$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa File: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (raw, json) Hash identifier: Ifc/4norLBc4VDP5CUGtSfAa4lVa0x83f/SmdqePbYI= Subject key identifier: D1:5E:94:6A:69:0C:5E:35:ED:18:09:46:9A:BF:C1:22:C5:C6:82:4C Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3D4AFC5AD901E382CFC6D16AD815E0D0FE79D2F5 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa Signing time: Fri 17 Oct 2025 00:01:29 +0000 ROA not before: Fri 17 Oct 2025 00:01:29 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:4a:fc:5a:d9:01:e3:82:cf:c6:d1:6a:d8:15:e0:d0:fe:79:d2:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Oct 17 00:01:29 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=44ccbd6a01d67878025dd663c5a80c98cc8f11b090049c978c9632b2543e49a5, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f8:98:71:c1:ea:68:c8:6c:5b:67:8f:9b:36: 8a:1c:3e:fa:f8:ec:24:dd:57:a5:f2:1a:32:ec:ce: 95:8d:cb:99:ea:0f:9b:06:65:e7:f7:f1:9a:73:9e: b3:ca:c5:7f:39:73:74:c3:4a:8d:8f:50:48:e6:a4: 3f:0d:1d:c5:3b:a2:b9:04:7b:56:9a:df:2a:5f:80: 76:02:08:13:61:8d:bb:5b:18:6b:68:5c:6a:d7:96: 00:50:66:fa:62:09:53:4c:25:33:16:75:c2:4b:8f: f1:bf:b2:7e:a2:86:b5:dc:a6:d8:74:20:a6:fb:4e: e7:a5:1c:f0:f9:25:a4:f9:70:32:f9:65:3a:4d:e7: 7b:e9:d6:1b:0f:20:77:d5:8e:23:e0:df:4b:3b:71: 2e:03:14:87:1b:d6:13:e6:a4:48:26:25:42:73:a6: 29:90:f1:88:f3:3b:85:6f:4e:bc:de:1d:79:f4:a8: c5:49:be:c8:47:c6:1b:c6:36:b2:4c:7f:a9:8b:31: 16:d8:d2:95:c3:59:2b:b9:50:d4:28:d6:f7:c5:9a: d5:0a:92:08:73:9c:32:b4:fc:14:69:0b:f5:44:98: be:0d:3d:49:a3:cf:09:11:ca:35:fa:d5:bd:28:21: d2:ee:25:29:99:0d:4f:b2:44:70:51:27:9f:71:4e: bb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:5E:94:6A:69:0C:5E:35:ED:18:09:46:9A:BF:C1:22:C5:C6:82:4C X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.132.0/22 Signature Algorithm: sha256WithRSAEncryption c0:44:26:33:94:54:1f:6c:c2:c8:47:49:4d:a4:81:cd:39:53: ca:7b:24:7c:5d:ae:67:1b:4b:3d:3a:6f:38:78:c8:ba:53:a2: 80:fe:39:65:00:04:29:7a:33:7e:6b:83:f9:88:81:28:db:50: 2f:cd:a2:99:73:1c:0c:da:6d:8b:f4:17:2e:ef:ea:20:f6:28: 36:2d:99:ff:9c:2e:66:74:08:d4:ea:da:47:b2:d4:5e:a6:b1: f9:c2:29:c5:12:95:ac:ab:01:49:64:dd:6d:17:57:ee:5e:50: de:e6:90:e2:9a:a3:5b:77:a0:71:43:1b:16:fc:83:60:d9:02: 0b:12:2b:ef:67:9b:84:77:8e:d7:39:8c:bc:d1:fb:eb:e8:8b: 00:f0:a7:0c:3c:61:e7:b0:a4:ba:1b:cd:74:1d:59:ce:fd:24: 0e:f7:d8:d5:7c:7f:36:26:65:6b:a4:a7:ac:fd:65:a2:a8:09: 49:e3:8a:32:b3:a0:3b:dc:fe:36:68:29:96:20:c4:21:74:a4: b3:d9:4c:d0:f2:37:1c:cc:30:8c:8d:2c:bc:73:d3:a1:b0:d1: 7b:f5:c1:a6:4b:f6:41:68:ba:57:bf:a5:d1:27:c5:dd:10:04: b5:49:2c:5a:32:80:b9:45:b6:f3:49:47:87:0d:24:7d:23:c4: 92:a4:68:fc -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUPUr8WtkB44LPxtFq2BXg0P550vUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTAxNzAwMDEyOVoX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNANDRjY2JkNmEwMWQ2Nzg3ODAyNWRk NjYzYzVhODBjOThjYzhmMTFiMDkwMDQ5Yzk3OGM5NjMyYjI1NDNlNDlhNTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPiYccHqaMhsW2ePmzaKHD76+Owk 3Vel8hoy7M6VjcuZ6g+bBmXn9/Gac56zysV/OXN0w0qNj1BI5qQ/DR3FO6K5BHtW mt8qX4B2AggTYY27WxhraFxq15YAUGb6YglTTCUzFnXCS4/xv7J+ooa13KbYdCCm +07npRzw+SWk+XAy+WU6Ted76dYbDyB31Y4j4N9LO3EuAxSHG9YT5qRIJiVCc6Yp kPGI8zuFb0683h159KjFSb7IR8YbxjayTH+pizEW2NKVw1kruVDUKNb3xZrVCpII c5wytPwUaQv1RJi+DT1Jo88JEco1+tW9KCHS7iUpmQ1PskRwUSefcU67+QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNFelGppDF417RgJRpq/wSLFxoJMMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzZiMTVhYmI2LTEwYjctNGVjZC05OTQ3LWM5NjAxMmY4MjRjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymEMA0GCSqGSIb3DQEBCwUAA4IBAQDARCYzlFQfbMLIR0lNpIHN OVPKeyR8Xa5nG0s9Om84eMi6U6KA/jllAAQpejN+a4P5iIEo21AvzaKZcxwM2m2L 9Bcu7+og9ig2LZn/nC5mdAjU6tpHstReprH5winFEpWsqwFJZN1tF1fuXlDe5pDi mqNbd6BxQxsW/INg2QILEivvZ5uEd47XOYy80fvr6IsA8KcMPGHnsKS6G810HVnO /SQO99jVfH82JmVrpKes/WWiqAlJ44oys6A73P42aCmWIMQhdKSz2UzQ8jcczDCM jSy8c9OhsNF79cGmS/ZBaLpXv6XRJ8XdEAS1SSxaMoC5RbbzSUeHDSR9I8SSpGj8 -----END CERTIFICATE-----Generated at Sat Oct 18 13:43:12 2025 by rpki-client