$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: YsaQmRR0OZX3lkKY1eSw8k7P3bmzmAhW4tRpyyhC8Kw= Subject key identifier: E8:0C:B5:6D:75:FA:18:CB:65:FC:A5:91:08:6A:09:07:4D:F9:D1:BA Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 72AC015307699CEEDA6B3B0426AB20C6039A552B Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Fri 13 Jun 2025 00:00:06 +0000 ROA not before: Fri 13 Jun 2025 00:00:06 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ac:01:53:07:69:9c:ee:da:6b:3b:04:26:ab:20:c6:03:9a:55:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:06 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=7d23796162563d0ff845ca796fd1001c884d49d3c7e512abe7a77157e9c560b5, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:0c:ee:61:c4:a0:93:c3:d2:eb:2a:94:3d:26: ac:b5:ab:67:26:15:0f:a7:af:d7:92:ae:d7:13:00: a2:3d:b1:ef:cf:0f:84:4b:df:55:02:30:e7:5f:2d: 41:20:e8:19:83:92:30:ab:e0:7e:75:15:c3:3a:cc: 4d:79:b3:84:89:39:e7:1b:c0:6f:b7:13:69:ea:e4: ab:de:a6:3e:d0:72:5a:ba:13:60:0b:39:da:89:f8: 2e:7e:37:d9:db:0d:7e:c5:4e:f5:fb:c1:75:ff:16: 8f:b4:75:80:e8:af:8e:00:92:0a:92:4c:65:9a:ce: a6:50:df:ef:74:44:87:cb:42:f2:72:12:19:50:d5: 17:3e:37:21:e7:16:2c:4c:a8:28:92:e4:1b:a0:5b: c8:1f:4e:14:73:fa:13:28:7d:39:ef:52:11:65:b8: 06:3f:2a:78:fd:e3:2f:a3:49:9e:1d:7e:cb:25:a2: 5b:bc:bd:6c:89:4c:cf:04:45:f8:29:2e:f7:6a:be: c2:4f:f8:85:98:03:cc:14:9d:24:4c:4e:32:54:50: 0c:db:34:4f:d7:c4:f3:1e:88:9e:34:a1:99:bf:1a: 65:b1:50:eb:00:ab:7c:01:29:f0:e1:b0:2b:6f:56: 9c:25:3b:8e:bb:3f:ca:60:b2:f2:c6:3b:a5:d5:c9: 7f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:0C:B5:6D:75:FA:18:CB:65:FC:A5:91:08:6A:09:07:4D:F9:D1:BA X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 73:c9:a8:40:f0:66:99:1e:06:cf:a7:41:29:da:63:66:fe:40: 10:b4:0a:56:b7:85:14:95:78:3e:33:86:03:0b:bc:86:b7:94: 02:ca:ee:c6:a1:35:be:e6:88:16:81:65:45:70:3d:fc:3c:79: e2:31:83:ca:7d:df:03:31:70:7f:77:aa:37:c9:48:ce:ad:55: 18:f6:21:7b:10:93:31:09:ad:9a:f8:b8:59:92:ed:27:6e:77: 40:cd:92:14:85:01:6b:22:38:04:84:ec:2e:52:ad:c0:f1:6e: d5:93:80:15:3e:3c:d9:61:39:b3:df:3a:60:82:eb:fc:2f:88: 1f:f3:47:66:48:17:65:73:1d:42:b2:fb:43:ac:72:f1:71:ba: 0a:aa:76:5c:1f:5e:7b:be:0d:19:9c:14:63:f1:e1:ec:56:28: 68:21:26:5d:04:5a:b2:29:d9:dc:5b:7d:26:0f:71:31:74:d6: 57:a9:13:90:c8:d6:c8:4c:77:22:18:d1:eb:d1:83:43:8a:9e: f5:6d:51:00:0d:53:73:6f:5e:b4:21:2f:de:d8:e0:d5:1d:f1: 17:c7:11:51:06:65:92:8a:b2:b0:44:41:a6:8c:6c:96:ee:2c: 48:32:74:b9:d4:94:2e:ec:e5:e5:7c:8e:44:a4:41:bc:44:3b: ab:dd:92:1e -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUcqwBUwdpnO7aazsEJqsgxgOaVSswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAwNloX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAN2QyMzc5NjE2MjU2M2QwZmY4NDVj YTc5NmZkMTAwMWM4ODRkNDlkM2M3ZTUxMmFiZTdhNzcxNTdlOWM1NjBiNTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgzuYcSgk8PS6yqUPSastatnJhUP p6/Xkq7XEwCiPbHvzw+ES99VAjDnXy1BIOgZg5Iwq+B+dRXDOsxNebOEiTnnG8Bv txNp6uSr3qY+0HJauhNgCznaifgufjfZ2w1+xU71+8F1/xaPtHWA6K+OAJIKkkxl ms6mUN/vdESHy0LychIZUNUXPjch5xYsTKgokuQboFvIH04Uc/oTKH0571IRZbgG Pyp4/eMvo0meHX7LJaJbvL1siUzPBEX4KS73ar7CT/iFmAPMFJ0kTE4yVFAM2zRP 18TzHoieNKGZvxplsVDrAKt8ASnw4bArb1acJTuOuz/KYLLyxjul1cl/0QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOgMtW11+hjLZfylkQhqCQdN+dG6MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQBzyahA8GaZHgbPp0Ep2mNm /kAQtApWt4UUlXg+M4YDC7yGt5QCyu7GoTW+5ogWgWVFcD38PHniMYPKfd8DMXB/ d6o3yUjOrVUY9iF7EJMxCa2a+LhZku0nbndAzZIUhQFrIjgEhOwuUq3A8W7Vk4AV PjzZYTmz3zpgguv8L4gf80dmSBdlcx1CsvtDrHLxcboKqnZcH157vg0ZnBRj8eHs VihoISZdBFqyKdncW30mD3ExdNZXqROQyNbITHciGNHr0YNDip71bVEADVNzb160 IS/e2ODVHfEXxxFRBmWSirKwREGmjGyW7ixIMnS51JQu7OXlfI5EpEG8RDur3ZIe -----END CERTIFICATE-----Generated at Sat Jun 14 06:25:16 2025 by rpki-client