$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa File: 197500e2-3802-44b2-a561-ca3dad01e209.roa (raw, json) Hash identifier: iPZXHJj6GhIfBmWaA7CSAIHjXIYp8qPR6znZEMX7GbI= Subject key identifier: E6:0C:D5:4E:3E:86:3D:B1:D0:1C:C6:C1:77:39:5E:32:36:61:0A:1E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1D1F38DAD9EAC9FFD2642C5B70206F0BEFD552ED Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa Signing time: Fri 13 Jun 2025 00:00:08 +0000 ROA not before: Fri 13 Jun 2025 00:00:08 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:1f:38:da:d9:ea:c9:ff:d2:64:2c:5b:70:20:6f:0b:ef:d5:52:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:08 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=2c091f7a1c80fb7abe7ba6c1b9ce39d6c10181aa0f2a80641a332d5d5875708e, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ef:3d:de:16:14:9d:ce:00:c0:4f:d0:0a:79: 4e:e5:e4:0d:c3:ab:c1:e7:dc:f6:f1:09:5d:f9:20: 20:44:3f:f2:6c:af:75:90:48:11:49:70:d0:93:c0: 8c:58:60:3d:fa:90:60:b2:b7:d6:23:96:54:9e:80: ce:e3:44:6d:98:08:d3:c5:8a:8f:b5:bd:bc:64:0b: 5c:f8:65:f4:af:f9:9b:dc:5d:e6:09:35:c7:4f:f7: 34:a3:26:d2:66:ac:59:d9:87:18:65:58:1d:34:83: 79:c7:25:7d:4e:a2:c2:e7:24:46:83:09:bb:41:94: 87:a1:5d:2b:b2:5a:06:16:dc:6d:a5:73:84:89:95: a7:7a:76:01:84:8f:f4:aa:7f:dc:01:83:3b:54:3f: 95:d2:9b:fb:b6:1e:5d:13:e6:11:fc:f7:20:bf:75: a7:58:04:89:ba:94:1c:36:8a:44:c4:6d:24:ba:d9: cb:d3:e2:b1:5b:1d:37:3e:bb:4d:f6:12:4b:48:26: d5:03:35:0e:a7:d4:03:28:66:9d:ff:7c:1a:86:cb: 12:b1:e6:d2:72:28:f0:9e:3c:47:55:60:1f:04:24: c2:e3:7a:08:78:70:66:47:b8:70:97:d0:a6:48:7c: ae:42:2b:2a:50:ab:61:02:6a:5e:9b:38:26:a3:e1: 00:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0C:D5:4E:3E:86:3D:B1:D0:1C:C6:C1:77:39:5E:32:36:61:0A:1E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/24 Signature Algorithm: sha256WithRSAEncryption 97:6e:f7:8a:7e:30:3f:98:b9:91:7b:a1:54:11:2a:30:f6:c1: 99:b0:fe:09:23:89:bf:5d:16:62:8d:de:32:4d:25:c8:3e:80: d7:e8:0e:56:8a:44:d5:fc:7e:75:00:4f:18:c5:07:aa:43:ba: 83:07:1d:33:e3:b7:c3:2f:39:03:fe:23:75:92:c5:55:62:cf: 14:87:ba:2c:79:c7:6c:3b:16:8b:d6:79:93:eb:67:25:2e:0a: 7c:82:0e:08:31:4b:e9:73:8a:01:bd:94:c2:a8:5b:8a:98:f4: fe:68:c7:36:33:86:b9:66:0c:02:6e:85:a3:ff:f8:64:e1:a4: 85:b1:63:97:1c:97:c9:eb:10:c6:d9:b3:9d:d3:26:fa:33:67: 3f:3c:3c:d9:97:89:85:1e:87:2c:af:a3:bd:dd:a0:cc:9e:03: bb:a1:3a:ac:bc:9f:df:4b:8a:77:52:ac:88:75:bf:d4:e7:2e: 68:9b:df:c3:50:80:4e:80:86:18:85:3b:47:56:14:23:59:8e: 5f:36:5d:04:e5:cf:5c:a9:3a:d2:13:4a:85:e2:d6:15:ec:20: 9d:12:86:6d:ad:a2:14:92:07:c5:83:bb:22:d0:30:00:01:a6: 61:15:4a:cf:79:f7:32:dc:2d:52:c2:de:ba:4c:79:8d:bc:03: dd:2b:05:2d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUHR842tnqyf/SZCxbcCBvC+/VUu0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAwOFoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMmMwOTFmN2ExYzgwZmI3YWJlN2Jh NmMxYjljZTM5ZDZjMTAxODFhYTBmMmE4MDY0MWEzMzJkNWQ1ODc1NzA4ZTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7O893hYUnc4AwE/QCnlO5eQNw6vB 59z28Qld+SAgRD/ybK91kEgRSXDQk8CMWGA9+pBgsrfWI5ZUnoDO40RtmAjTxYqP tb28ZAtc+GX0r/mb3F3mCTXHT/c0oybSZqxZ2YcYZVgdNIN5xyV9TqLC5yRGgwm7 QZSHoV0rsloGFtxtpXOEiZWnenYBhI/0qn/cAYM7VD+V0pv7th5dE+YR/Pcgv3Wn WASJupQcNopExG0kutnL0+KxWx03PrtN9hJLSCbVAzUOp9QDKGad/3wahssSsebS cijwnjxHVWAfBCTC43oIeHBmR7hwl9CmSHyuQisqUKthAmpemzgmo+EAtQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOYM1U4+hj2x0BzGwXc5XjI2YQoeMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzE5NzUwMGUyLTM4MDItNDRiMi1hNTYxLWNhM2RhZDAxZTIwOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymAMA0GCSqGSIb3DQEBCwUAA4IBAQCXbveKfjA/mLmRe6FUESow 9sGZsP4JI4m/XRZijd4yTSXIPoDX6A5WikTV/H51AE8YxQeqQ7qDBx0z47fDLzkD /iN1ksVVYs8Uh7osecdsOxaL1nmT62clLgp8gg4IMUvpc4oBvZTCqFuKmPT+aMc2 M4a5ZgwCboWj//hk4aSFsWOXHJfJ6xDG2bOd0yb6M2c/PDzZl4mFHocsr6O93aDM ngO7oTqsvJ/fS4p3UqyIdb/U5y5om9/DUIBOgIYYhTtHVhQjWY5fNl0E5c9cqTrS E0qF4tYV7CCdEoZtraIUkgfFg7si0DAAAaZhFUrPefcy3C1Swt66THmNvAPdKwUt -----END CERTIFICATE-----Generated at Sat Jun 14 07:01:23 2025 by rpki-client