$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa File: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (raw, json) Hash identifier: F0K3r/mYGiPklg8J2t9Uqj8mqxga/TNyqBBnOeRcro0= Subject key identifier: 25:6C:26:A6:47:3C:D7:23:CD:B6:88:0C:8D:D0:FE:83:59:14:37:DB Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 7D203BD7A9F7BB68DF5EE244E5E846875822F7D8 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa Signing time: Sat 29 Mar 2025 00:00:06 +0000 ROA not before: Sat 29 Mar 2025 00:00:06 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:20:3b:d7:a9:f7:bb:68:df:5e:e2:44:e5:e8:46:87:58:22:f7:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001 Validity Not Before: Mar 29 00:00:06 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:78:d5:63:e6:e3:1a:c6:38:6f:5e:e5:1a:a6: ce:81:60:c2:f2:bc:ae:e0:c1:9d:8a:a3:a3:d2:14: 6a:37:53:d2:ae:da:94:e3:2d:11:cb:3b:85:55:95: 13:7e:46:32:e8:39:4b:5f:94:11:2e:33:5b:0b:01: 75:c7:a5:ad:6b:03:ec:d1:82:8b:25:d2:91:37:24: f0:d6:98:75:ff:e3:ab:8d:34:a8:25:9e:c7:c4:b4: 89:90:39:ac:50:3b:e7:49:3e:94:ba:63:31:1e:b8: 51:6c:d2:50:4a:87:32:72:d5:77:09:ea:8b:c7:9a: ab:07:3a:ab:c3:7c:17:66:ad:3c:42:af:cb:aa:21: dc:17:fe:a9:8a:29:26:fd:56:ab:30:52:eb:2c:46: ea:90:51:23:06:6f:f1:a3:5a:a2:88:4f:ec:a4:42: bc:7a:38:04:36:66:18:fa:a4:3e:76:b7:e9:5f:54: dd:df:cf:50:9b:57:1a:85:e1:0e:bb:5e:b4:97:24: 74:a1:68:0e:be:1b:cd:b1:ff:02:7e:34:fd:04:aa: 72:67:d7:13:45:de:2e:a4:30:a8:15:bc:e8:31:a0: 5d:a9:d1:d7:43:b9:11:aa:9b:95:5c:9a:51:f0:35: f3:10:d1:0f:4f:22:08:7d:48:81:ee:33:7d:f3:ae: 31:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:6C:26:A6:47:3C:D7:23:CD:B6:88:0C:8D:D0:FE:83:59:14:37:DB X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 94:d5:e0:93:d4:0e:69:84:58:dd:90:fc:e1:ac:90:45:a9:94: 6c:26:22:6b:13:9b:8d:86:6a:76:73:be:3f:c7:70:31:fb:c4: 96:8c:f4:c8:80:dc:12:f2:8e:76:e5:89:ad:23:36:0e:aa:b1: f2:6e:04:00:13:c2:cd:39:79:6f:5d:d6:4b:b4:d2:ba:9f:1b: f5:d1:a1:b7:46:60:61:74:1d:c4:9f:89:0f:24:1a:5a:48:74: e3:d2:c9:dd:32:a0:5c:0b:1c:f3:a1:7c:a0:d8:0d:85:22:42: f3:4c:41:6b:98:d9:15:c9:21:92:2b:a5:97:a4:fd:22:98:fc: 06:5c:46:1b:c6:42:43:3f:27:5a:35:71:e2:1a:ee:5b:ac:8c: 20:63:46:d2:36:39:32:fc:8f:b2:0c:e1:5f:8b:82:2a:3c:6b: 3a:53:20:e6:d3:bf:5e:90:09:5f:1c:7b:7e:ce:72:b5:36:f8: 7e:a4:92:e9:26:4c:8a:a5:6a:c3:d2:0d:00:04:44:20:ed:92: 3d:70:0d:7f:4e:c5:53:a4:79:c7:2c:4c:44:a6:b7:81:e9:84: f2:41:5b:fc:77:21:19:c0:eb:78:bb:0b:2f:36:32:ff:78:c7: 3b:5f:a3:6c:da:88:02:f3:97:82:07:ba:a1:fa:09:da:9c:37: 99:b9:de:64 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUfSA716n3u2jfXuJE5ehGh1gi99gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDMyOTAwMDAwNloX DTI1MDUwMzIzNTk1OVowejFJMEcGA1UEBRNAM2NkNDNlYTYwZmExNmIwYjdlMTYx MzUwOTIwNDJmMDU4MDZiMzUxZmQyMDk5NDBmOTE3MjhiOGZkYTVkYjBlNjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2njVY+bjGsY4b17lGqbOgWDC8ryu 4MGdiqOj0hRqN1PSrtqU4y0RyzuFVZUTfkYy6DlLX5QRLjNbCwF1x6WtawPs0YKL JdKRNyTw1ph1/+OrjTSoJZ7HxLSJkDmsUDvnST6UumMxHrhRbNJQSocyctV3CeqL x5qrBzqrw3wXZq08Qq/LqiHcF/6piikm/VarMFLrLEbqkFEjBm/xo1qiiE/spEK8 ejgENmYY+qQ+drfpX1Td389Qm1caheEOu160lyR0oWgOvhvNsf8CfjT9BKpyZ9cT Rd4upDCoFbzoMaBdqdHXQ7kRqpuVXJpR8DXzENEPTyIIfUiB7jN9864x3QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCVsJqZHPNcjzbaIDI3Q/oNZFDfbMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzllMzdmODU1LTQ4YmYtNDIwYS1hODZjLTVlZWI0ZmMxZjc5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQCU1eCT1A5phFjdkPzhrJBF qZRsJiJrE5uNhmp2c74/x3Ax+8SWjPTIgNwS8o525YmtIzYOqrHybgQAE8LNOXlv XdZLtNK6nxv10aG3RmBhdB3En4kPJBpaSHTj0sndMqBcCxzzoXyg2A2FIkLzTEFr mNkVySGSK6WXpP0imPwGXEYbxkJDPydaNXHiGu5brIwgY0bSNjky/I+yDOFfi4Iq PGs6UyDm079ekAlfHHt+znK1Nvh+pJLpJkyKpWrD0g0ABEQg7ZI9cA1/TsVTpHnH LExEpreB6YTyQVv8dyEZwOt4uwsvNjL/eMc7X6Ns2ogC85eCB7qh+gnanDeZud5k -----END CERTIFICATE-----Generated at Sat Apr 5 11:00:29 2025 by rpki-client