$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa File: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (raw, json) Hash identifier: FZOK+4YhwqDo1cpJ3hQR06WS4oG7p73MUkJU+OrmJG8= Subject key identifier: 27:93:26:22:61:18:49:9D:68:83:9E:C4:E6:49:BD:38:EA:8F:43:4B Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 7F7CEC45EE478322751E432F07333F5B5DBF6655 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa Signing time: Sat 02 Aug 2025 00:00:12 +0000 ROA not before: Sat 02 Aug 2025 00:00:12 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:7c:ec:45:ee:47:83:22:75:1e:43:2f:07:33:3f:5b:5d:bf:66:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 2 00:00:12 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=5ff276a24fc9bb809aeac14c912d4f82b893861ac7c63b7c2c499c1ec5ec5743, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:94:c7:5f:62:12:d9:5f:54:c3:79:fd:a2:e7: c5:ee:19:ae:dc:d4:24:3c:a4:aa:50:46:48:12:3f: 6b:d9:af:00:70:5e:38:85:50:03:ee:5f:2b:78:12: f4:87:c3:f9:c9:2b:1a:d8:12:53:b7:55:8f:5b:53: 25:35:7d:f2:2a:cf:2b:41:12:2f:18:4c:cf:ec:b4: 5a:04:f3:7f:60:17:d2:b2:4f:00:7f:44:04:d3:b5: fe:fb:04:6a:55:7a:a4:39:7e:3b:c3:73:ab:d8:e6: 4c:02:44:05:be:78:7e:8f:85:a0:95:ce:57:87:e9: 5b:2b:40:f6:44:2c:60:34:f7:bc:c0:13:ee:1e:a6: be:3c:42:42:45:f0:d6:3b:76:a4:d9:39:96:85:87: b7:95:fb:63:89:32:51:70:17:22:61:d6:68:3a:0f: c6:9f:ed:ed:ad:a0:3a:8c:8e:85:04:a1:c9:25:c4: b9:cc:2a:66:4d:bc:50:a0:8c:dc:00:a4:56:64:cc: db:b8:58:3f:9f:f9:fb:d2:4b:51:c1:f6:c1:1c:1f: ae:8b:ce:a8:d6:ed:01:94:22:ea:42:a3:45:1e:5a: 0d:80:f5:ab:91:f1:79:93:d3:3d:1b:a6:e8:25:0a: c2:65:f2:10:ac:ff:67:30:b0:30:c5:fa:6a:80:67: b0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:93:26:22:61:18:49:9D:68:83:9E:C4:E6:49:BD:38:EA:8F:43:4B X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.240.0/20 Signature Algorithm: sha256WithRSAEncryption 4f:58:e9:9b:a0:08:e1:c5:d2:fe:cb:24:a6:76:0a:0a:d6:6a: 48:21:74:22:49:ff:fa:89:a2:ce:ed:ce:a0:67:a5:d7:22:16: 07:ca:53:8e:05:20:ad:fd:dc:75:47:84:b2:fe:7f:be:99:1a: 25:fc:72:9a:70:0b:12:47:78:fd:c4:d4:d8:c8:63:be:d8:50: 93:ed:d3:0a:7e:61:a1:bb:7a:b1:fc:d7:db:68:49:44:92:b6: 8f:d5:26:28:ab:0d:4b:b3:7b:62:40:7b:21:b7:2f:ff:3f:b3: e8:db:c4:e9:b1:07:60:9c:dd:21:b5:20:a1:16:e2:86:cb:a3: de:28:30:6f:5d:7c:77:0d:8f:b7:a3:30:4a:22:e2:b8:48:94: 59:6d:c0:2d:dd:db:a3:25:93:7b:20:a2:2b:b0:05:f0:5b:b5: 4d:e6:97:3c:3d:6c:04:f7:96:02:bd:63:e3:75:1d:23:95:a3: a7:74:bc:c5:85:5a:39:8d:f8:0f:1c:90:85:e3:31:31:d9:f6: 70:47:08:64:0a:16:ce:69:9a:4d:73:b0:fe:d7:ab:5e:11:f6: 65:f0:25:50:25:c4:16:5f:24:e5:c9:fb:d3:b0:bc:35:67:76: 02:17:5c:41:5f:80:05:fe:5e:a8:25:70:80:f0:e1:33:c5:93: 9f:8c:e4:10 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUf3zsRe5HgyJ1HkMvBzM/W12/ZlUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgwMjAwMDAxMloX DTI1MDkwNjIzNTk1OVowejFJMEcGA1UEBRNANWZmMjc2YTI0ZmM5YmI4MDlhZWFj MTRjOTEyZDRmODJiODkzODYxYWM3YzYzYjdjMmM0OTljMWVjNWVjNTc0MzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5THX2IS2V9Uw3n9oufF7hmu3NQk PKSqUEZIEj9r2a8AcF44hVAD7l8reBL0h8P5ySsa2BJTt1WPW1MlNX3yKs8rQRIv GEzP7LRaBPN/YBfSsk8Af0QE07X++wRqVXqkOX47w3Or2OZMAkQFvnh+j4Wglc5X h+lbK0D2RCxgNPe8wBPuHqa+PEJCRfDWO3ak2TmWhYe3lftjiTJRcBciYdZoOg/G n+3traA6jI6FBKHJJcS5zCpmTbxQoIzcAKRWZMzbuFg/n/n70ktRwfbBHB+ui86o 1u0BlCLqQqNFHloNgPWrkfF5k9M9G6boJQrCZfIQrP9nMLAwxfpqgGew0wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCeTJiJhGEmdaIOexOZJvTjqj0NLMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 Lzc0ZWZlOGIzLWQzOWMtNGE4Yi05YjdiLTU5OTRhYTRjOGQ4Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynwMA0GCSqGSIb3DQEBCwUAA4IBAQBPWOmboAjhxdL+yySmdgoK 1mpIIXQiSf/6iaLO7c6gZ6XXIhYHylOOBSCt/dx1R4Sy/n++mRol/HKacAsSR3j9 xNTYyGO+2FCT7dMKfmGhu3qx/NfbaElEkraP1SYoqw1Ls3tiQHshty//P7Po28Tp sQdgnN0htSChFuKGy6PeKDBvXXx3DY+3ozBKIuK4SJRZbcAt3dujJZN7IKIrsAXw W7VN5pc8PWwE95YCvWPjdR0jlaOndLzFhVo5jfgPHJCF4zEx2fZwRwhkChbOaZpN c7D+16teEfZl8CVQJcQWXyTlyfvTsLw1Z3YCF1xBX4AF/l6oJXCA8OEzxZOfjOQQ -----END CERTIFICATE-----Generated at Mon Aug 4 14:14:43 2025 by rpki-client