$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: KHbouwNbMkE1fsk49JkyrpKTRE4fYKtVUnZbIAP1qCs= Subject key identifier: 75:EF:B3:93:A8:D4:46:16:B3:E2:EE:24:5D:ED:71:ED:7C:3F:EC:5F Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 32EDEC46EBFE21C1E5B37288F9A54182C2AFD8D5 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Tue 20 May 2025 00:00:38 +0000 ROA not before: Tue 20 May 2025 00:00:38 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ed:ec:46:eb:fe:21:c1:e5:b3:72:88:f9:a5:41:82:c2:af:d8:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 20 00:00:38 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=0b53a3195a351d312831122a90c837f49971a3f894bf1e6106b2d8f4be3d5121, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:83:6b:e7:77:9e:2a:84:d0:24:05:25:60:91: d2:b9:0c:d1:83:36:ea:8d:9b:e6:ee:46:93:26:2c: 32:95:c7:b6:15:ac:7b:b6:a8:98:cb:87:62:dc:b1: 99:2c:03:01:cd:80:e0:21:8c:60:b5:bc:ec:53:c5: 44:3e:c8:80:45:83:4d:39:5a:3e:53:ff:ae:c6:da: a3:6b:93:49:6c:a5:7a:51:31:57:16:2c:bf:6e:aa: c5:63:25:8c:32:f0:bb:68:97:07:65:36:91:d3:97: 20:97:22:ca:e4:25:d4:38:2f:17:6b:2a:c7:4d:60: 07:e3:64:09:f9:d3:28:a4:bf:69:4e:f0:d1:31:a2: f4:59:98:86:1c:06:af:52:17:a7:0c:b1:a2:a5:75: 9d:54:8f:39:28:c0:3e:8b:a9:57:12:74:af:2b:9b: e5:84:46:cc:b6:f2:3c:6c:55:9d:86:e6:70:d8:2f: 4d:ed:ff:1a:96:03:7f:c3:d0:66:ff:ad:c8:5f:f7: 58:b3:98:f0:1d:5e:d7:bc:d1:f7:71:8a:46:55:f6: b9:d6:29:60:ad:56:23:45:47:5d:4c:ef:48:90:dc: 82:35:c7:90:1f:e2:e9:26:1c:b2:b7:20:6e:56:d2: 5b:f6:90:36:ff:99:24:d0:33:a8:e4:7c:cf:62:82: 22:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EF:B3:93:A8:D4:46:16:B3:E2:EE:24:5D:ED:71:ED:7C:3F:EC:5F X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 79:9b:0c:d3:be:70:e8:aa:f7:32:b4:5e:21:b8:a5:38:1e:af: 54:d7:41:a1:48:71:f9:3a:ae:21:b9:ca:ac:27:d9:98:5b:63: 08:5a:10:cc:3f:3a:2c:fe:c3:41:51:32:f1:cd:be:ef:1c:45: eb:da:7c:34:a3:60:8c:05:a2:e1:85:78:07:51:9f:47:b8:2d: ea:fe:c4:bd:d0:92:b2:a4:03:4f:a2:92:da:9a:d7:89:e2:39: 98:97:aa:ac:2f:6d:92:df:5c:c1:91:cf:df:35:07:12:28:7d: ba:97:4a:b0:0d:af:fb:a5:1b:1b:30:7c:86:be:13:fc:3b:8d: 8a:6b:30:c4:15:d1:bf:81:4b:58:5f:94:99:d6:2c:78:fb:3a: 73:98:05:34:ce:4f:47:27:44:08:30:10:ac:28:a4:f6:46:18: 5b:61:ac:30:d4:1a:b8:d8:7f:ca:3e:5b:32:03:0c:38:b7:31: 10:7f:47:ba:91:fc:f5:fc:01:0e:be:71:02:f7:58:b5:5b:a1: 4c:c2:54:94:99:e2:8e:2e:c3:26:15:2c:51:b3:59:14:55:04: e9:4a:3c:52:44:30:5f:09:ef:78:58:2a:d6:cc:73:2e:85:f9: 56:e4:67:df:8c:6c:ad:a4:dc:34:aa:33:b8:54:06:98:8d:d2: 6f:ee:9b:44 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMu3sRuv+IcHls3KI+aVBgsKv2NUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDUyMDAwMDAzOFoX DTI1MDYyNDIzNTk1OVowejFJMEcGA1UEBRNAMGI1M2EzMTk1YTM1MWQzMTI4MzEx MjJhOTBjODM3ZjQ5OTcxYTNmODk0YmYxZTYxMDZiMmQ4ZjRiZTNkNTEyMTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApINr53eeKoTQJAUlYJHSuQzRgzbq jZvm7kaTJiwylce2Fax7tqiYy4di3LGZLAMBzYDgIYxgtbzsU8VEPsiARYNNOVo+ U/+uxtqja5NJbKV6UTFXFiy/bqrFYyWMMvC7aJcHZTaR05cglyLK5CXUOC8XayrH TWAH42QJ+dMopL9pTvDRMaL0WZiGHAavUhenDLGipXWdVI85KMA+i6lXEnSvK5vl hEbMtvI8bFWdhuZw2C9N7f8algN/w9Bm/63IX/dYs5jwHV7XvNH3cYpGVfa51ilg rVYjRUddTO9IkNyCNceQH+LpJhyytyBuVtJb9pA2/5kk0DOo5HzPYoIiiQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHXvs5Oo1EYWs+LuJF3tce18P+xfMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQB5mwzTvnDoqvcytF4h uKU4Hq9U10GhSHH5Oq4hucqsJ9mYW2MIWhDMPzos/sNBUTLxzb7vHEXr2nw0o2CM BaLhhXgHUZ9HuC3q/sS90JKypANPopLamteJ4jmYl6qsL22S31zBkc/fNQcSKH26 l0qwDa/7pRsbMHyGvhP8O42KazDEFdG/gUtYX5SZ1ix4+zpzmAU0zk9HJ0QIMBCs KKT2RhhbYaww1Bq42H/KPlsyAww4tzEQf0e6kfz1/AEOvnEC91i1W6FMwlSUmeKO LsMmFSxRs1kUVQTpSjxSRDBfCe94WCrWzHMuhflW5GffjGytpNw0qjO4VAaYjdJv 7ptE -----END CERTIFICATE-----Generated at Mon Jun 2 04:46:31 2025 by rpki-client