$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa File: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (raw, json) Hash identifier: xFW4C6CbOZIvVWF+EtVH4IiOy8S/XGy7V9Rs1IvWtd4= Subject key identifier: A3:B6:AA:71:AE:FD:E3:87:37:86:48:9D:82:69:E1:69:BC:4E:00:DE Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 5B668964E047CD2FF3B34401F018F3751F4E1936 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa Signing time: Fri 13 Jun 2025 00:00:11 +0000 ROA not before: Fri 13 Jun 2025 00:00:11 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:66:89:64:e0:47:cd:2f:f3:b3:44:01:f0:18:f3:75:1f:4e:19:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:11 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=0bce95f4c57e2d5d11fe8fed6182eb12634a2163e948925b56eb6df890394525, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:27:c5:b7:11:f8:1a:17:d1:87:c9:c9:32:9b: e8:c0:9e:6d:b6:e6:9e:d5:35:8d:88:f7:cf:24:3b: 45:eb:bc:b6:3f:9b:c4:49:f0:8f:df:63:4d:8a:c5: dc:d2:ca:05:2a:e8:a5:27:51:db:0f:82:9d:5d:fe: 2b:ab:17:9d:cb:e1:bd:e3:e5:b5:0e:3d:ad:7a:49: 24:e6:44:34:6c:9f:17:40:c2:eb:4e:c5:da:17:69: fa:69:93:5a:0c:66:0c:50:e1:84:58:9e:70:9d:5e: 47:c6:6f:a2:51:2a:ca:52:14:17:36:72:3e:6b:81: c9:32:0a:d7:6a:82:32:57:96:87:35:36:4f:95:dc: fb:9e:7a:dd:b4:f0:1c:47:c3:ab:a9:76:ce:df:28: 68:1a:40:da:07:24:49:fe:98:20:f0:1e:b2:49:1d: 92:cf:7e:3f:00:35:83:5f:5b:49:17:f2:c0:08:05: 1e:b0:01:a3:05:18:b3:82:33:38:34:3b:0f:89:9c: cb:5e:5a:17:c1:21:52:5d:84:23:18:55:49:fb:b9: 07:71:7f:79:f0:3a:3b:a7:44:43:c5:dc:bc:85:e2: b3:89:23:d2:df:31:fa:b7:47:51:2f:be:3e:2c:a8: 24:e6:3b:21:6c:1e:4f:29:05:cc:b3:e0:a1:ec:07: 5e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B6:AA:71:AE:FD:E3:87:37:86:48:9D:82:69:E1:69:BC:4E:00:DE X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.148.0/23 Signature Algorithm: sha256WithRSAEncryption 85:db:e0:35:38:3a:92:a6:d5:c0:cd:32:f1:ba:98:d5:ea:3e: 4a:d3:99:da:be:24:f5:87:39:6a:fb:4b:c7:8d:e6:fc:f8:d0: e1:06:b1:85:9d:f3:1b:b5:a2:de:eb:de:b9:4c:e5:33:18:cc: 9e:5f:14:09:46:c1:7a:15:2f:6c:13:5f:29:d4:4a:59:16:35: 50:cf:45:3f:c4:82:04:10:61:5b:fa:2e:a7:16:a2:f6:48:12: 67:9e:88:e0:c4:2e:89:3f:0e:27:5e:c9:95:d6:b5:80:73:0c: 17:72:f1:da:e4:52:c8:53:84:45:37:ec:7a:77:d3:d7:db:7f: 9c:33:dc:6a:1e:db:49:1e:9a:11:51:2d:8b:40:9f:df:0e:b7: 50:93:a2:bf:66:60:f8:1c:d7:c0:34:92:d1:05:d0:d0:f1:86: fe:12:60:a0:44:b9:9a:53:0c:b9:03:55:5f:e3:2a:69:fb:48: d1:22:f1:ad:88:6c:5b:28:c5:db:8d:a2:bd:be:5d:74:a0:f1: c1:4a:9d:48:c8:ed:90:88:54:4c:ae:7c:1b:91:19:bd:65:45: a5:77:bf:10:8b:7e:2c:51:9e:45:04:54:2a:21:85:70:f3:3f: 16:9b:c1:a7:82:81:ad:45:fb:04:83:61:93:0c:b3:2e:2c:67: f4:fb:55:f5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUW2aJZOBHzS/zs0QB8BjzdR9OGTYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAxMVoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMGJjZTk1ZjRjNTdlMmQ1ZDExZmU4 ZmVkNjE4MmViMTI2MzRhMjE2M2U5NDg5MjViNTZlYjZkZjg5MDM5NDUyNTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyfFtxH4GhfRh8nJMpvowJ5ttuae 1TWNiPfPJDtF67y2P5vESfCP32NNisXc0soFKuilJ1HbD4KdXf4rqxedy+G94+W1 Dj2tekkk5kQ0bJ8XQMLrTsXaF2n6aZNaDGYMUOGEWJ5wnV5Hxm+iUSrKUhQXNnI+ a4HJMgrXaoIyV5aHNTZPldz7nnrdtPAcR8OrqXbO3yhoGkDaByRJ/pgg8B6ySR2S z34/ADWDX1tJF/LACAUesAGjBRizgjM4NDsPiZzLXloXwSFSXYQjGFVJ+7kHcX95 8Do7p0RDxdy8heKziSPS3zH6t0dRL74+LKgk5jshbB5PKQXMs+Ch7AdeQQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKO2qnGu/eOHN4ZInYJp4Wm8TgDeMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdiMjZkNDEwLTE3ZDctNDMxMC1iYjU4LTQxYzQ2NWY4ZWVmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymUMA0GCSqGSIb3DQEBCwUAA4IBAQCF2+A1ODqSptXAzTLxupjV 6j5K05naviT1hzlq+0vHjeb8+NDhBrGFnfMbtaLe6965TOUzGMyeXxQJRsF6FS9s E18p1EpZFjVQz0U/xIIEEGFb+i6nFqL2SBJnnojgxC6JPw4nXsmV1rWAcwwXcvHa 5FLIU4RFN+x6d9PX23+cM9xqHttJHpoRUS2LQJ/fDrdQk6K/ZmD4HNfANJLRBdDQ 8Yb+EmCgRLmaUwy5A1Vf4ypp+0jRIvGtiGxbKMXbjaK9vl10oPHBSp1IyO2QiFRM rnwbkRm9ZUWld78Qi34sUZ5FBFQqIYVw8z8Wm8GngoGtRfsEg2GTDLMuLGf0+1X1 -----END CERTIFICATE-----Generated at Sat Jun 14 06:27:17 2025 by rpki-client