$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa File: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (raw, json) Hash identifier: /qij1hgYzlClciu2SIjGQxl+CP5bLqTRsA/vKAvpcFo= Subject key identifier: A7:C8:1F:66:DD:F3:53:A6:4C:A1:25:C3:57:E6:2E:80:A6:E4:20:C7 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 5E432029452F7AD6802403481947973C1A5DE3D9 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa Signing time: Tue 08 Jul 2025 00:00:12 +0000 ROA not before: Tue 08 Jul 2025 00:00:12 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:43:20:29:45:2f:7a:d6:80:24:03:48:19:47:97:3c:1a:5d:e3:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jul 8 00:00:12 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=1a7dc15c8faaa3afb569b54884621469c617f2047c96d969ec3b26ecc77d623c, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:46:fe:41:a1:07:2f:99:38:46:0d:08:97: a3:07:c7:5b:26:cf:28:cf:83:9f:8c:e5:68:fc:77: 2d:23:d4:fc:5d:6d:09:c3:86:8f:d8:72:3a:89:95: 75:bc:2c:d0:cb:06:2b:4f:c2:e2:96:22:36:82:98: 16:47:5d:ea:d5:cd:c2:f4:8d:8c:22:91:4d:86:ea: 02:85:94:04:77:82:4d:b8:e2:0d:1b:0f:7b:da:11: 78:0f:98:e0:6d:71:36:e8:10:cf:8a:83:19:43:47: 47:43:00:2e:a1:72:8f:f6:81:e2:f1:7e:dd:33:64: 65:4c:40:67:c2:24:2e:17:df:a7:3d:87:ba:ac:6c: f0:6c:8b:28:0a:cd:14:f8:82:3b:26:85:cd:7c:97: b2:bf:b4:ae:8a:b6:79:d8:b3:81:6d:08:f7:4f:3e: 60:fd:3c:21:74:74:6a:d8:3a:05:43:14:d1:18:b8: 86:19:4c:3f:f4:24:2b:fe:1d:53:ff:71:a6:dc:8d: cf:17:a7:08:73:97:4e:9d:41:4c:97:ff:6f:d8:73: 48:36:78:11:8e:3c:51:80:f4:91:69:65:a9:0e:76: de:c4:09:c2:cb:b7:80:8b:0a:4a:d1:87:3d:8e:32: 05:95:d1:65:b0:09:4d:4e:77:09:b4:5f:f6:97:e9: ff:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C8:1F:66:DD:F3:53:A6:4C:A1:25:C3:57:E6:2E:80:A6:E4:20:C7 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.196.0/22 Signature Algorithm: sha256WithRSAEncryption 24:71:af:7d:58:65:95:77:6b:f6:ec:92:21:96:7d:a6:b5:2b: a3:a8:db:91:74:2d:0c:85:db:96:3e:02:b7:b0:9f:74:30:76: 03:6d:7e:40:4d:0a:27:63:93:e3:ad:7d:35:bf:5a:48:9c:b7: 07:6a:fc:f8:0e:87:99:2d:5a:b0:50:83:29:40:00:70:81:59: e9:ba:43:c4:ab:58:e1:77:ad:74:32:29:1d:5e:6d:2f:85:62: b4:56:de:cc:a9:ee:cc:78:7f:5f:ab:ca:a5:3a:99:06:5b:66: 58:16:47:13:bb:32:61:d0:d8:45:ce:1e:23:d3:e3:a4:75:94: 30:c7:45:6e:3f:02:ad:ac:7c:01:fd:39:25:8c:1e:35:9e:d4: 2b:38:15:9f:7b:6b:39:32:65:32:f9:31:64:dd:7b:ab:f9:f2: 48:7f:90:b8:cd:82:db:9b:6a:dd:fc:b4:c7:5e:5b:62:c5:70: 54:cc:dd:8c:61:fb:e0:44:c6:ab:fa:8c:f7:12:51:63:ef:10: 2a:b4:22:bd:3f:b8:1c:e0:e4:7b:60:e7:cd:59:1c:9b:84:a1: 7d:e6:03:77:f9:98:a7:ad:cd:5d:87:ae:4d:7c:30:04:fe:5a: 05:69:7c:61:1e:5d:7b:dd:5f:9f:83:f3:f9:79:62:01:e7:33: e9:f6:ae:5c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUXkMgKUUvetaAJANIGUeXPBpd49kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDcwODAwMDAxMloX DTI1MDgxMjIzNTk1OVowejFJMEcGA1UEBRNAMWE3ZGMxNWM4ZmFhYTNhZmI1Njli NTQ4ODQ2MjE0NjljNjE3ZjIwNDdjOTZkOTY5ZWMzYjI2ZWNjNzdkNjIzYzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0xG/kGhBy+ZOEYNCJejB8dbJs8o z4OfjOVo/HctI9T8XW0Jw4aP2HI6iZV1vCzQywYrT8LiliI2gpgWR13q1c3C9I2M IpFNhuoChZQEd4JNuOINGw972hF4D5jgbXE26BDPioMZQ0dHQwAuoXKP9oHi8X7d M2RlTEBnwiQuF9+nPYe6rGzwbIsoCs0U+II7JoXNfJeyv7SuirZ52LOBbQj3Tz5g /TwhdHRq2DoFQxTRGLiGGUw/9CQr/h1T/3Gm3I3PF6cIc5dOnUFMl/9v2HNINngR jjxRgPSRaWWpDnbexAnCy7eAiwpK0Yc9jjIFldFlsAlNTncJtF/2l+n/2wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKfIH2bd81OmTKElw1fmLoCm5CDHMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzgyNDU2ZmYyLWY4YzQtNGM1YS05NDU4LTgyZDkwOWY4M2Y3ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynEMA0GCSqGSIb3DQEBCwUAA4IBAQAkca99WGWVd2v27JIhln2m tSujqNuRdC0MhduWPgK3sJ90MHYDbX5ATQonY5PjrX01v1pInLcHavz4DoeZLVqw UIMpQABwgVnpukPEq1jhd610MikdXm0vhWK0Vt7Mqe7MeH9fq8qlOpkGW2ZYFkcT uzJh0NhFzh4j0+OkdZQwx0VuPwKtrHwB/TkljB41ntQrOBWfe2s5MmUy+TFk3Xur +fJIf5C4zYLbm2rd/LTHXltixXBUzN2MYfvgRMar+oz3ElFj7xAqtCK9P7gc4OR7 YOfNWRybhKF95gN3+Zinrc1dh65NfDAE/loFaXxhHl173V+fg/P5eWIB5zPp9q5c -----END CERTIFICATE-----Generated at Tue Jul 22 04:47:28 2025 by rpki-client