$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa File: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (raw, json) Hash identifier: a09cr/WP4CdvdXzRTRx6IVRc43tXwFWqFcmeMUh8CSc= Subject key identifier: F3:C0:AF:51:24:10:3C:9A:25:6F:AF:F5:96:9B:FE:4C:02:96:D3:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 4B50C8C047F6BD881005C2D5ABDA79D2196C1599 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa Signing time: Mon 19 May 2025 15:00:08 +0000 ROA not before: Mon 19 May 2025 15:00:08 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:50:c8:c0:47:f6:bd:88:10:05:c2:d5:ab:da:79:d2:19:6c:15:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 19 15:00:08 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=b000d7adbde2de522a2c2aaaea12218133184d76143ab74eb7eb220ceace1ced, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:ea:7f:f9:aa:45:8e:4f:03:34:14:c9:c3: 34:27:4b:37:f5:49:2a:47:4f:90:50:9b:7c:35:c6: 7b:ea:e6:c1:80:f6:b9:f6:30:2c:13:7f:e4:a2:d4: 36:eb:e6:b1:da:a3:f7:b3:50:27:47:86:8b:cf:11: 65:4c:0f:28:ec:eb:aa:af:ed:02:ca:92:5f:3e:67: e9:bf:4e:31:7b:f1:57:37:60:de:66:f2:f1:e0:9b: 87:db:9c:37:e8:29:8a:6b:2f:a1:63:9b:8a:14:69: d1:26:5f:c6:da:1a:06:f6:db:41:bc:6d:4d:55:c3: b3:e1:2c:15:f2:0d:7e:36:8c:ba:b3:9a:0a:cc:5a: 66:ff:b9:60:27:a7:46:bc:aa:12:e6:af:fa:51:f3: 83:35:ea:cb:3f:30:0a:68:f2:b4:b0:ca:b5:fb:5e: 4d:09:d6:d4:eb:42:c0:6a:c7:7c:41:62:6a:09:40: 1e:b2:94:fd:25:2e:6c:eb:fc:70:08:e4:4b:3c:31: 00:01:14:f6:39:55:4e:dc:60:67:23:ee:71:16:f5: 00:f6:d7:5a:03:44:93:c9:3a:1f:b9:44:06:19:8f: ae:ca:58:5d:a5:9a:61:39:f3:32:59:82:f8:41:76: 87:36:ec:7a:b2:40:af:6d:73:2d:b0:81:04:6c:7b: 88:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C0:AF:51:24:10:3C:9A:25:6F:AF:F5:96:9B:FE:4C:02:96:D3:AC X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.232.0/22 Signature Algorithm: sha256WithRSAEncryption b3:9f:60:8f:f1:1c:42:fe:09:df:28:fe:f1:79:22:c9:77:95: 4f:a2:39:62:07:11:bf:c8:43:68:b4:e5:06:09:aa:82:04:a9: 6a:23:9b:7a:be:0f:6a:03:89:e8:71:a8:32:e5:61:23:83:ae: e1:fa:0e:16:8c:20:3f:b0:90:6a:18:af:d3:d6:55:97:6e:43: 37:dd:38:d0:73:d7:df:b2:32:24:6c:53:ed:2d:85:f7:85:5d: 52:22:71:c8:f3:3b:d7:63:af:e3:cb:a2:b7:a9:bf:1c:97:e0: 6e:35:99:5f:13:3f:d2:64:80:d8:8b:21:b1:aa:76:8a:b3:31: ba:18:26:67:67:f9:36:b5:03:af:31:1f:41:6d:20:bb:76:f0: 51:15:40:f7:4f:e7:8a:26:f3:48:c4:36:e1:16:67:5b:38:50: 8a:5a:1a:1e:e7:34:b7:b6:60:d5:4f:d1:76:7f:0c:26:d9:8e: af:9e:89:5c:89:73:2a:6d:b8:74:a0:6d:ff:8e:58:15:8a:0a: 19:b8:ef:ee:43:90:9b:dc:fa:92:b3:9e:36:df:76:a6:e6:cf: 32:f4:a6:dc:b1:98:36:f5:e8:ea:fc:ee:bf:17:27:15:4b:b5: c5:2e:1f:94:0c:51:a8:ba:18:83:b0:fb:96:e3:76:38:10:1e: ba:96:c8:d4 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUS1DIwEf2vYgQBcLVq9p50hlsFZkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUxOTE1MDAwOFoX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNAYjAwMGQ3YWRiZGUyZGU1MjJhMmMy YWFhZWExMjIxODEzMzE4NGQ3NjE0M2FiNzRlYjdlYjIyMGNlYWNlMWNlZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskDqf/mqRY5PAzQUycM0J0s39Ukq R0+QUJt8NcZ76ubBgPa59jAsE3/kotQ26+ax2qP3s1AnR4aLzxFlTA8o7Ouqr+0C ypJfPmfpv04xe/FXN2DeZvLx4JuH25w36CmKay+hY5uKFGnRJl/G2hoG9ttBvG1N VcOz4SwV8g1+Noy6s5oKzFpm/7lgJ6dGvKoS5q/6UfODNerLPzAKaPK0sMq1+15N CdbU60LAasd8QWJqCUAespT9JS5s6/xwCORLPDEAART2OVVO3GBnI+5xFvUA9tda A0STyTofuUQGGY+uylhdpZphOfMyWYL4QXaHNux6skCvbXMtsIEEbHuIkwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPPAr1EkEDyaJW+v9Zab/kwCltOsMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBjNWM1NGZmLWY5NzctNGI5Ni04Y2U5LWExZWFmMDgyZmU5Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynoMA0GCSqGSIb3DQEBCwUAA4IBAQCzn2CP8RxC/gnfKP7xeSLJ d5VPojliBxG/yENotOUGCaqCBKlqI5t6vg9qA4nocagy5WEjg67h+g4WjCA/sJBq GK/T1lWXbkM33TjQc9ffsjIkbFPtLYX3hV1SInHI8zvXY6/jy6K3qb8cl+BuNZlf Ez/SZIDYiyGxqnaKszG6GCZnZ/k2tQOvMR9BbSC7dvBRFUD3T+eKJvNIxDbhFmdb OFCKWhoe5zS3tmDVT9F2fwwm2Y6vnolciXMqbbh0oG3/jlgVigoZuO/uQ5Cb3PqS s54233am5s8y9KbcsZg29ejq/O6/FycVS7XFLh+UDFGouhiDsPuW43Y4EB66lsjU -----END CERTIFICATE-----Generated at Mon Jun 2 04:44:36 2025 by rpki-client