 20 00:00:46 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=b8da368ef6874812d3d501626c63a83b2f15150f99d293e5c5ffad218fc7f571, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:79:50:2d:9f:c5:cd:2d:9e:6b:24:10:dd:30: d3:02:80:5b:4d:40:ad:40:5a:81:0c:b3:3f:2c:13: ac:0a:92:a6:a6:79:e7:4a:50:6d:49:72:66:d7:ec: 52:fc:30:9a:4a:d4:46:af:ad:6e:59:36:af:8d:e9: c1:5f:aa:3b:b9:c9:2b:e0:66:5e:af:19:2f:a9:7f: 5e:0a:da:9e:29:7c:d1:14:7f:b1:ab:77:3e:1f:54: 8f:a2:67:93:8a:44:7a:7c:29:6c:74:fd:08:d9:e5: d7:2c:e8:5f:4e:6d:08:d7:76:6b:f6:06:d0:3a:54: 95:89:dc:82:c0:3c:ea:ac:e4:c6:30:a0:02:3b:1d: ae:bb:13:36:08:bd:12:7c:80:3e:88:25:0f:b6:7d: 75:d1:3d:33:ed:8c:a6:90:19:e6:a1:7d:dd:21:83: 3a:cd:44:b9:2e:24:35:5d:8d:2d:21:9f:e9:b5:55: 4c:30:89:9b:1b:93:85:9a:e0:b2:37:29:85:ae:03: 08:2c:09:f0:25:c7:f2:ef:f3:ae:5a:ad:f8:a9:d4: b7:73:34:dc:38:93:3c:f2:d9:c5:a4:1d:c0:4d:01: c6:f2:ce:b0:33:9f:a8:be:f6:d6:1d:09:b5:79:6b: 4a:6d:15:93:e3:e2:fa:06:98:e2:82:cc:ca:74:54: d6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C0:DC:B3:BF:EC:9A:D4:0E:8D:44:72:62:3A:CF:1B:48:B7:DE:A8 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/36 Signature Algorithm: sha256WithRSAEncryption a4:c5:87:02:3c:7f:dd:2b:56:2e:88:72:79:a5:d9:6f:29:02: cf:fc:71:1f:ae:ed:86:21:fd:70:eb:f6:09:a9:ce:30:46:a5: 16:da:d4:6a:1e:f7:69:a1:d3:83:39:af:6f:e6:e7:05:e2:b2: d6:0b:29:3c:a2:15:c0:d3:f2:89:05:40:38:24:ed:dc:96:cd: 19:2e:86:2e:3c:f2:cf:c4:51:87:63:ca:b1:b4:ee:eb:20:57: 5d:d4:df:70:83:0d:93:ef:fe:25:f5:93:56:de:28:10:15:a8: 78:96:70:9f:56:e7:6a:e6:68:05:1d:30:54:ab:94:36:54:44: 87:e2:70:0a:15:d8:6b:6c:1b:c9:c5:be:8b:a8:23:ca:c5:2d: 81:9a:40:3f:4f:aa:e2:a8:d6:14:3a:bd:a9:c1:34:63:39:5c: 9b:4a:8d:5a:4e:62:57:8c:68:4e:94:05:89:81:17:9c:08:1b: 67:88:17:32:5f:cb:95:44:3e:99:cb:f1:db:d8:ad:c7:e4:48: d8:2b:12:2a:66:85:67:42:31:72:33:74:21:e5:f0:02:59:a2: b0:d5:b2:ba:e0:d8:61:8b:54:39:af:11:f3:18:b1:73:a4:83: f2:02:cf:ff:93:ad:9c:02:01:c8:30:e7:d8:e1:20:63:03:db: 40:fe:c2:1a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUfgMFuQfKMX/adGOFwrfJrc5eUgAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDUyMDAwMDA0NloX DTI1MDYyNDIzNTk1OVowejFJMEcGA1UEBRNAYjhkYTM2OGVmNjg3NDgxMmQzZDUw MTYyNmM2M2E4M2IyZjE1MTUwZjk5ZDI5M2U1YzVmZmFkMjE4ZmM3ZjU3MTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7XlQLZ/FzS2eayQQ3TDTAoBbTUCt QFqBDLM/LBOsCpKmpnnnSlBtSXJm1+xS/DCaStRGr61uWTavjenBX6o7uckr4GZe rxkvqX9eCtqeKXzRFH+xq3c+H1SPomeTikR6fClsdP0I2eXXLOhfTm0I13Zr9gbQ OlSVidyCwDzqrOTGMKACOx2uuxM2CL0SfIA+iCUPtn110T0z7YymkBnmoX3dIYM6 zUS5LiQ1XY0tIZ/ptVVMMImbG5OFmuCyNymFrgMILAnwJcfy7/OuWq34qdS3czTc OJM88tnFpB3ATQHG8s6wM5+ovvbWHQm1eWtKbRWT4+L6BpjigszKdFTWNQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFbA3LO/7JrUDo1EcmI6zxtIt96oMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBkNmY1Yzg2LTU3ZDgtNGUwZC04NDQ1LTMwY2IxMjJiYjRkZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAKTFhwI8f90rVi6Icnml 2W8pAs/8cR+u7YYh/XDr9gmpzjBGpRba1Goe92mh04M5r2/m5wXistYLKTyiFcDT 8okFQDgk7dyWzRkuhi488s/EUYdjyrG07usgV13U33CDDZPv/iX1k1beKBAVqHiW cJ9W52rmaAUdMFSrlDZURIficAoV2GtsG8nFvouoI8rFLYGaQD9PquKo1hQ6vanB NGM5XJtKjVpOYleMaE6UBYmBF5wIG2eIFzJfy5VEPpnL8dvYrcfkSNgrEipmhWdC MXIzdCHl8AJZorDVsrrg2GGLVDmvEfMYsXOkg/ICz/+TrZwCAcgw59jhIGMD20D+ who= -----END CERTIFICATE-----Generated at Mon Jun 2 04:44:34 2025 by rpki-client