$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6f6b5a3c-b3f5-4577-a228-2ce1b7327c05.roa File: 6f6b5a3c-b3f5-4577-a228-2ce1b7327c05.roa (raw, json) Hash identifier: ANxTdfx7Rm0vvJEyisoB46N4jAyfhLoVO8z/6jlgjUs= Subject key identifier: 2B:2B:38:DA:3E:C0:38:8D:ED:E2:1B:F9:91:FB:5D:ED:F8:90:88:A2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6299D9C0EA69DBB6665C95C533925B926346A510 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6f6b5a3c-b3f5-4577-a228-2ce1b7327c05.roa Signing time: Mon 13 Oct 2025 15:21:08 +0000 ROA not before: Mon 13 Oct 2025 15:21:08 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:c880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:99:d9:c0:ea:69:db:b6:66:5c:95:c5:33:92:5b:92:63:46:a5:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 13 15:21:08 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=fffa28a269feec1bf5d014ac119e2cfafc01343a2142a5ec47cdc0bcef938fb2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:33:2f:b0:de:ab:1a:54:e1:83:e3:eb:e3:21: c6:eb:ef:24:e9:f3:f4:5e:c4:28:5c:4c:65:6d:88: 1a:de:69:2a:31:0f:a8:c7:a6:2f:c5:6b:20:80:99: ce:bd:28:d8:4c:ce:91:37:b9:32:92:f4:ee:5c:d8: b8:de:4c:00:e9:1b:85:13:b4:2d:11:7d:99:62:70: 07:11:86:5c:33:fe:7a:f0:36:2b:f3:aa:8b:89:9d: 16:4b:71:eb:09:91:f6:0e:59:41:51:28:11:3c:ce: 40:f5:ad:b3:35:bf:65:d1:83:e6:34:2b:23:d9:01: 1a:bc:c3:ed:69:f7:fc:a2:a3:3c:9a:e6:9a:47:70: 75:6a:04:26:45:3b:0c:d8:15:c4:fe:6f:6c:3a:7e: 19:0f:4e:ee:d5:d8:7d:62:10:63:5c:20:99:56:18: be:6d:0b:f8:d0:90:b2:dc:6b:1a:63:36:6d:ac:fb: 12:4f:d0:ab:04:9b:d3:f1:4d:b7:71:93:71:61:9b: 49:e7:70:34:40:58:5f:3d:24:cc:20:39:0c:2c:4e: 7d:12:26:ba:39:8a:e0:4b:da:6e:3d:e1:9f:52:16: dc:eb:53:5c:89:09:d1:96:80:4d:09:13:9e:d8:a4: 83:c6:dd:69:de:c9:ed:9a:b8:7a:24:09:7f:39:4e: 21:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2B:38:DA:3E:C0:38:8D:ED:E2:1B:F9:91:FB:5D:ED:F8:90:88:A2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6f6b5a3c-b3f5-4577-a228-2ce1b7327c05.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:c880::/48 Signature Algorithm: sha256WithRSAEncryption 51:be:2f:f7:26:7d:50:10:5e:6a:a7:c8:5a:22:66:60:a5:50: 50:2e:dc:c5:3d:7b:9a:a8:bb:84:87:d8:70:f9:cc:09:64:78: 98:99:ca:d6:68:75:1b:8e:60:f6:8b:68:35:e1:51:5f:55:1e: ab:f7:eb:76:86:0a:9e:c1:c8:5c:3a:d3:6d:86:25:56:41:67: e7:5c:e6:6d:de:ac:1e:6e:c5:44:76:4f:d3:96:8c:df:2a:54: 03:62:01:bd:23:c2:6e:b8:e1:bb:1a:98:b2:72:69:d1:c1:98: de:09:2e:df:1b:48:c5:c8:ac:7a:4d:ae:01:a8:8b:45:a8:b9: 40:59:ba:b4:e7:20:79:62:fb:6c:e8:d2:7e:93:a7:12:33:6c: 02:a4:81:03:33:d7:5b:f4:91:95:d9:9f:3c:b6:4a:e3:ee:51: 27:d6:3c:fa:e7:93:19:31:11:5a:75:ad:d8:62:75:92:c5:83: 8d:98:82:ef:d8:8b:e7:0a:f4:03:8f:3b:30:7a:b4:c8:f6:f0: 53:c5:86:f7:d1:b6:e4:e0:df:ec:88:0d:73:8d:0c:b9:56:d2: 2b:0d:b9:93:9c:57:7e:5f:36:c1:70:c7:1d:e3:dc:00:7d:dc: ed:30:d9:1c:dd:2e:e1:df:b2:f2:ab:bc:fa:23:e5:0f:8c:6f: 02:f7:8c:69 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYpnZwOpp27ZmXJXFM5JbkmNGpRAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAxMzE1MjEwOFoX DTI1MTExNzIzNTk1OVowejFJMEcGA1UEBRNAZmZmYTI4YTI2OWZlZWMxYmY1ZDAx NGFjMTE5ZTJjZmFmYzAxMzQzYTIxNDJhNWVjNDdjZGMwYmNlZjkzOGZiMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5jMvsN6rGlThg+Pr4yHG6+8k6fP0 XsQoXExlbYga3mkqMQ+ox6YvxWsggJnOvSjYTM6RN7kykvTuXNi43kwA6RuFE7Qt EX2ZYnAHEYZcM/568DYr86qLiZ0WS3HrCZH2DllBUSgRPM5A9a2zNb9l0YPmNCsj 2QEavMPtaff8oqM8muaaR3B1agQmRTsM2BXE/m9sOn4ZD07u1dh9YhBjXCCZVhi+ bQv40JCy3GsaYzZtrPsST9CrBJvT8U23cZNxYZtJ53A0QFhfPSTMIDkMLE59Eia6 OYrgS9puPeGfUhbc61NciQnRloBNCROe2KSDxt1p3sntmrh6JAl/OU4hmwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCsrONo+wDiN7eIb+ZH7Xe34kIiiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZmNmI1YTNjLWIzZjUtNDU3Ny1hMjI4LTJjZTFiNzMyN2MwNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/8iAMA0GCSqGSIb3DQEBCwUAA4IBAQBRvi/3Jn1QEF5qp8ha ImZgpVBQLtzFPXuaqLuEh9hw+cwJZHiYmcrWaHUbjmD2i2g14VFfVR6r9+t2hgqe wchcOtNthiVWQWfnXOZt3qwebsVEdk/TlozfKlQDYgG9I8JuuOG7GpiycmnRwZje CS7fG0jFyKx6Ta4BqItFqLlAWbq05yB5Yvts6NJ+k6cSM2wCpIEDM9db9JGV2Z88 tkrj7lEn1jz655MZMRFada3YYnWSxYONmILv2IvnCvQDjzswerTI9vBTxYb30bbk 4N/siA1zjQy5VtIrDbmTnFd+XzbBcMcd49wAfdztMNkc3S7h37Lyq7z6I+UPjG8C 94xp -----END CERTIFICATE-----Generated at Mon Oct 20 07:27:12 2025 by rpki-client