$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: e0ZGkyQa53KunMokiQleJm3nzClb25VDDqRpnK196I8= Subject key identifier: 90:48:9D:E9:51:F4:81:80:36:15:E4:83:8D:4F:27:BA:AD:C2:48:20 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 393A0A522DD98262045760057C9CB1A2611702EA Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Tue 08 Jul 2025 00:00:07 +0000 ROA not before: Tue 08 Jul 2025 00:00:07 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 00:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:3a:0a:52:2d:d9:82:62:04:57:60:05:7c:9c:b1:a2:61:17:02:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jul 8 00:00:07 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=c1c9b770cf62a143c44f601a10d8187247940a1ddfb131a3bb3cba6d5008bb74, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:46:38:0a:1e:38:25:36:d3:32:7d:47:8f:04: c6:1d:1f:ac:eb:2a:c5:1a:95:5d:6b:0e:55:e5:a2: 01:12:3c:a2:72:fa:a0:5e:e1:9b:40:bd:ba:8a:d4: 12:38:f1:e0:2f:8a:97:d3:d7:d2:f7:71:65:8e:ce: d0:ee:7e:e0:09:c5:a7:66:cb:5a:8c:0a:44:80:76: 28:22:4e:9e:ae:14:3d:59:14:4c:4b:08:ab:58:76: b9:78:00:7a:ac:2e:d0:64:ee:fe:7a:ea:71:f4:ed: 14:64:ac:51:f3:00:45:a9:15:e0:bc:93:e0:02:0c: 14:35:a2:53:5d:72:bd:92:ea:a1:ed:b9:59:1c:6b: f0:e3:c8:eb:41:11:ab:fe:a3:fc:ab:dd:cb:e2:7c: 57:55:39:f3:8f:29:62:31:e8:fe:0c:1e:27:8d:41: 1c:f6:54:42:c6:2a:28:c1:f5:98:d3:c6:b6:17:9a: 84:63:54:10:45:7d:0a:b0:af:23:b9:57:ca:9b:61: 2c:2f:0f:e0:0b:f1:3f:c0:a0:0b:0e:a7:36:38:38: 64:e7:3b:aa:63:e8:21:4c:bb:5f:de:4d:aa:e2:c7: a6:3b:aa:32:b2:06:5b:7c:51:48:f8:2b:69:5a:31: f1:c2:d8:5b:ba:5a:02:fd:dc:7d:f2:64:f5:52:74: e9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:48:9D:E9:51:F4:81:80:36:15:E4:83:8D:4F:27:BA:AD:C2:48:20 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 71:b7:9a:3e:48:2e:15:44:e6:dc:d7:75:77:c9:da:80:ae:3f: 1e:23:60:86:6c:31:16:05:e4:fe:c9:0d:05:05:8d:82:8f:43: d3:5e:c4:21:85:7e:2f:19:1f:1a:1e:aa:68:e6:cc:54:33:ba: 52:f4:1c:21:fe:55:2f:e3:94:58:b0:54:50:06:aa:77:5e:af: ae:a9:6a:f5:0d:8b:6c:24:7c:3f:f0:02:f0:81:86:3f:1b:86: 04:51:e8:71:78:a3:da:ca:e4:9c:8d:8c:8f:8c:80:63:60:c5: 5f:08:3a:97:51:6d:95:6c:f5:ed:8c:ae:35:84:ab:80:55:d2: af:7d:66:82:04:ae:cc:9b:be:5b:df:b0:74:91:0f:bf:92:27: ce:d3:6f:46:34:60:c2:ed:98:27:fd:7e:8a:ec:af:cb:7e:6b: 97:fd:f7:c2:d4:4f:0b:b3:be:c3:09:8a:6d:f0:35:b4:85:b1: ba:27:4e:c4:fa:f3:60:4c:d1:a1:6d:a0:27:0c:82:39:1d:52: d1:04:26:2e:da:cf:8f:fd:21:9a:ec:33:9f:91:1c:0f:98:b9: ae:28:ff:40:84:91:07:98:02:c9:db:ba:2f:20:01:66:74:68: f9:51:e8:51:2f:9f:6c:ba:d0:3d:d7:d2:00:2e:ad:03:f0:24: 03:ce:8f:c2 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUOToKUi3ZgmIEV2AFfJyxomEXAuowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDcwODAwMDAwN1oX DTI1MDgxMjIzNTk1OVowejFJMEcGA1UEBRNAYzFjOWI3NzBjZjYyYTE0M2M0NGY2 MDFhMTBkODE4NzI0Nzk0MGExZGRmYjEzMWEzYmIzY2JhNmQ1MDA4YmI3NDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEY4Ch44JTbTMn1HjwTGHR+s6yrF GpVdaw5V5aIBEjyicvqgXuGbQL26itQSOPHgL4qX09fS93Fljs7Q7n7gCcWnZsta jApEgHYoIk6erhQ9WRRMSwirWHa5eAB6rC7QZO7+eupx9O0UZKxR8wBFqRXgvJPg AgwUNaJTXXK9kuqh7blZHGvw48jrQRGr/qP8q93L4nxXVTnzjyliMej+DB4njUEc 9lRCxioowfWY08a2F5qEY1QQRX0KsK8juVfKm2EsLw/gC/E/wKALDqc2ODhk5zuq Y+ghTLtf3k2q4semO6oysgZbfFFI+CtpWjHxwthbuloC/dx98mT1UnTp3QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFJBInelR9IGANhXkg41PJ7qtwkggMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQBxt5o+SC4VRObc13V3ydqA rj8eI2CGbDEWBeT+yQ0FBY2Cj0PTXsQhhX4vGR8aHqpo5sxUM7pS9Bwh/lUv45RY sFRQBqp3Xq+uqWr1DYtsJHw/8ALwgYY/G4YEUehxeKPayuScjYyPjIBjYMVfCDqX UW2VbPXtjK41hKuAVdKvfWaCBK7Mm75b37B0kQ+/kifO029GNGDC7Zgn/X6K7K/L fmuX/ffC1E8Ls77DCYpt8DW0hbG6J07E+vNgTNGhbaAnDII5HVLRBCYu2s+P/SGa 7DOfkRwPmLmuKP9AhJEHmALJ27ovIAFmdGj5UehRL59sutA919IALq0D8CQDzo/C -----END CERTIFICATE-----Generated at Mon Jul 21 23:19:01 2025 by rpki-client