$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa File: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (raw, json) Hash identifier: AFNNUsVreOVmNsPl39Yput6Hk1NdukmEVT3QF+268VU= Subject key identifier: 5E:A5:0C:97:70:5E:EC:66:95:8E:6F:3C:BF:DE:4F:94:5C:45:54:46 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 4B2C0CDA9649BB36972ACE8726F9B6DB92681E54 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa Signing time: Wed 30 Apr 2025 00:00:06 +0000 ROA not before: Wed 30 Apr 2025 00:00:06 +0000 ROA not after: Wed 04 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 00:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:2c:0c:da:96:49:bb:36:97:2a:ce:87:26:f9:b6:db:92:68:1e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 30 00:00:06 2025 GMT Not After : Jun 4 23:59:59 2025 GMT Subject: serialNumber=3be9e306aaacf7eded9dc2c54f26ff8d60b832e82e38697c195965708dc2ee25, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c6:17:88:2b:49:d6:25:84:55:e4:28:69:72: 54:ad:f1:97:06:b0:93:67:45:2a:b2:98:0f:94:1c: bd:e6:0a:e4:96:5d:33:2c:78:4d:92:d8:3d:56:c6: 3f:68:74:2d:ff:8f:b2:48:5b:f2:cc:7d:3e:1a:92: 0d:18:7c:20:f0:e5:e0:b2:58:c9:9c:63:83:43:2b: 73:7b:7f:94:7f:14:85:d9:c6:5c:58:7d:08:c7:37: 0b:6d:98:5c:a4:e9:50:0b:71:f5:35:fa:fc:a4:7f: 1e:81:ef:9f:e4:dc:5f:af:cd:74:e5:91:39:98:91: bc:28:52:f6:91:d3:87:2a:94:a2:e8:55:e7:ff:40: 4b:64:18:d7:c4:57:3a:b3:e4:c4:f3:c8:65:de:ca: d6:f8:bd:91:51:04:32:b0:03:db:22:75:fa:ff:22: 3e:78:8f:11:d4:11:29:35:70:82:2e:f7:27:16:4f: 3b:8b:8b:95:7c:a5:e2:e1:1d:b0:fb:dd:2a:2c:d5: 48:7d:a8:b3:61:f1:45:ca:27:c6:ef:dd:ea:2c:95: 9d:5b:37:3b:4b:8a:f2:f7:c8:b6:42:1e:1a:40:a8: da:75:82:9b:ac:9e:79:72:c9:29:67:a6:ad:17:8a: e4:12:27:54:2b:66:3e:05:15:08:fb:e1:f2:e9:f9: ec:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A5:0C:97:70:5E:EC:66:95:8E:6F:3C:BF:DE:4F:94:5C:45:54:46 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/32 Signature Algorithm: sha256WithRSAEncryption 60:e7:1c:f8:bc:a0:66:49:15:4d:6a:33:43:6e:15:1c:39:9b: e4:8d:60:30:a3:f8:f0:35:d6:cf:e6:7e:e9:13:a8:51:d9:ea: bc:6d:67:9e:c6:0e:1d:b6:a6:87:48:97:1c:ec:02:95:9f:10: 35:e4:f4:52:9a:14:87:4a:7e:ae:8d:8a:83:04:a3:a4:89:46: 20:5c:fe:8e:d7:40:32:18:39:df:19:87:dc:b3:65:36:62:7e: b2:a3:d5:28:ab:59:6b:ec:4b:67:a5:03:a8:d6:46:c4:4f:b6: 54:1c:dd:c2:f2:53:b8:6b:a2:c1:ba:ca:9c:d9:1e:63:52:f8: 13:87:86:c6:7b:0d:b1:d0:32:60:95:c8:0b:a5:70:2e:50:5e: 10:7e:e6:3c:e3:d5:e0:42:33:3e:ed:79:df:1a:24:76:30:40: ec:df:db:bc:68:df:72:10:10:77:67:59:45:a7:81:0b:ba:ac: eb:f2:49:8f:a9:44:a7:20:95:69:44:2e:41:a4:db:f2:86:5b: 96:43:32:bb:cd:ac:f0:e8:67:12:71:73:e7:44:f5:ba:52:53: 2b:91:a3:1a:b4:d5:b1:3e:37:a1:9b:8f:65:b6:07:71:ba:4c: c2:74:c8:dd:d4:0f:ab:48:cd:d9:65:20:a9:b1:a7:51:a8:97: de:87:5f:3a -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUSywM2pZJuzaXKs6HJvm225JoHlQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDQzMDAwMDAwNloX DTI1MDYwNDIzNTk1OVowejFJMEcGA1UEBRNAM2JlOWUzMDZhYWFjZjdlZGVkOWRj MmM1NGYyNmZmOGQ2MGI4MzJlODJlMzg2OTdjMTk1OTY1NzA4ZGMyZWUyNTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkcYXiCtJ1iWEVeQoaXJUrfGXBrCT Z0UqspgPlBy95grkll0zLHhNktg9VsY/aHQt/4+ySFvyzH0+GpINGHwg8OXgsljJ nGODQytze3+UfxSF2cZcWH0IxzcLbZhcpOlQC3H1Nfr8pH8ege+f5Nxfr8105ZE5 mJG8KFL2kdOHKpSi6FXn/0BLZBjXxFc6s+TE88hl3srW+L2RUQQysAPbInX6/yI+ eI8R1BEpNXCCLvcnFk87i4uVfKXi4R2w+90qLNVIfaizYfFFyifG793qLJWdWzc7 S4ry98i2Qh4aQKjadYKbrJ55cskpZ6atF4rkEidUK2Y+BRUI++Hy6fnsrwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFF6lDJdwXuxmlY5vPL/eT5RcRVRGMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2NjMmY3MDkzLTIxYTYtNDAwZi05ZGIxLTkzYzJmZTAyYmMxYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAOzADANBgkqhkiG9w0BAQsFAAOCAQEAYOcc+LygZkkVTWozQ24V HDmb5I1gMKP48DXWz+Z+6ROoUdnqvG1nnsYOHbamh0iXHOwClZ8QNeT0UpoUh0p+ ro2KgwSjpIlGIFz+jtdAMhg53xmH3LNlNmJ+sqPVKKtZa+xLZ6UDqNZGxE+2VBzd wvJTuGuiwbrKnNkeY1L4E4eGxnsNsdAyYJXIC6VwLlBeEH7mPOPV4EIzPu153xok djBA7N/bvGjfchAQd2dZRaeBC7qs6/JJj6lEpyCVaUQuQaTb8oZblkMyu82s8Ohn EnFz50T1ulJTK5GjGrTVsT43oZuPZbYHcbpMwnTI3dQPq0jN2WUgqbGnUaiX3odf Og== -----END CERTIFICATE-----Generated at Mon May 5 06:17:17 2025 by rpki-client