$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa File: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (raw, json) Hash identifier: BBIb6mPK676MVLQ9TVAVVRyEs88311qazeBdTRVoy8A= Subject key identifier: D3:7C:82:10:33:B0:AC:9A:BE:5C:D9:D2:8E:67:99:FB:2F:76:0B:68 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1455173CB08CA5783084A235F9C3FB7BC0D998B3 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa Signing time: Mon 19 May 2025 15:00:06 +0000 ROA not before: Mon 19 May 2025 15:00:06 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 15:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:55:17:3c:b0:8c:a5:78:30:84:a2:35:f9:c3:fb:7b:c0:d9:98:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 19 15:00:06 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=3d0d2079fc3a88f0360b27fec124a508458ff8d911ee2fc5f6e7e3cfc1dc74c1, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2e:7f:44:a1:70:33:4b:0c:4f:c8:48:80:0f: 36:8a:19:6e:3e:94:76:27:6d:27:2b:e2:db:02:94: 4b:de:41:52:e1:cd:84:9c:a5:e8:1d:a9:b4:07:77: 4e:da:4f:e8:ad:f3:82:3e:38:27:a3:70:d3:53:83: 6b:1d:14:50:18:3e:f6:8c:a2:fb:1e:66:86:40:5a: e4:75:fc:4f:2d:30:73:4c:6b:9f:cc:f8:4c:19:51: e1:b3:d5:b0:b1:79:a3:93:bb:1a:0e:2e:70:76:16: 0d:85:29:e9:1d:19:27:78:e5:c2:bf:4b:ec:a3:c1: 52:8b:bf:5c:aa:fc:bc:cb:91:2c:27:c7:d0:a5:ba: c3:f4:da:33:d4:c0:09:9e:7d:76:ff:30:ae:f5:c7: 0c:58:fd:7d:b9:cb:b1:7e:a1:b9:6c:8c:82:c8:ca: 05:ea:26:83:46:01:6b:2b:db:76:a9:33:f7:65:e6: 19:52:ff:02:58:62:2a:61:ad:1a:fd:96:f6:25:42: d9:a6:a7:8e:0a:d6:88:7e:f9:13:14:f6:ea:f5:5a: 55:d6:cc:77:40:2b:94:ad:1d:2c:20:e0:91:03:87: f0:83:ad:47:51:64:8f:27:75:a2:f1:1a:22:ce:be: 68:0f:df:f0:39:22:04:6e:db:0f:1c:b8:01:14:22: 9e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7C:82:10:33:B0:AC:9A:BE:5C:D9:D2:8E:67:99:FB:2F:76:0B:68 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.196.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:4a:84:81:57:1b:99:7e:84:f7:ec:7b:55:91:67:ca:b4:48: fe:c9:6a:3f:c8:81:6d:24:9c:d3:fb:b3:d0:9d:65:2f:a7:52: d2:37:31:30:1a:8b:ca:0e:d6:9d:a8:8a:61:70:4c:6f:bb:27: 7f:ce:ec:92:df:2d:87:30:da:cf:c2:3a:0c:4a:76:89:08:bb: b3:9f:5a:aa:31:52:8f:b9:2c:33:4b:b2:61:45:8c:dd:8d:d8: b3:a9:d3:88:bd:88:72:a5:e7:5d:3b:47:8c:6e:7f:4a:ce:36: a9:72:76:30:cd:db:aa:e4:32:59:1a:68:d4:9f:9c:3f:45:f7: 2f:f7:59:1e:89:b5:9a:1f:ca:bb:c7:f7:43:4f:69:68:e2:bf: 26:cf:b3:38:0a:6b:3c:08:c8:ae:86:41:97:3c:1b:d8:97:f2: 9d:69:26:c5:07:2b:3f:f6:4d:75:f4:2f:81:42:cb:e0:62:69: 91:28:3b:9c:dc:b2:1b:1a:93:cb:0c:8e:c9:07:f2:39:a3:58: 8a:8b:45:27:37:9a:94:81:3e:82:4b:90:f9:27:ef:dc:28:be: c1:7a:9e:a5:fe:77:d9:e7:a3:6e:af:0a:63:4c:8a:86:34:a5: f2:07:c7:ad:f2:01:b4:8d:a7:87:a6:00:42:92:f3:05:fc:b2: fc:03:d1:fc -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUFFUXPLCMpXgwhKI1+cP7e8DZmLMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUxOTE1MDAwNloX DTI1MDYyMzIzNTk1OVowejFJMEcGA1UEBRNAM2QwZDIwNzlmYzNhODhmMDM2MGIy N2ZlYzEyNGE1MDg0NThmZjhkOTExZWUyZmM1ZjZlN2UzY2ZjMWRjNzRjMTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApi5/RKFwM0sMT8hIgA82ihluPpR2 J20nK+LbApRL3kFS4c2EnKXoHam0B3dO2k/orfOCPjgno3DTU4NrHRRQGD72jKL7 HmaGQFrkdfxPLTBzTGufzPhMGVHhs9WwsXmjk7saDi5wdhYNhSnpHRkneOXCv0vs o8FSi79cqvy8y5EsJ8fQpbrD9Noz1MAJnn12/zCu9ccMWP19ucuxfqG5bIyCyMoF 6iaDRgFrK9t2qTP3ZeYZUv8CWGIqYa0a/Zb2JULZpqeOCtaIfvkTFPbq9VpV1sx3 QCuUrR0sIOCRA4fwg61HUWSPJ3Wi8Roizr5oD9/wOSIEbtsPHLgBFCKeEwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNN8ghAzsKyavlzZ0o5nmfsvdgtoMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzgyNDU2ZmYyLWY4YzQtNGM1YS05NDU4LTgyZDkwOWY4M2Y3ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynEMA0GCSqGSIb3DQEBCwUAA4IBAQBvSoSBVxuZfoT37HtVkWfK tEj+yWo/yIFtJJzT+7PQnWUvp1LSNzEwGovKDtadqIphcExvuyd/zuyS3y2HMNrP wjoMSnaJCLuzn1qqMVKPuSwzS7JhRYzdjdizqdOIvYhypeddO0eMbn9KzjapcnYw zduq5DJZGmjUn5w/Rfcv91keibWaH8q7x/dDT2lo4r8mz7M4Cms8CMiuhkGXPBvY l/KdaSbFBys/9k119C+BQsvgYmmRKDuc3LIbGpPLDI7JB/I5o1iKi0UnN5qUgT6C S5D5J+/cKL7Bep6l/nfZ56NurwpjTIqGNKXyB8et8gG0jaeHpgBCkvMF/LL8A9H8 -----END CERTIFICATE-----Generated at Mon Jun 2 04:48:59 2025 by rpki-client