$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa File: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (raw, json) Hash identifier: JwwONJc4hCeu1NoOWtNFa2J8Xah3YPz0Wa1xaJ2cCv8= Subject key identifier: 7C:0D:BC:78:8B:86:63:B9:7A:C3:D8:FD:DB:E6:9C:AB:5D:80:67:E2 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 0A4BB2D18AB7A0BA2886853BACDD91A571C5AC93 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa Signing time: Sat 02 Aug 2025 00:00:07 +0000 ROA not before: Sat 02 Aug 2025 00:00:07 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4b:b2:d1:8a:b7:a0:ba:28:86:85:3b:ac:dd:91:a5:71:c5:ac:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 2 00:00:07 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=be5ca37ce28db298176547baa07db94d48e88fce033cf9ca0d38958af7a06939, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c3:dc:e4:98:c6:cf:76:7b:da:62:41:65:d2: e8:6e:c7:4a:9d:4f:e3:37:9b:2e:26:4d:b6:4a:30: 0d:2d:3d:75:51:3b:42:9f:b8:d6:ac:9c:4d:dc:f7: 43:8a:3f:c9:7d:aa:aa:ef:f8:6e:1f:32:e6:8a:46: f9:4e:42:b5:75:df:6c:92:2c:c5:d5:39:29:4e:4b: a7:98:32:40:59:3a:ca:2f:c8:51:46:58:89:c1:bf: 85:43:1d:2c:67:08:d4:97:4c:90:9f:69:06:d8:e8: c5:17:f2:61:d8:9e:5b:af:2b:3f:b4:9f:c3:de:ae: 12:6d:b7:26:9b:3d:d1:3e:4f:7f:a7:1a:13:45:9d: 34:b1:e5:f1:aa:11:23:f4:ca:6a:f2:45:8e:ca:fc: 2d:fa:1c:13:7a:5c:2f:db:e6:30:3c:91:61:fb:1c: 14:9b:59:e4:c1:b0:e8:a2:6d:b3:5a:7d:27:c6:a9: cd:f1:7c:45:fe:11:a3:3b:c7:16:5b:2a:9f:cf:12: 17:29:88:7c:c4:43:25:a8:f1:26:3f:b0:be:ad:c5: ad:1f:0a:eb:a7:e8:2e:f1:03:c9:e1:cc:fa:ea:89: d0:0e:23:aa:fa:00:73:83:fc:ae:7b:08:4d:44:40: 8b:9f:bb:ed:b7:15:16:a1:ef:95:b1:d8:5d:d3:78: aa:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0D:BC:78:8B:86:63:B9:7A:C3:D8:FD:DB:E6:9C:AB:5D:80:67:E2 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.236.0/23 Signature Algorithm: sha256WithRSAEncryption 26:b1:5c:10:e9:98:f7:d7:e2:40:12:43:af:e1:93:2a:10:b2: 04:80:50:f8:35:fb:57:d6:f5:4e:f5:fa:93:dc:42:0c:8d:67: 9c:df:c7:c5:06:9e:fe:aa:65:20:4f:24:34:4a:90:0f:9d:0a: ef:40:23:2d:b9:78:93:b3:0e:33:e3:4b:c5:57:e0:8f:9c:56: 4d:c1:10:dd:d4:ea:cc:72:9f:a2:cc:de:c9:13:43:95:9f:5b: c0:9d:db:4e:f6:d1:9d:cf:2e:6d:0a:14:d7:3d:11:4a:f3:e7: d9:2a:66:7e:0f:17:ad:cb:51:c2:3b:da:83:86:ce:5a:3b:ff: 8a:d0:89:bd:43:75:87:52:98:c0:ba:06:77:64:20:f8:a1:5a: 89:4f:99:98:00:58:e4:ec:a4:1e:64:cc:34:5f:67:76:83:e3: a2:29:97:8b:54:ec:7a:70:7f:fe:2a:3b:96:7d:d5:0b:09:f7: 0b:cd:38:8b:24:a6:d5:ab:ea:26:11:c1:67:51:57:17:1a:9f: df:2d:db:1a:ed:c1:fd:d9:9b:2b:00:a9:01:7a:06:37:14:8d: ae:da:d2:2f:20:c2:e8:5d:ba:6c:a2:da:9a:ab:6d:64:b1:d4: 56:06:cf:c9:77:2f:04:b0:25:62:8a:c2:67:54:62:02:04:6d: 79:b1:94:3a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUCkuy0Yq3oLoohoU7rN2RpXHFrJMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgwMjAwMDAwN1oX DTI1MDkwNjIzNTk1OVowejFJMEcGA1UEBRNAYmU1Y2EzN2NlMjhkYjI5ODE3NjU0 N2JhYTA3ZGI5NGQ0OGU4OGZjZTAzM2NmOWNhMGQzODk1OGFmN2EwNjkzOTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMPc5JjGz3Z72mJBZdLobsdKnU/j N5suJk22SjANLT11UTtCn7jWrJxN3PdDij/Jfaqq7/huHzLmikb5TkK1dd9skizF 1TkpTkunmDJAWTrKL8hRRliJwb+FQx0sZwjUl0yQn2kG2OjFF/Jh2J5brys/tJ/D 3q4Sbbcmmz3RPk9/pxoTRZ00seXxqhEj9Mpq8kWOyvwt+hwTelwv2+YwPJFh+xwU m1nkwbDoom2zWn0nxqnN8XxF/hGjO8cWWyqfzxIXKYh8xEMlqPEmP7C+rcWtHwrr p+gu8QPJ4cz66onQDiOq+gBzg/yuewhNRECLn7vttxUWoe+Vsdhd03iqywIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHwNvHiLhmO5esPY/dvmnKtdgGfiMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2E3OGI5MGRmLTIzM2ItNGVjNi04OWQyLWRlMjdhYzJkYzA0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynsMA0GCSqGSIb3DQEBCwUAA4IBAQAmsVwQ6Zj31+JAEkOv4ZMq ELIEgFD4NftX1vVO9fqT3EIMjWec38fFBp7+qmUgTyQ0SpAPnQrvQCMtuXiTsw4z 40vFV+CPnFZNwRDd1OrMcp+izN7JE0OVn1vAndtO9tGdzy5tChTXPRFK8+fZKmZ+ Dxety1HCO9qDhs5aO/+K0Im9Q3WHUpjAugZ3ZCD4oVqJT5mYAFjk7KQeZMw0X2d2 g+OiKZeLVOx6cH/+KjuWfdULCfcLzTiLJKbVq+omEcFnUVcXGp/fLdsa7cH92Zsr AKkBegY3FI2u2tIvIMLoXbpsotqaq21ksdRWBs/Jdy8EsCViisJnVGICBG15sZQ6 -----END CERTIFICATE-----Generated at Mon Aug 4 14:05:50 2025 by rpki-client