$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: udflOAg44OF06j5ZszzbuoT5Wk4PtlFoCDNMazt8qWM= Subject key identifier: 67:6A:2E:97:18:5D:D6:DE:99:CF:A3:E8:EF:14:E9:EE:06:BB:EA:34 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 30769E1A206B5F896F40170F233E9B11F837C427 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Fri 13 Jun 2025 00:00:04 +0000 ROA not before: Fri 13 Jun 2025 00:00:04 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:76:9e:1a:20:6b:5f:89:6f:40:17:0f:23:3e:9b:11:f8:37:c4:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:04 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=8b83e5f6f0520a09b263c28115bf038fa56e44e38b58daba74229ab570096ca4, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:40:a9:90:90:14:10:26:8d:e9:70:c0:4d:38: 8e:26:7e:0b:fa:9a:3c:22:89:ee:6a:6c:93:5e:b5: 5e:ea:4a:42:1d:13:27:c8:f4:25:df:a9:f0:b7:1c: 5e:28:88:fa:d7:37:2f:ef:74:f9:a7:6d:c1:5b:5b: 28:22:5b:d7:90:53:ae:65:96:78:1c:45:04:ea:34: 23:cd:cc:3e:f0:65:f4:2b:b7:8f:eb:6d:53:a7:3c: ba:e2:58:b8:d8:7f:8e:70:0b:4f:34:f1:3d:fc:44: 16:af:c4:a4:67:32:bd:21:89:5d:93:a9:07:ac:4d: 95:78:9d:09:a2:c4:a7:a9:dd:e7:06:b0:19:cf:cc: 85:51:fc:6b:02:ef:14:64:09:c4:c6:21:a2:ed:d0: b2:89:17:fb:02:ec:e5:7b:15:54:06:78:87:c1:bf: 24:78:34:db:6a:f3:f7:88:2a:d9:2a:23:39:a6:75: 4c:17:4f:c8:ed:81:e3:94:c4:83:16:73:75:e9:52: f1:e5:ab:8f:09:1d:d9:5a:cf:10:0b:ac:b7:e9:1e: 96:7f:90:38:9d:2a:9f:bd:92:65:df:ee:46:7c:44: 7b:c3:34:dd:85:21:12:13:4b:a7:ec:73:52:c4:8a: b6:af:4b:ae:10:83:56:48:40:97:7e:47:d5:fb:b2: 3b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6A:2E:97:18:5D:D6:DE:99:CF:A3:E8:EF:14:E9:EE:06:BB:EA:34 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 0e:89:a8:98:dd:57:e7:fa:4f:e2:4b:3c:ff:51:45:81:57:67: fc:60:ef:61:58:81:7c:77:c3:9e:e2:7e:b3:a1:4b:42:66:5a: 53:0a:3a:7e:b0:41:bb:c9:62:ca:4e:a1:16:2b:0c:0f:60:2f: d4:db:af:1b:7d:17:08:f2:f1:48:07:97:c4:3d:b5:87:5a:20: eb:99:40:a2:d8:0e:0d:6e:79:9e:9d:6f:e4:6f:31:b0:f6:fa: fc:8a:fd:6c:53:d8:6b:87:54:63:eb:f8:bf:79:59:6e:8f:2b: 7e:9a:61:47:1d:dc:46:fc:79:c5:30:41:73:d7:fb:29:5b:57: d2:1f:e2:b5:af:7a:e0:b2:99:22:81:01:61:b8:6b:aa:14:18: 7f:8a:ce:6f:cd:56:d3:52:cd:bf:14:cf:22:6d:8f:98:5c:70: 02:7d:2d:81:bd:54:67:ee:46:30:9c:91:0d:42:94:45:39:f7: f4:4c:37:fc:42:9c:30:42:86:62:28:8f:ac:87:1b:e9:4c:b6: 07:c7:73:a5:9d:e6:96:b3:93:56:0c:44:d1:db:f0:30:b5:75: 74:4c:67:c0:55:f2:28:f7:f6:e1:f4:12:6a:26:81:6a:a3:4f: 97:d1:2d:e8:2e:64:88:05:9e:61:4b:42:4c:c6:2d:0b:63:c1: 00:d5:f0:52 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUMHaeGiBrX4lvQBcPIz6bEfg3xCcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAwNFoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAOGI4M2U1ZjZmMDUyMGEwOWIyNjNj MjgxMTViZjAzOGZhNTZlNDRlMzhiNThkYWJhNzQyMjlhYjU3MDA5NmNhNDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkCpkJAUECaN6XDATTiOJn4L+po8 IonuamyTXrVe6kpCHRMnyPQl36nwtxxeKIj61zcv73T5p23BW1soIlvXkFOuZZZ4 HEUE6jQjzcw+8GX0K7eP621Tpzy64li42H+OcAtPNPE9/EQWr8SkZzK9IYldk6kH rE2VeJ0JosSnqd3nBrAZz8yFUfxrAu8UZAnExiGi7dCyiRf7AuzlexVUBniHwb8k eDTbavP3iCrZKiM5pnVMF0/I7YHjlMSDFnN16VLx5auPCR3ZWs8QC6y36R6Wf5A4 nSqfvZJl3+5GfER7wzTdhSESE0un7HNSxIq2r0uuEINWSECXfkfV+7I7zwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGdqLpcYXdbemc+j6O8U6e4Gu+o0MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQAOiaiY3Vfn+k/iSzz/UUWB V2f8YO9hWIF8d8Oe4n6zoUtCZlpTCjp+sEG7yWLKTqEWKwwPYC/U268bfRcI8vFI B5fEPbWHWiDrmUCi2A4NbnmenW/kbzGw9vr8iv1sU9hrh1Rj6/i/eVlujyt+mmFH HdxG/HnFMEFz1/spW1fSH+K1r3rgspkigQFhuGuqFBh/is5vzVbTUs2/FM8ibY+Y XHACfS2BvVRn7kYwnJENQpRFOff0TDf8QpwwQoZiKI+shxvpTLYHx3OlneaWs5NW DETR2/AwtXV0TGfAVfIo9/bh9BJqJoFqo0+X0S3oLmSIBZ5hS0JMxi0LY8EA1fBS -----END CERTIFICATE-----Generated at Sat Jun 14 06:02:15 2025 by rpki-client