$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa File: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (raw, json) Hash identifier: mL/CgMfW6p/DllL6aWa+nognOvOtuTcHkyHPSAhSHoQ= Subject key identifier: 52:75:8E:5D:BD:E3:6F:11:86:E4:E8:DC:83:7F:D1:FD:18:04:72:CA Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0BCCA0B6B258727DFF2A39957B312F9C42F99D5D Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa Signing time: Tue 26 Aug 2025 00:50:14 +0000 ROA not before: Tue 26 Aug 2025 00:50:14 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 00:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:cc:a0:b6:b2:58:72:7d:ff:2a:39:95:7b:31:2f:9c:42:f9:9d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Aug 26 00:50:14 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=4b5299cdee25f0ef6e7510db747580e1591ad875d743e88609f14fdc51416f96, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ee:34:98:53:29:92:0b:0a:0f:0c:36:24:09: ee:67:3c:48:d2:47:3c:87:b1:08:e8:b1:b7:81:ee: cf:9e:a5:7b:c4:5f:01:17:0d:19:fd:51:88:23:57: 98:2b:58:07:20:53:65:60:42:1f:66:4c:b9:40:86: 7c:ed:3a:9e:55:e5:a8:82:6a:10:44:e5:3b:a4:be: 47:2e:fa:12:8c:d4:b1:9e:b8:81:34:1e:78:c9:9a: a8:5e:96:e7:46:74:9a:29:6a:4a:f4:48:6f:fb:17: ea:4c:72:92:d7:e9:5e:7b:a9:a1:56:cb:fa:44:32: 35:7c:95:a5:e4:4c:9c:f1:18:42:0f:86:ff:eb:e3: b0:6f:6c:73:1c:d7:28:cf:88:db:59:34:52:6a:21: 36:56:06:10:85:f7:8a:ff:63:bc:c8:37:1b:56:fc: 5e:1d:fd:a8:c4:d1:f2:55:b9:6b:5d:5f:9b:80:3c: 11:8e:5f:4c:a6:7d:c6:73:79:75:d7:6d:7b:f0:16: a2:23:d6:ac:e8:99:c0:15:2c:43:98:c5:05:6c:19: e0:8e:65:ad:fc:c6:79:b3:6e:8a:5c:bb:b2:74:d4: a2:0a:b4:b4:55:93:fc:b7:ef:45:42:3b:e2:a6:d3: 41:20:ef:e3:ef:0b:e3:db:45:f5:8b:22:f5:7b:e6: 19:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:75:8E:5D:BD:E3:6F:11:86:E4:E8:DC:83:7F:D1:FD:18:04:72:CA X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f8:8000::/40 Signature Algorithm: sha256WithRSAEncryption b3:09:29:5d:4a:78:86:00:21:9e:c2:fe:93:83:b9:53:11:27: b3:76:23:9d:96:5d:14:0a:d8:b3:aa:4a:c0:1b:ce:21:37:cd: 34:27:a2:fa:fc:58:7a:72:91:de:51:fd:d5:61:ea:3c:fc:c1: 9f:79:4c:de:85:90:f1:45:1b:98:e8:9b:b3:d4:95:c0:28:18: ba:35:8c:f7:0c:f5:4a:87:b3:8e:80:ec:f0:f8:ef:6a:92:2f: 8c:14:b4:4e:26:17:45:46:ad:ff:a0:b0:bc:08:69:03:af:c9: 66:12:ca:8f:3d:86:a9:b3:98:c7:d5:de:6b:6d:27:49:35:11: 08:14:6b:57:c2:a3:b4:e8:15:e2:fa:40:4f:95:63:52:bf:02: 2e:31:c6:1b:f2:c7:31:6c:32:74:44:de:64:54:df:39:39:e5: 21:9a:dd:2b:cd:93:f6:59:76:ea:d9:7c:59:8e:2e:de:d2:60: 01:e4:0b:cb:f3:e9:66:e1:7b:97:1e:94:a2:99:fa:cf:5a:b8: a2:57:9b:18:ab:c4:80:f1:fa:fe:fd:f8:46:49:3d:56:d6:7a: e5:da:4f:9e:1c:c7:70:61:3e:d6:ad:0f:cb:d0:ae:61:e4:f2: 88:ae:4d:ba:78:e2:9b:6c:65:7b:44:ce:87:88:e2:44:5e:58: dc:2d:5e:04 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUC8ygtrJYcn3/KjmVezEvnEL5nV0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDgyNjAwNTAxNFoX DTI1MDkzMDIzNTk1OVowejFJMEcGA1UEBRNANGI1Mjk5Y2RlZTI1ZjBlZjZlNzUx MGRiNzQ3NTgwZTE1OTFhZDg3NWQ3NDNlODg2MDlmMTRmZGM1MTQxNmY5NjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvu40mFMpkgsKDww2JAnuZzxI0kc8 h7EI6LG3ge7PnqV7xF8BFw0Z/VGII1eYK1gHIFNlYEIfZky5QIZ87TqeVeWogmoQ ROU7pL5HLvoSjNSxnriBNB54yZqoXpbnRnSaKWpK9Ehv+xfqTHKS1+lee6mhVsv6 RDI1fJWl5Eyc8RhCD4b/6+Owb2xzHNcoz4jbWTRSaiE2VgYQhfeK/2O8yDcbVvxe Hf2oxNHyVblrXV+bgDwRjl9Mpn3Gc3l112178BaiI9as6JnAFSxDmMUFbBngjmWt /MZ5s26KXLuydNSiCrS0VZP8t+9FQjviptNBIO/j7wvj20X1iyL1e+YZEwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFJ1jl29428RhuTo3IN/0f0YBHLKMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzU3Zjg0MzNjLWYxNjItNGIxMC04NTI3LWZiZjdjZGJiNmFhYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+IAwDQYJKoZIhvcNAQELBQADggEBALMJKV1KeIYAIZ7C/pOD uVMRJ7N2I52WXRQK2LOqSsAbziE3zTQnovr8WHpykd5R/dVh6jz8wZ95TN6FkPFF G5jom7PUlcAoGLo1jPcM9UqHs46A7PD472qSL4wUtE4mF0VGrf+gsLwIaQOvyWYS yo89hqmzmMfV3mttJ0k1EQgUa1fCo7ToFeL6QE+VY1K/Ai4xxhvyxzFsMnRE3mRU 3zk55SGa3SvNk/ZZdurZfFmOLt7SYAHkC8vz6Wbhe5celKKZ+s9auKJXmxirxIDx +v79+EZJPVbWeuXaT54cx3BhPtatD8vQrmHk8oiuTbp44ptsZXtEzoeI4kReWNwt XgQ= -----END CERTIFICATE-----Generated at Thu Sep 18 15:19:41 2025 by rpki-client