$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: xc6kyGDCc08DGQ+CdD/ZJnGOu61b7ePmzNcZCJYbpUw= Subject key identifier: B0:AF:B8:AB:2F:61:D7:E8:1C:5B:47:AC:0B:5A:DA:95:1C:90:71:AA Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 4A7FCDF3CF942EFFCEC17C3D70C5794F79EE7573 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Sat 02 Aug 2025 00:00:03 +0000 ROA not before: Sat 02 Aug 2025 00:00:03 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7f:cd:f3:cf:94:2e:ff:ce:c1:7c:3d:70:c5:79:4f:79:ee:75:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 2 00:00:03 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=d104fa35e17f168ee229e9cec6d15128e3859d84d82dc595a475d22e7eb8ef97, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:36:39:88:33:73:ad:f7:d3:1b:19:46:d5:a5: 1f:a5:90:d9:ba:88:01:58:18:3d:d8:d2:2e:e8:9a: 2c:d1:ab:ba:07:2e:c0:43:92:fb:5d:61:20:2a:2c: b3:4e:e2:84:8c:e8:96:d7:73:5e:f9:18:3c:20:11: dc:fa:19:ef:e0:f0:60:b8:0d:82:db:96:f4:61:18: de:6a:ee:91:e4:b7:9b:d0:bb:14:9f:6b:0b:47:25: c7:8f:2b:3d:b8:b9:cf:84:03:a4:f3:6a:69:0a:ea: 77:44:f1:4c:19:a1:88:82:ba:2d:28:22:4f:11:20: 34:16:77:0f:53:86:fd:f1:ae:6b:ca:0e:1b:b2:8d: 5c:02:73:fe:3e:fe:f2:e9:34:f1:24:68:2b:6d:92: a0:82:1d:34:29:74:af:4d:88:76:d3:c6:1d:e5:6c: eb:53:62:81:48:eb:16:37:6f:18:26:d2:0c:21:e3: c3:d5:13:70:44:5b:0c:81:98:27:16:b7:e2:65:f6: ca:08:1f:2d:e5:ae:1b:cf:24:b8:7e:e7:4f:72:fb: b2:4f:c1:cd:4b:3e:21:10:88:52:df:83:27:ba:d0: ce:96:c0:bd:c3:75:d7:cc:19:93:eb:78:9a:77:37: 2d:90:59:2a:fa:20:c4:4a:cc:13:da:ee:d6:7b:2f: 0a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AF:B8:AB:2F:61:D7:E8:1C:5B:47:AC:0B:5A:DA:95:1C:90:71:AA X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8e:df:10:c5:ce:bc:18:fc:96:c7:92:64:f4:b0:cc:d4:9e:02: 16:e6:ec:8f:ba:9d:e8:fa:d1:36:57:c2:21:62:92:49:34:36: ee:f9:fb:82:a7:50:3f:ba:3a:7d:5d:42:9b:7d:1f:7c:1c:9a: 23:43:53:c9:b4:95:7b:88:4a:05:b7:1c:f4:b0:64:c9:ba:16: ed:44:0f:e6:29:3e:f0:0e:d2:77:29:ff:c1:1a:3a:fc:5c:dc: 5f:83:1b:01:f1:0e:4f:3d:2c:68:0c:8d:4b:07:b1:9d:24:33: 42:32:f6:43:1e:c5:43:c4:7b:27:72:91:13:47:37:df:82:34: 82:18:be:46:cb:c8:bf:25:12:63:6b:8c:c2:a6:52:a2:fd:22: 2e:6d:56:19:97:b7:88:72:8e:a3:7e:f4:ac:28:f3:a9:2a:c3: 4c:a0:c0:9a:30:87:d6:af:5b:49:5a:45:bc:08:46:f5:c5:44: 83:f6:ff:7e:82:7c:ec:6d:52:db:a2:83:a4:c3:ad:85:dd:6f: 01:08:6a:84:65:a0:23:f8:0f:e9:9c:9c:12:6b:da:39:86:80: 98:8e:5a:73:bc:df:08:0d:ab:e2:9a:be:cc:59:12:da:4f:e8: 54:cb:b7:18:c9:63:bb:13:01:3f:42:34:b9:18:b2:4d:03:36: b2:94:c2:4d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUSn/N88+ULv/OwXw9cMV5T3nudXMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgwMjAwMDAwM1oX DTI1MDkwNjIzNTk1OVowejFJMEcGA1UEBRNAZDEwNGZhMzVlMTdmMTY4ZWUyMjll OWNlYzZkMTUxMjhlMzg1OWQ4NGQ4MmRjNTk1YTQ3NWQyMmU3ZWI4ZWY5NzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDY5iDNzrffTGxlG1aUfpZDZuogB WBg92NIu6Jos0au6By7AQ5L7XWEgKiyzTuKEjOiW13Ne+Rg8IBHc+hnv4PBguA2C 25b0YRjeau6R5Leb0LsUn2sLRyXHjys9uLnPhAOk82ppCup3RPFMGaGIgrotKCJP ESA0FncPU4b98a5ryg4bso1cAnP+Pv7y6TTxJGgrbZKggh00KXSvTYh208Yd5Wzr U2KBSOsWN28YJtIMIePD1RNwRFsMgZgnFrfiZfbKCB8t5a4bzyS4fudPcvuyT8HN Sz4hEIhS34MnutDOlsC9w3XXzBmT63iadzctkFkq+iDESswT2u7Wey8KqQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLCvuKsvYdfoHFtHrAta2pUckHGqMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQCO3xDFzrwY/JbHkmT0sMzU ngIW5uyPup3o+tE2V8IhYpJJNDbu+fuCp1A/ujp9XUKbfR98HJojQ1PJtJV7iEoF txz0sGTJuhbtRA/mKT7wDtJ3Kf/BGjr8XNxfgxsB8Q5PPSxoDI1LB7GdJDNCMvZD HsVDxHsncpETRzffgjSCGL5Gy8i/JRJja4zCplKi/SIubVYZl7eIco6jfvSsKPOp KsNMoMCaMIfWr1tJWkW8CEb1xUSD9v9+gnzsbVLbooOkw62F3W8BCGqEZaAj+A/p nJwSa9o5hoCYjlpzvN8IDavimr7MWRLaT+hUy7cYyWO7EwE/QjS5GLJNAzaylMJN -----END CERTIFICATE-----Generated at Sat Aug 23 10:09:41 2025 by rpki-client