$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa File: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (raw, json) Hash identifier: G4gWMQb95Et2eVCT3ixoxBHCElfSWx1Iki9cwjC4s28= Subject key identifier: 62:CF:E5:CD:40:DB:B0:69:A9:12:0A:97:87:0C:3B:97:6F:5A:DB:A0 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 7D8FE7C0F3AC1ADD7C4171117FE543DE87DEE3EF Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa Signing time: Mon 19 May 2025 15:00:05 +0000 ROA not before: Mon 19 May 2025 15:00:05 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:8f:e7:c0:f3:ac:1a:dd:7c:41:71:11:7f:e5:43:de:87:de:e3:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 19 15:00:05 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=e588d5c8ccfe604ea22490851898cab846ecbaf95a261d945e0e51df8d3138f8, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cb:66:64:5f:71:f0:4c:32:c6:ce:3f:61:08: b9:40:a9:dd:cb:d6:90:2d:ae:a9:e7:fb:58:90:9d: a5:f7:a9:24:82:09:ea:88:f7:2d:e3:5c:da:4c:31: c2:93:72:f9:d7:06:8a:40:d9:26:fe:b7:4f:99:9f: 64:b4:50:81:cb:8c:2b:0d:8f:d9:ea:9a:0c:33:bd: 98:68:58:25:e2:27:70:a2:89:35:3c:8d:ea:09:96: e7:f0:28:40:5c:96:e6:11:6f:a7:e0:ae:52:01:39: 13:eb:bf:a8:65:fb:b5:ad:cf:9a:da:6d:ab:b5:8b: 0c:84:2f:16:49:80:77:f3:51:e6:62:ad:33:69:8a: 1f:eb:cf:87:ec:f5:28:34:c9:6f:24:59:1b:0e:ef: 55:2d:41:0a:9c:23:bc:90:6e:33:32:14:dd:9a:a9: dc:0e:f0:9c:b3:81:a0:1b:0f:e4:3c:fa:b1:26:0d: b3:b2:eb:05:8c:a3:68:77:da:1d:35:25:6a:de:4b: bb:29:3b:9a:a8:48:1f:a5:6b:bb:f5:9d:e7:94:68: dc:30:1b:ed:45:e8:54:cf:28:60:4f:97:e0:8e:cc: 11:50:80:e4:ca:14:e0:9b:27:18:ad:05:a0:65:90: 06:8a:ab:c3:82:d0:70:74:c1:cf:20:8e:b4:69:28: 1c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CF:E5:CD:40:DB:B0:69:A9:12:0A:97:87:0C:3B:97:6F:5A:DB:A0 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.238.0/23 Signature Algorithm: sha256WithRSAEncryption 68:af:3a:45:e0:44:ba:b4:e2:52:42:48:7c:83:06:a1:88:dd: 36:c0:92:c5:82:32:63:dd:24:fe:71:95:5d:ad:e5:a7:1b:22: 72:95:cb:52:12:c7:29:16:79:4b:e9:c7:89:95:ca:d7:0c:3f: 39:96:79:e0:0b:c3:a1:68:b4:f7:8b:52:c2:77:7c:33:da:af: c7:0d:af:f1:96:92:40:77:e5:73:8d:79:7d:24:8d:91:ac:89: fc:6f:2f:3e:db:b8:80:2b:f8:64:74:11:d3:f4:55:b1:84:d5: 93:aa:40:23:15:5f:af:41:21:09:26:41:cd:f4:af:17:e6:4d: 0d:71:95:38:8d:22:6a:13:a1:1d:17:06:fd:d9:01:a6:d5:26: c8:a7:d1:e1:83:c9:b0:b6:cf:c8:a7:b8:21:0d:51:68:83:d3: f6:58:c6:5a:65:60:30:ae:9e:ee:6a:f3:65:c1:8c:5b:ab:57: 49:a8:2d:1b:75:95:e9:df:cd:12:01:7c:b5:81:66:74:99:94: 25:b4:0c:2f:dd:a3:7b:f0:ea:c6:9b:ea:2f:b3:56:89:88:ec: f9:85:35:a0:a9:25:4f:bc:8e:38:8c:f9:c7:46:76:97:86:1e: 7b:dc:33:4d:e1:e5:1e:96:91:28:44:69:94:c3:a6:45:3d:9d: cd:6d:75:bd -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUfY/nwPOsGt18QXERf+VD3ofe4+8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUxOTE1MDAwNVoX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNAZTU4OGQ1YzhjY2ZlNjA0ZWEyMjQ5 MDg1MTg5OGNhYjg0NmVjYmFmOTVhMjYxZDk0NWUwZTUxZGY4ZDMxMzhmODEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MtmZF9x8Ewyxs4/YQi5QKndy9aQ La6p5/tYkJ2l96kkggnqiPct41zaTDHCk3L51waKQNkm/rdPmZ9ktFCBy4wrDY/Z 6poMM72YaFgl4idwook1PI3qCZbn8ChAXJbmEW+n4K5SATkT67+oZfu1rc+a2m2r tYsMhC8WSYB381HmYq0zaYof68+H7PUoNMlvJFkbDu9VLUEKnCO8kG4zMhTdmqnc DvCcs4GgGw/kPPqxJg2zsusFjKNod9odNSVq3ku7KTuaqEgfpWu79Z3nlGjcMBvt RehUzyhgT5fgjswRUIDkyhTgmycYrQWgZZAGiqvDgtBwdMHPII60aSgcBQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGLP5c1A27BpqRIKl4cMO5dvWtugMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzQ4YTY3MTU2LTEyMmUtNDFkNC1hMmE4LTgwNDZjYzVlY2M0MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynuMA0GCSqGSIb3DQEBCwUAA4IBAQBorzpF4ES6tOJSQkh8gwah iN02wJLFgjJj3ST+cZVdreWnGyJylctSEscpFnlL6ceJlcrXDD85lnngC8OhaLT3 i1LCd3wz2q/HDa/xlpJAd+VzjXl9JI2RrIn8by8+27iAK/hkdBHT9FWxhNWTqkAj FV+vQSEJJkHN9K8X5k0NcZU4jSJqE6EdFwb92QGm1SbIp9Hhg8mwts/Ip7ghDVFo g9P2WMZaZWAwrp7uavNlwYxbq1dJqC0bdZXp380SAXy1gWZ0mZQltAwv3aN78OrG m+ovs1aJiOz5hTWgqSVPvI44jPnHRnaXhh573DNN4eUelpEoRGmUw6ZFPZ3NbXW9 -----END CERTIFICATE-----Generated at Mon Jun 2 04:47:48 2025 by rpki-client