$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa File: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (raw, json) Hash identifier: nQwsnph8MUR8NwO0tn+sYCSId1c5VReJqwOHRx79NK4= Subject key identifier: 35:2C:82:05:2D:A7:73:58:49:E6:2C:E1:1F:51:9B:08:03:58:01:10 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 65C89FEB1DE0E156EC190F892829B56FD34C4313 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa Signing time: Mon 19 May 2025 15:00:09 +0000 ROA not before: Mon 19 May 2025 15:00:09 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c8:9f:eb:1d:e0:e1:56:ec:19:0f:89:28:29:b5:6f:d3:4c:43:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 19 15:00:09 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=478a71be42dc291e817e67b38fa284729aa8b489a621ca6f5496ebe4d01b15e5, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ce:b5:52:a1:08:9c:7e:e4:65:cf:f0:af:3f: 97:8b:b5:ae:48:f8:94:3a:30:57:30:82:6c:5b:ad: 71:72:eb:0d:21:63:46:fc:cf:40:37:36:a6:09:16: 6a:17:07:74:cc:04:1c:ba:05:77:13:02:8e:7d:c2: 1c:6e:8a:29:f0:23:df:43:cd:a6:dd:51:b1:6d:a2: 36:1c:2b:fc:63:9c:d6:b1:f6:cd:54:49:96:71:68: 74:3e:f7:62:36:01:80:17:b6:99:4d:e8:39:a5:fe: d4:23:8c:0d:7a:4a:d5:d8:15:30:1d:a5:e3:e6:3a: f9:4f:f3:57:b8:36:4c:31:9f:a5:2a:ef:c6:24:65: 81:b9:a4:78:f5:b9:f4:26:b4:41:05:9d:03:63:13: a7:01:87:5d:9d:23:be:8b:c8:7e:8d:3c:17:ab:df: 04:37:06:1c:de:7d:82:1d:50:27:46:cc:6f:5a:5f: 2b:2b:24:2f:ed:0e:01:43:f3:48:a2:08:9c:4b:e4: 34:20:ba:d5:81:f8:7b:84:ca:9b:a8:91:b4:13:e9: a3:71:1d:20:36:d4:f2:23:fc:4e:f5:ae:3a:d1:d7: bc:d3:32:b3:e4:5b:4d:d1:9d:d5:02:63:37:ca:e5: 1f:53:ba:33:14:d8:cd:40:cb:4e:1d:2e:20:2e:1b: 9d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:2C:82:05:2D:A7:73:58:49:E6:2C:E1:1F:51:9B:08:03:58:01:10 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.200.0/21 Signature Algorithm: sha256WithRSAEncryption 80:48:bf:37:ea:ec:3f:d4:54:6c:8e:f6:78:c8:e5:15:bc:88: 15:08:5a:ea:3e:68:06:87:23:58:2e:f2:0e:a1:ec:e2:da:e1: 9b:14:2d:a2:f4:66:83:0a:70:32:9f:88:97:38:85:d0:21:2c: 12:a2:5b:d9:01:40:e7:e1:63:30:82:49:bd:e9:8d:b8:02:11: 00:fa:4f:9c:7c:de:45:88:ff:c7:71:ba:29:23:7b:52:3d:80: e0:99:a1:43:c5:b8:89:4e:2f:3a:a8:8e:33:ff:19:d4:80:50: 4e:86:33:a1:10:42:2f:46:68:2d:d3:0c:c6:72:92:49:00:5a: e2:26:5c:7c:e0:03:4c:35:c8:47:e1:fe:26:6b:09:06:04:9e: 9b:40:0c:d8:7b:65:2e:72:40:38:81:8c:37:d5:1f:c8:79:02: 0a:a4:15:f0:6b:b8:f2:e7:c4:ee:4b:42:65:fa:7d:a6:f8:2b: b1:ae:42:5b:95:fb:6b:ab:1e:00:b7:4d:35:58:ef:e9:a2:3a: 6c:67:89:f1:8b:8d:75:93:12:9e:69:03:86:f0:b8:65:69:49: 50:ee:0c:17:5f:c8:c2:f6:64:7c:e8:2b:74:53:b1:34:09:2a: 72:9d:c4:42:51:ab:6e:ec:91:bd:7b:9a:15:0e:15:9b:06:dc: cd:a1:f1:4e -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUZcif6x3g4VbsGQ+JKCm1b9NMQxMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUxOTE1MDAwOVoX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNANDc4YTcxYmU0MmRjMjkxZTgxN2U2 N2IzOGZhMjg0NzI5YWE4YjQ4OWE2MjFjYTZmNTQ5NmViZTRkMDFiMTVlNTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwM61UqEInH7kZc/wrz+Xi7WuSPiU OjBXMIJsW61xcusNIWNG/M9ANzamCRZqFwd0zAQcugV3EwKOfcIcboop8CPfQ82m 3VGxbaI2HCv8Y5zWsfbNVEmWcWh0PvdiNgGAF7aZTeg5pf7UI4wNekrV2BUwHaXj 5jr5T/NXuDZMMZ+lKu/GJGWBuaR49bn0JrRBBZ0DYxOnAYddnSO+i8h+jTwXq98E NwYc3n2CHVAnRsxvWl8rKyQv7Q4BQ/NIogicS+Q0ILrVgfh7hMqbqJG0E+mjcR0g NtTyI/xO9a460de80zKz5FtN0Z3VAmM3yuUfU7ozFNjNQMtOHS4gLhudhQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDUsggUtp3NYSeYs4R9RmwgDWAEQMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBiZjE1ZDNmLWM1NDYtNGJiNi1hNzY0LTgyMTY1YzM4NGQzNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrynIMA0GCSqGSIb3DQEBCwUAA4IBAQCASL836uw/1FRsjvZ4yOUV vIgVCFrqPmgGhyNYLvIOoezi2uGbFC2i9GaDCnAyn4iXOIXQISwSolvZAUDn4WMw gkm96Y24AhEA+k+cfN5FiP/HcbopI3tSPYDgmaFDxbiJTi86qI4z/xnUgFBOhjOh EEIvRmgt0wzGcpJJAFriJlx84ANMNchH4f4mawkGBJ6bQAzYe2UuckA4gYw31R/I eQIKpBXwa7jy58TuS0Jl+n2m+CuxrkJblftrqx4At001WO/pojpsZ4nxi411kxKe aQOG8LhlaUlQ7gwXX8jC9mR86Ct0U7E0CSpyncRCUatu7JG9e5oVDhWbBtzNofFO -----END CERTIFICATE-----Generated at Mon Jun 2 04:46:31 2025 by rpki-client