$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: MJetd7yU1xWgUDcTHzdOuzFw6IutMtn6OIpQpey3Ie0= Subject key identifier: 2A:59:F5:E5:0C:21:E6:56:B4:C7:84:E5:DC:26:5E:D2:F8:26:B0:02 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1BA269439772D59A0138DF85F2650AA2E29036B7 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Sat 02 Aug 2025 00:00:05 +0000 ROA not before: Sat 02 Aug 2025 00:00:05 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 15:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a2:69:43:97:72:d5:9a:01:38:df:85:f2:65:0a:a2:e2:90:36:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 2 00:00:05 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=851c87693bd9888db97155a1ad799e5be2008294c7554c1678abaadff1495793, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:21:04:ce:74:f3:64:10:c9:ff:bc:b7:4b:2b: ba:b6:c3:2f:0e:55:d2:c1:9b:8f:7a:25:c6:27:44: 29:a7:77:62:c8:d9:38:37:6c:2a:5d:06:49:53:94: 2c:47:71:45:f8:dc:49:e3:0b:a1:02:a5:09:41:bd: 22:4d:71:49:41:02:b8:c7:37:30:7e:74:e2:e3:d0: 07:63:28:ef:c4:62:25:f3:42:36:79:aa:9d:36:d8: f7:f8:fb:7d:78:93:87:3e:cf:1f:2a:da:3b:13:5a: 99:64:99:dd:32:5c:12:61:30:cc:bf:39:d7:b0:d0: 53:31:e1:fb:ed:c3:bb:bc:d8:34:6a:fd:0d:b8:2d: ad:bc:76:06:fd:b4:d3:04:47:1c:3b:32:24:c1:71: be:2f:0f:26:55:fa:de:69:37:51:7c:8b:97:9d:33: 06:08:33:55:0a:2b:b3:ed:c7:3a:a4:49:69:16:07: 08:05:01:ea:85:86:03:e2:be:59:96:05:73:a1:36: c3:a6:5d:d0:a2:ab:42:0e:f3:47:60:c7:1e:07:51: ab:5c:ac:6c:1d:b6:4c:f0:8c:28:8f:2b:be:ad:86: 8a:46:51:05:b0:a8:2c:3b:a6:9c:8c:65:0e:63:be: 15:80:b7:af:49:85:98:6a:23:9a:70:d7:df:c5:9d: 4e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:59:F5:E5:0C:21:E6:56:B4:C7:84:E5:DC:26:5E:D2:F8:26:B0:02 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 35:f2:9a:64:50:06:5f:cd:c0:b0:e5:40:c9:e5:17:d6:d2:ec: 60:f7:25:99:4d:cd:ec:e9:9d:cc:59:9f:b5:9c:01:22:fe:2a: 3a:83:48:8d:8b:4a:cb:a4:df:b9:73:de:d6:3f:89:40:31:07: 43:1a:a0:95:7a:b3:5b:b3:e8:d4:e9:c8:79:8c:4b:1b:76:e4: 26:24:47:f9:91:50:aa:bf:f4:9e:f6:40:d6:f5:59:b5:85:db: b4:3f:d7:2f:a3:3b:84:cd:3a:80:20:ab:a2:c5:8b:45:00:3b: 62:34:d2:6b:46:b6:ab:e6:8b:04:9c:25:45:c5:2e:a3:34:09: bb:4b:f7:fc:d7:44:6b:8b:72:ea:f8:a7:f9:fc:74:ab:c9:95: ce:62:dc:c9:06:55:ab:3d:da:21:28:ef:18:bd:c0:62:96:44: d9:97:f2:92:c1:09:9b:45:0e:cc:d0:d4:c4:8c:7b:db:d2:d4: 12:b4:58:f5:8b:a4:c0:f2:78:30:cf:2f:41:9a:77:0c:53:b4: 78:94:b4:2f:26:c4:5e:98:f3:84:fb:7b:3b:2c:df:a3:dd:67: 8e:55:ee:6f:9a:3f:54:fa:6e:d5:e3:e8:c1:59:15:56:8a:14: bd:d2:fd:cd:5e:64:65:d1:e2:4b:1d:14:91:8f:3a:54:07:e1: b6:2c:fe:b7 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUG6JpQ5dy1ZoBON+F8mUKouKQNrcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgwMjAwMDAwNVoX DTI1MDkwNjIzNTk1OVowejFJMEcGA1UEBRNAODUxYzg3NjkzYmQ5ODg4ZGI5NzE1 NWExYWQ3OTllNWJlMjAwODI5NGM3NTU0YzE2NzhhYmFhZGZmMTQ5NTc5MzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyEEznTzZBDJ/7y3Syu6tsMvDlXS wZuPeiXGJ0Qpp3diyNk4N2wqXQZJU5QsR3FF+NxJ4wuhAqUJQb0iTXFJQQK4xzcw fnTi49AHYyjvxGIl80I2eaqdNtj3+Pt9eJOHPs8fKto7E1qZZJndMlwSYTDMvznX sNBTMeH77cO7vNg0av0NuC2tvHYG/bTTBEccOzIkwXG+Lw8mVfreaTdRfIuXnTMG CDNVCiuz7cc6pElpFgcIBQHqhYYD4r5ZlgVzoTbDpl3QoqtCDvNHYMceB1GrXKxs HbZM8Iwojyu+rYaKRlEFsKgsO6acjGUOY74VgLevSYWYaiOacNffxZ1OswIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCpZ9eUMIeZWtMeE5dwmXtL4JrACMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQA18ppkUAZfzcCw5UDJ5RfW 0uxg9yWZTc3s6Z3MWZ+1nAEi/io6g0iNi0rLpN+5c97WP4lAMQdDGqCVerNbs+jU 6ch5jEsbduQmJEf5kVCqv/Se9kDW9Vm1hdu0P9cvozuEzTqAIKuixYtFADtiNNJr Rrar5osEnCVFxS6jNAm7S/f810Rri3Lq+Kf5/HSryZXOYtzJBlWrPdohKO8YvcBi lkTZl/KSwQmbRQ7M0NTEjHvb0tQStFj1i6TA8ngwzy9BmncMU7R4lLQvJsRemPOE +3s7LN+j3WeOVe5vmj9U+m7V4+jBWRVWihS90v3NXmRl0eJLHRSRjzpUB+G2LP63 -----END CERTIFICATE-----Generated at Tue Aug 5 16:48:50 2025 by rpki-client