$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa File: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (raw, json) Hash identifier: ZRPDjAHdxmWX1jrwbdqSfzreGkjgYNX/6YHCrNtXhiA= Subject key identifier: 9D:AF:10:FA:49:5D:51:A1:CE:54:CA:19:51:24:FE:E7:FA:A9:C6:2C Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6614A6B7DE72C83D1D898CE028B99AB30ACEC4B1 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa Signing time: Fri 13 Jun 2025 00:00:13 +0000 ROA not before: Fri 13 Jun 2025 00:00:13 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:14:a6:b7:de:72:c8:3d:1d:89:8c:e0:28:b9:9a:b3:0a:ce:c4:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:13 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=e419675efd834572e55adb0ab33d8f61a2140970efa0a5cf3c1d0eb851f3ddb4, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:00:79:cb:36:22:f2:0a:25:d8:62:1d:76:ff: f8:6a:d7:aa:62:a3:10:d4:77:93:fb:f4:68:da:cb: 3a:bc:91:c4:92:e2:02:aa:35:6e:7d:34:11:59:37: f0:a8:e5:18:a8:fe:a3:25:f7:7b:ee:d4:3b:dc:fb: 6f:9d:0d:1c:9f:fa:d2:d2:65:43:e0:0e:1d:5c:eb: 1f:7f:20:c3:ac:82:58:a9:26:38:71:d1:9c:d9:36: 65:1e:1a:df:cb:0c:5b:d9:ee:6f:aa:d0:74:01:07: a6:9b:a2:e8:b8:7b:b2:c7:a9:90:f2:92:cb:aa:5e: 06:5d:1a:24:cc:73:78:26:ae:7e:ca:aa:02:55:6b: 58:2e:f1:f2:50:20:4d:c5:3b:88:74:79:c0:2c:b7: 6c:e0:0d:93:46:45:f8:9b:a9:84:77:81:53:79:c2: e7:10:2d:8b:08:d8:ee:f2:4e:36:e3:b7:70:8d:11: 7f:eb:13:05:05:aa:f9:0c:a0:33:92:17:a7:e6:5d: a8:f6:c3:95:eb:7c:c2:f5:45:5f:98:c5:02:26:1d: 6f:93:03:c8:7d:a4:eb:eb:03:c0:a4:e2:59:e2:f6: 46:e4:18:3f:81:cc:a1:8b:5b:62:35:68:4c:2e:46: cb:fe:7a:e2:87:cd:bf:80:29:93:22:bf:c7:c2:58: ec:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:AF:10:FA:49:5D:51:A1:CE:54:CA:19:51:24:FE:E7:FA:A9:C6:2C X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.136.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:da:a4:00:92:c8:ca:db:00:2a:03:d4:e8:2c:6d:d8:b1:36: 0d:8f:a7:3b:d0:ad:2d:97:b1:d4:41:21:8b:2f:de:c7:a6:40: 52:b5:6f:eb:b7:51:60:21:4a:a5:d6:0c:c1:e5:4c:78:8c:e1: 84:4a:ab:10:a9:0d:bc:ae:f6:3e:4a:b9:de:f4:23:5b:42:83: d6:a4:88:7a:81:35:06:44:e1:a3:83:1d:a6:24:15:48:28:f7: 1d:fc:81:dd:bc:69:c9:e0:04:f2:74:fb:71:0a:08:af:d9:27: 8b:0a:23:8a:b5:47:82:ed:34:91:40:51:76:6c:25:2d:1b:00: 6e:23:7e:f1:66:90:8b:6b:38:c2:aa:ce:96:b8:fd:1f:f1:8a: b7:37:5e:d0:f1:71:c7:0b:fd:65:f9:89:40:72:d3:22:83:a7: 98:cc:d7:42:b6:fd:f1:f3:88:3d:3f:8c:e8:5c:ea:e2:5b:84: 79:2e:2c:9e:c5:4d:e0:85:69:65:f8:f2:6b:11:52:d0:70:76: b3:18:2f:e0:bf:6b:65:49:89:b7:64:6a:d7:46:27:01:8e:10: cb:d7:7e:55:f7:f2:c3:2d:fe:b4:90:d0:3d:0d:b9:0c:94:4b: 8a:ab:8b:18:8c:f5:bc:2e:20:95:56:48:c7:3f:19:02:4a:81: 80:cf:fd:fa -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUZhSmt95yyD0diYzgKLmaswrOxLEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAxM1oX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAZTQxOTY3NWVmZDgzNDU3MmU1NWFk YjBhYjMzZDhmNjFhMjE0MDk3MGVmYTBhNWNmM2MxZDBlYjg1MWYzZGRiNDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2AB5yzYi8gol2GIddv/4ateqYqMQ 1HeT+/Ro2ss6vJHEkuICqjVufTQRWTfwqOUYqP6jJfd77tQ73PtvnQ0cn/rS0mVD 4A4dXOsffyDDrIJYqSY4cdGc2TZlHhrfywxb2e5vqtB0AQemm6LouHuyx6mQ8pLL ql4GXRokzHN4Jq5+yqoCVWtYLvHyUCBNxTuIdHnALLds4A2TRkX4m6mEd4FTecLn EC2LCNju8k4247dwjRF/6xMFBar5DKAzkhen5l2o9sOV63zC9UVfmMUCJh1vkwPI faTr6wPApOJZ4vZG5Bg/gcyhi1tiNWhMLkbL/nrih82/gCmTIr/Hwljs2wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFJ2vEPpJXVGhzlTKGVEk/uf6qcYsMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzNiODU1N2MwLWQ1ZWUtNGY5ZC04MGFjLWU0MWEzN2ZmZmYyNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrymIMA0GCSqGSIb3DQEBCwUAA4IBAQA+2qQAksjK2wAqA9ToLG3Y sTYNj6c70K0tl7HUQSGLL97HpkBStW/rt1FgIUql1gzB5Ux4jOGESqsQqQ28rvY+ Srne9CNbQoPWpIh6gTUGROGjgx2mJBVIKPcd/IHdvGnJ4ATydPtxCgiv2SeLCiOK tUeC7TSRQFF2bCUtGwBuI37xZpCLazjCqs6WuP0f8Yq3N17Q8XHHC/1l+YlActMi g6eYzNdCtv3x84g9P4zoXOriW4R5LiyexU3ghWll+PJrEVLQcHazGC/gv2tlSYm3 ZGrXRicBjhDL135V9/LDLf60kNA9DbkMlEuKq4sYjPW8LiCVVkjHPxkCSoGAz/36 -----END CERTIFICATE-----Generated at Sat Jun 14 06:28:17 2025 by rpki-client