$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: MgAg4C/OxhpbSrwOflaEqzL6kjsF4LiwUp6r/CBbpYc= Subject key identifier: 6B:CF:B2:68:15:CD:96:17:DB:CF:EA:D9:E0:C3:02:0F:0C:BF:10:DA Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 23A281DC400D39956195BFC7FB90F0CED134EDE4 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Mon 19 May 2025 15:00:02 +0000 ROA not before: Mon 19 May 2025 15:00:02 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a2:81:dc:40:0d:39:95:61:95:bf:c7:fb:90:f0:ce:d1:34:ed:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 19 15:00:02 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=1b3c28c15aeb6198bc3cbdd73e06a858cadb4048ee89f7a51a5e7071dc4fda64, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:94:27:1d:b9:a5:3d:58:52:ef:e5:34:e8:62: a8:db:47:65:81:4b:0c:87:36:6f:d4:1f:39:76:7b: 83:09:88:4b:f9:98:c1:58:b3:41:bc:3a:82:bd:cd: a3:4f:ce:de:34:ce:04:e9:d6:f2:aa:14:a3:23:ef: 72:d0:19:5b:74:9b:7c:bb:d5:e0:5f:87:0c:f7:83: fc:9c:bb:f7:37:ad:00:bb:20:f8:a8:32:c3:89:74: a4:95:cb:e0:65:75:22:b3:3c:35:e9:71:bb:8e:c4: 57:b7:fc:6c:f5:82:6c:fd:ec:e4:83:d7:cf:0b:6c: 11:00:02:ba:77:07:51:d2:0e:8f:31:7a:92:ac:55: 36:91:21:e3:65:33:39:ea:4c:41:e7:61:d0:7a:4b: 37:16:9e:a8:ec:c5:4e:26:7e:dc:e0:97:a5:d6:92: 9c:e4:05:ea:48:96:a3:d9:b6:6b:a5:98:9b:46:1a: 33:37:6c:52:6e:65:e0:b8:2b:65:1d:8a:36:0d:2d: 7d:b2:5b:9a:e0:d7:2f:b7:c2:0c:e7:f9:d1:6b:a4: 6d:71:a0:14:07:2f:b3:f1:67:a9:0c:84:59:c3:8c: 21:3f:48:75:84:08:70:cb:d1:9a:76:d6:5b:f7:24: 4b:6a:41:ee:cc:41:2a:c7:ed:09:95:23:06:66:0d: e9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CF:B2:68:15:CD:96:17:DB:CF:EA:D9:E0:C3:02:0F:0C:BF:10:DA X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 85:94:60:d5:34:1f:32:fb:d9:5c:6b:f6:a9:76:39:b4:8e:cc: 78:2f:95:f3:50:81:cc:39:13:e2:6b:7f:60:65:13:db:12:8e: ae:17:c2:79:d9:0f:2e:01:b2:80:12:9d:b1:f0:79:a1:ed:3c: 8c:be:a2:04:21:05:e8:da:74:8a:8a:7e:56:5e:21:3f:3d:8f: e5:d3:76:b1:f3:d2:76:a5:ed:88:00:c9:ba:1c:f0:04:fa:25: 69:8e:20:df:72:b0:5f:b0:20:c9:52:5d:d7:e1:8a:5a:73:c7: 18:43:f6:e4:96:c8:09:88:a0:55:8f:d1:86:da:e1:d2:9f:eb: 01:e0:b9:94:7f:d2:11:a9:c2:24:d7:89:c7:59:09:ca:a1:3e: 40:f2:98:39:ba:fd:4d:5d:e6:62:2a:2b:5e:f9:25:e1:a4:65: 3b:f2:92:4b:7f:79:fe:20:a8:13:ba:14:29:02:3c:b4:2c:b1: a9:28:7a:ae:3d:cd:0f:3d:d2:f6:9d:bf:0b:5b:2f:4e:84:f4: 98:aa:81:e0:ba:e0:5e:4f:1d:f6:6c:cd:3e:b8:6f:ab:04:a1: 02:07:ad:5f:14:9a:4e:bf:aa:98:21:be:9c:59:77:d8:72:e8: c6:e5:e1:4f:88:8a:a0:9b:e6:7d:28:6f:44:2a:be:d2:35:4d: 17:68:23:5d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUI6KB3EANOZVhlb/H+5DwztE07eQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUxOTE1MDAwMloX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNAMWIzYzI4YzE1YWViNjE5OGJjM2Ni ZGQ3M2UwNmE4NThjYWRiNDA0OGVlODlmN2E1MWE1ZTcwNzFkYzRmZGE2NDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJQnHbmlPVhS7+U06GKo20dlgUsM hzZv1B85dnuDCYhL+ZjBWLNBvDqCvc2jT87eNM4E6dbyqhSjI+9y0BlbdJt8u9Xg X4cM94P8nLv3N60AuyD4qDLDiXSklcvgZXUiszw16XG7jsRXt/xs9YJs/ezkg9fP C2wRAAK6dwdR0g6PMXqSrFU2kSHjZTM56kxB52HQeks3Fp6o7MVOJn7c4Jel1pKc 5AXqSJaj2bZrpZibRhozN2xSbmXguCtlHYo2DS19slua4Ncvt8IM5/nRa6RtcaAU By+z8WepDIRZw4whP0h1hAhwy9GadtZb9yRLakHuzEEqx+0JlSMGZg3pBwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGvPsmgVzZYX28/q2eDDAg8MvxDaMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQCFlGDVNB8y+9lca/apdjm0 jsx4L5XzUIHMORPia39gZRPbEo6uF8J52Q8uAbKAEp2x8Hmh7TyMvqIEIQXo2nSK in5WXiE/PY/l03ax89J2pe2IAMm6HPAE+iVpjiDfcrBfsCDJUl3X4Ypac8cYQ/bk lsgJiKBVj9GG2uHSn+sB4LmUf9IRqcIk14nHWQnKoT5A8pg5uv1NXeZiKite+SXh pGU78pJLf3n+IKgTuhQpAjy0LLGpKHquPc0PPdL2nb8LWy9OhPSYqoHguuBeTx32 bM0+uG+rBKECB61fFJpOv6qYIb6cWXfYcujG5eFPiIqgm+Z9KG9EKr7SNU0XaCNd -----END CERTIFICATE-----Generated at Mon Jun 2 04:44:34 2025 by rpki-client