$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa File: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (raw, json) Hash identifier: 0poBH9ZJIvm6o3WkVRQuwmCRSJDr2es/DEUsdpDssrw= Subject key identifier: 70:CA:60:84:02:B7:AC:84:DA:38:72:98:86:18:89:45:32:98:57:5D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 5BC9B50770CCF1C48DED050F582EC1CDB23CA5C6 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa Signing time: Fri 13 Jun 2025 00:00:09 +0000 ROA not before: Fri 13 Jun 2025 00:00:09 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c9:b5:07:70:cc:f1:c4:8d:ed:05:0f:58:2e:c1:cd:b2:3c:a5:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:09 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=269f878a5756e5091ab4bcb39fca93151814f9507eace61e85a2fe7943638537, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7c:37:05:ff:f7:cf:34:22:53:25:e9:77:79: 6f:6a:fb:70:5b:de:88:2c:b6:4c:8b:71:fd:ac:1f: 46:46:75:0f:f2:7f:cd:8f:b9:ef:9d:ef:ac:03:50: 38:fe:d1:60:d3:fe:10:ad:60:12:53:68:74:b3:9e: e1:35:00:88:5f:e5:a5:73:90:4b:b9:ad:2f:2e:da: e9:39:92:e1:05:b5:ac:cc:5b:a8:91:ec:ba:03:dd: 95:da:73:40:65:f2:5f:b4:34:00:b1:d7:45:4d:4e: 6d:97:24:17:fd:3c:74:2b:98:15:1a:3b:64:90:1e: b2:00:41:32:96:c9:a9:57:7b:01:7c:b1:26:1b:c9: 60:e4:ba:5e:b8:90:7c:23:1b:bf:75:95:af:73:80: cc:26:ea:f7:7d:57:8a:9d:68:1b:b7:fa:3a:36:89: f3:dd:c9:c4:e2:d2:f9:57:69:dd:20:4b:bb:1a:9b: c7:74:73:82:f9:6a:03:b5:50:ae:e3:4a:4c:e2:ff: 66:59:96:49:d9:fb:ea:5c:b5:55:ce:d5:b5:d8:bf: 5f:72:3d:2a:5f:0c:d5:8b:df:d5:d7:20:dd:7b:91: d6:7c:39:c2:0c:6d:84:93:78:d6:e5:f2:ba:6b:4a: d5:b3:20:1f:99:06:e1:f8:04:02:45:c0:ca:aa:b5: 28:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:CA:60:84:02:B7:AC:84:DA:38:72:98:86:18:89:45:32:98:57:5D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.130.0/23 Signature Algorithm: sha256WithRSAEncryption e7:ac:61:fc:27:f5:97:e8:8f:03:a5:72:88:1d:a1:1b:e2:c3: 46:b2:45:16:49:10:33:39:fa:bd:29:2a:ef:5b:f2:b8:18:71: 08:1e:78:7f:77:91:c9:04:34:7c:8b:31:73:98:4e:83:11:3e: 4f:dc:21:f8:50:5f:03:3c:07:e5:44:2b:99:22:59:08:f0:c7: c0:6b:40:40:93:1a:4d:2d:95:36:f4:57:f5:63:c4:eb:7e:25: df:0b:c6:64:b7:db:10:22:bd:3c:ac:c6:f0:be:d1:be:2b:5b: aa:d0:8a:8c:13:72:b8:b6:5a:d1:0f:2a:9a:85:49:78:e9:72: 30:a7:50:98:73:61:ac:68:dd:0b:84:e3:df:b8:4b:a5:ca:6c: 7f:37:b4:6c:a9:d6:d7:25:0c:95:5d:59:0e:a6:af:c2:6a:73: 10:df:38:c1:4f:58:7f:e0:df:a7:2c:ac:e8:ec:b7:77:f2:18: 3c:6e:f7:1a:71:b6:75:7e:6e:fe:9a:38:91:5a:ea:14:ec:1d: d5:d1:1c:a8:3f:7e:53:10:62:24:05:fb:e7:e5:e5:b7:23:ce: 4b:c6:a8:64:47:fc:95:88:e4:4d:26:26:e6:cb:e5:4c:b1:a4: cc:24:f0:ab:1c:15:f4:42:6f:42:73:e3:20:db:95:ea:e0:95: 26:bc:18:97 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUW8m1B3DM8cSN7QUPWC7BzbI8pcYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAwOVoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMjY5Zjg3OGE1NzU2ZTUwOTFhYjRi Y2IzOWZjYTkzMTUxODE0Zjk1MDdlYWNlNjFlODVhMmZlNzk0MzYzODUzNzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Xw3Bf/3zzQiUyXpd3lvavtwW96I LLZMi3H9rB9GRnUP8n/Nj7nvne+sA1A4/tFg0/4QrWASU2h0s57hNQCIX+Wlc5BL ua0vLtrpOZLhBbWszFuokey6A92V2nNAZfJftDQAsddFTU5tlyQX/Tx0K5gVGjtk kB6yAEEylsmpV3sBfLEmG8lg5LpeuJB8Ixu/dZWvc4DMJur3fVeKnWgbt/o6Nonz 3cnE4tL5V2ndIEu7GpvHdHOC+WoDtVCu40pM4v9mWZZJ2fvqXLVVztW12L9fcj0q XwzVi9/V1yDde5HWfDnCDG2Ek3jW5fK6a0rVsyAfmQbh+AQCRcDKqrUovQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHDKYIQCt6yE2jhymIYYiUUymFddMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQyOTMyZGQ0LTI3MjAtNDdiMy1hNDcyLWZjMmM4YTUwYTQ2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymCMA0GCSqGSIb3DQEBCwUAA4IBAQDnrGH8J/WX6I8DpXKIHaEb 4sNGskUWSRAzOfq9KSrvW/K4GHEIHnh/d5HJBDR8izFzmE6DET5P3CH4UF8DPAfl RCuZIlkI8MfAa0BAkxpNLZU29Ff1Y8TrfiXfC8Zkt9sQIr08rMbwvtG+K1uq0IqM E3K4tlrRDyqahUl46XIwp1CYc2GsaN0LhOPfuEulymx/N7RsqdbXJQyVXVkOpq/C anMQ3zjBT1h/4N+nLKzo7Ld38hg8bvcacbZ1fm7+mjiRWuoU7B3V0RyoP35TEGIk Bfvn5eW3I85LxqhkR/yViORNJibmy+VMsaTMJPCrHBX0Qm9Cc+Mg25Xq4JUmvBiX -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:24 2025 by rpki-client