$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: DAoSUCafPo7Z6XIwuxzjAJ4UYhdURURNiVOUpr1yqc0= Subject key identifier: 40:7E:7E:4E:4A:2F:FF:CD:AE:A7:54:53:B6:7A:B3:07:FA:F4:1E:7B Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1FC9D15CCE30D1D51339C25CD66F453A6BEC7A3F Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Wed 27 Aug 2025 00:00:06 +0000 ROA not before: Wed 27 Aug 2025 00:00:06 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 00:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:c9:d1:5c:ce:30:d1:d5:13:39:c2:5c:d6:6f:45:3a:6b:ec:7a:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 27 00:00:06 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=d74a174a59ad6a2c0f954bba32ed83238b1df514b61fdc3a19195b2d0ee34b94, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a3:cc:e4:99:67:49:0f:27:f8:48:79:9c:c3: e3:11:56:d9:ce:39:7b:2a:d1:83:c3:b5:93:94:a9: 4a:6d:1e:25:ae:53:b2:cc:ab:26:b5:ea:d3:40:80: 21:76:fb:3b:3b:0e:02:8e:9a:c1:cd:2f:e0:52:74: 88:35:31:11:2d:08:77:ea:a4:96:a3:8f:18:50:f7: 48:cc:49:95:22:e0:54:e4:05:a5:28:36:70:00:80: 1b:c9:5a:52:91:20:12:1a:b6:d5:65:df:08:63:82: cc:e8:d5:5e:2e:2d:44:26:f8:ea:c6:18:05:0b:b1: af:8d:5f:80:79:da:28:fb:f1:cf:6d:59:6e:bb:72: 4a:61:b0:2c:42:d9:9e:a7:a7:30:50:3c:07:e4:56: da:c7:0c:34:a7:b4:5a:c4:55:ba:20:00:26:72:ff: 97:a8:57:dc:9c:39:17:f3:80:7b:b4:f3:25:3a:ac: 41:2b:b9:20:18:f1:c0:29:f6:25:d1:4d:83:dd:54: 9d:d9:d9:85:b4:86:cb:41:f2:75:e4:0c:31:0f:1d: 9b:6c:1b:86:a1:ac:a8:6b:f5:07:72:aa:e3:63:f2: 07:e8:6a:ce:d5:40:24:44:d6:7a:55:70:70:3f:bd: 8a:ae:ca:ca:06:ba:41:62:23:ed:89:cd:63:06:fd: e4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:7E:7E:4E:4A:2F:FF:CD:AE:A7:54:53:B6:7A:B3:07:FA:F4:1E:7B X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 39:75:63:8a:14:3e:28:a9:95:5b:e6:05:cb:2c:8d:34:f5:e4: 49:58:be:41:47:12:1e:10:06:c3:7e:4e:53:bb:6e:7b:09:04: a3:ad:5e:35:cd:3f:c6:55:d4:8f:68:f5:47:25:82:b0:67:da: ec:6d:86:b6:78:8a:c0:98:ca:d5:6b:9a:06:1b:ef:ef:03:56: 6b:0c:78:e0:ac:8d:12:f1:30:78:97:55:10:9f:5b:89:e0:f0: 49:1d:b5:5f:03:9d:2d:6f:21:5c:e5:06:b9:4e:30:3c:f8:45: 35:af:8f:a9:e7:25:f7:34:45:ab:27:e5:f7:a7:d9:65:ac:b5: ce:e8:0a:81:5c:fb:e4:b1:82:7e:a4:36:33:f5:98:ee:97:6f: 74:6b:00:3b:43:e5:88:dd:88:7d:6c:fd:3e:e8:24:f7:c2:44: 08:c3:83:35:da:53:26:27:fd:ac:de:ab:7c:97:4a:be:64:4a: 50:c5:1a:f5:0f:46:c4:d1:99:f5:cb:00:61:94:2f:e9:58:2e: 90:3c:fb:ff:82:97:a1:6e:97:8d:9f:14:d7:ca:cc:5f:8d:18: 03:22:90:d7:76:97:f4:bb:96:15:23:b2:06:46:40:ee:1c:63: ea:5d:f4:62:c3:99:c5:59:60:7a:e2:98:6a:88:f4:fb:93:58: ea:ba:69:f5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUH8nRXM4w0dUTOcJc1m9FOmvsej8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgyNzAwMDAwNloX DTI1MTAwMTIzNTk1OVowejFJMEcGA1UEBRNAZDc0YTE3NGE1OWFkNmEyYzBmOTU0 YmJhMzJlZDgzMjM4YjFkZjUxNGI2MWZkYzNhMTkxOTViMmQwZWUzNGI5NDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqPM5JlnSQ8n+Eh5nMPjEVbZzjl7 KtGDw7WTlKlKbR4lrlOyzKsmterTQIAhdvs7Ow4CjprBzS/gUnSINTERLQh36qSW o48YUPdIzEmVIuBU5AWlKDZwAIAbyVpSkSASGrbVZd8IY4LM6NVeLi1EJvjqxhgF C7GvjV+Aedoo+/HPbVluu3JKYbAsQtmep6cwUDwH5Fbaxww0p7RaxFW6IAAmcv+X qFfcnDkX84B7tPMlOqxBK7kgGPHAKfYl0U2D3VSd2dmFtIbLQfJ15AwxDx2bbBuG oayoa/UHcqrjY/IH6GrO1UAkRNZ6VXBwP72KrsrKBrpBYiPtic1jBv3kcwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFEB+fk5KL//NrqdUU7Z6swf69B57MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQA5dWOKFD4oqZVb5gXLLI00 9eRJWL5BRxIeEAbDfk5Tu257CQSjrV41zT/GVdSPaPVHJYKwZ9rsbYa2eIrAmMrV a5oGG+/vA1ZrDHjgrI0S8TB4l1UQn1uJ4PBJHbVfA50tbyFc5Qa5TjA8+EU1r4+p 5yX3NEWrJ+X3p9llrLXO6AqBXPvksYJ+pDYz9Zjul290awA7Q+WI3Yh9bP0+6CT3 wkQIw4M12lMmJ/2s3qt8l0q+ZEpQxRr1D0bE0Zn1ywBhlC/pWC6QPPv/gpehbpeN nxTXysxfjRgDIpDXdpf0u5YVI7IGRkDuHGPqXfRiw5nFWWB64phqiPT7k1jqumn1 -----END CERTIFICATE-----Generated at Tue Sep 9 01:09:49 2025 by rpki-client