$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa File: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (raw, json) Hash identifier: pnvLeuXvw+7IS4No+PwjrDQiczEGN88LXv81D7eKCQs= Subject key identifier: A7:D5:69:29:5D:DB:D6:E5:4C:00:A1:BA:94:B8:A7:E8:5F:3B:44:31 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 4A0F9F34BEABAA463D7157F02D6F5F77D2C073B4 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa Signing time: Sat 02 Aug 2025 00:00:13 +0000 ROA not before: Sat 02 Aug 2025 00:00:13 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:0f:9f:34:be:ab:aa:46:3d:71:57:f0:2d:6f:5f:77:d2:c0:73:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 2 00:00:13 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=58d10a821e048bb7445a9be578f1001a9e27d9660362ecc9ac30241348ec8909, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8c:77:87:33:0e:cf:58:4d:6d:1c:d5:4a:f7: b1:7c:92:e2:65:9b:f3:41:f2:d0:a1:e7:c0:d7:4d: eb:3c:9b:41:73:29:01:4c:4f:4a:c9:f9:04:3a:70: 74:e4:8d:6d:3a:50:b9:88:1c:54:16:7c:bc:95:2d: ec:a9:4d:85:a3:68:f2:86:44:bd:a5:b8:34:da:a4: cd:91:25:10:d5:61:52:24:84:fb:98:3a:97:9f:bf: 0f:ce:f8:ea:21:bf:c7:43:b6:72:e0:e7:bc:13:af: 3c:19:1c:13:eb:67:33:ef:27:63:10:fc:37:92:63: de:5e:00:e7:8a:80:fb:76:8c:16:cf:34:5c:a4:a3: 3d:46:16:27:77:3c:45:de:b0:eb:01:4e:7b:75:bc: 46:35:aa:ad:ec:13:1c:11:6c:46:1f:62:a5:4e:01: d6:c6:23:0f:89:4d:77:5e:96:8b:c7:8b:5e:9d:90: 79:c3:73:f7:ae:ff:2f:5d:7b:0f:1c:aa:bd:8b:0f: e8:08:80:62:44:5f:34:12:f5:da:67:87:07:69:7b: 3b:b0:7d:be:d6:46:4f:fd:25:1b:d7:20:39:53:eb: 0c:7b:c1:30:9b:4a:35:17:9b:84:0a:27:e6:5a:fc: 7c:12:e5:f6:7c:dc:13:2c:d3:b0:c9:52:a0:63:92: b1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D5:69:29:5D:DB:D6:E5:4C:00:A1:BA:94:B8:A7:E8:5F:3B:44:31 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.208.0/20 Signature Algorithm: sha256WithRSAEncryption 20:8e:b4:65:43:d0:36:86:39:8e:fb:51:72:a3:19:b0:91:90: 1a:9f:20:a8:74:c0:a8:87:12:83:a3:48:68:4a:4c:15:e0:20: 89:72:7c:1e:5b:34:d8:ad:93:b2:45:02:39:47:34:d3:59:74: b9:1f:c9:a5:ca:07:9c:85:bf:b5:b3:a3:8b:34:20:31:6b:54: 52:84:73:df:98:8f:28:75:58:65:8e:0f:5f:b8:44:6d:e5:e5: f9:08:3f:38:43:57:2f:da:15:c2:5b:96:c6:bf:fb:30:48:a7: b7:68:4b:95:8a:a1:9e:7a:4b:80:26:57:e9:21:d1:7e:cf:c7: 59:83:d6:5a:52:fb:3c:c1:32:a1:d1:46:89:f2:31:34:fc:75: 79:e2:f5:ed:7d:ac:c5:2c:1f:ab:dd:6f:a4:f7:69:6b:e4:b4: f3:c1:b8:22:a9:05:3a:10:94:b1:92:0d:ef:54:8c:ab:4e:f6: cd:34:d2:a2:e0:75:8e:20:05:2a:c3:05:df:52:2c:9a:a0:e3: 7f:29:05:2d:db:59:67:84:f4:d4:89:24:20:ec:1d:ab:18:e5: 5f:69:0e:8a:47:d3:10:9d:bb:cf:c6:7a:96:4b:28:5b:93:a4: 04:e7:68:bd:e9:0c:41:27:b9:81:1c:d7:1a:eb:7f:6a:79:5b: 5b:ec:b3:bf -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUSg+fNL6rqkY9cVfwLW9fd9LAc7QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgwMjAwMDAxM1oX DTI1MDkwNjIzNTk1OVowejFJMEcGA1UEBRNANThkMTBhODIxZTA0OGJiNzQ0NWE5 YmU1NzhmMTAwMWE5ZTI3ZDk2NjAzNjJlY2M5YWMzMDI0MTM0OGVjODkwOTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4x3hzMOz1hNbRzVSvexfJLiZZvz QfLQoefA103rPJtBcykBTE9KyfkEOnB05I1tOlC5iBxUFny8lS3sqU2Fo2jyhkS9 pbg02qTNkSUQ1WFSJIT7mDqXn78PzvjqIb/HQ7Zy4Oe8E688GRwT62cz7ydjEPw3 kmPeXgDnioD7dowWzzRcpKM9RhYndzxF3rDrAU57dbxGNaqt7BMcEWxGH2KlTgHW xiMPiU13XpaLx4tenZB5w3P3rv8vXXsPHKq9iw/oCIBiRF80EvXaZ4cHaXs7sH2+ 1kZP/SUb1yA5U+sMe8Ewm0o1F5uECifmWvx8EuX2fNwTLNOwyVKgY5KxYwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKfVaSld29blTAChupS4p+hfO0QxMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzA1YmM4ZGJiLWM3MGEtNDhkYS1iNDViLTQ0NDgzNjQ2MTRmZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynQMA0GCSqGSIb3DQEBCwUAA4IBAQAgjrRlQ9A2hjmO+1Fyoxmw kZAanyCodMCohxKDo0hoSkwV4CCJcnweWzTYrZOyRQI5RzTTWXS5H8mlygechb+1 s6OLNCAxa1RShHPfmI8odVhljg9fuERt5eX5CD84Q1cv2hXCW5bGv/swSKe3aEuV iqGeekuAJlfpIdF+z8dZg9ZaUvs8wTKh0UaJ8jE0/HV54vXtfazFLB+r3W+k92lr 5LTzwbgiqQU6EJSxkg3vVIyrTvbNNNKi4HWOIAUqwwXfUiyaoON/KQUt21lnhPTU iSQg7B2rGOVfaQ6KR9MQnbvPxnqWSyhbk6QE52i96QxBJ7mBHNca639qeVtb7LO/ -----END CERTIFICATE-----Generated at Mon Aug 4 15:58:16 2025 by rpki-client