$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa File: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (raw, json) Hash identifier: u8aIaGtw3jMPJcvm1XgdR3LHZDNbHs8Fv2uUu6apQ9g= Subject key identifier: 56:98:BD:AC:88:A5:EF:AB:95:1B:03:20:B4:A3:F1:BD:BA:C0:50:63 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 25CF5F9AE18B48C26C274BBDEC686C998C263445 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa Signing time: Fri 13 Jun 2025 00:00:13 +0000 ROA not before: Fri 13 Jun 2025 00:00:13 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:cf:5f:9a:e1:8b:48:c2:6c:27:4b:bd:ec:68:6c:99:8c:26:34:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:13 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=92c05624e44bab6be0cb3f3a9616539a87280bb809493329f936fc92073ab5f6, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a9:3f:73:e0:bb:1b:45:6d:dc:a0:5e:08:91: 2b:06:fe:17:3e:98:68:25:4e:41:97:ac:1f:60:49: d2:5e:9b:63:6e:a3:ab:09:df:83:30:85:fd:58:8d: de:1b:52:57:8a:04:7e:49:0a:5c:6b:c9:21:4c:43: 53:61:d1:2b:51:74:bd:a8:74:fc:30:3d:29:68:1e: 18:f7:80:b8:50:d5:6f:d0:50:b8:f0:e4:44:7e:cc: b6:04:1f:7d:78:f1:b9:e3:ac:ce:4b:79:e2:9e:40: 88:08:0f:f9:8b:a7:b6:c7:62:87:10:80:8c:34:4b: 0f:58:e8:de:d4:89:5f:0c:b7:43:7b:70:7d:74:c1: 8c:70:b0:61:e5:a1:d3:ec:bb:56:7e:68:26:99:12: 36:af:ed:d8:13:5d:41:dd:e0:dd:97:d9:e2:5c:8f: 39:0e:49:dd:0d:0f:79:4c:a7:7f:ff:19:2d:03:6d: 0a:10:a2:00:a0:61:d7:26:ba:62:1b:5a:ff:9f:74: 9f:54:1e:79:f7:c3:d0:65:50:48:7b:b6:af:80:37: f3:de:9a:57:0d:f5:2f:09:c7:8e:93:8f:40:1a:ff: c4:32:68:46:58:b5:19:79:6f:e5:fc:99:77:c4:b9: 6c:bb:39:f4:3c:3b:fe:91:19:2b:58:40:3a:64:96: db:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:98:BD:AC:88:A5:EF:AB:95:1B:03:20:B4:A3:F1:BD:BA:C0:50:63 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.240.0/20 Signature Algorithm: sha256WithRSAEncryption b6:70:17:8d:4f:76:5f:21:ed:1b:7c:6c:4b:d7:e9:79:d7:0b: d4:2b:f4:93:1e:92:c0:38:22:62:6a:4a:ed:b1:18:5b:aa:a0: 48:7b:71:58:de:43:2c:5f:79:c9:90:e7:d9:7c:ba:b8:3d:9e: c6:bf:40:c5:53:e1:cd:2b:15:17:37:99:05:90:81:66:98:01: 0a:81:e1:c2:63:fb:c2:ac:bc:f0:79:48:ad:24:93:b0:9c:0b: ea:c1:97:af:42:f5:cf:78:05:37:35:89:0c:f7:5a:e0:3b:bd: e9:27:c8:8d:ac:42:d3:df:0d:22:41:64:8a:5c:48:13:cf:28: fc:54:71:52:d9:c8:76:a0:a4:d8:7b:7e:5c:15:2d:e6:08:27: 56:4f:9f:9d:2d:e9:69:29:2a:0a:71:c4:fe:9d:3a:91:c1:37: 38:9e:47:94:70:a1:7e:9f:00:15:94:ca:1e:46:ca:61:c8:99: 96:a4:3c:94:9d:3b:be:e7:ab:c5:8f:b6:20:fd:23:82:d4:c5: 0f:1e:3d:f7:d0:22:03:f4:69:5a:c6:02:ce:b8:39:f6:e4:67: cd:35:11:ef:73:9a:6a:aa:a6:31:63:fa:a4:ab:81:3b:b0:a4: 15:ee:7e:31:31:b8:3f:ea:07:e2:53:de:f6:ab:31:a7:fe:06: 74:dd:db:df -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUJc9fmuGLSMJsJ0u97GhsmYwmNEUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAxM1oX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAOTJjMDU2MjRlNDRiYWI2YmUwY2Iz ZjNhOTYxNjUzOWE4NzI4MGJiODA5NDkzMzI5ZjkzNmZjOTIwNzNhYjVmNjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ak/c+C7G0Vt3KBeCJErBv4XPpho JU5Bl6wfYEnSXptjbqOrCd+DMIX9WI3eG1JXigR+SQpca8khTENTYdErUXS9qHT8 MD0paB4Y94C4UNVv0FC48OREfsy2BB99ePG546zOS3ninkCICA/5i6e2x2KHEICM NEsPWOje1IlfDLdDe3B9dMGMcLBh5aHT7LtWfmgmmRI2r+3YE11B3eDdl9niXI85 DkndDQ95TKd//xktA20KEKIAoGHXJrpiG1r/n3SfVB5598PQZVBIe7avgDfz3ppX DfUvCceOk49AGv/EMmhGWLUZeW/l/Jl3xLlsuzn0PDv+kRkrWEA6ZJbbuwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFaYvayIpe+rlRsDILSj8b26wFBjMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 Lzc0ZWZlOGIzLWQzOWMtNGE4Yi05YjdiLTU5OTRhYTRjOGQ4Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynwMA0GCSqGSIb3DQEBCwUAA4IBAQC2cBeNT3ZfIe0bfGxL1+l5 1wvUK/STHpLAOCJiakrtsRhbqqBIe3FY3kMsX3nJkOfZfLq4PZ7Gv0DFU+HNKxUX N5kFkIFmmAEKgeHCY/vCrLzweUitJJOwnAvqwZevQvXPeAU3NYkM91rgO73pJ8iN rELT3w0iQWSKXEgTzyj8VHFS2ch2oKTYe35cFS3mCCdWT5+dLelpKSoKccT+nTqR wTc4nkeUcKF+nwAVlMoeRsphyJmWpDyUnTu+56vFj7Yg/SOC1MUPHj330CID9Gla xgLOuDn25GfNNRHvc5pqqqYxY/qkq4E7sKQV7n4xMbg/6gfiU972qzGn/gZ03dvf -----END CERTIFICATE-----Generated at Sat Jun 14 06:03:11 2025 by rpki-client