$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa File: 22707524-2248-48ea-815f-578f49b19436.roa (raw, json) Hash identifier: LB4o1IkdxO1iu+JX61baRwKw2NaOAJvL2NGl56FMY1Y= Subject key identifier: 85:B9:1C:CC:9E:1F:AB:75:29:01:E1:3E:2C:1A:D3:37:96:29:CC:56 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 7AC64B5EFF4E3EAF1025D5FDA9A05C494E72D6F4 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa Signing time: Mon 19 May 2025 15:00:04 +0000 ROA not before: Mon 19 May 2025 15:00:04 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c6:4b:5e:ff:4e:3e:af:10:25:d5:fd:a9:a0:5c:49:4e:72:d6:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 19 15:00:04 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=238c9d735563f9f153e899bcf18746e3292021800ddda29233064a9dd968590b, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f5:7c:78:9a:44:ad:3b:e6:54:50:29:88:37: 1e:1d:a7:2d:fb:65:59:26:f6:1f:f5:dd:07:a4:86: 42:22:bd:89:e2:ae:b9:0c:61:1d:d5:21:2c:22:cd: 6a:d2:5e:63:ff:8e:85:f4:b4:80:81:a3:2e:56:20: 20:84:c5:65:5a:7b:50:a7:78:a4:04:69:f0:0a:67: 07:75:5f:f3:00:15:f6:37:f0:b5:7d:a1:fd:42:da: 9b:5b:ed:80:9d:61:0e:6b:80:97:f5:69:17:10:7d: f2:eb:27:df:9f:1d:d4:a4:65:57:e3:5a:44:d8:c9: 64:c6:8a:cd:52:33:46:d2:1a:ad:68:56:0d:bc:17: d2:f1:4f:7e:5a:cd:27:ee:65:e5:02:e6:88:21:d6: 69:03:82:79:c9:7a:98:04:dc:7b:f7:83:6d:cb:a9: 04:b9:84:74:0c:03:cb:02:d8:6c:2f:f6:46:eb:40: f9:7a:df:0c:ef:f9:06:99:33:50:df:6c:c7:21:47: d7:98:2b:a5:9a:5a:2f:6c:c1:b2:08:ee:16:06:2e: 6d:05:f3:15:cf:9d:fb:2f:ef:7c:c6:b8:54:fa:12: 1f:85:c0:f1:91:67:2b:54:47:40:fd:1f:3e:cf:1d: 87:38:84:7c:1b:9f:c1:eb:6b:87:77:d2:ab:0d:15: b6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B9:1C:CC:9E:1F:AB:75:29:01:E1:3E:2C:1A:D3:37:96:29:CC:56 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.150.0/24 Signature Algorithm: sha256WithRSAEncryption 04:e8:09:47:3d:a1:fd:c0:46:b1:e0:63:e0:78:0b:2a:da:99: bb:f8:f9:8d:78:e8:d8:aa:51:f0:bb:c9:61:d3:a9:42:6f:75: c8:79:51:8e:be:f4:f0:37:1d:1c:11:60:8e:24:d0:68:53:c0: af:1a:b6:66:60:d2:81:0a:be:72:6c:24:11:45:0d:db:28:e2: a8:55:32:42:3a:43:46:af:b9:6e:9c:f7:03:ee:0d:fb:6b:f7: 7d:a2:54:a8:42:ae:76:75:32:89:5c:50:48:fa:fa:e5:6b:78: 4f:09:26:f3:6b:ae:29:84:b9:20:56:0d:ad:b3:86:46:e8:00: 38:63:f5:19:ab:20:6c:75:47:45:0a:96:35:ff:25:71:0d:67: ed:6d:af:1b:22:fd:41:40:ef:8e:d0:89:37:c6:39:11:06:4b: af:ad:49:d4:11:47:58:28:8f:9b:08:fa:cb:59:24:07:3f:cf: 9b:e7:0e:b2:0c:3e:f6:12:de:24:bf:ec:a0:be:6c:04:4e:ca: 12:93:bb:c9:16:c7:0b:2b:25:61:48:b7:3a:83:b5:11:4e:92: 53:99:e9:be:38:7b:54:66:b6:31:3c:55:9d:47:3f:4d:d8:f9: 16:59:ff:b4:e7:09:36:f2:3c:62:cd:4b:ec:95:ff:f3:9f:0a: a0:42:2b:a1 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUesZLXv9OPq8QJdX9qaBcSU5y1vQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDUxOTE1MDAwNFoX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNAMjM4YzlkNzM1NTYzZjlmMTUzZTg5 OWJjZjE4NzQ2ZTMyOTIwMjE4MDBkZGRhMjkyMzMwNjRhOWRkOTY4NTkwYjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPV8eJpErTvmVFApiDceHact+2VZ JvYf9d0HpIZCIr2J4q65DGEd1SEsIs1q0l5j/46F9LSAgaMuViAghMVlWntQp3ik BGnwCmcHdV/zABX2N/C1faH9QtqbW+2AnWEOa4CX9WkXEH3y6yffnx3UpGVX41pE 2MlkxorNUjNG0hqtaFYNvBfS8U9+Ws0n7mXlAuaIIdZpA4J5yXqYBNx794Nty6kE uYR0DAPLAthsL/ZG60D5et8M7/kGmTNQ32zHIUfXmCulmlovbMGyCO4WBi5tBfMV z537L+98xrhU+hIfhcDxkWcrVEdA/R8+zx2HOIR8G5/B62uHd9KrDRW2EQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIW5HMyeH6t1KQHhPiwa0zeWKcxWMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyNzA3NTI0LTIyNDgtNDhlYS04MTVmLTU3OGY0OWIxOTQzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymWMA0GCSqGSIb3DQEBCwUAA4IBAQAE6AlHPaH9wEax4GPgeAsq 2pm7+PmNeOjYqlHwu8lh06lCb3XIeVGOvvTwNx0cEWCOJNBoU8CvGrZmYNKBCr5y bCQRRQ3bKOKoVTJCOkNGr7lunPcD7g37a/d9olSoQq52dTKJXFBI+vrla3hPCSbz a64phLkgVg2ts4ZG6AA4Y/UZqyBsdUdFCpY1/yVxDWftba8bIv1BQO+O0Ik3xjkR BkuvrUnUEUdYKI+bCPrLWSQHP8+b5w6yDD72Et4kv+ygvmwETsoSk7vJFscLKyVh SLc6g7URTpJTmem+OHtUZrYxPFWdRz9N2PkWWf+05wk28jxizUvslf/znwqgQiuh -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:11 2025 by rpki-client