$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa File: efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa (raw, json) Hash identifier: hSHhXSerKSIe5lBxtFDRob+y/13J5X46J/AogKYmmH8= Subject key identifier: E5:95:A7:93:F7:6D:A6:C9:78:E5:38:9B:CE:6F:3C:A2:5C:F2:F4:91 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 03892543712960444E5B28AC30D379036D97B715 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa Signing time: Wed 30 Jul 2025 00:00:03 +0000 ROA not before: Wed 30 Jul 2025 00:00:03 +0000 ROA not after: Wed 03 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.83.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:89:25:43:71:29:60:44:4e:5b:28:ac:30:d3:79:03:6d:97:b7:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jul 30 00:00:03 2025 GMT Not After : Sep 3 23:59:59 2025 GMT Subject: serialNumber=4e8f7b15b67becc1a8f1b33f33e0443bb52f4bbbba211b4f7b92aec41f09b58b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:58:b2:fe:55:5d:28:ad:41:53:09:81:27:a0: eb:8d:22:d9:e6:d2:47:bb:c3:8f:68:67:3c:7b:52: 0c:f0:6d:69:44:12:57:99:b2:25:84:35:77:35:94: f8:68:24:95:b3:50:09:f3:6b:23:08:7f:20:41:7f: c9:cd:55:04:ea:2d:5a:59:c3:b4:e0:7e:9d:e2:7c: fe:18:5a:a7:5b:1b:e6:13:41:ba:6c:d8:f4:8f:78: 57:02:aa:3c:97:fe:bb:57:23:1f:b5:21:d2:58:1d: e5:41:59:de:86:5c:df:b1:e3:15:75:9a:86:b5:98: c3:0b:2f:65:b7:77:c7:82:72:cc:b9:0a:cb:60:22: 62:fc:77:7b:b6:3f:d0:f6:3b:2f:4f:d3:41:a2:d7: 52:53:b6:94:37:fa:1d:ce:1d:d6:46:ce:3f:1e:2c: 42:da:dc:bb:09:09:7d:16:ec:cd:2d:61:c8:23:3c: c7:d0:40:65:6a:08:62:e1:5a:e3:21:8e:bd:0b:d0: 27:cc:91:53:c1:e3:52:09:18:62:b2:09:0b:79:5d: f2:63:71:cd:1a:0e:6b:e8:9d:75:78:01:7a:25:bd: fd:e8:68:ac:52:c6:57:8f:da:38:39:aa:26:55:65: 06:20:fe:b7:75:3f:6e:82:89:69:17:14:dc:80:02: f6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:95:A7:93:F7:6D:A6:C9:78:E5:38:9B:CE:6F:3C:A2:5C:F2:F4:91 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efd2ac3d-dc38-4d93-aaac-4cbd6cc911c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.83.220.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:40:2d:c7:9f:64:f4:4d:92:5e:ce:51:27:b7:f0:72:85:72: ed:2b:2a:11:98:09:8b:ad:c6:93:aa:fa:fb:a5:e8:23:a2:9c: c5:1e:75:6f:ad:03:3d:8e:47:74:c4:be:56:2e:a6:db:b2:e2: c2:70:88:56:04:05:40:1f:ce:9f:d2:23:97:34:13:db:34:30: 86:f3:77:a8:e7:7c:3f:a7:77:53:a0:2d:b4:2b:f1:8c:dd:ab: 9d:a0:54:17:d9:6c:b5:71:e1:31:23:dd:9f:0b:22:93:67:04: fc:72:f3:5b:31:ea:fa:66:cf:6d:43:6c:98:78:cd:77:e0:78: b4:40:07:16:7e:a0:42:55:f1:b0:af:28:4f:17:af:b3:b6:10: 72:05:dd:15:d1:1b:67:8c:bb:90:24:b3:e6:6b:58:23:2c:3d: 0a:53:3c:53:86:d0:82:5c:ce:86:d0:83:48:f1:ac:b9:fa:d1: 6c:64:d0:d5:11:79:6f:8f:8e:bc:cd:53:48:1b:12:52:3a:41: 80:ba:c3:54:5d:46:75:77:5c:09:79:a0:69:68:e8:5b:82:bf: 34:50:cc:b4:d6:ed:37:91:a9:98:1c:63:b7:c9:67:91:75:a3: 28:a1:77:4a:52:6e:21:8e:b5:e4:b7:f3:f0:c7:99:f5:3c:fb: 00:dd:be:39 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUA4klQ3EpYEROWyisMNN5A22XtxUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDczMDAwMDAwM1oX DTI1MDkwMzIzNTk1OVowejFJMEcGA1UEBRNANGU4ZjdiMTViNjdiZWNjMWE4ZjFi MzNmMzNlMDQ0M2JiNTJmNGJiYmJhMjExYjRmN2I5MmFlYzQxZjA5YjU4YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArliy/lVdKK1BUwmBJ6DrjSLZ5tJH u8OPaGc8e1IM8G1pRBJXmbIlhDV3NZT4aCSVs1AJ82sjCH8gQX/JzVUE6i1aWcO0 4H6d4nz+GFqnWxvmE0G6bNj0j3hXAqo8l/67VyMftSHSWB3lQVnehlzfseMVdZqG tZjDCy9lt3fHgnLMuQrLYCJi/Hd7tj/Q9jsvT9NBotdSU7aUN/odzh3WRs4/HixC 2ty7CQl9FuzNLWHIIzzH0EBlaghi4VrjIY69C9AnzJFTweNSCRhisgkLeV3yY3HN Gg5r6J11eAF6Jb396GisUsZXj9o4OaomVWUGIP63dT9ugolpFxTcgAL2RQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOWVp5P3babJeOU4m85vPKJc8vSRMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VmZDJhYzNkLWRjMzgtNGQ5My1hYWFjLTRjYmQ2Y2M5MTFjNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy1PcMA0GCSqGSIb3DQEBCwUAA4IBAQB9QC3Hn2T0TZJezlEnt/By hXLtKyoRmAmLrcaTqvr7pegjopzFHnVvrQM9jkd0xL5WLqbbsuLCcIhWBAVAH86f 0iOXNBPbNDCG83eo53w/p3dToC20K/GM3audoFQX2Wy1ceExI92fCyKTZwT8cvNb Mer6Zs9tQ2yYeM134Hi0QAcWfqBCVfGwryhPF6+zthByBd0V0RtnjLuQJLPma1gj LD0KUzxThtCCXM6G0INI8ay5+tFsZNDVEXlvj468zVNIGxJSOkGAusNUXUZ1d1wJ eaBpaOhbgr80UMy01u03kamYHGO3yWeRdaMooXdKUm4hjrXkt/Pwx5n1PPsA3b45 -----END CERTIFICATE-----Generated at Mon Aug 4 16:03:28 2025 by rpki-client