$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa File: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (raw, json) Hash identifier: ItV2Ew2DrFxoyp4E0Qwk+uH0GZYGeKzn4prU+kPwQ9g= Subject key identifier: 03:D0:A2:87:CE:97:40:B0:FD:C6:83:68:89:73:25:E7:07:C4:53:E9 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 3F6100E7C586516D76A1F29ED04A7048C26E85F6 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa Signing time: Fri 13 Jun 2025 00:00:11 +0000 ROA not before: Fri 13 Jun 2025 00:00:11 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:61:00:e7:c5:86:51:6d:76:a1:f2:9e:d0:4a:70:48:c2:6e:85:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:11 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=330fee75bc217e920e3c7b6f5c18e0a4a94aa1e528561a3ccd1f08c20d18509b, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:df:4a:7d:af:1c:c7:17:b7:28:ce:f0:46: 9e:8a:7d:85:3b:01:91:da:f0:23:9d:b6:ba:96:3f: 69:a4:b3:f5:5f:4f:c5:96:55:1d:f8:a4:09:ac:c7: b6:03:0a:58:90:1d:2f:b2:a3:34:11:a4:d6:ef:52: 69:63:79:c5:c8:5a:c3:30:6e:89:4a:34:15:71:ab: bd:f5:7d:f9:23:3e:2b:be:e1:0e:2c:ae:f7:7f:f3: 25:df:68:ac:cb:d6:14:ae:ec:df:68:14:ee:5f:8b: 95:59:f6:db:56:9b:77:53:cd:d5:07:38:32:d6:1d: ca:cb:08:23:6e:56:91:12:71:12:74:fe:79:fe:77: c1:4c:64:f5:87:22:72:d6:e2:3d:3f:f2:2d:be:13: a0:3c:1d:7f:01:26:57:17:9a:da:63:50:63:41:3a: 48:ec:50:cf:47:a1:ad:d7:f5:a1:eb:75:b6:44:7b: 66:f8:54:8c:b9:de:d2:eb:54:14:f9:ca:fd:77:75: 10:b5:8a:69:a4:81:12:71:3b:e8:a9:67:15:67:ea: fd:05:31:47:eb:4a:66:e8:6e:82:0f:1a:fc:46:4f: 55:d9:1e:e5:e3:db:ec:59:d0:6f:be:e3:27:50:fd: f1:0e:fa:7a:43:52:46:eb:bb:e3:56:e4:1d:40:f1: 0b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D0:A2:87:CE:97:40:B0:FD:C6:83:68:89:73:25:E7:07:C4:53:E9 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.200.0/21 Signature Algorithm: sha256WithRSAEncryption 6f:d4:4e:95:41:b8:c6:f5:ed:83:9b:e2:d2:46:95:a8:13:b6: 1e:9b:07:aa:15:ae:ad:20:a3:e8:de:cd:79:ba:50:c6:fc:c6: b5:e5:41:36:0d:d2:88:9d:5d:a6:2c:6c:15:75:9c:0f:82:30: 3a:47:9c:45:76:86:ea:c4:84:1c:b3:d4:4f:73:79:d4:d2:fb: 4a:19:c2:91:ef:2e:a3:87:b4:8d:55:c9:b5:8e:f7:31:8e:47: 0f:6a:bc:39:32:0e:78:78:bf:61:5f:ac:7b:27:a9:db:fe:3a: 80:bd:05:3f:05:5d:e1:8f:90:41:ff:41:16:1e:d5:c6:6b:16: 5c:0d:3f:52:39:1d:7d:46:ca:bb:5a:9e:2c:71:8f:c3:da:bd: cf:78:8a:14:f1:47:b7:55:74:81:1c:cc:a9:d8:1b:90:e0:b1: 4d:3d:36:b2:cf:5a:47:9a:8f:1a:28:68:92:d6:23:71:e9:87: f2:5e:61:1c:3e:27:e6:7d:52:99:cf:1d:f0:91:66:ea:a3:43: 79:03:5b:df:16:55:e8:15:3b:5f:a1:09:42:7f:4c:83:c2:8d: d2:be:ff:4e:28:56:95:06:44:5d:1b:2f:2e:13:3b:ce:33:65: 6d:cb:a1:e0:a9:3b:91:75:02:2a:f9:b5:6d:25:3a:c9:4d:84: 0b:87:01:70 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUP2EA58WGUW12ofKe0EpwSMJuhfYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAxMVoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMzMwZmVlNzViYzIxN2U5MjBlM2M3 YjZmNWMxOGUwYTRhOTRhYTFlNTI4NTYxYTNjY2QxZjA4YzIwZDE4NTA5YjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJ/fSn2vHMcXtyjO8Eaein2FOwGR 2vAjnba6lj9ppLP1X0/FllUd+KQJrMe2AwpYkB0vsqM0EaTW71JpY3nFyFrDMG6J SjQVcau99X35Iz4rvuEOLK73f/Ml32isy9YUruzfaBTuX4uVWfbbVpt3U83VBzgy 1h3KywgjblaREnESdP55/nfBTGT1hyJy1uI9P/ItvhOgPB1/ASZXF5raY1BjQTpI 7FDPR6Gt1/Wh63W2RHtm+FSMud7S61QU+cr9d3UQtYpppIEScTvoqWcVZ+r9BTFH 60pm6G6CDxr8Rk9V2R7l49vsWdBvvuMnUP3xDvp6Q1JG67vjVuQdQPELyQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAPQoofOl0Cw/caDaIlzJecHxFPpMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBiZjE1ZDNmLWM1NDYtNGJiNi1hNzY0LTgyMTY1YzM4NGQzNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrynIMA0GCSqGSIb3DQEBCwUAA4IBAQBv1E6VQbjG9e2Dm+LSRpWo E7YemweqFa6tIKPo3s15ulDG/Ma15UE2DdKInV2mLGwVdZwPgjA6R5xFdobqxIQc s9RPc3nU0vtKGcKR7y6jh7SNVcm1jvcxjkcParw5Mg54eL9hX6x7J6nb/jqAvQU/ BV3hj5BB/0EWHtXGaxZcDT9SOR19Rsq7Wp4scY/D2r3PeIoU8Ue3VXSBHMyp2BuQ 4LFNPTayz1pHmo8aKGiS1iNx6YfyXmEcPifmfVKZzx3wkWbqo0N5A1vfFlXoFTtf oQlCf0yDwo3Svv9OKFaVBkRdGy8uEzvOM2Vty6HgqTuRdQIq+bVtJTrJTYQLhwFw -----END CERTIFICATE-----Generated at Sat Jun 14 06:11:54 2025 by rpki-client