$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa File: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (raw, json) Hash identifier: MCFSo4p4hfWyGHa1bb10cJLk5iC7Xm35BqNCsVItFtQ= Subject key identifier: 1A:96:84:5D:2E:81:5E:C6:4D:21:10:6C:C9:0B:74:AE:0B:54:94:D8 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 07A3A4908AE3740DFC7EF6F1745E79C93C64193E Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa Signing time: Fri 13 Jun 2025 00:00:14 +0000 ROA not before: Fri 13 Jun 2025 00:00:14 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a3:a4:90:8a:e3:74:0d:fc:7e:f6:f1:74:5e:79:c9:3c:64:19:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:14 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=ecee6e07987006f12ba13629b3b8c88882b75e5b357a64827becc5ef8569b46d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d2:87:60:d2:4e:12:4e:57:ab:23:b3:3b:43: 65:c0:71:bd:19:18:cb:94:5b:c5:1d:cf:26:d0:a9: 8b:65:80:a9:3f:b9:db:26:32:87:2a:20:e5:29:ca: 1f:01:c2:4f:12:c8:44:40:e2:e6:fc:2b:c9:fb:12: 3a:13:1c:26:d5:3e:df:81:bd:d7:d6:e2:25:d3:df: 4d:54:3a:c5:19:33:fb:09:54:ca:c8:df:69:4a:b8: 66:77:a0:f5:fe:b9:43:b8:bd:7d:a8:79:09:a4:20: 0f:38:12:9d:b7:b6:b1:f1:88:14:a4:fd:81:d5:7b: dd:9d:0e:13:9d:89:d7:9c:f2:9f:2f:94:1b:79:3c: 85:ac:05:bc:8a:0f:2d:55:99:58:34:a1:34:06:e5: 16:40:ca:e2:42:00:2c:b4:c8:d1:48:50:00:b8:93: f4:76:f4:b5:94:08:02:f7:c3:f9:ee:9a:1f:08:f8: cd:c3:a5:eb:82:0c:5c:8d:05:87:43:b0:ba:55:f1: 28:e6:6f:dc:ed:70:41:12:ab:8a:6b:79:8d:02:3e: b5:b4:29:42:98:99:ec:b4:3c:5d:97:ab:26:66:26: 4b:e7:36:58:ad:f1:3f:f2:cc:ff:02:ab:09:a4:9a: ff:c9:ca:a8:e8:45:81:92:3f:21:1d:f8:a8:67:32: d5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:96:84:5D:2E:81:5E:C6:4D:21:10:6C:C9:0B:74:AE:0B:54:94:D8 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.152.0/21 Signature Algorithm: sha256WithRSAEncryption 0c:ea:b9:9e:29:d3:e3:8e:50:ab:98:04:ff:d2:1a:8d:fc:0e: 0f:06:69:cf:ac:d1:43:c2:79:3c:35:f9:fe:f7:6a:a1:f4:db: 13:42:71:35:e6:8e:31:95:55:40:8b:06:48:3d:4a:4b:32:1c: 72:e6:c4:c6:60:4e:3f:d0:2f:c4:e5:31:07:a8:2c:f3:61:0d: 99:6e:87:43:87:a1:81:72:99:92:16:4c:34:31:fa:9d:1a:fe: 00:6d:4c:e3:84:c5:b2:25:49:00:c1:3e:aa:ce:b7:85:65:1c: c5:b4:18:96:d3:f4:5e:ff:3f:cb:e3:e0:bc:dd:1d:dc:e8:89: cd:db:e4:76:04:91:47:7d:a7:19:af:05:7b:b9:66:eb:5e:af: 41:14:55:12:24:70:14:71:57:a1:e8:22:3d:45:a4:38:d3:e3: 77:60:5f:a6:fb:b9:1e:a9:33:b0:d7:7d:78:78:f7:88:95:b0: 1d:4c:78:f9:89:53:27:bf:b5:ba:ac:36:fc:5e:c2:d6:26:5c: 38:e2:21:2e:7b:5e:3e:c9:fd:56:4e:bd:b3:c8:5b:b7:1c:68: 91:87:ad:84:33:a8:a1:3e:98:74:fb:e5:d9:13:7a:c9:50:28: 77:a6:8e:41:ff:ca:fe:54:ee:38:75:59:a9:35:13:3d:d7:c4: e7:5e:08:b5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUB6OkkIrjdA38fvbxdF55yTxkGT4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAxNFoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAZWNlZTZlMDc5ODcwMDZmMTJiYTEz NjI5YjNiOGM4ODg4MmI3NWU1YjM1N2E2NDgyN2JlY2M1ZWY4NTY5YjQ2ZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NKHYNJOEk5XqyOzO0NlwHG9GRjL lFvFHc8m0KmLZYCpP7nbJjKHKiDlKcofAcJPEshEQOLm/CvJ+xI6Exwm1T7fgb3X 1uIl099NVDrFGTP7CVTKyN9pSrhmd6D1/rlDuL19qHkJpCAPOBKdt7ax8YgUpP2B 1XvdnQ4TnYnXnPKfL5QbeTyFrAW8ig8tVZlYNKE0BuUWQMriQgAstMjRSFAAuJP0 dvS1lAgC98P57pofCPjNw6XrggxcjQWHQ7C6VfEo5m/c7XBBEquKa3mNAj61tClC mJnstDxdl6smZiZL5zZYrfE/8sz/AqsJpJr/ycqo6EWBkj8hHfioZzLVxQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBqWhF0ugV7GTSEQbMkLdK4LVJTYMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2FkZjc1ZTJlLTlkMmMtNDcxOC1hNDlkLWFkNDQwNzliMjY2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrymYMA0GCSqGSIb3DQEBCwUAA4IBAQAM6rmeKdPjjlCrmAT/0hqN /A4PBmnPrNFDwnk8Nfn+92qh9NsTQnE15o4xlVVAiwZIPUpLMhxy5sTGYE4/0C/E 5TEHqCzzYQ2ZbodDh6GBcpmSFkw0MfqdGv4AbUzjhMWyJUkAwT6qzreFZRzFtBiW 0/Re/z/L4+C83R3c6InN2+R2BJFHfacZrwV7uWbrXq9BFFUSJHAUcVeh6CI9RaQ4 0+N3YF+m+7keqTOw1314ePeIlbAdTHj5iVMnv7W6rDb8XsLWJlw44iEue14+yf1W Tr2zyFu3HGiRh62EM6ihPph0++XZE3rJUCh3po5B/8r+VO44dVmpNRM918TnXgi1 -----END CERTIFICATE-----Generated at Sat Jun 14 05:56:56 2025 by rpki-client