$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa File: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (raw, json) Hash identifier: t/We06D79O6yR+REeSEZdKobAXtnXf/kQKYltNmRUOk= Subject key identifier: F7:20:DB:DD:69:27:94:DA:98:43:EB:FC:D2:A6:99:F7:B3:9E:C0:63 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 13C26EE5D47C21B224BA4254A08167F14BFD405D Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa Signing time: Wed 27 Aug 2025 00:00:09 +0000 ROA not before: Wed 27 Aug 2025 00:00:09 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c2:6e:e5:d4:7c:21:b2:24:ba:42:54:a0:81:67:f1:4b:fd:40:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 27 00:00:09 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=173d479a6145fb9ef7b476c26e804dd71b90b6c71ec7649d9136a68a210eb556, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2d:3f:8e:ad:2b:89:f5:f9:29:7e:9b:4b:29: 6d:0e:7d:80:6c:df:5c:10:72:02:6c:38:e8:71:0e: 19:5c:47:5e:2e:25:ed:9d:b6:6d:70:26:06:7f:4d: fc:6e:31:5f:4f:88:29:22:34:76:44:3e:c2:06:da: da:e3:b8:4b:b1:5d:9c:95:7a:57:76:c1:22:d7:f2: 0d:50:a5:75:04:ee:d9:a5:90:8d:ff:be:ca:80:1e: 39:d4:62:8a:09:9d:09:db:45:19:a4:af:bb:c5:74: 02:ec:fc:fb:e6:89:ff:7a:4c:1b:b6:19:50:50:f2: a0:31:13:0b:44:70:c6:5c:54:83:a3:e5:e9:09:01: fa:c1:92:ef:87:1f:96:fe:da:60:a0:7a:bf:de:c5: f2:8f:49:36:af:6f:65:36:57:b2:e7:3d:c1:65:00: 0c:7e:a6:e0:91:86:50:21:c2:5a:d3:26:8c:bc:59: 17:10:5a:70:64:27:aa:c3:65:81:8f:2c:64:3c:df: 66:51:9a:f2:38:ab:99:32:c7:92:09:40:43:84:1f: 08:8a:62:6a:fc:60:71:62:18:c4:2e:45:72:bb:b5: d4:74:c8:36:78:42:da:ec:67:97:34:cf:95:87:51: 92:20:8e:7e:2b:02:1c:06:b9:49:d5:5c:3f:bc:90: 7e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:20:DB:DD:69:27:94:DA:98:43:EB:FC:D2:A6:99:F7:B3:9E:C0:63 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.196.0/22 Signature Algorithm: sha256WithRSAEncryption 60:11:d0:11:a8:ce:39:ce:55:29:ad:71:8e:e9:ed:63:28:9a: 1c:73:9d:21:7b:fc:5c:46:24:85:b8:d4:74:f0:99:77:06:c5: 82:13:cb:73:4c:83:da:2d:c3:52:38:ca:7c:f0:bc:e1:c1:a3: 3b:07:9c:24:62:e5:55:2c:79:b4:86:11:1d:cc:ce:25:5c:2e: 8c:8c:fb:ca:7e:2c:b5:96:e3:2c:7e:08:3f:06:9b:c9:50:57: dc:b2:a4:32:5e:d7:5b:dc:b5:bf:9f:f2:50:de:25:88:99:ca: 67:bc:ff:af:c3:f1:95:06:1d:ec:1e:de:ed:c5:3b:c5:32:c5: 3c:b1:c1:da:99:b9:70:1f:84:88:ec:b8:52:e2:a4:04:34:72: 94:cc:6e:3d:5a:3d:42:96:5e:30:3a:cc:f8:7f:0a:57:54:d8: e1:d5:57:84:6b:1a:9b:b4:16:f0:48:a4:0f:7e:94:f8:9a:41: 0f:40:47:f8:70:2a:24:5e:20:5a:b6:e5:2d:62:8f:93:68:fc: 3f:af:81:b6:3c:91:d3:f3:46:4e:1d:d7:b2:ac:6c:80:9e:61: 9d:5d:eb:c1:5f:03:3e:64:9c:dc:3e:82:a7:b2:26:b8:7c:1e: 0f:9c:77:2b:42:e2:a1:f4:7e:9d:89:e9:ab:f3:85:69:6c:af: 9e:14:9e:53 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUE8Ju5dR8IbIkukJUoIFn8Uv9QF0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgyNzAwMDAwOVoX DTI1MTAwMTIzNTk1OVowejFJMEcGA1UEBRNAMTczZDQ3OWE2MTQ1ZmI5ZWY3YjQ3 NmMyNmU4MDRkZDcxYjkwYjZjNzFlYzc2NDlkOTEzNmE2OGEyMTBlYjU1NjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsS0/jq0rifX5KX6bSyltDn2AbN9c EHICbDjocQ4ZXEdeLiXtnbZtcCYGf038bjFfT4gpIjR2RD7CBtra47hLsV2clXpX dsEi1/INUKV1BO7ZpZCN/77KgB451GKKCZ0J20UZpK+7xXQC7Pz75on/ekwbthlQ UPKgMRMLRHDGXFSDo+XpCQH6wZLvhx+W/tpgoHq/3sXyj0k2r29lNley5z3BZQAM fqbgkYZQIcJa0yaMvFkXEFpwZCeqw2WBjyxkPN9mUZryOKuZMseSCUBDhB8IimJq /GBxYhjELkVyu7XUdMg2eELa7GeXNM+Vh1GSII5+KwIcBrlJ1Vw/vJB+XwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPcg291pJ5TamEPr/NKmmfeznsBjMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzgyNDU2ZmYyLWY4YzQtNGM1YS05NDU4LTgyZDkwOWY4M2Y3ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynEMA0GCSqGSIb3DQEBCwUAA4IBAQBgEdARqM45zlUprXGO6e1j KJocc50he/xcRiSFuNR08Jl3BsWCE8tzTIPaLcNSOMp88LzhwaM7B5wkYuVVLHm0 hhEdzM4lXC6MjPvKfiy1luMsfgg/BpvJUFfcsqQyXtdb3LW/n/JQ3iWImcpnvP+v w/GVBh3sHt7txTvFMsU8scHamblwH4SI7LhS4qQENHKUzG49Wj1Cll4wOsz4fwpX VNjh1VeEaxqbtBbwSKQPfpT4mkEPQEf4cCokXiBatuUtYo+TaPw/r4G2PJHT80ZO HdeyrGyAnmGdXevBXwM+ZJzcPoKnsia4fB4PnHcrQuKh9H6diemr84VpbK+eFJ5T -----END CERTIFICATE-----Generated at Tue Sep 9 01:09:51 2025 by rpki-client