$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa File: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (raw, json) Hash identifier: WK48m4Xd5pXwATPpxDjvebu0xOlZQUhZV0zZJxQrvO0= Subject key identifier: 7F:8B:28:31:F9:9E:82:A2:25:4F:02:07:2A:F5:0C:0E:EC:44:6D:F7 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 459069C3AF8DD7AA52A5CF66AFDAF1C11341FD83 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa Signing time: Mon 19 May 2025 15:00:08 +0000 ROA not before: Mon 19 May 2025 15:00:08 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:90:69:c3:af:8d:d7:aa:52:a5:cf:66:af:da:f1:c1:13:41:fd:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 19 15:00:08 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=558635436c9f7d80bf730eff35887144e20edba8f4395dad9f2c38122abbb742, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3d:70:53:7f:34:8f:25:18:df:4a:3d:b7:8f: a0:07:11:1c:1e:c0:a2:96:51:90:11:92:37:fd:6a: 80:09:fc:f7:71:cd:d1:0c:80:bf:98:82:03:48:b7: 59:8e:43:bb:68:e6:68:c3:bf:b0:86:14:6f:25:2c: 31:ee:cc:ee:6e:51:77:9d:0d:a3:f8:ba:51:7a:03: 15:03:34:c9:7e:12:30:fe:c8:29:a2:0e:ec:48:22: 13:c8:84:81:0b:0b:70:c5:5f:0e:a7:f4:d3:2a:2e: 4f:36:89:06:83:b1:fe:0c:52:8d:11:a4:6b:49:e4: e4:44:12:4c:28:69:ea:4d:91:89:3f:72:a6:75:e0: 03:4a:f9:25:04:df:cd:26:7d:de:77:1b:a3:96:3b: 68:84:68:63:66:74:a2:82:ac:d6:25:a0:65:2b:5d: 77:0c:da:77:0b:f8:19:7e:b6:ae:67:81:e1:49:90: e7:c3:89:e1:2a:44:56:91:84:fc:f4:5b:83:63:0d: 20:15:03:cd:8d:e3:d9:9a:9c:c1:65:d1:58:68:12: 65:26:ea:ec:e7:08:8c:f4:3d:bc:90:68:35:6b:e3: 9a:42:e4:c6:c5:6b:a7:15:dc:44:29:a2:34:88:25: a3:8e:fb:f2:20:f4:11:01:7a:31:ee:c2:5c:de:8e: fc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8B:28:31:F9:9E:82:A2:25:4F:02:07:2A:F5:0C:0E:EC:44:6D:F7 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.148.0/23 Signature Algorithm: sha256WithRSAEncryption c8:b1:01:4b:42:25:d6:d6:0e:91:0c:50:5a:93:46:d6:8f:70: de:fa:3c:d3:d1:95:0c:ac:c9:62:d6:ab:5f:d7:b8:57:b9:8a: 28:af:2c:fc:03:5e:35:f5:57:3c:57:a3:ff:78:7b:70:24:4a: 2d:c1:8d:23:03:94:7d:7d:14:3d:1e:e0:36:df:58:69:ed:db: a6:47:f9:da:ba:e2:ec:a9:ba:97:80:5e:19:ce:66:7b:e4:78: a2:ca:4b:b1:7c:71:84:2e:2c:19:6c:48:0e:72:f9:77:f5:b1: 74:f4:66:84:ea:0d:41:37:0f:c9:6b:2a:72:1f:4e:e5:9d:ff: e1:c2:2e:4b:f3:dd:0d:03:d0:fb:4c:82:b9:65:00:26:4d:39: b2:07:19:48:0e:e5:7d:84:3d:0a:6e:08:cb:13:1a:04:83:83: 3a:eb:8f:f0:4c:ff:7a:f3:51:97:bf:d5:42:dc:8b:bb:38:a0: b5:56:dc:62:0b:2c:21:90:5c:f2:f2:89:37:f5:f3:ae:f0:ef: 80:f5:d7:0f:05:8a:0f:7c:c8:f5:04:68:f4:ae:8c:c4:48:5b: a2:1b:f8:39:6f:8c:5a:93:b2:59:34:ea:dd:1f:22:0e:9c:e4: 11:c8:f6:39:7b:36:2a:0d:31:1e:a1:3a:a5:ac:cd:40:34:c8: 75:e7:cf:04 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIURZBpw6+N16pSpc9mr9rxwRNB/YMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDUxOTE1MDAwOFoX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNANTU4NjM1NDM2YzlmN2Q4MGJmNzMw ZWZmMzU4ODcxNDRlMjBlZGJhOGY0Mzk1ZGFkOWYyYzM4MTIyYWJiYjc0MjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoD1wU380jyUY30o9t4+gBxEcHsCi llGQEZI3/WqACfz3cc3RDIC/mIIDSLdZjkO7aOZow7+whhRvJSwx7szublF3nQ2j +LpRegMVAzTJfhIw/sgpog7sSCITyISBCwtwxV8Op/TTKi5PNokGg7H+DFKNEaRr SeTkRBJMKGnqTZGJP3KmdeADSvklBN/NJn3edxujljtohGhjZnSigqzWJaBlK113 DNp3C/gZfrauZ4HhSZDnw4nhKkRWkYT89FuDYw0gFQPNjePZmpzBZdFYaBJlJurs 5wiM9D28kGg1a+OaQuTGxWunFdxEKaI0iCWjjvvyIPQRAXox7sJc3o78aQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFH+LKDH5noKiJU8CByr1DA7sRG33MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdiMjZkNDEwLTE3ZDctNDMxMC1iYjU4LTQxYzQ2NWY4ZWVmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymUMA0GCSqGSIb3DQEBCwUAA4IBAQDIsQFLQiXW1g6RDFBak0bW j3De+jzT0ZUMrMli1qtf17hXuYooryz8A1419Vc8V6P/eHtwJEotwY0jA5R9fRQ9 HuA231hp7dumR/nauuLsqbqXgF4ZzmZ75HiiykuxfHGELiwZbEgOcvl39bF09GaE 6g1BNw/JaypyH07lnf/hwi5L890NA9D7TIK5ZQAmTTmyBxlIDuV9hD0KbgjLExoE g4M664/wTP9681GXv9VC3Iu7OKC1VtxiCywhkFzy8ok39fOu8O+A9dcPBYoPfMj1 BGj0rozESFuiG/g5b4xak7JZNOrdHyIOnOQRyPY5ezYqDTEeoTqlrM1ANMh1588E -----END CERTIFICATE-----Generated at Mon Jun 2 06:20:51 2025 by rpki-client