$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55712bd4-af68-4d81-b0b4-0e9c08700a5d.roa File: 55712bd4-af68-4d81-b0b4-0e9c08700a5d.roa (raw, json) Hash identifier: s0BwZbe0BgLxDgPj0JWVdZql9vlHWht0MBnGcpXvymA= Subject key identifier: D5:64:16:79:8B:C8:6D:AB:E4:2E:E4:AA:18:C5:AC:9B:C8:E8:4C:53 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5842B2B74B6F1328A0A4C90020B3D74B14B9D2BD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55712bd4-af68-4d81-b0b4-0e9c08700a5d.roa Signing time: Mon 13 Oct 2025 15:39:11 +0000 ROA not before: Mon 13 Oct 2025 15:39:11 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:4880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:42:b2:b7:4b:6f:13:28:a0:a4:c9:00:20:b3:d7:4b:14:b9:d2:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 13 15:39:11 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=83ec954c9adb5b4bc37f12203fa18c458b79999edc695c4a762fde00402f3f67, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:c2:05:a1:14:6e:51:09:f8:91:29:a1:65: 84:0f:b1:7d:7a:12:c9:4a:01:58:57:92:af:a7:0b: 53:b9:67:3d:5e:fb:f8:ab:db:dd:e3:47:52:87:4e: 45:6e:8c:a8:a8:2c:e0:1d:da:2d:b5:00:95:4c:d1: 4b:c6:6c:f6:88:4e:08:be:3f:f5:ef:a9:b3:36:3c: 90:ac:3d:06:2d:56:bf:9a:30:41:74:7e:20:05:b5: 6a:89:04:17:22:00:e4:26:87:f8:70:f7:33:e6:f8: d8:db:64:e3:dd:fa:dc:d7:f9:5f:45:22:60:21:f4: 2f:a4:bf:aa:b1:b8:00:5f:38:3a:3f:b6:81:14:3d: 46:e8:f4:e8:23:b1:2c:a0:9f:d2:73:94:30:c2:4d: c2:11:3a:32:44:64:dd:54:64:a1:39:84:49:f3:35: 10:a5:1c:a1:ac:43:a4:70:b8:e4:e6:0d:ee:37:08: af:68:94:e1:b6:35:f8:01:0a:b1:4e:d4:63:d5:62: 67:94:85:24:a6:bc:1c:72:d5:67:51:ba:d8:47:3f: 06:b3:d2:9c:75:70:80:ce:be:79:0b:96:19:6e:26: 7b:ae:2f:9b:8b:bb:11:f6:7e:e1:2c:01:db:94:ed: c6:93:06:41:6a:8a:08:19:16:b8:7a:d2:71:28:28: d7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:64:16:79:8B:C8:6D:AB:E4:2E:E4:AA:18:C5:AC:9B:C8:E8:4C:53 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55712bd4-af68-4d81-b0b4-0e9c08700a5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:4880::/48 Signature Algorithm: sha256WithRSAEncryption 00:70:47:65:f0:f2:d8:21:10:ee:af:94:69:8b:5f:73:d4:8b: d8:33:d3:77:45:a4:ac:c1:48:b2:76:33:81:a1:fc:f8:20:e6: d6:65:54:d6:f4:f9:3f:94:9f:2c:98:77:ed:f7:48:bc:74:34: 93:d6:13:04:2c:da:72:0d:c0:4b:09:87:57:47:89:26:40:8e: d8:e7:52:7c:e7:96:fa:2f:5e:f7:25:12:89:13:43:53:2d:7a: 37:12:d3:8b:d6:37:6a:08:9f:0f:9c:21:7a:ee:6a:03:43:df: 0a:11:1d:4d:9a:2d:ac:af:3b:71:a4:1b:ff:c8:a3:ad:69:b1: 00:d1:85:9b:e6:ed:38:2e:22:f2:5a:a9:28:36:d2:64:d9:27: cc:e9:94:ed:b0:2f:b6:98:e8:d7:11:ef:00:84:53:aa:80:ae: b9:81:6f:1c:f7:db:e0:24:91:a5:86:6a:ab:f2:27:fd:06:e7: a3:c8:2c:2b:3d:ee:f7:dc:dd:81:c5:17:4f:25:38:f6:a9:66: ef:70:12:74:f3:d9:78:05:bc:53:b4:6f:ea:9b:ac:3e:a0:d3: 10:44:55:c9:26:97:68:b3:3c:6b:d5:e3:ad:d5:15:49:8e:ee: 67:a4:66:35:20:e4:dc:f6:65:d1:26:76:40:f5:a9:8f:47:d7: 9b:14:21:d5 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUWEKyt0tvEyigpMkAILPXSxS50r0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAxMzE1MzkxMVoX DTI1MTExNzIzNTk1OVowejFJMEcGA1UEBRNAODNlYzk1NGM5YWRiNWI0YmMzN2Yx MjIwM2ZhMThjNDU4Yjc5OTk5ZWRjNjk1YzRhNzYyZmRlMDA0MDJmM2Y2NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVnCBaEUblEJ+JEpoWWED7F9ehLJ SgFYV5KvpwtTuWc9Xvv4q9vd40dSh05FboyoqCzgHdottQCVTNFLxmz2iE4Ivj/1 76mzNjyQrD0GLVa/mjBBdH4gBbVqiQQXIgDkJof4cPcz5vjY22Tj3frc1/lfRSJg IfQvpL+qsbgAXzg6P7aBFD1G6PToI7EsoJ/Sc5Qwwk3CEToyRGTdVGShOYRJ8zUQ pRyhrEOkcLjk5g3uNwivaJThtjX4AQqxTtRj1WJnlIUkprwcctVnUbrYRz8Gs9Kc dXCAzr55C5YZbiZ7ri+bi7sR9n7hLAHblO3GkwZBaooIGRa4etJxKCjXTwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNVkFnmLyG2r5C7kqhjFrJvI6ExTMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1NzEyYmQ0LWFmNjgtNGQ4MS1iMGI0LTBlOWMwODcwMGE1ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYUiAMA0GCSqGSIb3DQEBCwUAA4IBAQAAcEdl8PLYIRDur5Rp i19z1IvYM9N3RaSswUiydjOBofz4IObWZVTW9Pk/lJ8smHft90i8dDST1hMELNpy DcBLCYdXR4kmQI7Y51J855b6L173JRKJE0NTLXo3EtOL1jdqCJ8PnCF67moDQ98K ER1Nmi2srztxpBv/yKOtabEA0YWb5u04LiLyWqkoNtJk2SfM6ZTtsC+2mOjXEe8A hFOqgK65gW8c99vgJJGlhmqr8if9BuejyCwrPe733N2BxRdPJTj2qWbvcBJ089l4 BbxTtG/qm6w+oNMQRFXJJpdoszxr1eOt1RVJju5npGY1IOTc9mXRJnZA9amPR9eb FCHV -----END CERTIFICATE-----Generated at Mon Oct 20 07:23:16 2025 by rpki-client