$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa File: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (raw, json) Hash identifier: mnnnpJEsNrVVCR/e4A00POwOphO03bJXxM9TTLVPThg= Subject key identifier: E4:AB:D2:AD:98:D4:A0:67:E5:B8:EC:D3:98:E7:C6:19:08:B4:F7:60 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 5B36F7266F365C8E169F806B383D2F3D00DB4584 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa Signing time: Fri 13 Jun 2025 00:00:03 +0000 ROA not before: Fri 13 Jun 2025 00:00:03 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:36:f7:26:6f:36:5c:8e:16:9f:80:6b:38:3d:2f:3d:00:db:45:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:03 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=5d6b54910692800ef4674537d41f9c29e30682db373348db8c056380a0fb08cb, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:12:c5:05:fe:59:48:ab:80:de:d6:b3:82:35: 4c:f5:83:e0:8c:a2:42:67:c6:3d:6e:a6:ea:2a:73: 53:e8:ee:8d:59:98:3a:96:3a:22:fc:80:a3:0a:f8: d0:c0:5e:43:b0:3d:53:80:42:f2:60:d5:35:99:d9: 87:e7:6b:a5:d5:b7:61:08:58:0e:b0:1d:d3:bb:ab: 7a:31:e4:04:08:c6:b3:42:c0:b8:71:1c:c1:95:69: 1d:fa:be:08:9f:3f:40:a6:fb:57:4c:2c:5d:b8:21: 0d:b5:8c:ac:5c:cf:14:c2:21:9b:1d:1c:75:35:1d: 4f:d2:7b:4c:eb:cf:a9:d9:ab:9e:7f:9d:82:fd:d7: 7b:7b:a7:f3:e2:d3:c2:60:b4:bc:22:41:15:d1:9b: b1:ea:01:4b:87:6e:f0:c9:ab:c4:ff:ab:9e:d6:92: 29:ec:16:4d:fc:d7:d0:e3:7c:f3:e7:72:31:48:39: 7f:6c:47:b5:b3:fd:07:32:f8:79:a8:64:4e:81:2c: 0a:b4:3a:22:4e:9f:22:19:88:64:ac:58:aa:a9:d3: 81:b1:86:83:f2:8e:49:e2:e3:14:5b:d2:3a:e8:bb: 72:13:26:17:81:3a:25:cb:e0:7f:08:ce:47:dd:24: 88:60:67:e7:8e:95:ed:ce:12:ad:73:54:d7:19:b2: 09:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:AB:D2:AD:98:D4:A0:67:E5:B8:EC:D3:98:E7:C6:19:08:B4:F7:60 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.193.0/24 Signature Algorithm: sha256WithRSAEncryption a3:7a:7c:bb:a1:b8:4e:1a:72:cf:67:b6:5b:8b:ba:9a:ed:e9: 22:57:a0:bf:c5:0f:00:63:28:25:6c:9d:4d:c4:3e:55:b8:63: c6:4a:20:1d:61:41:09:5e:7e:e7:ed:df:e0:cc:9b:68:3d:5c: 7c:f8:1d:77:d8:06:1d:27:2c:11:9c:9b:97:0e:08:30:8c:bd: 48:8b:08:42:07:d6:53:1f:1b:31:8d:ee:77:5f:74:2f:66:8f: 57:35:99:db:aa:7e:f6:90:8b:66:07:27:5f:c6:99:6d:7e:63: 92:76:06:b3:3e:6d:ab:6e:f5:29:03:80:29:3d:02:2b:0c:c6: 18:e1:49:30:4f:e9:c2:ac:ab:9f:c5:0b:ee:fe:e1:2c:94:78: c5:ae:68:d4:e9:ce:b0:00:8e:11:e1:c7:3b:37:78:c2:da:5f: 42:b3:75:c3:2f:a4:e7:f6:5c:f5:ae:10:8e:5b:2a:04:43:c4: 8e:c7:fc:36:66:59:0b:d4:74:73:94:ff:4a:0e:b3:b7:74:08: 21:82:f2:2a:0c:04:a5:57:fc:54:8b:c2:3a:98:a0:3d:8b:75: 2d:81:cf:5f:01:96:08:95:8c:16:9b:e2:ce:8c:6b:09:a3:eb: 0c:b3:73:26:b3:65:b4:c6:fc:3f:6f:45:f7:09:a4:0e:ec:8e: 11:bc:62:ea -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUWzb3Jm82XI4Wn4BrOD0vPQDbRYQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAwM1oX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNANWQ2YjU0OTEwNjkyODAwZWY0Njc0 NTM3ZDQxZjljMjllMzA2ODJkYjM3MzM0OGRiOGMwNTYzODBhMGZiMDhjYjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3BLFBf5ZSKuA3tazgjVM9YPgjKJC Z8Y9bqbqKnNT6O6NWZg6ljoi/ICjCvjQwF5DsD1TgELyYNU1mdmH52ul1bdhCFgO sB3Tu6t6MeQECMazQsC4cRzBlWkd+r4Inz9ApvtXTCxduCENtYysXM8UwiGbHRx1 NR1P0ntM68+p2auef52C/dd7e6fz4tPCYLS8IkEV0Zux6gFLh27wyavE/6ue1pIp 7BZN/NfQ43zz53IxSDl/bEe1s/0HMvh5qGROgSwKtDoiTp8iGYhkrFiqqdOBsYaD 8o5J4uMUW9I66LtyEyYXgToly+B/CM5H3SSIYGfnjpXtzhKtc1TXGbIJJQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOSr0q2Y1KBn5bjs05jnxhkItPdgMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzJmNDdkY2RkLWMzODQtNGViMi1hZWZkLWY0YWQ2NGYyNmNjZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynBMA0GCSqGSIb3DQEBCwUAA4IBAQCjeny7obhOGnLPZ7Zbi7qa 7ekiV6C/xQ8AYyglbJ1NxD5VuGPGSiAdYUEJXn7n7d/gzJtoPVx8+B132AYdJywR nJuXDggwjL1IiwhCB9ZTHxsxje53X3QvZo9XNZnbqn72kItmBydfxpltfmOSdgaz Pm2rbvUpA4ApPQIrDMYY4UkwT+nCrKufxQvu/uEslHjFrmjU6c6wAI4R4cc7N3jC 2l9Cs3XDL6Tn9lz1rhCOWyoEQ8SOx/w2ZlkL1HRzlP9KDrO3dAghgvIqDASlV/xU i8I6mKA9i3Utgc9fAZYIlYwWm+LOjGsJo+sMs3Mms2W0xvw/b0X3CaQO7I4RvGLq -----END CERTIFICATE-----Generated at Sat Jun 14 05:50:34 2025 by rpki-client