$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa File: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (raw, json) Hash identifier: X462hDwBK5lBWiUq6/4T0hkzR7N6RZOZH2QZ+DZbkxI= Subject key identifier: CC:85:41:2F:22:93:FB:9F:E7:17:D1:3E:AE:77:12:E1:5D:35:B0:E6 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 183ABE8CF094D2D1D080DDA5B3B7336BE3B8DB3B Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa Signing time: Tue 20 May 2025 00:00:34 +0000 ROA not before: Tue 20 May 2025 00:00:34 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:3a:be:8c:f0:94:d2:d1:d0:80:dd:a5:b3:b7:33:6b:e3:b8:db:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 20 00:00:34 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=1559263e6ab0ce0cedda390c8ea94bfeeeb7b7e56da1cee329da8a4fa67b98d2, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:34:73:65:83:1d:1e:9c:40:9a:ca:68:56:04: 81:01:38:62:cc:c1:1d:65:ef:8c:41:9d:a9:d8:74: 17:99:66:b7:43:f4:86:2d:24:34:14:2c:de:6b:9b: d2:d2:7b:5d:72:cd:4d:1b:a9:c0:4b:97:b9:44:ab: 74:79:5f:3b:1c:36:4d:56:1a:44:dc:ea:74:23:b4: 68:18:f3:92:97:a5:0a:89:a3:8d:5e:fe:7e:69:3b: 73:5d:fe:f7:8b:d6:c4:50:df:e2:7f:60:d9:84:f5: 52:64:e9:68:8f:4b:3e:24:84:25:f8:df:db:c3:0c: 75:e1:6b:29:a1:f6:45:6d:2f:27:cc:f9:ad:15:33: 53:5b:ff:02:42:55:f2:1e:bd:33:b7:75:58:f9:16: 39:34:a6:28:e6:25:01:ff:38:d9:99:34:18:36:5c: 33:0f:81:1d:cf:be:db:77:e7:e6:e3:6a:ba:17:76: dd:99:b9:bd:22:ea:3f:53:d2:54:ba:b3:b0:a7:4e: 1f:21:60:32:b3:9f:4f:74:76:a8:74:c7:c3:30:4a: 44:bb:b9:5f:78:4c:cf:bf:e4:ca:b0:4a:39:64:2c: 9f:d7:a9:4e:eb:bd:af:e3:1f:c4:39:fc:d7:17:97: 4b:d2:a8:ac:22:6d:c0:71:b6:e8:aa:ce:ef:2a:8e: 45:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:85:41:2F:22:93:FB:9F:E7:17:D1:3E:AE:77:12:E1:5D:35:B0:E6 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8020::/48 Signature Algorithm: sha256WithRSAEncryption 9f:78:13:91:f7:49:91:ad:be:ba:1a:37:af:2e:ef:5f:c6:b3: d4:ed:3d:55:80:cf:89:3c:eb:5d:e7:2f:53:b2:66:95:b7:3c: 50:c6:19:74:63:96:47:81:c5:59:84:b4:f7:62:b7:07:f8:12: 08:3c:db:b3:a2:0e:54:90:99:77:92:15:04:8f:6c:61:c2:6e: fa:a3:6a:e3:d0:62:3e:ee:1d:33:ec:e9:2f:88:c3:8a:13:69: d5:91:d9:20:62:39:8c:96:3b:1b:b0:9c:5c:ce:6d:6b:3b:0c: 60:6e:82:70:de:ac:43:9f:dc:94:8b:23:37:05:71:f7:3d:2a: d5:1c:58:fd:2c:ef:ed:66:02:2f:c3:0a:4d:de:f0:8a:89:9b: 20:42:ed:15:7e:ef:97:91:8a:ba:a8:ee:fb:ed:96:d3:ee:c3: 63:2f:c0:78:5e:cd:5b:cc:dd:29:aa:dd:bf:3a:f5:3d:bf:19: d8:58:ad:1a:1e:1b:d4:b5:7c:f1:04:c3:a8:39:1d:e9:1a:c6: 08:28:08:0a:9c:ca:f1:5e:f4:4d:09:74:59:43:f3:06:53:09: 97:f7:f0:64:f2:cb:cd:51:e7:4b:b6:6f:0c:45:1d:a0:fd:fb: a9:2c:a7:e0:b7:ba:7e:5b:fb:a5:f0:03:af:b0:82:a5:9a:47: c6:9f:fb:9b -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGDq+jPCU0tHQgN2ls7cza+O42zswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDUyMDAwMDAzNFoX DTI1MDYyNDIzNTk1OVowejFJMEcGA1UEBRNAMTU1OTI2M2U2YWIwY2UwY2VkZGEz OTBjOGVhOTRiZmVlZWI3YjdlNTZkYTFjZWUzMjlkYThhNGZhNjdiOThkMjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7DRzZYMdHpxAmspoVgSBAThizMEd Ze+MQZ2p2HQXmWa3Q/SGLSQ0FCzea5vS0ntdcs1NG6nAS5e5RKt0eV87HDZNVhpE 3Op0I7RoGPOSl6UKiaONXv5+aTtzXf73i9bEUN/if2DZhPVSZOloj0s+JIQl+N/b wwx14WspofZFbS8nzPmtFTNTW/8CQlXyHr0zt3VY+RY5NKYo5iUB/zjZmTQYNlwz D4Edz77bd+fm42q6F3bdmbm9Iuo/U9JUurOwp04fIWAys59PdHaodMfDMEpEu7lf eEzPv+TKsEo5ZCyf16lO672v4x/EOfzXF5dL0qisIm3Acbboqs7vKo5FwQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMyFQS8ik/uf5xfRPq53EuFdNbDmMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2FiNGFkMTg1LTJiZmItNDI4MS05ZTIzLTAwYTJhYjRiNmU4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4AgMA0GCSqGSIb3DQEBCwUAA4IBAQCfeBOR90mRrb66Gjev Lu9fxrPU7T1VgM+JPOtd5y9TsmaVtzxQxhl0Y5ZHgcVZhLT3YrcH+BIIPNuzog5U kJl3khUEj2xhwm76o2rj0GI+7h0z7OkviMOKE2nVkdkgYjmMljsbsJxczm1rOwxg boJw3qxDn9yUiyM3BXH3PSrVHFj9LO/tZgIvwwpN3vCKiZsgQu0Vfu+XkYq6qO77 7ZbT7sNjL8B4Xs1bzN0pqt2/OvU9vxnYWK0aHhvUtXzxBMOoOR3pGsYIKAgKnMrx XvRNCXRZQ/MGUwmX9/Bk8svNUedLtm8MRR2g/fupLKfgt7p+W/ul8AOvsIKlmkfG n/ub -----END CERTIFICATE-----Generated at Mon Jun 2 04:41:12 2025 by rpki-client