$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa File: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (raw, json) Hash identifier: UpYdy7MotUGRV+qlsRZi3SNXIbMEdXdNZy0tqMHMJK0= Subject key identifier: 16:44:22:51:E0:CC:F2:73:53:AE:39:49:C5:14:B5:A4:FD:48:1D:0E Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 3A82EEC56C4B9EDF0DB8A236A050DF63635ED300 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa Signing time: Mon 19 May 2025 15:00:01 +0000 ROA not before: Mon 19 May 2025 15:00:01 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:82:ee:c5:6c:4b:9e:df:0d:b8:a2:36:a0:50:df:63:63:5e:d3:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 19 15:00:01 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=f23fbf2a7b6520df22426eb6223671e002c44e741ce6d14b155bb6ecd3002336, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:30:bb:de:5d:9d:eb:02:e9:0b:a0:c5:ec:ad: c0:d0:50:26:cb:d2:8b:a9:1e:6d:03:52:f2:43:2a: 43:6f:3d:6f:26:47:d5:32:8e:ca:14:5e:56:91:c8: 13:7b:c7:a1:92:0d:5b:5b:15:4e:a2:2c:d9:0a:37: e6:75:dd:60:59:31:b2:cc:6f:5d:47:c9:ea:d5:dc: 57:da:2b:6b:da:fd:19:15:77:01:f4:21:05:3a:8d: 68:db:47:3d:66:31:c8:25:51:f8:e5:e6:7a:28:8e: f3:0b:4d:ac:76:7e:2f:e7:4d:86:e7:38:8e:31:0e: 0b:60:30:94:77:a5:90:1b:2c:eb:2d:b5:cf:a4:d4: 2a:4b:4e:3a:0f:b3:81:23:91:a6:3a:ad:59:ec:6a: d9:07:70:a4:6e:f3:15:5f:86:9f:a4:93:93:46:6c: 5f:30:00:a2:01:0c:84:ec:a8:87:2e:ea:45:29:bc: a7:70:a4:a0:58:95:ba:cf:c7:63:4a:7e:ab:4c:5f: 4a:e6:46:34:1d:00:4a:1a:a9:47:78:3a:af:42:8b: 09:40:8c:e2:01:b4:82:b2:da:b5:0c:cf:93:46:6c: 4b:9f:25:f6:02:66:ec:fa:e6:e6:38:78:26:08:ef: e6:c1:c8:16:d2:bd:0a:85:3d:4f:ef:8d:b3:ac:b9: 05:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:44:22:51:E0:CC:F2:73:53:AE:39:49:C5:14:B5:A4:FD:48:1D:0E X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.193.0/24 Signature Algorithm: sha256WithRSAEncryption 49:5e:a0:30:3b:8a:f3:f5:55:b5:de:50:69:88:c2:7d:0d:42: c0:d0:07:7f:6f:a5:58:4b:2b:0b:06:a5:8f:4e:dd:a8:b1:72: 94:8c:27:71:a2:5c:3b:50:ea:61:91:ff:3c:24:b6:58:25:a6: c0:9b:ba:79:51:cb:11:9f:1a:4d:a6:cf:8c:f3:3c:0d:68:28: b5:1a:3b:e6:d8:bf:57:1b:c8:61:63:2f:d0:04:e6:84:6b:b2: 19:54:1a:2f:d7:9d:f0:05:8f:8a:26:e9:80:23:b8:7f:cf:46: f2:b5:24:93:ca:54:8c:34:f2:da:04:7f:bc:30:0e:36:0f:48: ec:9f:bf:ad:06:89:31:3b:a2:2e:ac:30:92:f9:0b:84:e9:fd: e6:04:e2:2e:bc:62:ec:bc:ef:d3:99:72:29:eb:4f:26:ed:30: 12:24:4d:27:06:24:a1:2e:c0:b4:4b:3e:ce:cf:a4:85:ef:16: 51:0e:e3:d0:14:10:a2:12:b7:66:04:c2:20:53:4f:9d:ef:f2: ae:7c:9e:9b:8d:b0:2b:e2:ff:45:aa:ac:9f:75:c4:f5:11:14: 53:3d:96:57:3c:53:40:ef:fe:7f:64:08:21:4f:18:b7:58:9e: f8:1a:15:f9:dd:e8:5e:37:96:c8:0c:78:d5:e7:73:34:95:5b: 73:e0:86:68 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUOoLuxWxLnt8NuKI2oFDfY2Ne0wAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUxOTE1MDAwMVoX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNAZjIzZmJmMmE3YjY1MjBkZjIyNDI2 ZWI2MjIzNjcxZTAwMmM0NGU3NDFjZTZkMTRiMTU1YmI2ZWNkMzAwMjMzNjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojC73l2d6wLpC6DF7K3A0FAmy9KL qR5tA1LyQypDbz1vJkfVMo7KFF5WkcgTe8ehkg1bWxVOoizZCjfmdd1gWTGyzG9d R8nq1dxX2itr2v0ZFXcB9CEFOo1o20c9ZjHIJVH45eZ6KI7zC02sdn4v502G5ziO MQ4LYDCUd6WQGyzrLbXPpNQqS046D7OBI5GmOq1Z7GrZB3CkbvMVX4afpJOTRmxf MACiAQyE7KiHLupFKbyncKSgWJW6z8djSn6rTF9K5kY0HQBKGqlHeDqvQosJQIzi AbSCstq1DM+TRmxLnyX2Ambs+ubmOHgmCO/mwcgW0r0KhT1P742zrLkF8QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBZEIlHgzPJzU645ScUUtaT9SB0OMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzJmNDdkY2RkLWMzODQtNGViMi1hZWZkLWY0YWQ2NGYyNmNjZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynBMA0GCSqGSIb3DQEBCwUAA4IBAQBJXqAwO4rz9VW13lBpiMJ9 DULA0Ad/b6VYSysLBqWPTt2osXKUjCdxolw7UOphkf88JLZYJabAm7p5UcsRnxpN ps+M8zwNaCi1Gjvm2L9XG8hhYy/QBOaEa7IZVBov153wBY+KJumAI7h/z0bytSST ylSMNPLaBH+8MA42D0jsn7+tBokxO6IurDCS+QuE6f3mBOIuvGLsvO/TmXIp608m 7TASJE0nBiShLsC0Sz7Oz6SF7xZRDuPQFBCiErdmBMIgU0+d7/KufJ6bjbAr4v9F qqyfdcT1ERRTPZZXPFNA7/5/ZAghTxi3WJ74GhX53eheN5bIDHjV53M0lVtz4IZo -----END CERTIFICATE-----Generated at Mon Jun 2 04:42:55 2025 by rpki-client