$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa File: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (raw, json) Hash identifier: siRpFZYlY5ztHIO6yNyZnoOzY7IkuS6L7DUVBd9glOU= Subject key identifier: 83:7F:20:88:57:06:D8:E5:FB:93:C7:A8:F1:2C:A4:FE:5D:3D:AE:4A Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 7F51E8AB8D53D951F5ED2BBF2588220E0D3DD216 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa Signing time: Fri 13 Jun 2025 00:00:10 +0000 ROA not before: Fri 13 Jun 2025 00:00:10 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:51:e8:ab:8d:53:d9:51:f5:ed:2b:bf:25:88:22:0e:0d:3d:d2:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:10 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=0f089f217940b0af67d2e1ae00ceeffc5f2494cc5383c920e4b9b99aca79fcd8, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a1:8c:61:91:d1:39:bc:14:32:fa:97:01:5d: f4:ff:86:6e:73:2f:51:87:4a:d6:83:b8:e3:8c:36: 47:86:12:40:dc:ed:6e:1c:47:32:b6:52:9a:82:f4: 22:e3:68:c4:8d:78:f0:ee:93:34:a1:f1:c8:e9:12: 9b:41:ce:34:69:eb:43:e7:02:3c:26:f4:d9:49:92: e8:b2:c0:3c:8d:52:24:a4:cd:c4:81:0b:ba:4c:eb: bf:25:38:e2:aa:c4:08:21:2f:20:39:0a:d7:30:9e: 23:b1:b8:d1:4c:a2:20:b3:0f:79:da:81:4b:c2:0c: 0e:ed:1b:2e:37:17:4d:ea:dd:e6:8d:6a:67:a5:d0: c6:6b:21:2a:f7:70:c3:78:d4:3a:60:14:93:6b:5f: 44:9f:a8:53:45:8e:86:ce:dd:06:fe:a6:01:0d:db: 2b:bf:b5:11:67:85:a3:5c:f5:95:6b:cd:ee:3b:dd: 36:61:cd:5a:b9:24:06:88:f9:52:b4:73:d4:51:d6: df:1c:e7:72:33:c7:31:b4:d3:2c:ff:5b:f0:df:5e: da:b9:92:f4:1d:2f:1d:49:e8:f6:ff:7d:49:35:7e: fc:e1:c1:83:ec:3f:eb:77:22:a1:5c:f4:83:0b:bb: bb:af:3d:fe:f4:72:c0:29:eb:fe:2e:fb:4a:7f:61: 9a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7F:20:88:57:06:D8:E5:FB:93:C7:A8:F1:2C:A4:FE:5D:3D:AE:4A X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.232.0/22 Signature Algorithm: sha256WithRSAEncryption 93:da:88:26:93:9d:32:f3:c4:05:cf:3f:de:7b:e7:b4:c7:aa: bf:66:47:51:96:c7:82:3f:64:99:75:94:0b:ba:9a:f7:16:a9: 04:be:e7:02:61:b6:e6:a5:21:7e:8e:60:f8:8f:41:fa:5c:b7: 4d:38:7a:c0:68:ea:af:1d:c9:d5:ce:62:dd:58:6b:7d:71:5b: bb:a8:67:21:b2:d4:2c:6e:e8:14:fd:bd:35:40:ae:cb:2b:fa: 87:66:36:cf:7b:d5:fe:d2:46:eb:ca:67:af:51:6a:3f:1e:bb: e9:97:1c:1c:f2:3e:aa:a0:4e:80:9a:07:f9:49:c8:31:8f:f1: d3:b1:27:1d:93:d9:9d:67:5b:d4:8d:7b:c9:97:85:0d:c4:f4: 3d:1a:45:99:82:bd:d9:9d:1d:1d:c8:11:75:c0:60:0c:26:fc: f5:36:17:e7:bf:61:c6:c3:08:8d:8c:8f:6f:91:20:5d:f0:dd: 41:e6:3f:54:6a:e2:d1:a7:ef:e7:bd:11:24:2b:36:be:0e:ee: 6e:28:b1:72:2e:13:fa:a8:56:23:98:b8:d1:4e:dc:d0:96:27: b9:c2:64:16:78:6a:42:1b:c4:01:ad:00:ec:0b:d2:6b:aa:6b: e3:db:1a:91:09:88:78:44:cc:67:e9:af:95:f4:dc:98:bb:da: 9f:57:f7:7d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUf1Hoq41T2VH17Su/JYgiDg090hYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAxMFoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMGYwODlmMjE3OTQwYjBhZjY3ZDJl MWFlMDBjZWVmZmM1ZjI0OTRjYzUzODNjOTIwZTRiOWI5OWFjYTc5ZmNkODEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA56GMYZHRObwUMvqXAV30/4Zucy9R h0rWg7jjjDZHhhJA3O1uHEcytlKagvQi42jEjXjw7pM0ofHI6RKbQc40aetD5wI8 JvTZSZLossA8jVIkpM3EgQu6TOu/JTjiqsQIIS8gOQrXMJ4jsbjRTKIgsw952oFL wgwO7RsuNxdN6t3mjWpnpdDGayEq93DDeNQ6YBSTa19En6hTRY6Gzt0G/qYBDdsr v7URZ4WjXPWVa83uO902Yc1auSQGiPlStHPUUdbfHOdyM8cxtNMs/1vw317auZL0 HS8dSej2/31JNX784cGD7D/rdyKhXPSDC7u7rz3+9HLAKev+LvtKf2Ga1wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIN/IIhXBtjl+5PHqPEspP5dPa5KMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBjNWM1NGZmLWY5NzctNGI5Ni04Y2U5LWExZWFmMDgyZmU5Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynoMA0GCSqGSIb3DQEBCwUAA4IBAQCT2ogmk50y88QFzz/ee+e0 x6q/ZkdRlseCP2SZdZQLupr3FqkEvucCYbbmpSF+jmD4j0H6XLdNOHrAaOqvHcnV zmLdWGt9cVu7qGchstQsbugU/b01QK7LK/qHZjbPe9X+0kbrymevUWo/Hrvplxwc 8j6qoE6Amgf5Scgxj/HTsScdk9mdZ1vUjXvJl4UNxPQ9GkWZgr3ZnR0dyBF1wGAM Jvz1Nhfnv2HGwwiNjI9vkSBd8N1B5j9UauLRp+/nvREkKza+Du5uKLFyLhP6qFYj mLjRTtzQlie5wmQWeGpCG8QBrQDsC9Jrqmvj2xqRCYh4RMxn6a+V9NyYu9qfV/d9 -----END CERTIFICATE-----Generated at Sun Jun 29 03:20:03 2025 by rpki-client