$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa File: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (raw, json) Hash identifier: 5Ttu2kLHtleGqXhGp1154M4Fs/n0b2qXFD2eo3KCU0w= Subject key identifier: BD:0E:58:41:35:F7:19:DB:D6:81:93:85:84:B3:2C:03:29:B2:45:D4 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 5D9E082756454DED82D7ABF41E67A1D2C2E250DE Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa Signing time: Sat 02 Aug 2025 00:00:12 +0000 ROA not before: Sat 02 Aug 2025 00:00:12 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:9e:08:27:56:45:4d:ed:82:d7:ab:f4:1e:67:a1:d2:c2:e2:50:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Aug 2 00:00:12 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=29ce3f33d66ca3d2e07b593fa1dae0e487c4178693eb1803e268291dfbdbc92b, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e0:49:8f:08:11:24:d0:41:3c:38:67:7b:f3: 0c:76:d6:cb:ab:ac:a3:77:5d:b8:21:27:0c:94:c5: 38:ef:c6:7f:76:27:14:3a:a7:0c:3c:6b:ac:89:67: e0:c8:27:c4:46:bb:2c:56:69:27:5b:bc:a5:e0:df: bd:32:c0:0e:b0:0a:5c:c9:72:13:46:4f:5f:38:e6: 3f:1d:c2:66:ff:63:75:8d:ad:eb:34:36:9d:9b:d8: f0:9b:8f:ee:19:16:f9:b4:97:06:46:3c:a5:36:ab: 6e:b8:01:6b:cc:de:28:bb:2e:5f:4c:66:a4:d2:2c: 30:84:70:7d:df:e5:6c:c7:ce:65:98:b8:a5:4c:ec: a7:6d:17:12:3e:e3:8a:31:6f:13:0b:82:0d:7c:9a: 03:b9:10:f9:65:a2:ee:d0:91:85:0e:7e:92:0b:8e: cd:4e:01:20:b4:0b:27:db:0d:21:8d:05:20:c0:7e: ed:d1:2a:5d:c3:7f:2b:94:8f:ad:4d:8a:cc:47:8c: b1:e3:c0:d2:86:2b:e6:f4:6b:4c:a3:1d:b3:18:5a: 3a:91:87:bc:34:f5:c4:f3:ce:8b:a8:1a:0c:dc:3e: c2:00:bb:ee:de:58:bd:6b:f7:56:40:61:31:ea:eb: 20:03:65:47:46:da:e3:12:f0:c5:cc:f3:5f:23:89: 43:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0E:58:41:35:F7:19:DB:D6:81:93:85:84:B3:2C:03:29:B2:45:D4 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.132.0/22 Signature Algorithm: sha256WithRSAEncryption 06:e0:6e:5e:5b:4b:04:fd:51:3f:1c:37:25:ea:95:21:2d:97: f9:ab:c9:e8:b1:cf:ee:ee:0d:76:1f:8a:6d:d6:da:ba:35:66: d2:5a:b7:cd:90:5e:ba:ce:3f:0b:43:79:94:db:92:42:6a:52: f5:28:4f:a9:3b:55:5a:54:90:3a:af:7b:23:38:e2:29:7b:b0: 19:02:04:83:e0:80:4f:e8:38:34:05:2b:52:c8:c0:95:25:df: c7:77:e9:0c:71:54:be:d5:8b:55:a9:8f:30:84:cc:b3:6a:68: 86:54:08:22:59:5a:12:b2:79:d5:10:99:0c:ca:e5:29:6f:c0: 43:be:9a:94:ed:8f:88:0a:26:e2:24:64:ae:cb:80:7b:52:a2: 0f:3c:05:08:d7:31:26:d0:bb:a9:cf:6e:8a:1a:df:df:be:88: 51:15:8e:d3:4f:61:80:7d:ba:3e:05:c1:8f:1f:c9:a8:4c:01: d6:7e:c7:42:90:86:78:30:a4:a8:29:07:4c:e3:d0:e0:ca:18: 4f:94:71:35:b7:4c:66:00:40:27:6c:44:15:10:f9:f3:45:3b: fa:c4:ce:62:b1:e1:2d:6c:16:16:d0:45:b6:00:3d:10:73:2d: e3:10:f9:a0:ac:4f:9e:e6:53:55:da:7a:ff:f9:90:bb:7e:93: 83:b9:9b:44 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUXZ4IJ1ZFTe2C16v0Hmeh0sLiUN4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDgwMjAwMDAxMloX DTI1MDkwNjIzNTk1OVowejFJMEcGA1UEBRNAMjljZTNmMzNkNjZjYTNkMmUwN2I1 OTNmYTFkYWUwZTQ4N2M0MTc4NjkzZWIxODAzZTI2ODI5MWRmYmRiYzkyYjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+BJjwgRJNBBPDhne/MMdtbLq6yj d124IScMlMU478Z/dicUOqcMPGusiWfgyCfERrssVmknW7yl4N+9MsAOsApcyXIT Rk9fOOY/HcJm/2N1ja3rNDadm9jwm4/uGRb5tJcGRjylNqtuuAFrzN4ouy5fTGak 0iwwhHB93+Vsx85lmLilTOynbRcSPuOKMW8TC4INfJoDuRD5ZaLu0JGFDn6SC47N TgEgtAsn2w0hjQUgwH7t0Spdw38rlI+tTYrMR4yx48DShivm9GtMox2zGFo6kYe8 NPXE886LqBoM3D7CALvu3li9a/dWQGEx6usgA2VHRtrjEvDFzPNfI4lDHQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFL0OWEE19xnb1oGThYSzLAMpskXUMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzZiMTVhYmI2LTEwYjctNGVjZC05OTQ3LWM5NjAxMmY4MjRjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymEMA0GCSqGSIb3DQEBCwUAA4IBAQAG4G5eW0sE/VE/HDcl6pUh LZf5q8nosc/u7g12H4pt1tq6NWbSWrfNkF66zj8LQ3mU25JCalL1KE+pO1VaVJA6 r3sjOOIpe7AZAgSD4IBP6Dg0BStSyMCVJd/Hd+kMcVS+1YtVqY8whMyzamiGVAgi WVoSsnnVEJkMyuUpb8BDvpqU7Y+ICibiJGSuy4B7UqIPPAUI1zEm0Lupz26KGt/f vohRFY7TT2GAfbo+BcGPH8moTAHWfsdCkIZ4MKSoKQdM49DgyhhPlHE1t0xmAEAn bEQVEPnzRTv6xM5iseEtbBYW0EW2AD0Qcy3jEPmgrE+e5lNV2nr/+ZC7fpODuZtE -----END CERTIFICATE-----Generated at Mon Aug 4 15:06:01 2025 by rpki-client