$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: XagZsCoZZ3VEY6SDa3Pq6VeyPwY5cXhud+L4e/Q0Jvc= Subject key identifier: 1B:02:E7:17:6F:F1:70:A9:86:CC:A7:69:47:8E:81:5A:3D:25:05:07 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 3542B8ED3F6BE57BEE3C60EC7D059D05C48DDC79 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Mon 19 May 2025 15:00:04 +0000 ROA not before: Mon 19 May 2025 15:00:04 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:42:b8:ed:3f:6b:e5:7b:ee:3c:60:ec:7d:05:9d:05:c4:8d:dc:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 19 15:00:04 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=5f32164c0c54a5ff968871b8a1610320fd2e06c3c81942bf9d6ddf044b78769b, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:57:f1:64:dd:17:44:8a:a5:4b:da:ce:ad:ec: 02:37:9a:1e:aa:20:ea:4a:f5:41:74:d0:22:d8:43: 68:c9:98:89:d7:14:03:54:99:7b:cf:29:17:3c:84: ab:e4:69:0e:fa:e8:53:1c:2a:07:94:f6:9c:31:29: 58:4a:36:17:7f:8b:f1:b9:c1:3a:5a:82:7a:ca:3a: f7:3f:d2:b8:4d:a2:af:b9:55:7e:63:43:55:2d:d6: b4:63:75:ed:3e:ea:37:1e:ab:16:0e:c9:5e:2e:6b: a4:c5:21:13:5e:04:22:ae:0a:61:e0:55:26:46:ce: 80:cb:12:87:70:13:f0:ec:67:5e:c4:26:f8:35:d0: 42:91:16:fe:46:30:c3:d9:03:8b:1a:78:59:8e:75: 0e:02:8c:14:11:0f:7f:68:94:28:b4:73:ae:0f:a0: 20:50:79:dd:43:a3:b9:20:fd:29:2f:df:2e:80:a2: 56:28:80:df:67:62:a3:49:2e:90:cd:09:a0:4d:7d: ef:ea:67:81:52:e0:a0:65:c7:88:a5:54:f9:ce:91: a3:95:b8:7f:a9:7a:1e:b5:ba:05:c4:38:82:b8:73: 9c:13:ce:85:b3:59:42:4c:66:2f:6f:b9:03:11:3a: 27:9b:91:b7:18:9c:26:af:d5:60:23:cc:17:4d:3c: d9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:02:E7:17:6F:F1:70:A9:86:CC:A7:69:47:8E:81:5A:3D:25:05:07 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 88:fb:f1:6e:79:6d:37:21:13:a4:ad:30:79:1a:e7:ad:ac:06: 9c:b3:b9:0f:17:fe:91:be:b7:53:fe:e4:45:d3:30:16:ec:af: 0d:5d:47:74:84:49:d5:73:b1:db:d4:5f:30:b9:eb:a3:74:87: 40:e2:2f:c8:54:9f:ca:b6:f9:73:ef:2a:8e:dd:ed:3a:a4:1f: b0:48:5c:4b:cc:be:31:d4:2a:a9:8c:3d:a5:59:e1:e6:f1:29: 22:31:74:32:59:3e:1c:34:a0:e9:fe:e0:a4:1f:de:4a:7e:82: 7e:ac:e6:07:07:11:2e:7f:1b:d5:3b:2c:67:54:9e:24:43:5d: 68:1b:71:c5:e6:60:34:91:96:e2:0c:e6:30:1a:82:19:49:d1: 99:45:9f:3c:d8:b5:14:3e:79:ee:6c:49:f4:07:b2:9a:cb:12: 6e:01:aa:b7:82:63:01:ad:e7:a8:38:fc:88:e1:a7:c3:4f:4f: 79:93:e8:2c:4a:92:a7:fb:f7:ba:3e:39:f0:a0:d2:34:e5:dd: 65:ed:28:e3:2b:24:ca:68:7b:73:86:d7:b1:50:b8:1f:f0:a8: 50:5d:23:57:8b:7c:68:59:36:9d:4c:64:49:67:1e:cb:b4:f6: 4f:28:ef:c8:28:34:40:4d:81:07:f9:15:6b:11:a0:fb:92:de: 1f:45:66:2c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUNUK47T9r5XvuPGDsfQWdBcSN3HkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUxOTE1MDAwNFoX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNANWYzMjE2NGMwYzU0YTVmZjk2ODg3 MWI4YTE2MTAzMjBmZDJlMDZjM2M4MTk0MmJmOWQ2ZGRmMDQ0Yjc4NzY5YjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVfxZN0XRIqlS9rOrewCN5oeqiDq SvVBdNAi2ENoyZiJ1xQDVJl7zykXPISr5GkO+uhTHCoHlPacMSlYSjYXf4vxucE6 WoJ6yjr3P9K4TaKvuVV+Y0NVLda0Y3XtPuo3HqsWDsleLmukxSETXgQirgph4FUm Rs6AyxKHcBPw7GdexCb4NdBCkRb+RjDD2QOLGnhZjnUOAowUEQ9/aJQotHOuD6Ag UHndQ6O5IP0pL98ugKJWKIDfZ2KjSS6QzQmgTX3v6meBUuCgZceIpVT5zpGjlbh/ qXoetboFxDiCuHOcE86Fs1lCTGYvb7kDETonm5G3GJwmr9VgI8wXTTzZVwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBsC5xdv8XCphsynaUeOgVo9JQUHMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQCI+/FueW03IROkrTB5Guet rAacs7kPF/6RvrdT/uRF0zAW7K8NXUd0hEnVc7Hb1F8wueujdIdA4i/IVJ/Ktvlz 7yqO3e06pB+wSFxLzL4x1CqpjD2lWeHm8SkiMXQyWT4cNKDp/uCkH95KfoJ+rOYH BxEufxvVOyxnVJ4kQ11oG3HF5mA0kZbiDOYwGoIZSdGZRZ882LUUPnnubEn0B7Ka yxJuAaq3gmMBreeoOPyI4afDT095k+gsSpKn+/e6PjnwoNI05d1l7SjjKyTKaHtz htexULgf8KhQXSNXi3xoWTadTGRJZx7LtPZPKO/IKDRATYEH+RVrEaD7kt4fRWYs -----END CERTIFICATE-----Generated at Mon Jun 2 04:49:55 2025 by rpki-client