$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa File: 9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa (raw, json) Hash identifier: F5Uc2f3/ue/HC2zqwj2Wj0JtFRwotWI2s5D5xOV6DN0= Subject key identifier: 85:11:0C:8F:62:77:DA:6D:D0:47:6D:B3:B5:DD:F0:20:75:5D:AC:08 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7D89569E15923EAB95657DB8C5112467AD30F15D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa Signing time: Sat 14 Jun 2025 00:00:18 +0000 ROA not before: Sat 14 Jun 2025 00:00:18 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 43.208.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:89:56:9e:15:92:3e:ab:95:65:7d:b8:c5:11:24:67:ad:30:f1:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jun 14 00:00:18 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=ac3aa1bf56ee3c22532b4aedb2548f106833cf507a2c69e9b47d7a7e94d2e949, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b3:48:3f:c9:91:9c:95:b2:ed:76:87:24:3e: 73:81:25:48:5f:6e:1f:14:55:4a:9b:40:69:4e:48: 3c:ab:b0:07:42:db:8f:48:10:fd:ee:99:35:75:bb: 96:cb:9a:13:ff:4e:d9:02:2a:8e:cd:76:49:d9:86: 93:0b:de:c4:bf:c4:a8:68:a6:aa:6d:1d:66:21:ee: 62:2d:bd:fe:9d:55:68:85:bb:21:b7:bf:5f:29:70: 9d:6f:22:14:3c:90:b0:83:52:69:63:ea:ec:e1:8a: 6d:f8:7f:7f:34:b6:52:a8:06:f6:2e:49:08:57:1a: d7:e5:ed:34:a0:eb:70:71:5d:99:ec:61:21:50:c3: fd:80:de:85:1c:b4:f3:5c:8d:bf:0d:c9:a5:7e:88: da:e9:b8:a0:10:de:17:bc:16:1b:d4:7d:14:e7:5c: 65:ce:98:45:12:1d:1b:07:69:83:db:88:f5:27:dc: 18:93:a6:09:29:d9:57:f8:89:7b:72:3f:3f:6e:79: 2e:1d:fb:d4:f1:5b:b7:58:c9:56:ff:4a:cc:51:d0: 7b:e1:e4:24:29:bd:8b:d9:ff:6b:33:43:99:1b:da: 75:84:d9:29:cc:b5:a8:71:99:3a:a2:7d:c8:3c:af: cf:cc:32:13:de:23:90:15:d6:38:99:48:37:ac:e6: de:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:11:0C:8F:62:77:DA:6D:D0:47:6D:B3:B5:DD:F0:20:75:5D:AC:08 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.53.0/24 Signature Algorithm: sha256WithRSAEncryption 77:30:5f:be:fb:5b:61:f8:48:3c:a9:69:ab:f6:81:36:1c:2a: 96:6e:41:c9:ec:84:f2:f0:66:e9:ef:36:a8:09:d7:f6:11:ab: ba:32:87:31:51:2a:75:8b:4d:7f:ac:b3:ab:c4:4c:78:98:19: 2e:70:d5:0e:e3:63:d0:c1:3e:07:93:0b:29:c4:0b:9b:09:6e: 58:bd:67:ed:d2:8c:b9:f2:0c:87:2e:32:dc:c2:36:78:9d:03: 8d:58:fb:3f:43:96:de:33:9e:4b:ee:06:39:ae:65:ef:a0:a0: e7:56:43:41:0a:c1:c8:d8:5f:52:15:50:71:73:a8:91:cf:7e: ff:1f:76:4a:a7:51:2a:b4:e7:df:43:71:64:be:f6:35:fe:f9: 8f:1f:96:f6:a5:a8:9c:b6:93:cf:12:1e:e7:6a:87:99:ca:b8: e8:9b:4b:b2:bd:2e:2a:8e:c8:91:bc:d2:dd:62:0e:7c:f7:9d: 61:15:ca:c8:a0:00:6a:f9:e4:68:2a:7b:62:e8:9e:54:74:52: f2:44:e4:4b:fa:e6:1c:fc:73:df:91:a1:cc:92:49:08:0a:9e: 31:76:26:c7:98:fb:b9:d6:9e:e1:e1:cd:87:aa:1c:f1:f7:6c: a1:78:b6:3c:df:cb:7d:4d:b0:02:a7:1e:ad:8f:8f:c7:0c:4e: 80:9e:82:6d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUfYlWnhWSPquVZX24xREkZ60w8V0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDYxNDAwMDAxOFoX DTI1MDcxOTIzNTk1OVowejFJMEcGA1UEBRNAYWMzYWExYmY1NmVlM2MyMjUzMmI0 YWVkYjI1NDhmMTA2ODMzY2Y1MDdhMmM2OWU5YjQ3ZDdhN2U5NGQyZTk0OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbNIP8mRnJWy7XaHJD5zgSVIX24f FFVKm0BpTkg8q7AHQtuPSBD97pk1dbuWy5oT/07ZAiqOzXZJ2YaTC97Ev8SoaKaq bR1mIe5iLb3+nVVohbsht79fKXCdbyIUPJCwg1JpY+rs4Ypt+H9/NLZSqAb2LkkI VxrX5e00oOtwcV2Z7GEhUMP9gN6FHLTzXI2/Dcmlfoja6bigEN4XvBYb1H0U51xl zphFEh0bB2mD24j1J9wYk6YJKdlX+Il7cj8/bnkuHfvU8Vu3WMlW/0rMUdB74eQk Kb2L2f9rM0OZG9p1hNkpzLWocZk6on3IPK/PzDIT3iOQFdY4mUg3rObeZwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIURDI9id9pt0Edts7Xd8CB1XawIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhYjg3NTVhLWI0MGUtNDEyZS04YjBiLWQxM2UwYzM5YWVkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9A1MA0GCSqGSIb3DQEBCwUAA4IBAQB3MF+++1th+Eg8qWmr9oE2 HCqWbkHJ7ITy8Gbp7zaoCdf2Eau6MocxUSp1i01/rLOrxEx4mBkucNUO42PQwT4H kwspxAubCW5YvWft0oy58gyHLjLcwjZ4nQONWPs/Q5beM55L7gY5rmXvoKDnVkNB CsHI2F9SFVBxc6iRz37/H3ZKp1EqtOffQ3FkvvY1/vmPH5b2paictpPPEh7naoeZ yrjom0uyvS4qjsiRvNLdYg58951hFcrIoABq+eRoKnti6J5UdFLyRORL+uYc/HPf kaHMkkkICp4xdibHmPu51p7h4c2Hqhzx92yheLY838t9TbACpx6tj4/HDE6AnoJt -----END CERTIFICATE-----Generated at Sat Jun 14 06:07:30 2025 by rpki-client