$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa File: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (raw, json) Hash identifier: gCeBQN+ekvH2K2ZZmIACMGOg1Zh29yCgVP8nrlCfA98= Subject key identifier: 7D:16:83:F4:45:D1:5F:42:37:AE:C9:40:67:54:87:54:10:36:35:9F Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 017A3AF4B7A2235F488224DA0C8A7ACDD520094D Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa Signing time: Fri 13 Jun 2025 00:00:15 +0000 ROA not before: Fri 13 Jun 2025 00:00:15 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:7a:3a:f4:b7:a2:23:5f:48:82:24:da:0c:8a:7a:cd:d5:20:09:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:15 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=e7415971f137084ac24f89c4fc0c14c20dada3700f73c5fe7a4a99ca9db498bb, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:41:3c:e8:36:03:82:23:36:b2:6d:9d:51:93: 73:15:e0:83:36:21:70:99:b1:ce:fc:07:90:d2:20: dd:9c:57:a6:ba:59:84:f3:ae:b2:b0:27:3f:07:63: da:58:d6:ed:ab:2e:5b:c9:3d:55:e8:c0:87:48:36: 62:19:01:d2:54:34:c1:54:ed:ad:a1:7d:96:1b:53: 55:7e:56:5e:01:69:4d:21:34:af:6a:75:8f:7a:4a: d4:f9:e0:0c:44:6d:f7:a7:d2:0b:70:4a:a0:51:14: b8:82:0d:5f:16:a5:0a:19:8a:15:5c:eb:00:1e:79: 47:26:c4:47:38:93:40:6c:b9:1f:4f:0c:35:bd:c9: 31:02:4c:f4:ed:89:2e:27:86:f1:57:f4:9b:34:f8: 27:35:e2:3d:aa:b0:31:78:c5:d8:3b:cb:f8:b0:af: 35:24:f5:f6:ec:7c:b4:98:42:8e:38:7d:13:16:6e: ca:78:4f:a2:e2:77:29:02:c8:a9:cf:b5:03:d1:c5: 80:1f:ea:a6:34:31:71:33:90:98:19:59:6a:04:ee: 71:af:bd:6e:60:fe:97:09:3c:48:ac:b0:62:9a:3f: 05:97:48:a6:e1:75:5e:72:5b:00:d4:fe:c0:f3:d4: aa:8e:57:a1:01:8b:36:f4:b4:0c:4e:0a:94:d2:ff: 1c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:16:83:F4:45:D1:5F:42:37:AE:C9:40:67:54:87:54:10:36:35:9F X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.160.0/19 Signature Algorithm: sha256WithRSAEncryption dd:bc:9e:57:b3:d5:ee:99:11:bc:9b:6f:75:a3:ac:a2:88:04: cb:67:61:a1:01:8f:3d:26:60:0b:6a:a0:2c:fb:0f:f3:33:54: c9:1f:72:5b:02:6c:da:74:e0:5c:8d:ab:d8:da:56:af:7c:7a: 0f:82:f5:ff:be:43:60:22:3f:c0:a9:f9:20:9e:fb:4a:c7:ee: 7e:2d:85:15:32:4d:32:c9:7e:a7:39:1d:48:c0:0e:19:b3:56: 0f:43:ac:09:fa:fc:92:9b:ae:ba:ff:32:7a:2a:a2:31:8c:54: ea:89:ac:1a:8d:ef:05:bd:40:d5:fd:79:b5:ef:98:5f:ef:d2: 7c:d9:31:e2:82:50:5d:5e:3e:e8:89:96:de:f5:ae:bc:80:eb: fb:7a:36:e8:5a:5b:c5:ec:73:7c:27:a4:47:8a:55:2d:12:d7: c2:a3:b6:c5:9e:cb:31:38:77:47:e8:8c:e6:79:13:b5:19:68: ce:15:3a:36:22:69:5d:0e:7f:2e:96:d7:2b:b4:e2:33:ef:f9: fc:f4:ce:94:a1:0b:1d:e5:37:ce:23:df:88:93:e7:35:40:13: 27:c5:22:c5:0a:72:b6:a1:ef:9d:cb:44:55:f2:d8:25:03:98: 6e:8d:72:98:d0:dc:79:73:aa:b4:c5:c8:7d:a6:f1:49:8a:0f: 44:9b:f5:0c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUAXo69LeiI19IgiTaDIp6zdUgCU0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAxNVoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAZTc0MTU5NzFmMTM3MDg0YWMyNGY4 OWM0ZmMwYzE0YzIwZGFkYTM3MDBmNzNjNWZlN2E0YTk5Y2E5ZGI0OThiYjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArkE86DYDgiM2sm2dUZNzFeCDNiFw mbHO/AeQ0iDdnFemulmE866ysCc/B2PaWNbtqy5byT1V6MCHSDZiGQHSVDTBVO2t oX2WG1NVflZeAWlNITSvanWPekrU+eAMRG33p9ILcEqgURS4gg1fFqUKGYoVXOsA HnlHJsRHOJNAbLkfTww1vckxAkz07YkuJ4bxV/SbNPgnNeI9qrAxeMXYO8v4sK81 JPX27Hy0mEKOOH0TFm7KeE+i4ncpAsipz7UD0cWAH+qmNDFxM5CYGVlqBO5xr71u YP6XCTxIrLBimj8Fl0im4XVeclsA1P7A89SqjlehAYs29LQMTgqU0v8cHQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFH0Wg/RF0V9CN67JQGdUh1QQNjWfMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQzZmQ4Njg3LTEyZDQtNDliNS05OTU4LTg1MzZjZTgxNjBiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFrymgMA0GCSqGSIb3DQEBCwUAA4IBAQDdvJ5Xs9XumRG8m291o6yi iATLZ2GhAY89JmALaqAs+w/zM1TJH3JbAmzadOBcjavY2lavfHoPgvX/vkNgIj/A qfkgnvtKx+5+LYUVMk0yyX6nOR1IwA4Zs1YPQ6wJ+vySm666/zJ6KqIxjFTqiawa je8FvUDV/Xm175hf79J82THiglBdXj7oiZbe9a68gOv7ejboWlvF7HN8J6RHilUt EtfCo7bFnssxOHdH6IzmeRO1GWjOFTo2ImldDn8ultcrtOIz7/n89M6UoQsd5TfO I9+Ik+c1QBMnxSLFCnK2oe+dy0RV8tglA5hujXKY0Nx5c6q0xch9pvFJig9Em/UM -----END CERTIFICATE-----Generated at Sat Jun 14 06:31:31 2025 by rpki-client