$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa File: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (raw, json) Hash identifier: AbYGZfDday5/lJfjVrxzeULDq1tuqRjD5RoHmAEAA34= Subject key identifier: AB:2F:E0:E2:65:EA:C4:7D:EB:19:FE:20:71:14:C7:2B:1E:C1:77:32 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6D151B6DB12E824C3945E052FE5C4A960077271C Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa Signing time: Tue 20 May 2025 00:00:43 +0000 ROA not before: Tue 20 May 2025 00:00:43 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:15:1b:6d:b1:2e:82:4c:39:45:e0:52:fe:5c:4a:96:00:77:27:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 20 00:00:43 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c6b3cd0bf02d3cc4bc79051e43928811d5a4b19e3b7c7b7fa910a9cb58b3be49, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4e:23:13:b9:45:83:d9:2b:50:db:b2:c7:f6: fb:c8:cd:ad:5d:05:45:aa:9d:fb:d7:10:31:10:16: ad:61:b5:da:07:11:e5:82:ca:d6:d3:16:77:13:40: 63:48:b3:60:f7:9f:b4:31:9f:dd:e5:61:2c:3f:38: 06:19:4d:28:dd:21:89:10:aa:3b:da:fa:82:3f:38: ae:45:91:4f:f0:9f:73:22:23:4c:a2:81:51:8e:86: a5:c1:54:dc:aa:52:e4:c1:e6:97:4b:06:01:49:20: 87:ae:b8:ce:24:57:96:4c:43:6a:7b:e7:ff:24:85: 54:04:61:0e:78:1f:1c:d3:cf:5a:0c:90:83:d5:63: 59:a2:60:8e:fd:cb:6e:bf:bd:ec:98:b8:21:d1:b5: 50:15:13:0b:eb:8d:bd:7b:30:96:d7:2d:89:69:4f: 7b:df:d8:9b:64:a0:ac:c0:cd:93:43:6d:2b:97:34: 03:3f:9d:c7:24:57:64:92:11:dc:bb:4b:47:de:e2: 05:eb:1a:b5:72:5b:85:17:66:64:43:ce:b3:47:45: 58:28:84:fd:50:5e:73:0d:c9:b4:26:8f:b1:ef:75: e2:56:27:5d:b7:20:53:09:ad:86:57:d8:ac:36:79: 41:73:9e:98:b5:2e:ab:49:2f:8a:87:1e:63:a7:88: d2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2F:E0:E2:65:EA:C4:7D:EB:19:FE:20:71:14:C7:2B:1E:C1:77:32 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018::/36 Signature Algorithm: sha256WithRSAEncryption 08:e0:5f:8c:7b:f4:ef:e9:d6:04:ff:f8:27:20:47:ab:71:58: 01:af:ed:c8:63:c8:b1:cf:75:4b:24:90:c5:e3:fd:85:f7:38: 88:25:2d:1b:d9:2d:5f:40:cc:e2:2f:74:56:f2:ad:dc:d2:4a: 9a:08:79:df:b1:3e:e2:ee:fa:b6:1a:ae:b6:b0:a0:60:51:3a: 73:d4:ae:47:bc:d8:9c:dd:51:d5:f0:1b:b0:6e:4d:d4:8e:ed: 4b:4e:0d:a4:d4:a4:1e:f8:bc:33:58:89:a3:79:a4:8f:76:10: a7:c6:2b:83:7e:0c:e3:36:2b:87:c4:03:1a:4c:eb:fd:d6:d8: 89:f6:a5:4a:1a:b3:05:47:60:f9:e9:df:b7:fe:4b:0f:a0:7f: c8:6b:3e:4f:b8:59:1b:63:87:c2:c6:46:e2:cd:b8:ba:36:db: c8:15:d6:d6:83:08:66:d0:79:cb:fa:d0:c7:27:b6:95:28:2c: 0b:6f:0e:1c:a9:cd:14:63:e1:f8:a4:76:f6:77:42:6a:72:8c: a9:68:a4:aa:b0:40:9e:06:27:fd:98:9a:ff:11:75:da:f8:3d: 58:d1:b5:85:bb:64:05:33:50:2e:89:4d:cd:6c:a1:ac:5f:c3: cc:ed:66:e2:fa:ab:f8:2c:c0:eb:be:bd:32:32:44:81:d5:d8: 69:3c:9f:43 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbRUbbbEugkw5ReBS/lxKlgB3JxwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDUyMDAwMDA0M1oX DTI1MDYyNDIzNTk1OVowejFJMEcGA1UEBRNAYzZiM2NkMGJmMDJkM2NjNGJjNzkw NTFlNDM5Mjg4MTFkNWE0YjE5ZTNiN2M3YjdmYTkxMGE5Y2I1OGIzYmU0OTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnE4jE7lFg9krUNuyx/b7yM2tXQVF qp371xAxEBatYbXaBxHlgsrW0xZ3E0BjSLNg95+0MZ/d5WEsPzgGGU0o3SGJEKo7 2vqCPziuRZFP8J9zIiNMooFRjoalwVTcqlLkweaXSwYBSSCHrrjOJFeWTENqe+f/ JIVUBGEOeB8c089aDJCD1WNZomCO/ctuv73smLgh0bVQFRML6429ezCW1y2JaU97 39ibZKCswM2TQ20rlzQDP53HJFdkkhHcu0tH3uIF6xq1cluFF2ZkQ86zR0VYKIT9 UF5zDcm0Jo+x73XiViddtyBTCa2GV9isNnlBc56YtS6rSS+Khx5jp4jSkQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKsv4OJl6sR96xn+IHEUxysewXcyMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIwNWFmOWQ4LTM3OTktNGQzOC1iMWZiLWRhODQwZTM2MmZmMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AGAAwDQYJKoZIhvcNAQELBQADggEBAAjgX4x79O/p1gT/+Ccg R6txWAGv7chjyLHPdUskkMXj/YX3OIglLRvZLV9AzOIvdFbyrdzSSpoIed+xPuLu +rYarrawoGBROnPUrke82JzdUdXwG7BuTdSO7UtODaTUpB74vDNYiaN5pI92EKfG K4N+DOM2K4fEAxpM6/3W2In2pUoaswVHYPnp37f+Sw+gf8hrPk+4WRtjh8LGRuLN uLo228gV1taDCGbQecv60McntpUoLAtvDhypzRRj4fikdvZ3QmpyjKlopKqwQJ4G J/2Ymv8Rddr4PVjRtYW7ZAUzUC6JTc1soaxfw8ztZuL6q/gswOu+vTIyRIHV2Gk8 n0M= -----END CERTIFICATE-----Generated at Mon Jun 2 04:41:13 2025 by rpki-client