$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa File: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (raw, json) Hash identifier: gr+0/7HS2eaD55EeR4HVl043TnkXyThi46EHvMtILfc= Subject key identifier: 79:6D:F6:62:6A:53:28:C4:9E:2C:89:34:39:05:B9:81:50:67:B0:97 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 02961AD1EAA9106FC5CCFAB28DB990CDCC12A662 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa Signing time: Sat 29 Mar 2025 00:00:10 +0000 ROA not before: Sat 29 Mar 2025 00:00:10 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:96:1a:d1:ea:a9:10:6f:c5:cc:fa:b2:8d:b9:90:cd:cc:12:a6:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001 Validity Not Before: Mar 29 00:00:10 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:30:52:84:c1:04:8f:40:e2:ad:b5:f3:4b:dc: d4:de:39:b1:a0:f2:d9:09:ce:43:de:9f:d4:83:96: 2f:ae:4d:8c:1c:20:85:ec:32:74:e8:6e:fd:19:9f: 6b:e4:d3:96:a6:9d:34:8f:b5:38:96:b0:0e:a5:e0: 52:9c:4c:02:7c:bd:9d:4e:aa:bd:94:bf:b8:6e:a9: c5:f8:3b:82:af:9f:62:f6:53:5b:24:37:85:1d:38: da:a6:7a:12:98:05:89:aa:03:d3:f2:b4:a8:70:1c: 57:4a:79:b3:e6:d2:c8:7b:5e:4c:1b:26:e2:28:da: 8a:cc:a5:ac:36:08:88:b2:85:db:79:3f:2e:9a:43: e2:e9:2a:4a:b6:f7:ee:bd:59:4c:82:92:82:ad:5d: cc:84:a4:57:5d:2e:7a:75:99:ed:d9:d0:7c:ca:09: 5b:83:53:6c:ac:c0:ec:90:ad:c7:fb:b1:e0:cc:4f: 39:ed:29:6c:88:04:36:ad:b9:c3:03:d8:1e:25:9b: 5e:de:5d:14:ce:75:1a:f7:4d:34:ee:7a:21:ca:01: 34:e9:f5:ed:82:12:79:17:0c:ba:94:dc:5a:26:fd: 06:79:3d:2f:a8:33:de:ad:d3:6c:86:3a:6d:e2:92: e7:39:c4:80:55:fd:31:14:12:b7:fe:4b:8f:a8:0f: 01:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6D:F6:62:6A:53:28:C4:9E:2C:89:34:39:05:B9:81:50:67:B0:97 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.132.0/22 Signature Algorithm: sha256WithRSAEncryption 63:f7:32:58:3b:5e:88:84:cd:a6:ce:66:66:5e:7e:62:ce:67: 29:b8:8d:65:dc:06:7a:eb:de:25:0c:96:45:62:48:c2:9f:7f: 32:be:91:be:3c:03:da:4c:9d:8d:b6:65:35:fd:29:ae:74:35: db:f0:a1:65:28:2e:3b:da:7e:23:3b:3a:18:af:f8:10:36:34: d0:fb:4e:ba:ca:43:fa:ca:db:ef:cf:ad:5b:33:3e:2c:af:79: 4a:6c:e5:a7:d0:a5:25:24:0d:c2:7f:63:33:fd:c2:65:0b:27: 21:b4:da:3d:e4:aa:64:2a:44:5b:fd:78:99:8b:d6:3f:dd:f1: 5b:01:6a:86:02:22:6a:76:18:75:39:7f:35:f8:06:6c:b9:87: c0:93:81:52:51:01:0d:90:15:aa:5d:7b:96:6a:c9:43:07:a7: 00:e3:a9:6d:42:96:f7:d0:47:64:2e:ea:95:76:ee:9c:58:6f: 62:37:bb:c2:51:04:8e:51:86:fd:52:4b:9a:ec:3f:94:54:42: 5c:0a:e5:a4:1d:31:a4:db:39:40:a5:87:28:43:09:c9:f8:55: 73:a2:17:da:ea:d8:b6:e7:5d:8f:85:c2:fe:cb:b2:14:c2:81: 4f:12:cd:79:f6:90:85:53:7f:b3:f8:da:ae:03:c7:5d:c1:03: 28:d5:57:ab -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUApYa0eqpEG/FzPqyjbmQzcwSpmIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDMyOTAwMDAxMFoX DTI1MDUwMzIzNTk1OVowejFJMEcGA1UEBRNAMWM3NDg1YmYyY2YwNjZhZTAzMjY2 MDZiMTA5NTEwY2ZiNmQyNjUzODUzMTkyOWNjMTEzYjg1ZWFiNTY1MmRjODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnTBShMEEj0DirbXzS9zU3jmxoPLZ Cc5D3p/Ug5Yvrk2MHCCF7DJ06G79GZ9r5NOWpp00j7U4lrAOpeBSnEwCfL2dTqq9 lL+4bqnF+DuCr59i9lNbJDeFHTjapnoSmAWJqgPT8rSocBxXSnmz5tLIe15MGybi KNqKzKWsNgiIsoXbeT8umkPi6SpKtvfuvVlMgpKCrV3MhKRXXS56dZnt2dB8yglb g1NsrMDskK3H+7HgzE857SlsiAQ2rbnDA9geJZte3l0UznUa90007nohygE06fXt ghJ5Fwy6lNxaJv0GeT0vqDPerdNshjpt4pLnOcSAVf0xFBK3/kuPqA8B1QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHlt9mJqUyjEniyJNDkFuYFQZ7CXMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzZiMTVhYmI2LTEwYjctNGVjZC05OTQ3LWM5NjAxMmY4MjRjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymEMA0GCSqGSIb3DQEBCwUAA4IBAQBj9zJYO16IhM2mzmZmXn5i zmcpuI1l3AZ6694lDJZFYkjCn38yvpG+PAPaTJ2NtmU1/SmudDXb8KFlKC472n4j OzoYr/gQNjTQ+066ykP6ytvvz61bMz4sr3lKbOWn0KUlJA3Cf2Mz/cJlCychtNo9 5KpkKkRb/XiZi9Y/3fFbAWqGAiJqdhh1OX81+AZsuYfAk4FSUQENkBWqXXuWaslD B6cA46ltQpb30EdkLuqVdu6cWG9iN7vCUQSOUYb9Ukua7D+UVEJcCuWkHTGk2zlA pYcoQwnJ+FVzohfa6ti2512PhcL+y7IUwoFPEs159pCFU3+z+NquA8ddwQMo1Ver -----END CERTIFICATE-----Generated at Sat Apr 5 11:03:23 2025 by rpki-client