$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa File: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (raw, json) Hash identifier: oB5dAfvqb950IZ3GAQBA22dFyOWsRm2PrbQj9ko+R74= Subject key identifier: 7B:5E:B1:4B:20:20:7D:9C:0A:CD:05:C1:F6:50:DC:C2:14:26:D4:86 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0C6B7257AC631523551E230629AC5F96DF883CD8 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa Signing time: Sat 09 Aug 2025 00:00:05 +0000 ROA not before: Sat 09 Aug 2025 00:00:05 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:6b:72:57:ac:63:15:23:55:1e:23:06:29:ac:5f:96:df:88:3c:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Aug 9 00:00:05 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=8870b3c735c85d804d3a903820ca31efdf5b89f8e9d7bc34c9ada9c3b5d72631, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8e:23:c9:56:7d:8f:1f:0c:53:ce:fa:59:56: c1:a8:9b:57:5c:e8:12:1d:56:01:11:ff:40:13:fb: 34:fd:c3:df:b5:99:44:8a:09:31:30:a1:29:3e:fa: 51:3f:82:7e:07:67:df:c0:04:5d:44:6b:7e:72:64: 5c:c3:cb:44:bb:99:27:d9:bc:41:59:c2:70:22:92: 09:0c:cc:3a:29:91:6a:96:f7:fc:74:be:da:cd:c3: 24:97:99:50:ab:0b:b2:d7:2f:17:c1:fa:3d:e1:4c: 63:b2:35:dc:d9:3d:cd:8f:8d:4c:19:c7:69:22:ca: c4:12:72:38:43:ee:17:9b:96:40:77:25:c3:f3:56: b4:61:b3:30:a7:fd:6b:10:ff:c7:79:8a:f6:fb:6b: 35:74:53:70:6a:d6:be:b2:e2:d7:25:66:15:2b:14: 45:1f:7a:46:6f:07:4d:32:c8:8a:cb:ef:50:b5:8c: 81:da:ec:0d:97:67:0f:01:33:e1:4d:7d:a1:fc:21: 63:0a:2b:87:d8:1a:2b:bc:84:77:66:ae:d5:7a:3b: 60:ad:e0:1e:35:6d:2c:3d:92:e3:5a:1a:5e:b9:14: f0:fd:cc:4a:a6:34:81:e9:21:5f:e4:20:c4:8b:de: 71:8c:c3:8a:4a:5f:f0:46:f9:08:94:ee:aa:00:86: fd:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:5E:B1:4B:20:20:7D:9C:0A:CD:05:C1:F6:50:DC:C2:14:26:D4:86 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/32 Signature Algorithm: sha256WithRSAEncryption 4a:db:fd:53:17:d6:86:ce:a2:c0:d9:cd:99:60:cd:7a:c4:34: c6:8a:d2:8f:2a:59:c7:ef:80:5d:75:32:51:03:08:4c:24:42: 3e:73:de:0f:07:4a:15:76:c0:8d:f8:d4:2f:27:fb:3c:37:c4: d1:3c:23:4d:79:a7:51:85:c3:9e:46:ba:d4:76:5d:eb:2c:dc: 73:14:b5:41:01:bf:a4:46:c6:11:ff:d0:e6:fc:1b:ef:7c:b7: 4a:ef:17:bc:ef:b1:d9:cd:79:a3:5c:b3:6e:71:ba:9d:04:d0: 9a:2e:6d:40:ef:b8:13:1e:a0:77:de:dd:fd:90:8b:fa:67:56: ae:d0:1f:f8:66:98:bd:44:85:0e:d2:ae:1f:db:0a:25:26:9a: 90:b2:f0:f2:f8:10:a0:a2:1a:04:90:c7:53:c7:85:32:8e:01: e3:4d:fd:9a:d8:47:31:65:5b:bd:fd:ba:31:9c:bd:88:f7:ca: 0b:23:03:71:01:20:40:c8:bf:7d:8a:27:24:c8:95:38:f9:a7: 33:b6:14:b2:00:37:04:ca:46:03:d9:1a:73:81:2c:50:36:08: 3a:30:50:ac:cf:7b:d0:2e:5e:cb:10:3d:6b:59:7e:4b:bb:e1: 23:a6:0a:02:3b:a4:97:95:42:76:9b:df:0b:67:d5:6f:87:47: 0b:1d:b8:c9 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUDGtyV6xjFSNVHiMGKaxflt+IPNgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDgwOTAwMDAwNVoX DTI1MDkxMzIzNTk1OVowejFJMEcGA1UEBRNAODg3MGIzYzczNWM4NWQ4MDRkM2E5 MDM4MjBjYTMxZWZkZjViODlmOGU5ZDdiYzM0YzlhZGE5YzNiNWQ3MjYzMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyI4jyVZ9jx8MU876WVbBqJtXXOgS HVYBEf9AE/s0/cPftZlEigkxMKEpPvpRP4J+B2ffwARdRGt+cmRcw8tEu5kn2bxB WcJwIpIJDMw6KZFqlvf8dL7azcMkl5lQqwuy1y8Xwfo94UxjsjXc2T3Nj41MGcdp IsrEEnI4Q+4Xm5ZAdyXD81a0YbMwp/1rEP/HeYr2+2s1dFNwata+suLXJWYVKxRF H3pGbwdNMsiKy+9QtYyB2uwNl2cPATPhTX2h/CFjCiuH2BorvIR3Zq7VejtgreAe NW0sPZLjWhpeuRTw/cxKpjSB6SFf5CDEi95xjMOKSl/wRvkIlO6qAIb9YwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFHtesUsgIH2cCs0FwfZQ3MIUJtSGMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2NjMmY3MDkzLTIxYTYtNDAwZi05ZGIxLTkzYzJmZTAyYmMxYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAOzADANBgkqhkiG9w0BAQsFAAOCAQEAStv9UxfWhs6iwNnNmWDN esQ0xorSjypZx++AXXUyUQMITCRCPnPeDwdKFXbAjfjULyf7PDfE0TwjTXmnUYXD nka61HZd6yzccxS1QQG/pEbGEf/Q5vwb73y3Su8XvO+x2c15o1yzbnG6nQTQmi5t QO+4Ex6gd97d/ZCL+mdWrtAf+GaYvUSFDtKuH9sKJSaakLLw8vgQoKIaBJDHU8eF Mo4B4039mthHMWVbvf26MZy9iPfKCyMDcQEgQMi/fYonJMiVOPmnM7YUsgA3BMpG A9kac4EsUDYIOjBQrM970C5eyxA9a1l+S7vhI6YKAjukl5VCdpvfC2fVb4dHCx24 yQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:06:55 2025 by rpki-client