$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: wpKj36JdsfXag8LGDUWBP1MmuCyEVzf36jNKuqjSKus= Subject key identifier: FF:DA:09:F8:FC:F4:52:1F:7F:9D:5E:42:10:A6:5B:42:D6:B0:5E:8C Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 544E87DB72785542A7A659BD7D370EC099BB70E7 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Wed 27 Aug 2025 00:00:04 +0000 ROA not before: Wed 27 Aug 2025 00:00:04 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:4e:87:db:72:78:55:42:a7:a6:59:bd:7d:37:0e:c0:99:bb:70:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 27 00:00:04 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=4eb2c26b936b709bc1a6dbd5e00fb332d035a2b60a02fe25aff4ebbb6df07167, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3d:17:c5:03:8d:cc:99:03:4a:cd:a1:58:4d: 6b:26:fc:41:45:0b:52:0b:8f:de:83:bb:54:98:1e: bd:b0:98:c4:b3:81:df:e6:b2:d4:98:46:aa:ad:12: 0d:ec:15:91:23:fc:d8:ae:2c:ab:89:82:9e:c5:81: 65:08:e0:91:5a:60:c9:a4:da:0d:62:6a:1e:57:96: d4:c8:ca:eb:d1:f3:a2:ee:67:ee:cc:18:8f:a2:a2: 3c:0a:fb:78:ae:5b:38:61:cd:e1:87:17:75:4f:01: 74:e8:8f:0a:b4:f1:aa:f0:e9:e2:5d:f3:a3:d4:7d: 4d:ef:e5:b9:ed:9c:f5:1b:ba:6d:a2:51:c6:43:34: 13:ae:06:3e:b4:75:51:2e:f8:7d:59:eb:6d:ae:df: f7:4a:ad:0a:6a:f4:a4:92:97:87:78:8e:36:8e:c4: 96:f2:b8:3f:95:9c:35:aa:91:26:03:54:86:0b:07: 13:ca:36:33:aa:88:7a:fc:2e:90:05:fc:a2:56:ab: 76:74:d2:00:00:08:12:08:77:86:d8:35:7f:9d:40: cf:ca:72:72:05:3c:07:54:3a:da:39:4c:58:fb:89: 44:60:ec:2d:d9:33:50:da:1c:49:45:42:fe:00:a6: 98:30:a6:da:2a:e5:39:d2:88:33:4d:ec:ce:d9:82: e7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DA:09:F8:FC:F4:52:1F:7F:9D:5E:42:10:A6:5B:42:D6:B0:5E:8C X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 95:0b:fa:37:87:65:e5:0a:14:0d:04:2a:c7:68:cf:ea:c4:7d: 64:2b:05:bb:1c:3f:82:27:25:ff:98:5e:f1:06:58:63:ee:38: ab:19:f6:56:1e:a8:ae:e5:b3:d2:2d:db:48:6e:cc:97:99:c7: 56:cf:29:8d:46:16:7b:ff:2d:b5:50:f7:5a:7a:8b:f7:5f:20: 28:d5:22:ae:a3:ad:4b:0f:21:33:a0:83:5d:f0:c2:fa:66:34: 24:1c:95:9c:b8:69:f4:78:43:89:5f:b9:05:13:90:a4:79:59: 4f:c9:1b:7b:fb:cd:15:ae:3f:b0:12:89:dc:75:68:f3:11:3d: 7b:1b:c5:80:f4:33:4a:73:4f:8f:d0:9d:9f:6d:14:b5:ba:a7: 9d:7b:39:6f:dc:b4:c8:71:d1:7e:32:e8:93:5a:ed:4f:2f:25: 51:db:46:4e:59:a2:f1:eb:69:71:0a:c7:9e:aa:c3:33:75:a9: 99:78:e4:fd:07:63:1c:eb:5f:10:00:a3:39:a7:30:f3:20:11: 2f:0d:9d:7c:44:6f:5c:63:de:d4:89:c0:df:2a:92:c9:67:e8: 20:f9:ea:33:13:5e:ef:8b:50:f7:2d:84:3f:e0:29:97:52:44: 3e:6f:bc:0b:c5:d4:31:41:af:5d:a9:b6:e2:eb:bd:5c:19:d2: 91:90:44:6b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUVE6H23J4VUKnplm9fTcOwJm7cOcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgyNzAwMDAwNFoX DTI1MTAwMTIzNTk1OVowejFJMEcGA1UEBRNANGViMmMyNmI5MzZiNzA5YmMxYTZk YmQ1ZTAwZmIzMzJkMDM1YTJiNjBhMDJmZTI1YWZmNGViYmI2ZGYwNzE2NzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvz0XxQONzJkDSs2hWE1rJvxBRQtS C4/eg7tUmB69sJjEs4Hf5rLUmEaqrRIN7BWRI/zYriyriYKexYFlCOCRWmDJpNoN YmoeV5bUyMrr0fOi7mfuzBiPoqI8Cvt4rls4Yc3hhxd1TwF06I8KtPGq8OniXfOj 1H1N7+W57Zz1G7ptolHGQzQTrgY+tHVRLvh9Wettrt/3Sq0KavSkkpeHeI42jsSW 8rg/lZw1qpEmA1SGCwcTyjYzqoh6/C6QBfyiVqt2dNIAAAgSCHeG2DV/nUDPynJy BTwHVDraOUxY+4lEYOwt2TNQ2hxJRUL+AKaYMKbaKuU50ogzTezO2YLnHwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFP/aCfj89FIff51eQhCmW0LWsF6MMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQCVC/o3h2XlChQNBCrHaM/q xH1kKwW7HD+CJyX/mF7xBlhj7jirGfZWHqiu5bPSLdtIbsyXmcdWzymNRhZ7/y21 UPdaeov3XyAo1SKuo61LDyEzoINd8ML6ZjQkHJWcuGn0eEOJX7kFE5CkeVlPyRt7 +80Vrj+wEoncdWjzET17G8WA9DNKc0+P0J2fbRS1uqedezlv3LTIcdF+MuiTWu1P LyVR20ZOWaLx62lxCseeqsMzdamZeOT9B2Mc618QAKM5pzDzIBEvDZ18RG9cY97U icDfKpLJZ+gg+eozE17vi1D3LYQ/4CmXUkQ+b7wLxdQxQa9dqbbi671cGdKRkERr -----END CERTIFICATE-----Generated at Tue Sep 9 01:07:21 2025 by rpki-client