$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa File: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (raw, json) Hash identifier: JjOLUdb5hF4uh/yTk4NwnMITn/til+Lqgz8mOVZEfbM= Subject key identifier: E7:6B:42:16:A0:2E:01:39:21:9B:F3:78:FC:44:6D:2A:7F:9D:9A:F8 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 645332B966F09551A7A37EBF4BCD0D46FB984DB1 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa Signing time: Wed 27 Aug 2025 00:00:13 +0000 ROA not before: Wed 27 Aug 2025 00:00:13 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:53:32:b9:66:f0:95:51:a7:a3:7e:bf:4b:cd:0d:46:fb:98:4d:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 27 00:00:13 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=4c5abce5d4677f0646deae73353934953f36b1cd59b3dd449c338ef08e1d5a7d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d6:32:b4:72:2b:fe:20:22:05:0c:de:e3:22: 10:de:6f:e1:f1:0f:c3:c6:e9:4e:e7:e8:10:38:ee: a3:e8:77:c7:01:7a:61:ca:ad:7f:3e:27:13:06:9f: 08:bb:0e:b3:0e:2f:e1:c5:39:6c:99:6d:0f:c9:99: f2:11:ad:51:ab:f5:8b:95:8a:4f:00:4a:c5:f1:d0: f7:29:43:6f:66:76:63:23:0f:c1:07:71:8d:33:0e: d2:c0:c6:22:e6:b6:62:58:0a:92:5f:73:57:0b:86: d7:c0:70:ff:26:97:b5:e6:27:1f:c6:4f:6c:8c:4b: 32:5e:b3:21:5b:de:47:5e:b5:16:f3:20:f0:db:6f: ec:0b:89:c5:8e:a0:ae:95:a7:9e:0f:a5:b0:7a:d2: 09:cf:ce:79:f4:fa:f2:6b:fd:26:06:fe:d9:84:85: 12:c9:0c:21:ba:11:e6:44:70:92:57:3e:c3:49:ea: 50:54:27:57:41:da:b9:51:4c:19:25:f0:9e:23:3b: 56:e5:1c:11:f9:fa:87:f8:4d:93:aa:9a:36:d9:d1: e5:3e:78:2c:83:a1:cd:84:60:36:26:1a:75:ed:84: 9d:e3:ac:51:57:d8:de:ca:e1:a1:87:95:88:44:76: a7:da:f3:60:40:bd:85:ab:3a:4c:8b:7f:1f:f0:87: f5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:6B:42:16:A0:2E:01:39:21:9B:F3:78:FC:44:6D:2A:7F:9D:9A:F8 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.240.0/20 Signature Algorithm: sha256WithRSAEncryption 89:41:f2:b9:4d:1c:73:c9:47:73:b6:5a:81:bd:c9:88:01:0d: 1a:cb:28:e4:c9:a2:fd:ea:51:6c:e2:d7:9d:07:c4:7a:a3:19: 33:3f:72:0e:ad:9f:cc:b0:f9:50:5f:5d:56:2d:99:02:6b:51: 00:fc:87:fb:9a:3e:51:77:a7:11:ba:4e:dd:4c:6d:cf:a4:6f: fe:80:a7:4a:f5:2e:ee:c1:67:1d:01:08:d7:09:5b:8a:6f:9e: 0a:4b:bb:5a:e3:bd:3e:da:71:1d:e7:9e:c9:e5:d7:d8:8d:ab: 48:e3:1f:be:10:e9:88:d7:46:51:a6:c7:0e:4a:12:90:a5:90: 97:7a:e7:58:bd:64:ba:7a:65:56:e9:c3:14:2b:2c:52:05:ed: 15:25:e6:e5:cf:a1:24:eb:af:18:60:2d:f4:1e:f2:21:6b:41: 66:c7:96:d6:88:00:7d:84:65:8b:48:fb:cf:f9:d4:d8:1b:57: ee:f6:5f:a3:16:79:f4:85:63:4d:2b:25:61:fd:f4:87:91:1f: 66:cb:ab:14:37:a4:b7:64:ac:10:7d:66:98:0a:f2:57:7c:37: ba:db:bf:c6:07:49:46:0a:45:ee:3d:5e:88:6b:c3:a5:44:01: 85:ec:e7:33:6b:bb:48:7e:55:8b:f8:fe:28:4e:22:02:59:60: 0b:1a:33:99 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUZFMyuWbwlVGno36/S80NRvuYTbEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgyNzAwMDAxM1oX DTI1MTAwMTIzNTk1OVowejFJMEcGA1UEBRNANGM1YWJjZTVkNDY3N2YwNjQ2ZGVh ZTczMzUzOTM0OTUzZjM2YjFjZDU5YjNkZDQ0OWMzMzhlZjA4ZTFkNWE3ZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNYytHIr/iAiBQze4yIQ3m/h8Q/D xulO5+gQOO6j6HfHAXphyq1/PicTBp8Iuw6zDi/hxTlsmW0PyZnyEa1Rq/WLlYpP AErF8dD3KUNvZnZjIw/BB3GNMw7SwMYi5rZiWAqSX3NXC4bXwHD/Jpe15icfxk9s jEsyXrMhW95HXrUW8yDw22/sC4nFjqCulaeeD6WwetIJz8559Prya/0mBv7ZhIUS yQwhuhHmRHCSVz7DSepQVCdXQdq5UUwZJfCeIztW5RwR+fqH+E2Tqpo22dHlPngs g6HNhGA2Jhp17YSd46xRV9jeyuGhh5WIRHan2vNgQL2FqzpMi38f8If1wQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOdrQhagLgE5IZvzePxEbSp/nZr4MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 Lzc0ZWZlOGIzLWQzOWMtNGE4Yi05YjdiLTU5OTRhYTRjOGQ4Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynwMA0GCSqGSIb3DQEBCwUAA4IBAQCJQfK5TRxzyUdztlqBvcmI AQ0ayyjkyaL96lFs4tedB8R6oxkzP3IOrZ/MsPlQX11WLZkCa1EA/If7mj5Rd6cR uk7dTG3PpG/+gKdK9S7uwWcdAQjXCVuKb54KS7ta470+2nEd557J5dfYjatI4x++ EOmI10ZRpscOShKQpZCXeudYvWS6emVW6cMUKyxSBe0VJeblz6Ek668YYC30HvIh a0Fmx5bWiAB9hGWLSPvP+dTYG1fu9l+jFnn0hWNNKyVh/fSHkR9my6sUN6S3ZKwQ fWaYCvJXfDe627/GB0lGCkXuPV6Ia8OlRAGF7Ocza7tIflWL+P4oTiICWWALGjOZ -----END CERTIFICATE-----Generated at Tue Sep 9 01:07:21 2025 by rpki-client