$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa File: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (raw, json) Hash identifier: 9gH8wgoLP0o3r6UcKXxsYz0d1ZlrF+DH3kezJUbsvSo= Subject key identifier: 4F:20:11:DB:6F:DB:76:F9:02:16:3A:DF:AA:71:93:B2:E3:D6:FE:A8 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 7BDD5E54BE648BFCD68FEC458D48763310FC48EF Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa Signing time: Mon 19 May 2025 15:00:11 +0000 ROA not before: Mon 19 May 2025 15:00:11 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:dd:5e:54:be:64:8b:fc:d6:8f:ec:45:8d:48:76:33:10:fc:48:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 19 15:00:11 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=0c243360b9a5c37c36df850a750c09425f6f11c6cf6a08f48b7c94fbde1acefc, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d6:41:0d:2c:f2:af:df:f0:97:ca:25:c8:12: ea:17:a1:01:b0:5a:71:54:8a:a4:d6:e2:55:ce:9f: ca:0d:eb:cb:0f:ee:18:6b:df:d8:0b:e1:93:05:35: 1f:f7:f4:d0:07:d7:d3:1e:f3:dd:36:b6:af:69:c5: 76:65:1e:05:b6:ad:d1:8c:0d:98:1f:e6:fd:09:d7: a5:43:59:10:7b:db:70:14:cc:ee:ca:3c:99:f2:8b: bd:75:40:d5:4f:bb:ef:f2:74:8a:78:68:09:1b:26: 38:82:be:b5:f5:06:9b:4f:55:bd:07:04:9e:17:af: 51:dc:ce:23:33:ef:e1:0f:4b:14:e0:f3:39:96:cf: 7a:7d:b2:73:2b:a7:22:f4:5a:57:9a:c4:33:94:b8: 1a:2b:da:04:bc:03:b9:dc:b1:f3:54:b2:e8:0e:70: 78:a8:82:ac:21:2d:bc:5b:18:0e:e1:ba:bc:45:8b: 4e:3c:a5:30:3e:b2:9e:1d:75:7d:11:a7:22:57:9c: 6d:00:2d:9a:fe:89:7b:e3:14:d3:18:24:bb:fa:67: ef:83:0e:17:66:d5:35:4a:76:52:c7:76:14:79:19: a3:05:68:86:f8:1c:ff:ea:4d:2c:e5:66:9c:b5:21: 87:a7:6b:a6:92:9e:0d:30:1d:9d:24:75:fb:cf:90: ab:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:20:11:DB:6F:DB:76:F9:02:16:3A:DF:AA:71:93:B2:E3:D6:FE:A8 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.208.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:c1:12:08:48:90:f5:a6:96:5c:c7:20:da:06:f8:79:2f:cb: 5f:17:a7:07:b4:f6:e7:67:ea:13:0f:11:ba:f4:20:be:a0:27: 2c:4f:0f:95:c3:80:6d:ce:21:02:d3:b0:5e:1c:ff:8d:71:2b: 1e:b2:28:e5:d2:47:52:d5:3a:5a:1c:a9:8b:40:7d:38:5f:79: 93:be:58:48:71:d8:17:dd:5f:14:57:d8:d6:3d:b4:1b:57:bd: 6c:81:54:af:99:05:4f:e1:9e:7e:6e:c4:f2:a2:de:bc:18:ae: 35:53:a5:e1:46:20:06:92:5f:16:ba:03:d5:65:86:da:aa:4a: b5:04:e0:49:6d:c0:f4:bb:53:7e:60:f5:0d:08:ff:24:12:2f: c0:7e:98:5b:48:91:45:82:b8:3c:d5:98:5d:07:bc:65:e2:00: 39:b3:5b:0a:91:ec:2b:48:dd:bc:85:c1:b8:db:6c:67:3c:04: 04:ad:11:44:d4:89:b9:f9:41:6a:e9:c0:f5:8a:25:60:52:23: 30:41:23:5f:79:9d:99:1f:52:d0:3a:1b:a3:6d:de:e0:03:1e: 4c:5d:a9:72:7f:4a:85:e2:24:d7:3d:4f:45:34:40:3c:72:05: 04:69:22:5a:af:09:7f:1c:f8:44:31:8c:76:50:c5:85:92:2e: f1:da:bd:8a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUe91eVL5ki/zWj+xFjUh2MxD8SO8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUxOTE1MDAxMVoX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNAMGMyNDMzNjBiOWE1YzM3YzM2ZGY4 NTBhNzUwYzA5NDI1ZjZmMTFjNmNmNmEwOGY0OGI3Yzk0ZmJkZTFhY2VmYzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtZBDSzyr9/wl8olyBLqF6EBsFpx VIqk1uJVzp/KDevLD+4Ya9/YC+GTBTUf9/TQB9fTHvPdNravacV2ZR4Ftq3RjA2Y H+b9CdelQ1kQe9twFMzuyjyZ8ou9dUDVT7vv8nSKeGgJGyY4gr619QabT1W9BwSe F69R3M4jM+/hD0sU4PM5ls96fbJzK6ci9FpXmsQzlLgaK9oEvAO53LHzVLLoDnB4 qIKsIS28WxgO4bq8RYtOPKUwPrKeHXV9EaciV5xtAC2a/ol74xTTGCS7+mfvgw4X ZtU1SnZSx3YUeRmjBWiG+Bz/6k0s5WactSGHp2umkp4NMB2dJHX7z5CrnQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFE8gEdtv23b5AhY636pxk7Lj1v6oMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzA1YmM4ZGJiLWM3MGEtNDhkYS1iNDViLTQ0NDgzNjQ2MTRmZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynQMA0GCSqGSIb3DQEBCwUAA4IBAQBKwRIISJD1ppZcxyDaBvh5 L8tfF6cHtPbnZ+oTDxG69CC+oCcsTw+Vw4BtziEC07BeHP+NcSsesijl0kdS1Tpa HKmLQH04X3mTvlhIcdgX3V8UV9jWPbQbV71sgVSvmQVP4Z5+bsTyot68GK41U6Xh RiAGkl8WugPVZYbaqkq1BOBJbcD0u1N+YPUNCP8kEi/AfphbSJFFgrg81ZhdB7xl 4gA5s1sKkewrSN28hcG422xnPAQErRFE1Im5+UFq6cD1iiVgUiMwQSNfeZ2ZH1LQ Ohujbd7gAx5MXalyf0qF4iTXPU9FNEA8cgUEaSJarwl/HPhEMYx2UMWFki7x2r2K -----END CERTIFICATE-----Generated at Mon Jun 2 04:41:13 2025 by rpki-client