$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa File: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (raw, json) Hash identifier: lwvpz+kYIji9OEHpIjk95BefY0WqjiTE6p1lPxDNxuY= Subject key identifier: F5:E3:D4:0E:FE:C6:52:18:6C:D0:58:FB:7A:3B:9B:98:5E:50:FB:C2 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 0E0961E9327C6F56884E4F1161EA07C95A97E7E3 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa Signing time: Fri 13 Jun 2025 00:00:08 +0000 ROA not before: Fri 13 Jun 2025 00:00:08 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:09:61:e9:32:7c:6f:56:88:4e:4f:11:61:ea:07:c9:5a:97:e7:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:08 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=a126e59afeaeb10f910a8cbd75bed60fd10c50eaa7e4b5fdb8ad701dfa004a62, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9c:6e:96:bd:75:c2:da:74:63:7d:30:07:07: 18:33:84:20:c9:8c:fb:a7:83:5d:b7:03:3b:e8:f2: 3d:29:da:45:ac:9a:5d:a3:a8:d7:1e:fe:c1:76:e3: 08:21:f5:8e:e7:90:43:0d:c5:63:af:14:b4:2b:6a: f3:f1:c4:83:74:b3:0d:44:ce:2e:10:cd:09:0a:f4: a6:9c:84:ad:63:c4:bd:e6:fe:b8:b7:53:f1:53:95: e4:04:ea:3f:bf:c8:91:a2:24:75:d6:69:21:c2:97: 99:23:97:8f:78:d9:21:75:ec:df:aa:b1:04:a7:40: 6f:d6:87:43:b2:d8:67:18:08:0f:09:01:23:58:21: 0a:a0:27:2c:86:e5:04:b8:8e:74:86:3f:12:55:06: d6:25:22:2c:35:51:49:9e:29:93:d4:0e:b9:be:db: b4:af:c4:7c:8a:e7:36:44:50:a4:2a:d7:c3:a2:a8: 26:76:da:dd:75:3b:f5:cd:bd:a7:e9:00:63:08:1c: 0e:0f:e6:3d:a7:fd:fb:90:79:b4:f6:c8:e7:e9:48: 09:10:01:1b:7b:e2:c9:20:00:ea:03:be:ad:89:cd: 34:fc:04:00:d3:e8:91:5f:3d:c6:dc:42:30:db:85: 35:87:bd:a0:a6:91:e6:87:f9:6a:87:d8:23:e5:8d: 9a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E3:D4:0E:FE:C6:52:18:6C:D0:58:FB:7A:3B:9B:98:5E:50:FB:C2 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.236.0/23 Signature Algorithm: sha256WithRSAEncryption 86:5f:b3:2a:96:2d:37:e9:05:ae:56:90:56:e9:d3:43:42:71: e0:66:26:d1:5f:c9:eb:79:f7:a1:bc:ef:f6:87:a9:18:3c:f8: 93:dc:ba:96:30:b6:29:ce:29:63:01:e1:6e:9c:a8:df:ab:b8: 67:b5:b5:c1:02:08:75:b9:0e:28:42:d0:e3:61:39:e2:85:c1: 95:26:27:96:df:18:04:d3:85:3e:a2:bc:a4:c4:c6:00:b8:04: d3:4e:6f:20:4a:4f:d3:7a:77:54:2e:2a:5c:83:80:a1:ac:00: a4:6c:df:ce:f0:90:0f:8d:a7:7c:71:fa:1f:ab:7f:a0:a2:8a: 9f:d6:ff:51:65:c6:9c:37:0c:b5:fe:75:2a:09:0c:14:67:01: 8d:68:36:d4:11:ba:71:e9:4b:71:1a:7b:d6:8a:90:fd:a5:bb: 62:cf:2c:7e:cc:26:bd:aa:04:c1:8c:49:10:84:6b:36:c3:b8: c2:04:f7:f3:f5:b5:41:0a:68:46:41:21:cc:4a:fa:92:ae:3d: 27:97:2e:59:e9:92:b2:c6:d8:19:85:48:d0:11:84:b9:6e:d1: a1:1b:05:45:e3:9a:26:a7:c7:0e:4c:52:2a:ad:54:1f:58:b9: 36:0c:60:a7:11:50:42:2f:4b:53:ee:2a:98:f9:c9:21:f5:e6: d5:c0:48:6c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUDglh6TJ8b1aITk8RYeoHyVqX5+MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAwOFoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAYTEyNmU1OWFmZWFlYjEwZjkxMGE4 Y2JkNzViZWQ2MGZkMTBjNTBlYWE3ZTRiNWZkYjhhZDcwMWRmYTAwNGE2MjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJxulr11wtp0Y30wBwcYM4QgyYz7 p4NdtwM76PI9KdpFrJpdo6jXHv7BduMIIfWO55BDDcVjrxS0K2rz8cSDdLMNRM4u EM0JCvSmnIStY8S95v64t1PxU5XkBOo/v8iRoiR11mkhwpeZI5ePeNkhdezfqrEE p0Bv1odDsthnGAgPCQEjWCEKoCcshuUEuI50hj8SVQbWJSIsNVFJnimT1A65vtu0 r8R8iuc2RFCkKtfDoqgmdtrddTv1zb2n6QBjCBwOD+Y9p/37kHm09sjn6UgJEAEb e+LJIADqA76tic00/AQA0+iRXz3G3EIw24U1h72gppHmh/lqh9gj5Y2aVwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPXj1A7+xlIYbNBY+3o7m5heUPvCMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2E3OGI5MGRmLTIzM2ItNGVjNi04OWQyLWRlMjdhYzJkYzA0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynsMA0GCSqGSIb3DQEBCwUAA4IBAQCGX7Mqli036QWuVpBW6dND QnHgZibRX8nrefehvO/2h6kYPPiT3LqWMLYpziljAeFunKjfq7hntbXBAgh1uQ4o QtDjYTnihcGVJieW3xgE04U+orykxMYAuATTTm8gSk/TendULipcg4ChrACkbN/O 8JAPjad8cfofq3+gooqf1v9RZcacNwy1/nUqCQwUZwGNaDbUEbpx6UtxGnvWipD9 pbtizyx+zCa9qgTBjEkQhGs2w7jCBPfz9bVBCmhGQSHMSvqSrj0nly5Z6ZKyxtgZ hUjQEYS5btGhGwVF45omp8cOTFIqrVQfWLk2DGCnEVBCL0tT7iqY+ckh9ebVwEhs -----END CERTIFICATE-----Generated at Sat Jun 14 05:57:02 2025 by rpki-client