$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa File: 22707524-2248-48ea-815f-578f49b19436.roa (raw, json) Hash identifier: 0tdunrsGVZ3WKr4OAoHYFQU5uziBzinewn0h/W+ES+E= Subject key identifier: 76:E2:76:73:D8:C0:BC:29:AE:5F:0E:00:25:78:5C:6A:41:CF:54:5D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 371355FF04C2C13394168DE2D8A81D015071EA89 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa Signing time: Sat 02 Aug 2025 00:00:06 +0000 ROA not before: Sat 02 Aug 2025 00:00:06 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 15:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:13:55:ff:04:c2:c1:33:94:16:8d:e2:d8:a8:1d:01:50:71:ea:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Aug 2 00:00:06 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=33cbeddf18e24511b526b945216b7999ea769482442123b90a479308b34b7c23, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f4:0c:78:38:a9:8e:50:28:16:d6:bd:b5:b2: e6:68:33:ca:ab:ad:c5:fa:72:6c:c9:9f:da:ae:1d: 0b:8a:47:48:ec:3e:aa:d7:68:55:47:20:ff:37:42: 22:41:f2:06:4c:88:7e:9d:7e:28:08:f8:5b:82:04: fd:23:92:c4:51:2e:05:b3:bf:bc:87:f9:5f:b6:c3: 14:2f:17:53:ff:56:4c:2c:04:e4:df:5e:ab:80:bf: 57:8b:55:b0:0f:a7:af:d0:46:0a:45:f4:8c:ce:39: 14:c2:ea:fb:26:67:49:cf:9d:ad:c3:e9:30:e4:21: 7b:10:10:5f:9c:5e:ec:78:96:96:2a:50:3f:7d:2b: 50:ab:fe:5c:cd:e7:ab:bb:04:0c:1c:99:db:02:34: fd:3f:ba:34:88:8b:0b:13:ba:84:5e:da:74:9c:c1: 3b:6d:0d:e4:c9:94:19:18:70:40:41:1b:0f:98:87: 35:d9:cd:cb:4e:ab:97:67:8d:ba:f4:c0:09:52:2b: e6:8a:85:c3:f9:09:c2:ad:3a:b7:83:31:8d:1e:13: b8:15:a4:b5:b7:5e:3b:ad:d7:61:e4:2a:c1:b0:47: bc:17:18:fa:4d:e5:46:e1:17:ae:6a:06:2f:d2:2d: ec:8c:6e:2a:f8:df:4c:b5:4e:19:26:fa:40:2d:ec: 3e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E2:76:73:D8:C0:BC:29:AE:5F:0E:00:25:78:5C:6A:41:CF:54:5D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.150.0/24 Signature Algorithm: sha256WithRSAEncryption 56:34:9d:5b:74:4c:a9:6c:36:2f:2a:4b:5f:43:fc:bd:5a:f2: bb:b6:ba:53:d0:22:d0:50:c5:34:63:d9:52:bf:48:cd:1e:dc: d5:c2:9c:ab:b5:49:bb:bb:92:9e:f1:ab:38:a9:48:8c:2c:d4: 7b:00:04:2c:d7:9c:07:4f:c5:ae:cc:14:91:c4:0d:08:b0:d3: f3:36:a4:c8:e4:77:5c:b4:a1:fd:27:75:7e:ad:89:6f:b3:63: 7b:db:5e:11:5e:d1:63:d9:b0:0c:ac:f5:ad:c6:69:d7:d3:57: 69:ee:63:68:33:1e:00:50:73:2c:82:13:3e:97:f1:dc:f0:b6: 7f:4c:01:cd:01:55:05:5a:79:92:78:e3:d8:27:a7:c5:be:2a: a7:55:1d:16:07:66:ab:86:2f:6e:b3:15:c3:52:d2:6e:0f:58: 47:d6:0d:f6:72:de:90:c6:78:21:95:5b:94:c7:88:35:a5:14: f1:19:b9:bf:c7:ce:74:3d:7c:bb:88:d7:c2:8d:b2:b0:ce:e8: 96:9f:b6:bc:ad:b8:6e:2b:85:c8:0a:59:9f:e9:b4:67:ae:7f: 7e:00:2a:e9:8d:93:90:d6:6f:86:0e:38:5d:d1:cb:6d:54:34: d5:3f:20:c7:b5:2e:4b:83:6e:ea:44:81:32:58:bd:ff:a5:fe: 2c:29:cf:53 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUNxNV/wTCwTOUFo3i2KgdAVBx6okwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDgwMjAwMDAwNloX DTI1MDkwNjIzNTk1OVowejFJMEcGA1UEBRNAMzNjYmVkZGYxOGUyNDUxMWI1MjZi OTQ1MjE2Yjc5OTllYTc2OTQ4MjQ0MjEyM2I5MGE0NzkzMDhiMzRiN2MyMzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PQMeDipjlAoFta9tbLmaDPKq63F +nJsyZ/arh0LikdI7D6q12hVRyD/N0IiQfIGTIh+nX4oCPhbggT9I5LEUS4Fs7+8 h/lftsMULxdT/1ZMLATk316rgL9Xi1WwD6ev0EYKRfSMzjkUwur7JmdJz52tw+kw 5CF7EBBfnF7seJaWKlA/fStQq/5czeeruwQMHJnbAjT9P7o0iIsLE7qEXtp0nME7 bQ3kyZQZGHBAQRsPmIc12c3LTquXZ4269MAJUivmioXD+QnCrTq3gzGNHhO4FaS1 t147rddh5CrBsEe8Fxj6TeVG4ReuagYv0i3sjG4q+N9MtU4ZJvpALew+8QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHbidnPYwLwprl8OACV4XGpBz1RdMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyNzA3NTI0LTIyNDgtNDhlYS04MTVmLTU3OGY0OWIxOTQzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymWMA0GCSqGSIb3DQEBCwUAA4IBAQBWNJ1bdEypbDYvKktfQ/y9 WvK7trpT0CLQUMU0Y9lSv0jNHtzVwpyrtUm7u5Ke8as4qUiMLNR7AAQs15wHT8Wu zBSRxA0IsNPzNqTI5HdctKH9J3V+rYlvs2N7214RXtFj2bAMrPWtxmnX01dp7mNo Mx4AUHMsghM+l/Hc8LZ/TAHNAVUFWnmSeOPYJ6fFviqnVR0WB2arhi9usxXDUtJu D1hH1g32ct6QxnghlVuUx4g1pRTxGbm/x850PXy7iNfCjbKwzuiWn7a8rbhuK4XI Clmf6bRnrn9+ACrpjZOQ1m+GDjhd0cttVDTVPyDHtS5Lg27qRIEyWL3/pf4sKc9T -----END CERTIFICATE-----Generated at Fri Aug 8 20:52:15 2025 by rpki-client