$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa File: 22707524-2248-48ea-815f-578f49b19436.roa (raw, json) Hash identifier: aR/X6hVIqtLE2FkCFjtRdq3arGLWHZB3/hhDcWN2+7U= Subject key identifier: 4F:51:86:D4:D0:59:88:40:6A:97:A9:CE:21:F3:75:F6:3E:30:2F:32 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1F8E24BEBA6F49002C36D3AC629C2AFD786286BD Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa Signing time: Fri 13 Jun 2025 00:00:07 +0000 ROA not before: Fri 13 Jun 2025 00:00:07 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:8e:24:be:ba:6f:49:00:2c:36:d3:ac:62:9c:2a:fd:78:62:86:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:07 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=7a9267fedf796c38aa2158bb31332d5660ea3f897fd93f75f3b158f7b86b7a6d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6a:df:82:4c:f1:c7:81:f3:78:f4:e8:5b:c6: ba:ec:20:fc:d3:95:27:43:81:ec:a3:3f:e9:57:74: 35:60:ac:6a:c0:8c:4f:b5:da:4a:99:34:e1:48:5e: ae:de:39:04:41:38:f5:59:63:c4:77:80:d7:5f:ad: 90:07:43:cc:1b:41:d5:80:63:4e:12:9c:54:9f:f7: 7b:99:92:29:9e:78:d5:69:c7:16:32:b2:b7:c9:ac: cd:94:af:34:f5:d2:8a:b4:af:5d:0f:28:a2:52:df: 4a:e2:c8:5b:f4:e2:40:9e:05:8c:e4:d9:77:47:a4: 35:9a:41:6d:18:4a:8e:7b:52:a2:d3:2d:cb:63:18: 45:c9:99:b9:f9:30:52:4a:a4:65:57:20:a2:22:3a: 31:66:d0:fc:fe:92:fd:fb:87:dc:33:88:12:66:1f: 37:c8:61:d6:2b:bf:2d:39:38:a0:93:bd:d3:3e:b8: 40:34:98:a2:c9:5b:cc:b3:77:f7:d7:26:0d:f4:25: 18:3b:0b:8c:de:95:99:87:44:06:8e:01:94:35:63: 4c:af:7e:7e:5d:d3:f3:b0:01:ba:7b:35:18:e5:a8: 7c:43:d6:28:28:1a:5e:8b:c5:9a:f8:6b:7d:52:13: e7:5b:50:a3:d7:cb:7b:7e:2f:cf:fd:75:51:1d:6e: 9f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:51:86:D4:D0:59:88:40:6A:97:A9:CE:21:F3:75:F6:3E:30:2F:32 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.150.0/24 Signature Algorithm: sha256WithRSAEncryption 39:1a:3a:af:a2:9b:85:25:47:c5:04:6d:f2:0e:e0:1a:87:22: 73:e4:fd:47:57:83:be:9c:a6:e7:bd:6a:c3:80:06:bb:ae:5b: d4:37:bf:42:1a:2d:33:51:7b:ae:51:b8:fe:90:d7:81:a9:6c: ca:ea:6b:00:3f:8e:bf:50:9a:fc:cb:ad:86:ae:fb:1e:90:c7: ba:c7:d1:7f:12:0b:6c:6f:13:54:4c:17:2e:b9:b9:0a:7c:ae: ee:74:6e:0c:16:03:cd:94:7a:cc:09:d3:66:6e:0f:c9:35:e9: ac:35:38:52:60:25:a2:8c:64:66:b2:a1:6e:d4:59:24:65:98: 74:8e:5e:57:a9:75:fa:01:71:33:cb:45:c7:7a:3e:89:d7:62: 83:df:84:21:0d:13:28:13:90:c3:f1:a1:8c:78:b1:36:2a:22: 81:7d:f1:c0:fb:7b:2b:97:0b:a3:a5:26:9a:8c:c4:9d:5e:a1: 91:ca:28:ff:dd:45:2c:9a:fb:fd:c4:a3:ec:ff:a2:21:15:89: cf:4e:64:59:7e:70:47:1c:c8:b5:74:7e:6a:5d:2e:f5:18:f4: a8:0b:32:cf:0c:b9:98:3e:41:60:76:ac:5a:85:fa:70:e3:0d: 14:ab:1a:b7:2d:08:07:94:b5:aa:86:b9:4b:75:5c:14:b2:d8: 94:46:9e:39 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUH44kvrpvSQAsNtOsYpwq/Xhihr0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAwN1oX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAN2E5MjY3ZmVkZjc5NmMzOGFhMjE1 OGJiMzEzMzJkNTY2MGVhM2Y4OTdmZDkzZjc1ZjNiMTU4ZjdiODZiN2E2ZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmrfgkzxx4HzePToW8a67CD805Un Q4Hsoz/pV3Q1YKxqwIxPtdpKmTThSF6u3jkEQTj1WWPEd4DXX62QB0PMG0HVgGNO EpxUn/d7mZIpnnjVaccWMrK3yazNlK809dKKtK9dDyiiUt9K4shb9OJAngWM5Nl3 R6Q1mkFtGEqOe1Ki0y3LYxhFyZm5+TBSSqRlVyCiIjoxZtD8/pL9+4fcM4gSZh83 yGHWK78tOTigk73TPrhANJiiyVvMs3f31yYN9CUYOwuM3pWZh0QGjgGUNWNMr35+ XdPzsAG6ezUY5ah8Q9YoKBpei8Wa+Gt9UhPnW1Cj18t7fi/P/XVRHW6fQQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFE9RhtTQWYhAapepziHzdfY+MC8yMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyNzA3NTI0LTIyNDgtNDhlYS04MTVmLTU3OGY0OWIxOTQzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymWMA0GCSqGSIb3DQEBCwUAA4IBAQA5GjqvopuFJUfFBG3yDuAa hyJz5P1HV4O+nKbnvWrDgAa7rlvUN79CGi0zUXuuUbj+kNeBqWzK6msAP46/UJr8 y62GrvsekMe6x9F/EgtsbxNUTBcuubkKfK7udG4MFgPNlHrMCdNmbg/JNemsNThS YCWijGRmsqFu1FkkZZh0jl5XqXX6AXEzy0XHej6J12KD34QhDRMoE5DD8aGMeLE2 KiKBffHA+3srlwujpSaajMSdXqGRyij/3UUsmvv9xKPs/6IhFYnPTmRZfnBHHMi1 dH5qXS71GPSoCzLPDLmYPkFgdqxahfpw4w0Uqxq3LQgHlLWqhrlLdVwUstiURp45 -----END CERTIFICATE-----Generated at Sat Jun 14 19:01:51 2025 by rpki-client