$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa File: 788c3900-e4d5-439b-b231-3a69b5354901.roa (raw, json) Hash identifier: 4eo63ROcgA1pmMnEtQhPRcxi8V4LXPXEwbwSWrDaZAk= Subject key identifier: C2:EE:DA:D4:85:F1:E3:15:8C:2E:CF:13:CF:8C:8F:96:83:1D:4C:1C Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 1444CAC040B9FBB5B7C175E23BA5414193011173 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa Signing time: Tue 20 May 2025 00:00:05 +0000 ROA not before: Tue 20 May 2025 00:00:05 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:44:ca:c0:40:b9:fb:b5:b7:c1:75:e2:3b:a5:41:41:93:01:11:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 20 00:00:05 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=5ef4b974017efc033c9368963e346ca4f25d2ac34b114dc87499fa7a6eaaab2f, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1c:dd:d4:0a:c2:2b:e6:0c:e5:b4:20:82:10: 05:09:bc:2a:ce:80:3e:8d:e1:bb:4b:e4:6d:4a:78: ec:ba:b4:f2:03:03:a8:9f:1e:1a:d0:b7:d5:6b:2e: 1d:13:12:c2:36:fb:f9:0b:94:8f:38:f9:40:1e:98: f8:cd:d0:9e:fb:b9:51:4b:2c:a6:13:bd:95:58:fb: db:a2:36:c2:77:51:e7:ba:28:cf:ea:ae:84:93:69: 84:3f:e7:04:c3:f5:21:a4:ce:68:53:1a:5b:af:e8: a7:24:4d:f9:0a:fc:be:7f:1d:c1:10:70:8b:48:64: 49:1b:4d:73:fd:8a:4c:87:b7:ed:b2:06:02:3d:24: 9e:1c:27:d6:5c:31:14:78:0d:e4:6d:6e:1e:e3:c2: f5:77:2d:bd:ae:35:1a:9c:ea:28:33:90:71:73:57: bc:c2:fa:69:88:0d:0d:56:d6:3e:a6:e2:0f:d6:82: 5f:e3:6a:e9:c7:7d:7d:98:34:2c:24:39:66:27:1f: c9:8e:fa:e6:f5:a5:9c:36:bc:23:5a:67:e5:a5:88: 36:c3:ec:ea:60:49:67:47:a2:a1:67:04:f1:78:67: 9f:d7:e3:8d:5d:15:47:7b:fc:d5:05:c0:9a:84:33: 3f:16:29:47:59:a4:8a:5d:68:38:4b:71:10:1a:1a: d5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EE:DA:D4:85:F1:E3:15:8C:2E:CF:13:CF:8C:8F:96:83:1D:4C:1C X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/38 Signature Algorithm: sha256WithRSAEncryption 08:63:d6:28:14:95:72:22:3c:8b:98:09:da:38:a6:b0:e7:51: f1:cf:e5:4d:5f:cb:fe:36:4b:2e:70:45:c5:d6:d6:99:d0:d0: 1d:f0:69:a3:10:54:83:ba:b9:af:09:29:fb:89:bc:cd:74:fb: 98:56:f7:db:9f:86:0f:30:da:86:53:86:e8:32:ca:af:26:c1: d9:eb:e9:45:01:c3:5b:b3:65:6c:fa:da:a1:79:2f:be:47:81: 2c:94:17:92:9d:b8:fa:f6:a8:f5:2e:18:3f:fb:c6:d2:15:1a: f1:51:b3:06:54:6e:55:5e:3f:e7:19:36:51:c9:59:fc:24:f6: 0d:a1:46:75:b2:d2:ed:45:56:f5:9e:ea:17:2e:3c:a3:28:7c: 99:71:17:59:46:e6:bf:1d:c3:91:57:6e:1b:ac:a9:60:aa:d1: 40:30:1b:6e:f7:b4:4b:0f:53:40:67:c4:8d:30:e0:e0:71:cd: 26:df:d6:31:70:c5:f6:7b:0c:80:63:77:cf:fc:3b:d9:d0:94: 4e:42:4e:fc:ba:2f:3c:ff:ed:c9:dc:74:4e:c6:bf:b8:2f:86: 8d:07:bd:c0:98:3f:3e:15:02:01:4e:93:eb:3d:72:4c:6a:4d: d4:62:62:e5:0d:4c:dc:2a:9e:c0:cd:34:8a:90:d4:63:b3:34: da:15:e7:13 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFETKwEC5+7W3wXXiO6VBQZMBEXMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDUyMDAwMDAwNVoX DTI1MDYyNDIzNTk1OVowejFJMEcGA1UEBRNANWVmNGI5NzQwMTdlZmMwMzNjOTM2 ODk2M2UzNDZjYTRmMjVkMmFjMzRiMTE0ZGM4NzQ5OWZhN2E2ZWFhYWIyZjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhzd1ArCK+YM5bQgghAFCbwqzoA+ jeG7S+RtSnjsurTyAwOonx4a0LfVay4dExLCNvv5C5SPOPlAHpj4zdCe+7lRSyym E72VWPvbojbCd1HnuijP6q6Ek2mEP+cEw/UhpM5oUxpbr+inJE35Cvy+fx3BEHCL SGRJG01z/YpMh7ftsgYCPSSeHCfWXDEUeA3kbW4e48L1dy29rjUanOooM5Bxc1e8 wvppiA0NVtY+puIP1oJf42rpx319mDQsJDlmJx/Jjvrm9aWcNrwjWmflpYg2w+zq YElnR6KhZwTxeGef1+ONXRVHe/zVBcCahDM/FilHWaSKXWg4S3EQGhrVzwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMLu2tSF8eMVjC7PE8+Mj5aDHUwcMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzc4OGMzOTAwLWU0ZDUtNDM5Yi1iMjMxLTNhNjliNTM1NDkwMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAAhj1igUlXIiPIuYCdo4 prDnUfHP5U1fy/42Sy5wRcXW1pnQ0B3waaMQVIO6ua8JKfuJvM10+5hW99ufhg8w 2oZThugyyq8mwdnr6UUBw1uzZWz62qF5L75HgSyUF5KduPr2qPUuGD/7xtIVGvFR swZUblVeP+cZNlHJWfwk9g2hRnWy0u1FVvWe6hcuPKMofJlxF1lG5r8dw5FXbhus qWCq0UAwG273tEsPU0BnxI0w4OBxzSbf1jFwxfZ7DIBjd8/8O9nQlE5CTvy6Lzz/ 7cncdE7Gv7gvho0HvcCYPz4VAgFOk+s9ckxqTdRiYuUNTNwqnsDNNIqQ1GOzNNoV 5xM= -----END CERTIFICATE-----Generated at Mon Jun 2 04:44:36 2025 by rpki-client