$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa File: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (raw, json) Hash identifier: rghJU+YKLi/mV7ogFzSiXEu02Z3GSUk2wY3EizWWe0Y= Subject key identifier: 9A:B0:69:B5:DD:4B:21:6A:50:E7:14:64:77:40:5B:7A:6C:C0:0E:D3 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 3FF1A86630969ADBCD00936E2A2F83B8C21AC287 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa Signing time: Fri 13 Jun 2025 00:00:12 +0000 ROA not before: Fri 13 Jun 2025 00:00:12 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f1:a8:66:30:96:9a:db:cd:00:93:6e:2a:2f:83:b8:c2:1a:c2:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:12 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=39d4a75729dd1f059e95fe6311309231bc357a06e90ac2107b5f43263b76d33d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:29:7b:82:96:26:24:96:25:eb:6c:b9:7a:89: ba:24:6a:98:c0:8f:7b:b3:d8:a7:95:55:a1:8a:a3: 26:25:03:da:8b:94:f3:e4:95:66:25:14:ba:a6:fa: 46:88:6c:59:e8:c5:db:d4:ac:b9:3e:56:56:a1:e7: fe:df:8d:06:8b:d8:65:2b:7d:7e:16:2a:67:3d:ca: 37:c7:9e:d5:dc:73:90:fd:3c:4d:fd:ab:ac:6e:f7: ed:89:98:5e:12:32:29:40:17:bc:72:32:fc:46:4f: 98:5c:cd:fe:38:42:f1:2e:cc:0f:48:9e:e1:27:c3: b9:36:ba:d2:a3:f1:86:a4:b5:e5:98:24:df:84:dd: 8b:80:9d:da:6b:65:1f:f2:97:13:89:a7:f5:49:e8: df:26:dc:48:a4:80:5c:4c:59:f1:fc:e8:ec:5d:35: c0:a0:69:cc:9e:5c:ea:5b:c1:b3:c8:61:b5:34:bc: 01:30:8b:81:df:6d:28:1c:38:05:02:91:8b:56:58: e3:21:2b:62:02:30:5f:1c:6c:48:11:35:dd:e5:f1: 7a:cf:ba:2c:f8:59:4e:87:bf:10:55:d4:97:3f:54: 9b:1b:88:3d:1b:94:5d:14:9c:89:c5:3c:04:dd:bb: 42:20:47:7d:d1:73:97:05:87:6c:68:5a:49:fc:76: fe:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B0:69:B5:DD:4B:21:6A:50:E7:14:64:77:40:5B:7A:6C:C0:0E:D3 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.224.0/21 Signature Algorithm: sha256WithRSAEncryption a7:f0:eb:c6:4f:66:1d:fd:57:c4:1d:9c:bb:a5:1d:22:e5:97: b7:e8:1b:09:c2:42:56:12:27:d4:91:3c:14:4e:2f:c1:b3:8e: 77:a9:c4:c6:58:41:03:e3:99:1e:69:c9:32:83:96:c2:8c:2f: 0d:fa:fd:63:16:a7:c5:9c:a9:c7:44:94:c9:b5:b2:ae:fa:10: 88:78:bb:f6:d4:75:54:51:48:45:7a:9d:25:f7:af:9b:44:da: 06:ff:5a:7b:99:7f:d1:9c:18:2a:8e:ea:fc:f9:f4:fa:01:a9: 4a:f0:fa:c8:1c:60:db:4f:cd:33:15:c8:e1:26:8f:a5:5c:00: d1:2f:f7:05:09:e3:9f:ab:21:23:a4:a1:3a:d5:0f:e5:8e:f5: d0:a4:69:a5:64:f7:34:74:d4:4d:f5:9b:48:ad:6d:4d:58:23: ad:ac:08:06:cd:42:68:18:a1:77:8f:59:0f:08:0a:46:8a:ba: 24:4f:d4:c3:42:23:aa:61:74:ec:85:c4:9e:35:52:59:f2:3d: 79:b8:bd:e0:fe:1e:69:d1:76:df:c1:10:9c:ac:3f:ce:5c:a4: 60:10:18:d4:75:7f:6b:48:2e:56:19:1b:e3:eb:74:67:2f:9e: b7:22:5f:b8:79:bd:41:cb:0c:a8:08:eb:9a:e0:4b:0c:c4:30: b0:40:44:5e -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUP/GoZjCWmtvNAJNuKi+DuMIawocwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAxMloX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMzlkNGE3NTcyOWRkMWYwNTllOTVm ZTYzMTEzMDkyMzFiYzM1N2EwNmU5MGFjMjEwN2I1ZjQzMjYzYjc2ZDMzZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCl7gpYmJJYl62y5eom6JGqYwI97 s9inlVWhiqMmJQPai5Tz5JVmJRS6pvpGiGxZ6MXb1Ky5PlZWoef+340Gi9hlK31+ FipnPco3x57V3HOQ/TxN/ausbvftiZheEjIpQBe8cjL8Rk+YXM3+OELxLswPSJ7h J8O5NrrSo/GGpLXlmCTfhN2LgJ3aa2Uf8pcTiaf1SejfJtxIpIBcTFnx/OjsXTXA oGnMnlzqW8GzyGG1NLwBMIuB320oHDgFApGLVljjIStiAjBfHGxIETXd5fF6z7os +FlOh78QVdSXP1SbG4g9G5RdFJyJxTwE3btCIEd90XOXBYdsaFpJ/Hb+cwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFJqwabXdSyFqUOcUZHdAW3pswA7TMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzNiOTQwZDE0LWI4YzQtNGMzZC05NzhmLWExYTNiN2EwYTgyYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDryngMA0GCSqGSIb3DQEBCwUAA4IBAQCn8OvGT2Yd/VfEHZy7pR0i 5Ze36BsJwkJWEifUkTwUTi/Bs453qcTGWEED45keackyg5bCjC8N+v1jFqfFnKnH RJTJtbKu+hCIeLv21HVUUUhFep0l96+bRNoG/1p7mX/RnBgqjur8+fT6AalK8PrI HGDbT80zFcjhJo+lXADRL/cFCeOfqyEjpKE61Q/ljvXQpGmlZPc0dNRN9ZtIrW1N WCOtrAgGzUJoGKF3j1kPCApGirokT9TDQiOqYXTshcSeNVJZ8j15uL3g/h5p0Xbf wRCcrD/OXKRgEBjUdX9rSC5WGRvj63RnL563Il+4eb1BywyoCOua4EsMxDCwQERe -----END CERTIFICATE-----Generated at Sat Jun 14 05:43:20 2025 by rpki-client