$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa File: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (raw, json) Hash identifier: 9khZHnmd/KVm7t2v5aBidPN9guLeEiSymTha9Zzw50g= Subject key identifier: F9:3B:26:9F:9C:5B:77:93:00:0D:C7:2E:1E:26:1D:70:CD:65:24:9E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6F5FB063E5740D1FBF45BC2334AAB5A398E56183 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa Signing time: Mon 19 May 2025 15:00:12 +0000 ROA not before: Mon 19 May 2025 15:00:12 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:5f:b0:63:e5:74:0d:1f:bf:45:bc:23:34:aa:b5:a3:98:e5:61:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 19 15:00:12 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=6f34a529fb9793d04f1663c2a2a933ca2901e2fc931f92badd262315ae99cf01, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:08:c5:af:a9:94:3a:33:bd:eb:bb:85:71:7e: 03:60:50:78:59:d0:64:46:6d:ef:27:89:64:a9:a8: d4:28:24:0a:87:31:ab:64:ee:30:5c:33:51:ff:61: 8f:ab:c1:86:33:ba:15:9e:87:f0:6b:05:c1:78:8e: 91:62:39:a5:d1:e6:47:28:46:9e:3b:ee:78:0e:05: 46:62:c0:7c:18:30:4e:9a:63:1c:2d:ea:81:61:ad: c3:8d:a1:0e:e4:c5:48:fb:a2:9f:48:93:6f:84:38: b6:3f:ea:bc:d8:29:cf:33:63:97:82:b5:06:39:04: 01:53:b4:34:c1:c1:06:2a:80:5b:43:1e:67:00:d5: db:e3:b6:6e:bf:4b:03:76:6c:55:27:ad:ba:62:6a: 5f:df:98:aa:6e:2c:e2:ae:9f:52:d6:00:2f:dc:6b: 34:33:de:11:de:db:2c:e4:d1:59:4d:f9:09:fe:bf: 07:3c:76:54:f9:99:79:6e:2e:53:5d:6e:78:4a:5b: b2:4f:b3:c7:9d:51:74:f3:06:dc:19:89:da:eb:33: c9:c4:96:a8:c6:91:59:c5:13:0b:9a:c5:ae:5c:40: f1:d4:dd:a9:7e:8c:ab:7d:b1:36:7e:6e:1f:51:a9: 2e:ee:9f:94:2f:a7:4f:de:15:77:de:45:62:70:08: 46:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:3B:26:9F:9C:5B:77:93:00:0D:C7:2E:1E:26:1D:70:CD:65:24:9E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.160.0/19 Signature Algorithm: sha256WithRSAEncryption 7b:3d:d4:77:4b:6c:e0:75:8c:63:cb:d6:2f:e2:56:1a:5b:73: fd:6e:24:e9:5d:e1:c0:b6:e8:43:2c:b1:75:c8:31:37:34:ef: 49:54:50:10:4e:78:d6:90:a3:40:94:c0:0e:29:87:a4:a5:53: c4:30:e0:c7:d8:7e:f6:a4:04:7d:c6:7e:2b:d9:17:ca:ab:2f: 98:3b:cb:e8:c3:7f:cf:fa:c0:bc:23:86:d2:d4:e3:60:cc:59: 00:45:39:e5:a4:b5:7b:b2:8f:c5:f1:73:63:34:f5:a6:4a:b8: fe:ef:b1:54:65:5c:af:3b:89:aa:e3:c2:b5:40:51:b1:1f:50: 6b:6a:db:6b:0d:31:b8:0e:a2:4a:de:bc:75:f6:3a:3d:0c:b9: c2:0f:23:c2:10:d0:a9:2d:a5:17:e8:79:d2:5d:a2:83:f5:08: c8:7a:b0:6a:d3:65:bc:b6:b0:91:90:f7:9f:44:c9:5f:b6:31: 4d:fa:00:23:14:ed:71:0a:f8:b0:6a:33:5a:ae:e0:b5:f4:6a: 95:0d:62:4d:05:bb:62:0c:6f:d4:4d:d4:5b:01:e6:e3:7c:7f: 1c:60:43:15:68:c5:88:7a:0e:c9:27:3e:eb:61:83:1e:e4:2b: 01:b3:06:e6:e7:e9:42:52:5a:52:b3:69:ea:ff:79:be:ba:06: 0b:fb:20:28 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUb1+wY+V0DR+/RbwjNKq1o5jlYYMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDUxOTE1MDAxMloX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNANmYzNGE1MjlmYjk3OTNkMDRmMTY2 M2MyYTJhOTMzY2EyOTAxZTJmYzkzMWY5MmJhZGQyNjIzMTVhZTk5Y2YwMTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAjFr6mUOjO967uFcX4DYFB4WdBk Rm3vJ4lkqajUKCQKhzGrZO4wXDNR/2GPq8GGM7oVnofwawXBeI6RYjml0eZHKEae O+54DgVGYsB8GDBOmmMcLeqBYa3DjaEO5MVI+6KfSJNvhDi2P+q82CnPM2OXgrUG OQQBU7Q0wcEGKoBbQx5nANXb47Zuv0sDdmxVJ626Ympf35iqbizirp9S1gAv3Gs0 M94R3tss5NFZTfkJ/r8HPHZU+Zl5bi5TXW54SluyT7PHnVF08wbcGYna6zPJxJao xpFZxRMLmsWuXEDx1N2pfoyrfbE2fm4fUaku7p+UL6dP3hV33kVicAhGowIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPk7Jp+cW3eTAA3HLh4mHXDNZSSeMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQzZmQ4Njg3LTEyZDQtNDliNS05OTU4LTg1MzZjZTgxNjBiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFrymgMA0GCSqGSIb3DQEBCwUAA4IBAQB7PdR3S2zgdYxjy9Yv4lYa W3P9biTpXeHAtuhDLLF1yDE3NO9JVFAQTnjWkKNAlMAOKYekpVPEMODH2H72pAR9 xn4r2RfKqy+YO8vow3/P+sC8I4bS1ONgzFkARTnlpLV7so/F8XNjNPWmSrj+77FU ZVyvO4mq48K1QFGxH1BrattrDTG4DqJK3rx19jo9DLnCDyPCENCpLaUX6HnSXaKD 9QjIerBq02W8trCRkPefRMlftjFN+gAjFO1xCviwajNaruC19GqVDWJNBbtiDG/U TdRbAebjfH8cYEMVaMWIeg7JJz7rYYMe5CsBswbm5+lCUlpSs2nq/3m+ugYL+yAo -----END CERTIFICATE-----Generated at Tue Jun 3 23:36:07 2025 by rpki-client