$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa File: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (raw, json) Hash identifier: ubXi3zaJaqhV7QZw8eCUDCOWJZC9CWeixwGqwLp7nbg= Subject key identifier: CA:90:DB:AD:41:A1:05:9D:C8:0B:DA:31:95:32:BB:F2:CE:46:72:E3 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 3B5369CD201D8746F84A4AA323F006E3B99A1728 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa Signing time: Fri 17 Oct 2025 00:01:27 +0000 ROA not before: Fri 17 Oct 2025 00:01:27 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:53:69:cd:20:1d:87:46:f8:4a:4a:a3:23:f0:06:e3:b9:9a:17:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Oct 17 00:01:27 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=b10692f1e4d9619e02064bd5adcbca362ddf42dbba665064d694673878da852d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ff:28:38:5b:3f:e1:30:b6:68:38:14:04:d7: 99:71:b9:65:1a:de:6b:ea:87:68:8b:b7:66:52:26: 2f:8b:4f:d1:65:21:50:62:0f:09:41:1e:7a:e4:00: 97:9e:6a:43:a7:8c:b0:96:0f:c2:00:34:14:13:63: ba:27:ce:16:37:64:8d:81:5a:01:0c:f0:25:d1:cd: be:1a:45:62:87:ca:38:39:39:11:b9:70:9a:72:2d: 70:7c:2b:c8:03:69:16:11:3e:a6:53:fd:5d:2e:ca: 49:8f:28:6d:4e:df:e7:e5:a3:5f:70:5f:88:13:5c: 88:ce:2e:59:15:71:82:3a:c3:84:b3:e6:8f:14:65: 63:cc:be:2d:78:cf:a5:a8:07:47:70:9e:24:fb:29: 31:ec:1c:2a:af:ad:de:d4:aa:ee:e5:35:3c:6d:2b: 31:12:af:66:d7:6f:16:62:d8:2b:bb:4a:9f:21:c5: 6e:ab:4f:24:59:32:6d:bb:cf:fa:6f:a6:47:f5:fd: b8:90:ff:fc:22:11:46:e3:5c:79:9b:bd:5c:87:41: 27:43:29:7e:69:47:e9:15:2b:56:8f:b9:6b:d4:7e: a9:8d:a0:9e:8a:43:a0:79:e2:a2:e9:c4:b2:99:21: 2a:de:5d:75:71:f6:b0:c5:53:b5:eb:7e:9c:7c:f9: 84:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:90:DB:AD:41:A1:05:9D:C8:0B:DA:31:95:32:BB:F2:CE:46:72:E3 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.200.0/21 Signature Algorithm: sha256WithRSAEncryption 27:da:f7:40:2a:fd:6a:dc:01:79:fb:9b:20:10:b2:42:11:de: 3a:c2:d0:e4:0f:23:be:95:7f:ba:90:a8:da:81:12:e5:77:b6: b4:7d:e9:cb:4f:33:4c:24:2a:77:ae:d3:56:ba:45:6e:c4:57: d0:98:8d:57:16:66:fe:13:70:c6:c7:4f:a7:9e:3e:f7:12:b3: 4e:c5:90:d2:60:fa:02:03:37:08:3e:df:90:37:93:c4:94:8e: 06:61:f3:37:55:a0:a4:ec:33:f4:b5:40:12:56:d8:6f:b9:64: a8:e3:8f:34:91:28:8c:4e:90:68:02:2c:5c:b1:e8:d5:04:0d: 2a:ad:8a:f4:7b:45:2b:87:ea:fa:38:2c:83:23:75:1b:f6:18: 16:2b:fa:d2:cc:67:51:73:3e:ff:fd:26:87:96:53:b1:50:c1: 80:87:53:f9:fe:90:62:76:52:48:2c:30:63:a7:1b:85:f1:93: b3:b4:25:ed:ce:57:74:d1:f9:d7:b7:dd:4e:5d:79:e5:34:74: 08:69:37:5a:3f:bd:94:0b:31:e7:7c:6a:b7:c4:f6:87:39:6b: 1e:64:20:1b:e2:bc:29:cd:e9:f4:7a:26:dd:61:29:2d:0a:a1: 0d:7f:d1:64:49:09:a3:dd:7e:38:f2:c3:56:1c:16:2c:e8:74: 61:9b:68:d3 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUO1NpzSAdh0b4SkqjI/AG47maFygwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTAxNzAwMDEyN1oX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNAYjEwNjkyZjFlNGQ5NjE5ZTAyMDY0 YmQ1YWRjYmNhMzYyZGRmNDJkYmJhNjY1MDY0ZDY5NDY3Mzg3OGRhODUyZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArv8oOFs/4TC2aDgUBNeZcbllGt5r 6odoi7dmUiYvi0/RZSFQYg8JQR565ACXnmpDp4ywlg/CADQUE2O6J84WN2SNgVoB DPAl0c2+GkVih8o4OTkRuXCaci1wfCvIA2kWET6mU/1dLspJjyhtTt/n5aNfcF+I E1yIzi5ZFXGCOsOEs+aPFGVjzL4teM+lqAdHcJ4k+ykx7Bwqr63e1Kru5TU8bSsx Eq9m128WYtgru0qfIcVuq08kWTJtu8/6b6ZH9f24kP/8IhFG41x5m71ch0EnQyl+ aUfpFStWj7lr1H6pjaCeikOgeeKi6cSymSEq3l11cfawxVO1636cfPmErQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFMqQ261BoQWdyAvaMZUyu/LORnLjMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBiZjE1ZDNmLWM1NDYtNGJiNi1hNzY0LTgyMTY1YzM4NGQzNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrynIMA0GCSqGSIb3DQEBCwUAA4IBAQAn2vdAKv1q3AF5+5sgELJC Ed46wtDkDyO+lX+6kKjagRLld7a0fenLTzNMJCp3rtNWukVuxFfQmI1XFmb+E3DG x0+nnj73ErNOxZDSYPoCAzcIPt+QN5PElI4GYfM3VaCk7DP0tUASVthvuWSo4480 kSiMTpBoAixcsejVBA0qrYr0e0Urh+r6OCyDI3Ub9hgWK/rSzGdRcz7//SaHllOx UMGAh1P5/pBidlJILDBjpxuF8ZOztCXtzld00fnXt91OXXnlNHQIaTdaP72UCzHn fGq3xPaHOWseZCAb4rwpzen0eibdYSktCqENf9FkSQmj3X448sNWHBYs6HRhm2jT -----END CERTIFICATE-----Generated at Mon Oct 20 07:21:02 2025 by rpki-client