$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa File: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (raw, json) Hash identifier: oIDXPNv1Mka93Q0YbuluJYu0qVSYWb5A4eGY2N6a0og= Subject key identifier: 32:3A:B2:15:1F:6A:22:A9:92:99:D1:90:76:10:37:0E:27:19:79:C1 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2705F2F9F637BC849F20B2908D3ADC5C1C3FC01B Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa Signing time: Fri 20 Jun 2025 00:00:27 +0000 ROA not before: Fri 20 Jun 2025 00:00:27 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 7224 IP address blocks: 43.224.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:05:f2:f9:f6:37:bc:84:9f:20:b2:90:8d:3a:dc:5c:1c:3f:c0:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 20 00:00:27 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=58bf5130c0ad1cfbc02b56c4d5e93682718dd953bdc7410e39ac7105703db5de, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ff:3c:ca:3d:21:c6:80:d6:24:57:b5:0b:53: 9e:b5:38:58:3a:b4:79:a0:32:85:10:2e:d5:ea:af: d9:66:c7:ba:4e:66:ba:87:df:01:06:74:1f:16:86: 74:3a:c4:18:18:0d:e6:be:6a:1b:f9:8b:f7:e8:6f: a2:0b:16:5f:38:a8:9f:cd:66:da:dd:65:54:fd:d3: fc:14:82:81:c0:d4:3f:4c:65:20:a0:8d:e7:85:de: d6:07:0c:32:9c:75:22:72:d3:47:9e:8a:9f:12:36: 29:f1:ae:4d:88:24:ab:87:e5:b1:fd:4c:7f:8d:07: 56:3a:39:e9:d8:63:56:d0:8c:9d:4e:12:e6:5b:e9: cb:28:d9:ce:2d:bf:33:92:26:82:09:49:bf:ed:00: 3f:cf:fc:8e:b9:9a:8b:1d:b9:fb:65:bc:bd:06:42: dd:6d:0e:3a:01:4f:6c:8b:47:60:2a:b5:f7:26:d5: 18:b1:40:bf:d5:f5:d4:c9:f8:d2:3e:86:a1:49:6c: df:30:43:c6:d9:8f:54:b7:99:9e:6a:d8:c7:2f:c3: 87:e5:c0:3b:b8:69:8c:f5:65:c0:38:98:33:b4:a7: e0:12:d9:33:3b:d4:f4:8d:5d:89:bf:76:40:ac:69: 73:f3:2e:4d:49:2d:6e:a1:65:38:58:99:06:56:39: c5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:3A:B2:15:1F:6A:22:A9:92:99:D1:90:76:10:37:0E:27:19:79:C1 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.76.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:00:1a:7c:48:b8:80:1a:2e:f0:fd:bc:ac:e6:3b:64:6d:27: d7:60:18:0f:52:da:de:70:72:39:2f:1d:5d:b4:d3:57:a8:8e: fb:7d:b5:6a:80:e0:f1:db:bb:09:36:3c:5c:58:8e:9c:d9:fb: 84:d0:a5:ea:0a:85:06:b1:4b:3d:10:d2:1c:a8:84:e0:a6:d5: 28:47:e7:6a:3a:87:94:5b:2f:7b:65:e8:56:61:b5:8d:c1:04: 82:26:5b:a2:be:30:88:b1:29:8f:a8:e2:39:00:28:2d:ea:20: 37:ce:c5:b2:b3:ca:9d:4b:09:81:d0:d2:f8:7a:bb:ea:0e:e3: 45:e5:fa:34:ba:0d:cc:d7:6b:fc:bc:72:cb:8f:88:b6:c7:94: 59:59:68:a8:5b:29:ec:39:09:48:f1:3c:71:f3:41:31:b9:bc: cc:3e:ee:67:f3:2b:82:4d:5c:b0:c4:da:cc:2f:62:7f:4b:d6: 8f:99:97:ac:d2:8f:a8:96:0c:bf:34:41:08:54:bd:12:4e:1f: 06:66:c3:9f:f3:48:59:dd:ea:29:d6:eb:df:55:24:fb:51:d3: d8:6d:be:39:96:8d:f8:4a:5c:f2:a4:b5:46:e6:85:81:36:7d: c5:cf:9f:1c:d5:74:a9:5a:09:09:86:6c:fe:83:9a:f9:e8:b9: ba:67:d3:0a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUJwXy+fY3vISfILKQjTrcXBw/wBswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDYyMDAwMDAyN1oX DTI1MDcyNTIzNTk1OVowejFJMEcGA1UEBRNANThiZjUxMzBjMGFkMWNmYmMwMmI1 NmM0ZDVlOTM2ODI3MThkZDk1M2JkYzc0MTBlMzlhYzcxMDU3MDNkYjVkZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyP88yj0hxoDWJFe1C1OetThYOrR5 oDKFEC7V6q/ZZse6Tma6h98BBnQfFoZ0OsQYGA3mvmob+Yv36G+iCxZfOKifzWba 3WVU/dP8FIKBwNQ/TGUgoI3nhd7WBwwynHUictNHnoqfEjYp8a5NiCSrh+Wx/Ux/ jQdWOjnp2GNW0IydThLmW+nLKNnOLb8zkiaCCUm/7QA/z/yOuZqLHbn7Zby9BkLd bQ46AU9si0dgKrX3JtUYsUC/1fXUyfjSPoahSWzfMEPG2Y9Ut5meatjHL8OH5cA7 uGmM9WXAOJgztKfgEtkzO9T0jV2Jv3ZArGlz8y5NSS1uoWU4WJkGVjnFLQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDI6shUfaiKpkpnRkHYQNw4nGXnBMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzQ5MTE5NzM0LTlkYmMtNGJkNC05OGJlLTU3ZTRjZTA3ODkyOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+BMMA0GCSqGSIb3DQEBCwUAA4IBAQB/ABp8SLiAGi7w/bys5jtk bSfXYBgPUtrecHI5Lx1dtNNXqI77fbVqgODx27sJNjxcWI6c2fuE0KXqCoUGsUs9 ENIcqITgptUoR+dqOoeUWy97ZehWYbWNwQSCJluivjCIsSmPqOI5ACgt6iA3zsWy s8qdSwmB0NL4ervqDuNF5fo0ug3M12v8vHLLj4i2x5RZWWioWynsOQlI8Txx80Ex ubzMPu5n8yuCTVywxNrML2J/S9aPmZes0o+olgy/NEEIVL0STh8GZsOf80hZ3eop 1uvfVST7UdPYbb45lo34SlzypLVG5oWBNn3Fz58c1XSpWgkJhmz+g5r56Lm6Z9MK -----END CERTIFICATE-----Generated at Sun Jun 29 10:55:08 2025 by rpki-client