$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa File: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (raw, json) Hash identifier: GmjTBXPCk2MheYMe3Ti89IM1ct0JP1/mtITjQvPPaJQ= Subject key identifier: B4:B8:7C:7E:86:ED:03:54:6F:FC:B6:D5:45:80:61:6A:47:CC:E2:4E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 4AFF751EDB80D57E4C39FA3A60FF013110758B17 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa Signing time: Fri 13 Jun 2025 00:00:11 +0000 ROA not before: Fri 13 Jun 2025 00:00:11 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ff:75:1e:db:80:d5:7e:4c:39:fa:3a:60:ff:01:31:10:75:8b:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:11 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=35dd932078d7dbdacde6609d31a6509acc4997c4dab5931531880f28f1748dc1, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:51:19:c3:03:69:b5:0b:5c:b2:41:a5:a0:a2: 8e:8b:d8:b0:fd:a6:ca:b7:a8:3a:9a:f7:67:16:a4: cc:fa:46:60:2a:96:61:73:61:f5:5d:36:e9:b9:83: e6:9b:3e:a3:3e:2e:0a:a8:0c:17:44:2b:30:92:7d: 65:21:cf:bc:94:37:01:5b:b9:cd:76:d2:2a:2b:23: ad:c3:2b:b8:b4:6c:db:9b:da:67:51:3c:32:a8:cd: c6:65:18:b2:86:07:f2:2b:ee:49:08:56:20:29:8c: b5:e0:51:9a:2d:3c:0e:95:f7:2e:88:1e:60:7a:65: 6a:3b:08:9a:1e:ac:2b:d1:ac:41:c8:fa:1f:23:fd: 05:49:97:25:38:01:c8:d0:20:d2:3c:1a:57:c2:7c: 4f:7d:5f:eb:c9:05:27:f6:0e:47:6a:de:19:22:04: 12:36:0c:32:b1:ba:d8:b8:cb:34:1c:37:50:31:ec: 52:9a:15:69:77:79:b7:75:39:9b:80:85:38:c4:86: 00:0c:8a:15:bf:bb:5c:ac:6e:eb:6b:57:dd:dd:0c: 88:bb:df:29:fb:2b:2c:72:cf:bc:f1:54:ce:a0:57: 4f:37:a4:59:99:28:f2:65:58:ca:7e:68:0e:d3:cb: 5f:b3:d9:c4:34:e2:c3:c8:15:a5:80:72:e9:24:01: 9a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B8:7C:7E:86:ED:03:54:6F:FC:B6:D5:45:80:61:6A:47:CC:E2:4E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.132.0/22 Signature Algorithm: sha256WithRSAEncryption 99:88:9e:ae:7d:ff:a8:8b:6d:91:db:ed:8c:79:f7:6f:4b:35: d4:30:6b:c4:7a:7e:17:fa:68:8f:80:e0:e5:28:d8:e1:2c:5a: f9:e6:b2:4c:35:71:8d:23:fc:25:2d:dd:1c:00:ae:6f:e0:47: 95:4a:97:8a:68:15:4e:fa:67:6c:21:f2:3c:0f:0e:aa:13:f2: f3:29:a7:d0:73:6c:0c:33:19:ad:62:01:6e:17:83:fd:fb:9f: 1a:57:93:de:08:82:71:a2:36:f3:e8:6d:25:11:f1:ed:25:49: 45:27:b5:83:2d:c1:02:a2:7c:a3:70:c9:9c:c3:dd:f3:ae:cf: bf:a3:09:f6:83:f0:fe:55:ec:b3:a6:15:5c:63:b4:90:42:bd: 67:fe:00:e5:8d:36:35:19:bd:1b:8d:33:31:28:5b:7d:00:29: f1:db:3c:d3:13:87:3f:fa:21:9e:d5:07:63:07:bf:0b:0e:9e: 25:95:72:0a:ef:ed:b7:d5:85:87:5e:55:78:ea:07:38:f8:29: c1:51:54:60:5f:ca:8e:1c:16:9d:6b:19:56:15:fd:92:f6:1f: d7:20:6d:cf:9e:0e:bf:12:b5:2a:c5:d8:34:bb:0d:ae:67:b2: 94:0a:45:5c:74:4e:c2:0f:b1:ef:53:67:ba:98:1e:1f:ff:09: 14:9d:81:0c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUSv91HtuA1X5MOfo6YP8BMRB1ixcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAxMVoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMzVkZDkzMjA3OGQ3ZGJkYWNkZTY2 MDlkMzFhNjUwOWFjYzQ5OTdjNGRhYjU5MzE1MzE4ODBmMjhmMTc0OGRjMTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlEZwwNptQtcskGloKKOi9iw/abK t6g6mvdnFqTM+kZgKpZhc2H1XTbpuYPmmz6jPi4KqAwXRCswkn1lIc+8lDcBW7nN dtIqKyOtwyu4tGzbm9pnUTwyqM3GZRiyhgfyK+5JCFYgKYy14FGaLTwOlfcuiB5g emVqOwiaHqwr0axByPofI/0FSZclOAHI0CDSPBpXwnxPfV/ryQUn9g5Hat4ZIgQS NgwysbrYuMs0HDdQMexSmhVpd3m3dTmbgIU4xIYADIoVv7tcrG7ra1fd3QyIu98p +ysscs+88VTOoFdPN6RZmSjyZVjKfmgO08tfs9nENOLDyBWlgHLpJAGaBwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLS4fH6G7QNUb/y21UWAYWpHzOJOMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzZiMTVhYmI2LTEwYjctNGVjZC05OTQ3LWM5NjAxMmY4MjRjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymEMA0GCSqGSIb3DQEBCwUAA4IBAQCZiJ6uff+oi22R2+2Mefdv SzXUMGvEen4X+miPgODlKNjhLFr55rJMNXGNI/wlLd0cAK5v4EeVSpeKaBVO+mds IfI8Dw6qE/LzKafQc2wMMxmtYgFuF4P9+58aV5PeCIJxojbz6G0lEfHtJUlFJ7WD LcEConyjcMmcw93zrs+/own2g/D+VeyzphVcY7SQQr1n/gDljTY1Gb0bjTMxKFt9 ACnx2zzTE4c/+iGe1QdjB78LDp4llXIK7+231YWHXlV46gc4+CnBUVRgX8qOHBad axlWFf2S9h/XIG3Png6/ErUqxdg0uw2uZ7KUCkVcdE7CD7HvU2e6mB4f/wkUnYEM -----END CERTIFICATE-----Generated at Sat Jun 14 06:19:18 2025 by rpki-client