$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa File: 22707524-2248-48ea-815f-578f49b19436.roa (raw, json) Hash identifier: 32Xk3d4EJO19C4Fehm7kAjreNUzNLx5RKWRzaIabu7w= Subject key identifier: 72:A2:DA:6D:1D:5D:D6:3D:F5:68:58:46:E2:25:87:2B:38:8C:47:C0 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 335E98436ADFB24A4701463B1C6661B3411B5730 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa Signing time: Fri 17 Oct 2025 00:01:26 +0000 ROA not before: Fri 17 Oct 2025 00:01:26 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:5e:98:43:6a:df:b2:4a:47:01:46:3b:1c:66:61:b3:41:1b:57:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Oct 17 00:01:26 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=a4712d21a9e6440c15334a13f9f3e07effe9b9752e8124a926818f75c326abdc, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:75:28:6d:59:a5:3d:2f:a3:0f:2c:dd:ec:a3: 45:14:b3:27:c6:f5:5d:3a:7b:79:08:d6:da:2b:58: 26:40:ce:10:40:e6:a2:4b:cf:d0:dd:5c:a3:78:da: 4c:6e:24:a4:76:c2:29:3f:58:4c:76:4c:4c:8b:64: 16:9d:fe:9c:c1:ff:e0:36:85:c4:c6:b1:a8:e2:96: 3a:0e:4a:ed:5b:22:a7:30:ae:04:9b:a4:96:e7:f9: c3:c1:30:7c:ba:0a:e4:b6:ed:b5:74:96:8c:cf:44: 5d:b2:d0:a2:67:f0:d0:27:8e:ee:fa:6b:71:02:76: 5f:03:88:ad:92:ab:85:56:71:95:a3:01:6a:0d:4e: 9b:a9:a3:6b:da:fd:72:36:e2:49:03:fc:06:86:0e: c1:a3:64:27:a5:19:32:69:48:b2:5d:ad:86:73:9c: e1:2e:52:43:93:d1:b3:da:a8:eb:37:97:91:03:42: 86:bf:ec:f6:2a:6d:a9:f3:7e:96:9a:89:22:83:d9: dc:16:17:1f:58:75:d6:18:45:24:c8:7b:0d:7f:41: b3:d9:08:70:d4:0e:f3:a8:a5:f5:f2:25:47:7f:c3: f1:77:25:19:2a:44:b3:25:e1:f4:fa:4a:17:ee:fd: 3f:32:05:d0:8c:8f:de:a4:32:78:50:8c:bf:f0:01: 2f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A2:DA:6D:1D:5D:D6:3D:F5:68:58:46:E2:25:87:2B:38:8C:47:C0 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.150.0/24 Signature Algorithm: sha256WithRSAEncryption 90:9d:13:62:50:85:90:ee:ef:64:b0:b6:8c:e9:74:a6:e2:f1: de:d1:7b:40:d7:10:8a:85:b7:c5:6d:85:28:21:0f:ac:66:5c: d0:7e:b7:87:bc:47:d8:ee:95:61:91:d3:ba:95:30:83:23:3e: 09:f4:f9:8d:d3:d2:bd:d8:47:21:54:e4:39:c5:18:c4:09:03: cf:5f:0f:81:6b:ed:59:3a:31:10:c9:d2:df:68:c3:18:ee:ba: 17:97:f0:51:be:a1:1d:a0:e3:fa:20:e1:02:bd:b2:72:1e:65: 70:6b:4b:7a:07:d1:11:b2:ee:0a:b1:38:fb:15:6b:82:03:ce: f4:49:63:01:27:3e:ca:62:c2:30:79:5b:07:7a:32:19:47:9d: f5:8a:30:77:e7:dd:63:40:08:58:46:90:ea:2e:51:bd:67:0b: e7:d0:a3:d7:f1:da:16:30:9c:b7:72:4b:c9:3e:71:44:a5:4b: 6d:d8:f7:df:9b:34:17:53:b9:ec:fe:b5:dc:06:c0:91:de:1d: 8f:31:a4:e8:fe:b9:37:67:02:bf:14:da:ec:ed:89:a1:16:3d: 67:c6:58:4b:9d:5c:0e:91:2c:eb:5a:73:58:e2:c1:a4:28:aa: f0:2f:b8:65:1b:cf:8d:df:b9:73:c4:70:b6:0e:55:da:4b:c9: 9c:01:44:fe -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUM16YQ2rfskpHAUY7HGZhs0EbVzAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTAxNzAwMDEyNloX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNAYTQ3MTJkMjFhOWU2NDQwYzE1MzM0 YTEzZjlmM2UwN2VmZmU5Yjk3NTJlODEyNGE5MjY4MThmNzVjMzI2YWJkYzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXUobVmlPS+jDyzd7KNFFLMnxvVd Ont5CNbaK1gmQM4QQOaiS8/Q3VyjeNpMbiSkdsIpP1hMdkxMi2QWnf6cwf/gNoXE xrGo4pY6DkrtWyKnMK4Em6SW5/nDwTB8ugrktu21dJaMz0RdstCiZ/DQJ47u+mtx AnZfA4itkquFVnGVowFqDU6bqaNr2v1yNuJJA/wGhg7Bo2QnpRkyaUiyXa2Gc5zh LlJDk9Gz2qjrN5eRA0KGv+z2Km2p836Wmokig9ncFhcfWHXWGEUkyHsNf0Gz2Qhw 1A7zqKX18iVHf8PxdyUZKkSzJeH0+koX7v0/MgXQjI/epDJ4UIy/8AEvQwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHKi2m0dXdY99WhYRuIlhys4jEfAMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyNzA3NTI0LTIyNDgtNDhlYS04MTVmLTU3OGY0OWIxOTQzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymWMA0GCSqGSIb3DQEBCwUAA4IBAQCQnRNiUIWQ7u9ksLaM6XSm 4vHe0XtA1xCKhbfFbYUoIQ+sZlzQfreHvEfY7pVhkdO6lTCDIz4J9PmN09K92Ech VOQ5xRjECQPPXw+Ba+1ZOjEQydLfaMMY7roXl/BRvqEdoOP6IOECvbJyHmVwa0t6 B9ERsu4KsTj7FWuCA870SWMBJz7KYsIweVsHejIZR531ijB3591jQAhYRpDqLlG9 Zwvn0KPX8doWMJy3ckvJPnFEpUtt2PffmzQXU7ns/rXcBsCR3h2PMaTo/rk3ZwK/ FNrs7YmhFj1nxlhLnVwOkSzrWnNY4sGkKKrwL7hlG8+N37lzxHC2DlXaS8mcAUT+ -----END CERTIFICATE-----Generated at Sat Oct 18 13:46:43 2025 by rpki-client