$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa File: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (raw, json) Hash identifier: OsSwNup4DQ1hgfJkEZkVLFfPiddIe+brXVybr4SzerM= Subject key identifier: 58:5F:64:34:CE:FA:77:D5:4B:48:A5:40:96:D7:91:79:4F:DB:28:48 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7569D06A4F38898E508C0EFDEA78F8DFC072380D Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa Signing time: Mon 03 Mar 2025 15:00:09 +0000 ROA not before: Mon 03 Mar 2025 15:00:09 +0000 ROA not after: Mon 07 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:69:d0:6a:4f:38:89:8e:50:8c:0e:fd:ea:78:f8:df:c0:72:38:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000 Validity Not Before: Mar 3 15:00:09 2025 GMT Not After : Apr 7 23:59:59 2025 GMT Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:bf:ac:41:b0:0a:8b:85:d8:3d:a6:3d:cf:3e: c5:7f:2f:82:b3:56:3f:ac:3e:2b:e9:8f:88:3f:eb: 09:4f:72:79:c0:69:e1:63:14:93:76:79:43:66:02: 4a:42:2b:d8:8f:93:48:34:b4:55:95:5e:d6:31:7b: 9b:92:1c:b9:4b:a5:2e:60:15:cf:92:57:c2:01:25: a2:92:57:9e:05:ca:7d:f0:e7:df:76:4b:ab:ed:ce: 61:0e:b0:63:b0:e6:7c:2a:4c:5e:8a:28:35:8e:19: a9:5c:b7:98:6a:20:b2:f8:56:6c:5b:be:f5:3b:e0: 67:cb:5d:68:5d:7a:c3:08:4e:03:fd:4e:ac:e3:f1: eb:01:82:8b:cc:ab:8a:8a:ed:68:23:29:7c:2b:e6: 64:8e:f1:7a:99:66:c4:33:d3:e6:28:7b:2d:15:31: eb:9a:b2:05:dc:ae:1c:da:92:d6:0e:af:db:ff:c5: 81:72:72:4d:1f:50:9c:8d:5c:08:2c:8f:a1:db:37: 6a:bb:53:a6:19:72:e4:fe:37:70:92:41:41:a2:ad: 65:71:df:12:d1:ff:dd:e0:18:45:df:2a:45:41:39: af:30:f9:66:4b:36:e6:97:78:ff:28:70:1e:37:15: 5e:35:26:a1:3a:19:e5:22:0d:cd:58:82:3d:0b:f5: 4a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5F:64:34:CE:FA:77:D5:4B:48:A5:40:96:D7:91:79:4F:DB:28:48 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:8000::/40 Signature Algorithm: sha256WithRSAEncryption 72:39:0e:cc:89:1b:35:55:b7:89:84:44:6b:d5:f2:82:e6:03: fe:19:3d:89:aa:80:6d:d5:62:f8:4a:36:36:15:bb:3f:67:6b: 36:fa:8f:85:b0:c2:a7:99:e9:64:d1:22:90:96:ad:f9:60:05: 6c:03:a7:94:6e:c9:cc:68:9c:49:bf:61:28:ab:86:e5:04:27: 16:b6:a1:26:49:a9:43:4a:d9:de:5e:a1:4b:70:b7:2a:1c:26: fb:fe:a5:97:d3:1b:52:7c:a0:81:b1:61:02:ba:90:3d:12:06: 10:16:4a:03:5b:99:56:56:75:08:3c:0f:e6:a5:a1:e1:5d:9a: ce:3a:f4:61:1b:b9:a1:04:bf:22:14:bd:51:09:08:9d:bf:20: 65:ef:f5:25:45:6c:80:1b:e2:7a:7d:a3:bf:36:22:aa:87:9a: f6:1d:6a:55:54:8a:97:83:e1:32:4e:30:25:4d:78:fa:52:01: b6:6d:b0:8d:32:c8:74:5e:ba:cb:5f:cc:2f:2d:50:46:d8:8a: cf:ee:bd:55:e3:ed:f3:68:73:df:7b:bc:7b:04:e5:59:9a:a0: b7:41:4a:e4:e6:5a:45:01:64:11:2f:93:33:98:51:5c:fc:84: f6:60:07:f7:80:d1:cf:c8:b1:f9:8c:11:76:b2:8d:59:6e:60: ab:6b:4d:d3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdWnQak84iY5QjA796nj438ByOA0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDMwMzE1MDAwOVoX DTI1MDQwNzIzNTk1OVowejFJMEcGA1UEBRNANDM2MDYzMGU5OGQ4ODc3OTA5MWJi YTY5YjA5OWFkOTNiMDM4YmYxMTJlMmFmMDg2YzVmNTAxMTFlYTkwODc2NjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoL+sQbAKi4XYPaY9zz7Ffy+Cs1Y/ rD4r6Y+IP+sJT3J5wGnhYxSTdnlDZgJKQivYj5NINLRVlV7WMXubkhy5S6UuYBXP klfCASWikleeBcp98Offdkur7c5hDrBjsOZ8Kkxeiig1jhmpXLeYaiCy+FZsW771 O+Bny11oXXrDCE4D/U6s4/HrAYKLzKuKiu1oIyl8K+ZkjvF6mWbEM9PmKHstFTHr mrIF3K4c2pLWDq/b/8WBcnJNH1CcjVwILI+h2zdqu1OmGXLk/jdwkkFBoq1lcd8S 0f/d4BhF3ypFQTmvMPlmSzbml3j/KHAeNxVeNSahOhnlIg3NWII9C/VKJQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFhfZDTO+nfVS0ilQJbXkXlP2yhIMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M2YzhjMmM4LTI2MTAtNGI0Ni05ZTU1LTY3YzEyY2VjY2JiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/oAwDQYJKoZIhvcNAQELBQADggEBAHI5DsyJGzVVt4mERGvV 8oLmA/4ZPYmqgG3VYvhKNjYVuz9nazb6j4WwwqeZ6WTRIpCWrflgBWwDp5Ruycxo nEm/YSirhuUEJxa2oSZJqUNK2d5eoUtwtyocJvv+pZfTG1J8oIGxYQK6kD0SBhAW SgNbmVZWdQg8D+aloeFdms469GEbuaEEvyIUvVEJCJ2/IGXv9SVFbIAb4np9o782 IqqHmvYdalVUipeD4TJOMCVNePpSAbZtsI0yyHReustfzC8tUEbYis/uvVXj7fNo c997vHsE5VmaoLdBSuTmWkUBZBEvkzOYUVz8hPZgB/eA0c/IsfmMEXayjVluYKtr TdM= -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:17 2025 by rpki-client