$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa File: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (raw, json) Hash identifier: 7R0QTem+mbzu8isbqqEjtKi6Ln8ex9lst7BbPqBv0b8= Subject key identifier: 2F:22:87:FA:07:1E:36:99:D0:8F:AA:1F:EA:7A:C5:6A:10:98:61:D8 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 56A83A8375BA5962CE9FC288565286DEB2C5B72A Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa Signing time: Wed 23 Apr 2025 00:00:13 +0000 ROA not before: Wed 23 Apr 2025 00:00:13 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 00:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:a8:3a:83:75:ba:59:62:ce:9f:c2:88:56:52:86:de:b2:c5:b7:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 23 00:00:13 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=9b9f20337895cc4ceef2b1de468ce1794f6c85e898b5067f7a4018e4783fe362, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fe:29:15:8c:53:eb:56:b2:3a:31:f7:16:0e: 27:e4:cf:54:5e:14:dc:e5:24:a6:14:23:99:07:06: c2:c2:4c:f5:f8:8a:d0:3f:76:e5:26:bb:18:db:d1: 37:40:e5:37:35:fd:da:48:a1:ce:0d:0f:27:44:03: f8:7f:0b:05:df:d7:4a:b1:86:bf:ec:d7:5a:36:9f: 9e:e4:a4:9b:34:d6:68:c1:48:77:e4:45:c7:e3:05: 59:9f:5f:68:6d:e0:3b:f9:af:fa:5e:75:4d:58:9a: be:a3:76:6a:82:ac:ae:09:89:f4:6e:de:dd:69:3c: ef:a8:34:9c:89:ba:f7:27:8a:3b:9f:18:58:8e:e7: c8:2e:4f:51:20:9c:4a:4c:d2:9c:97:2d:38:09:7e: 51:8d:d3:cc:b2:3e:99:e2:5e:39:e1:0b:88:97:0f: c9:32:39:9a:a6:8d:68:91:55:bb:dc:a3:9f:b3:16: a7:16:f8:f4:2c:1c:5a:e1:27:12:6b:21:c5:e6:78: d2:fd:ab:b0:18:44:9f:27:dc:0a:07:6d:a2:43:f0: 1a:89:bd:07:4e:af:17:2c:93:fc:84:13:74:f6:f3: b1:9c:89:34:78:cd:23:c0:81:92:85:2a:81:e4:e0: 8e:8f:83:f6:9f:c9:05:55:90:33:57:3e:e6:60:82: 88:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:22:87:FA:07:1E:36:99:D0:8F:AA:1F:EA:7A:C5:6A:10:98:61:D8 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.132.0/22 Signature Algorithm: sha256WithRSAEncryption c4:6d:b6:77:81:e4:77:1b:75:1c:54:8a:eb:e0:60:51:97:0f: 0e:79:df:a2:ac:cb:07:7b:94:0a:99:df:fa:3d:17:91:77:18: 7c:b5:5f:23:da:d8:4b:7b:59:b3:af:95:45:42:42:e2:9a:3e: 61:3d:33:ca:69:d8:b8:f4:61:cc:1d:84:cf:f9:45:4f:3e:de: 16:c2:61:c7:59:8b:ac:20:de:16:a3:b3:4f:d9:34:74:11:b2: f9:b2:a4:7e:6b:45:52:ef:74:24:06:f4:f9:2b:81:80:9f:d4: 73:e0:b7:e6:09:33:67:c4:0c:d2:75:93:c2:65:20:fb:50:af: 69:18:f9:4b:1f:42:4f:2f:11:49:00:41:55:df:32:be:05:54: 46:26:79:74:a8:74:bd:b6:06:89:dc:d6:85:58:f6:dd:ae:a3: af:6f:c5:bc:b5:87:d2:37:a6:b1:8a:05:86:ce:89:e4:18:8c: ed:66:f9:e0:72:c7:19:f3:a6:64:75:1e:3c:3d:61:58:87:59: d7:4a:50:8c:6b:0f:44:44:fb:a8:46:81:d5:f0:fd:15:1b:90: dd:5c:49:44:23:c2:40:58:57:9d:40:bf:67:5e:3a:1f:8b:52: 6c:02:e9:05:4a:de:40:2d:90:88:64:8d:da:59:bb:01:5f:4d: 03:d5:55:f9 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUVqg6g3W6WWLOn8KIVlKG3rLFtyowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyMzAwMDAxM1oX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAOWI5ZjIwMzM3ODk1Y2M0Y2VlZjJi MWRlNDY4Y2UxNzk0ZjZjODVlODk4YjUwNjdmN2E0MDE4ZTQ3ODNmZTM2MjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3P4pFYxT61ayOjH3Fg4n5M9UXhTc 5SSmFCOZBwbCwkz1+IrQP3blJrsY29E3QOU3Nf3aSKHODQ8nRAP4fwsF39dKsYa/ 7NdaNp+e5KSbNNZowUh35EXH4wVZn19obeA7+a/6XnVNWJq+o3ZqgqyuCYn0bt7d aTzvqDScibr3J4o7nxhYjufILk9RIJxKTNKcly04CX5RjdPMsj6Z4l454QuIlw/J Mjmapo1okVW73KOfsxanFvj0LBxa4ScSayHF5njS/auwGESfJ9wKB22iQ/Aaib0H Tq8XLJP8hBN09vOxnIk0eM0jwIGShSqB5OCOj4P2n8kFVZAzVz7mYIKIzwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFC8ih/oHHjaZ0I+qH+p6xWoQmGHYMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzZiMTVhYmI2LTEwYjctNGVjZC05OTQ3LWM5NjAxMmY4MjRjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymEMA0GCSqGSIb3DQEBCwUAA4IBAQDEbbZ3geR3G3UcVIrr4GBR lw8Oed+irMsHe5QKmd/6PReRdxh8tV8j2thLe1mzr5VFQkLimj5hPTPKadi49GHM HYTP+UVPPt4WwmHHWYusIN4Wo7NP2TR0EbL5sqR+a0VS73QkBvT5K4GAn9Rz4Lfm CTNnxAzSdZPCZSD7UK9pGPlLH0JPLxFJAEFV3zK+BVRGJnl0qHS9tgaJ3NaFWPbd rqOvb8W8tYfSN6axigWGzonkGIztZvngcscZ86ZkdR48PWFYh1nXSlCMaw9ERPuo RoHV8P0VG5DdXElEI8JAWFedQL9nXjofi1JsAukFSt5ALZCIZI3aWbsBX00D1VX5 -----END CERTIFICATE-----Generated at Sun Apr 27 03:25:22 2025 by rpki-client