$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa File: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (raw, json) Hash identifier: SOh7sC9Y/+Mz281i5SrO8d4TbErrTErvu5IbsGenP5U= Subject key identifier: A9:21:56:04:FC:0D:DE:21:C3:FA:72:2E:EA:7E:1F:8F:F6:54:6E:13 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 4B6F38345F3EAA669FF786FB883162AFAA9BB19B Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa Signing time: Tue 08 Jul 2025 00:00:13 +0000 ROA not before: Tue 08 Jul 2025 00:00:13 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 00:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:6f:38:34:5f:3e:aa:66:9f:f7:86:fb:88:31:62:af:aa:9b:b1:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jul 8 00:00:13 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=632c9637a965ed4bddf16b4176f23cf0e63eeed84de1b8f3c46221c9a580009e, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:42:f9:cf:d4:9a:43:9e:aa:6e:51:79:eb:33: 65:2b:af:58:c5:41:e0:e9:21:f1:8f:19:d5:a1:72: 27:4a:b6:b0:c6:5f:d0:5a:66:5b:e1:08:26:e7:ae: da:a9:60:be:c8:61:4a:34:30:f5:bd:7d:04:f8:ee: 1d:0c:68:c9:18:f6:1d:f9:08:8a:4d:60:53:b1:8f: 61:2f:2a:dc:c6:3e:3e:32:7c:3e:2f:87:82:d0:37: b1:89:f4:10:8d:39:d8:27:d2:31:2e:69:54:ab:35: 74:ce:e8:48:33:10:4b:00:0d:5b:46:8a:f3:e1:fa: 80:f1:7d:91:1e:08:b6:27:40:2b:b1:af:63:c7:bf: 87:d1:f3:cf:17:4b:ab:44:c9:e3:56:e7:c7:d8:17: 49:07:a6:1c:85:e2:53:06:38:51:81:35:26:af:23: 12:d3:92:9d:13:91:4a:3c:30:1e:5e:eb:e8:fb:cc: ca:50:54:9f:fd:24:3a:8e:ec:68:b2:66:70:91:8e: cc:b7:c7:4c:90:1c:81:99:b9:6c:b5:d3:26:8d:a7: bf:4b:27:13:13:9f:c8:85:56:c3:c3:fc:26:b2:db: fc:ab:e5:05:38:f1:39:d7:9e:79:66:1c:7d:b6:72: 76:d4:06:e5:76:16:fc:4e:62:f2:3f:c9:35:a9:40: f0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:21:56:04:FC:0D:DE:21:C3:FA:72:2E:EA:7E:1F:8F:F6:54:6E:13 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.232.0/22 Signature Algorithm: sha256WithRSAEncryption 76:46:6c:39:bf:53:78:8b:c3:9d:5a:aa:51:01:2a:4f:fb:80: 68:89:99:f4:0f:9c:af:6e:d1:aa:38:2f:b8:2d:65:d2:f3:cb: 4a:85:41:30:9d:c6:b8:75:04:e8:70:43:3e:6d:e7:14:7f:2b: 01:43:d2:68:0b:a5:7b:cd:ce:b7:82:25:73:eb:e5:92:39:a2: cf:e7:0b:e7:50:14:7d:d1:f8:8c:9d:8a:ce:7d:c2:60:7a:9d: c9:07:42:69:eb:5b:68:98:45:69:6e:18:0c:d0:ab:2c:6f:ca: 3d:de:91:11:ef:a7:8a:0b:2d:e6:f7:4f:eb:69:a5:92:1e:f4: e8:dc:af:8f:0d:b9:71:91:64:23:95:ec:ea:82:84:4e:7c:c5: 92:b4:fb:fd:71:d1:03:57:26:c6:64:8f:e9:ea:8e:01:c8:9f: f1:04:b9:ee:32:f7:d1:65:a3:48:86:49:45:1f:ca:2e:4e:7d: 5e:b4:6b:74:f8:5a:9b:8a:61:e2:4c:aa:df:9c:e6:36:e1:45: cd:2b:89:cb:fd:df:59:9c:09:39:fc:c7:ac:7a:5e:8e:b4:bf: 12:8a:4c:69:2c:0c:77:f8:84:d1:c7:2a:f8:f2:12:f1:75:2b: a0:8a:78:cc:5a:ca:b9:a9:48:c4:92:1a:27:57:30:7b:47:b8: 73:24:bb:76 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUS284NF8+qmaf94b7iDFir6qbsZswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDcwODAwMDAxM1oX DTI1MDgxMjIzNTk1OVowejFJMEcGA1UEBRNANjMyYzk2MzdhOTY1ZWQ0YmRkZjE2 YjQxNzZmMjNjZjBlNjNlZWVkODRkZTFiOGYzYzQ2MjIxYzlhNTgwMDA5ZTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkL5z9SaQ56qblF56zNlK69YxUHg 6SHxjxnVoXInSrawxl/QWmZb4Qgm567aqWC+yGFKNDD1vX0E+O4dDGjJGPYd+QiK TWBTsY9hLyrcxj4+Mnw+L4eC0DexifQQjTnYJ9IxLmlUqzV0zuhIMxBLAA1bRorz 4fqA8X2RHgi2J0Arsa9jx7+H0fPPF0urRMnjVufH2BdJB6YcheJTBjhRgTUmryMS 05KdE5FKPDAeXuvo+8zKUFSf/SQ6juxosmZwkY7Mt8dMkByBmblstdMmjae/SycT E5/IhVbDw/wmstv8q+UFOPE51555Zhx9tnJ21Abldhb8TmLyP8k1qUDw8QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKkhVgT8Dd4hw/pyLup+H4/2VG4TMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBjNWM1NGZmLWY5NzctNGI5Ni04Y2U5LWExZWFmMDgyZmU5Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynoMA0GCSqGSIb3DQEBCwUAA4IBAQB2Rmw5v1N4i8OdWqpRASpP +4BoiZn0D5yvbtGqOC+4LWXS88tKhUEwnca4dQTocEM+becUfysBQ9JoC6V7zc63 giVz6+WSOaLP5wvnUBR90fiMnYrOfcJgep3JB0Jp61tomEVpbhgM0Kssb8o93pER 76eKCy3m90/raaWSHvTo3K+PDblxkWQjlezqgoROfMWStPv9cdEDVybGZI/p6o4B yJ/xBLnuMvfRZaNIhklFH8ouTn1etGt0+FqbimHiTKrfnOY24UXNK4nL/d9ZnAk5 /Mesel6OtL8SikxpLAx3+ITRxyr48hLxdSuginjMWsq5qUjEkhonVzB7R7hzJLt2 -----END CERTIFICATE-----Generated at Mon Jul 21 23:18:22 2025 by rpki-client