$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa File: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (raw, json) Hash identifier: /wNnt0ikqeC8jW/WaQtlJthQbNAbgmO+CWmu99gAvRw= Subject key identifier: 7E:DE:49:1B:D5:0D:A6:52:30:F8:7C:7E:D4:4A:62:46:9B:21:56:A4 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 068C341EC55495E3F4F7EE45B24CC552E521AE6F Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa Signing time: Fri 20 Jun 2025 00:00:26 +0000 ROA not before: Fri 20 Jun 2025 00:00:26 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8c:34:1e:c5:54:95:e3:f4:f7:ee:45:b2:4c:c5:52:e5:21:ae:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 20 00:00:26 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=6435e076903ce1ac71c3ba4417999e20a122a0800463d129ae7dde6e96c3f658, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7c:c6:d6:e6:55:46:bc:b9:8f:74:34:99:41: 95:4d:54:2f:6c:45:1f:d8:fd:1f:0b:d8:da:c6:d2: b5:da:a8:19:30:85:8d:c3:f6:3f:ec:6e:c1:84:64: fe:86:c9:9f:2f:db:37:25:30:31:34:69:9c:8d:61: 92:ff:4f:89:4c:8c:e8:d5:f4:f3:a4:56:ce:f8:74: e2:be:33:78:c5:74:0c:5a:21:6f:8f:59:fd:78:f7: 47:2a:70:ac:ae:70:57:35:64:88:b6:8b:61:15:00: 25:32:2d:af:44:80:d5:0e:dd:46:d1:8c:6a:0a:e6: 82:5d:97:6e:95:b6:6f:41:20:7b:f6:97:e0:44:78: 8c:8a:16:49:8a:07:f6:b1:af:51:d2:95:75:74:e7: 31:3c:2d:d7:ad:8d:7d:e3:83:83:74:49:4a:05:e7: 45:02:34:d4:4b:8a:d3:60:55:7f:ea:75:0c:53:b0: 33:92:f2:1f:f6:cd:8f:43:ce:5e:8e:24:22:42:8f: 07:86:6c:6b:ce:3e:17:ca:ff:ab:f8:25:88:a7:2f: 64:39:d0:97:79:67:17:64:13:e1:47:ed:f0:78:1e: 44:84:c0:67:f7:b8:2e:71:e7:e0:df:b7:2e:09:77: 87:1e:8a:37:96:ed:22:c9:ff:3c:24:7e:63:69:0f: 58:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DE:49:1B:D5:0D:A6:52:30:F8:7C:7E:D4:4A:62:46:9B:21:56:A4 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/32 Signature Algorithm: sha256WithRSAEncryption 61:b3:ca:21:e6:38:be:9e:d8:f4:d9:58:2a:ce:1c:81:4a:6d: 82:0f:3d:a6:b3:ec:22:b7:b2:18:99:c8:ed:fc:f5:a3:e9:d6: 19:8e:a6:3a:bc:fb:bc:e4:3b:74:0a:c2:38:99:33:51:11:13: 68:9b:b9:1b:a6:8d:74:4c:a9:80:4b:03:e5:9d:63:bb:2f:a3: 01:e2:6e:b5:cd:b2:8b:93:e1:9f:7a:ed:2d:78:49:13:08:f8: e9:64:da:25:74:da:c1:48:ef:e3:53:2d:2c:7e:30:a1:cf:c4: 2e:c3:ec:bb:02:b4:f6:a3:37:da:9f:e0:13:60:ea:23:d4:13: 7b:2e:b7:fa:cf:dc:13:fc:7e:9e:7c:7b:c6:e6:8c:fd:45:3c: 75:9c:a0:b5:38:05:25:dd:46:b6:bb:15:e6:57:fc:c4:46:df: 37:52:07:7b:27:f4:a2:36:12:04:57:31:5d:f8:1e:c0:c6:fb: 8d:54:6f:c6:4b:02:07:63:b8:b3:06:c8:dc:c8:7b:f3:8a:85: 70:b1:39:73:42:21:14:08:02:24:81:6d:b6:67:9a:90:56:a6: ac:30:fe:09:32:ad:d5:dc:b3:e0:c6:9c:67:8c:fa:6d:09:d7: 9a:9f:5d:18:2a:fa:c8:e7:9e:4d:c5:34:6d:be:07:c9:c8:df: 24:09:ef:a3 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUBow0HsVUleP09+5FskzFUuUhrm8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDYyMDAwMDAyNloX DTI1MDcyNTIzNTk1OVowejFJMEcGA1UEBRNANjQzNWUwNzY5MDNjZTFhYzcxYzNi YTQ0MTc5OTllMjBhMTIyYTA4MDA0NjNkMTI5YWU3ZGRlNmU5NmMzZjY1ODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjnzG1uZVRry5j3Q0mUGVTVQvbEUf 2P0fC9jaxtK12qgZMIWNw/Y/7G7BhGT+hsmfL9s3JTAxNGmcjWGS/0+JTIzo1fTz pFbO+HTivjN4xXQMWiFvj1n9ePdHKnCsrnBXNWSItothFQAlMi2vRIDVDt1G0Yxq CuaCXZdulbZvQSB79pfgRHiMihZJigf2sa9R0pV1dOcxPC3XrY1944ODdElKBedF AjTUS4rTYFV/6nUMU7AzkvIf9s2PQ85ejiQiQo8Hhmxrzj4Xyv+r+CWIpy9kOdCX eWcXZBPhR+3weB5EhMBn97gucefg37cuCXeHHoo3lu0iyf88JH5jaQ9YjwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFH7eSRvVDaZSMPh8ftRKYkabIVakMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2NjMmY3MDkzLTIxYTYtNDAwZi05ZGIxLTkzYzJmZTAyYmMxYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAOzADANBgkqhkiG9w0BAQsFAAOCAQEAYbPKIeY4vp7Y9NlYKs4c gUptgg89prPsIreyGJnI7fz1o+nWGY6mOrz7vOQ7dArCOJkzURETaJu5G6aNdEyp gEsD5Z1juy+jAeJutc2yi5Phn3rtLXhJEwj46WTaJXTawUjv41MtLH4woc/ELsPs uwK09qM32p/gE2DqI9QTey63+s/cE/x+nnx7xuaM/UU8dZygtTgFJd1GtrsV5lf8 xEbfN1IHeyf0ojYSBFcxXfgewMb7jVRvxksCB2O4swbI3Mh784qFcLE5c0IhFAgC JIFttmeakFamrDD+CTKt1dyz4MacZ4z6bQnXmp9dGCr6yOeeTcU0bb4HycjfJAnv ow== -----END CERTIFICATE-----Generated at Sun Jun 29 07:23:42 2025 by rpki-client