$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e363607-e7c0-4093-a95f-81ec8e33d0fd.roa File: 7e363607-e7c0-4093-a95f-81ec8e33d0fd.roa (raw, json) Hash identifier: zoaFws0jDQA7pYe2S2id9J4me/ZDLxGSl0F7QtPmfeo= Subject key identifier: 30:3B:0B:A0:6F:60:43:49:03:98:34:FC:37:D6:AC:A8:09:A2:94:08 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0D16EFFAC892D0500DF7303735FB9F6477907189 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e363607-e7c0-4093-a95f-81ec8e33d0fd.roa Signing time: Mon 13 Oct 2025 15:38:13 +0000 ROA not before: Mon 13 Oct 2025 15:38:13 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:16:ef:fa:c8:92:d0:50:0d:f7:30:37:35:fb:9f:64:77:90:71:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 13 15:38:13 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=fbad92880d08ff210d46d8a103fea7cca515651b14dc76553ab3d9b6f32fd49a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:32:59:4c:a9:87:f4:6b:04:18:ef:bd:0d:c4: c7:fa:89:b6:8f:83:aa:2d:ff:e3:31:03:62:d3:0a: 40:73:de:87:4e:71:58:76:9f:6b:6c:56:2f:cd:de: e3:97:87:2b:d4:18:0f:c2:1e:6c:2b:bb:ba:20:62: a5:9e:f8:73:49:38:94:80:d8:15:6b:98:5e:cf:be: b3:5a:b8:f3:d3:23:04:ae:46:09:f4:2f:d0:a1:c9: e9:e9:05:a8:f2:d8:e3:39:23:40:4e:9c:cf:f5:0b: b9:f8:aa:f7:d0:59:90:12:a6:b2:a4:3e:8d:e7:d9: 2b:d1:99:71:e5:70:b5:8b:fa:48:ae:f5:08:c2:a6: bf:10:ed:a5:4b:18:fd:5d:65:b5:ff:e3:57:d9:ca: d4:1e:bf:9e:e8:d6:3d:34:bb:d6:a6:f8:89:19:95: 9c:dc:de:2d:db:d4:e9:fe:48:21:98:99:53:5b:56: 4c:b3:d4:ce:0b:de:0f:d8:e9:41:6e:ab:e6:95:38: 79:fa:20:fa:ae:29:d0:6c:ee:6d:e6:73:19:22:74: d1:26:dd:90:31:55:b3:42:a0:f8:b1:28:1f:c0:bc: 5b:de:e9:07:01:45:8e:24:5c:3e:e6:ce:65:94:d8: c3:59:9e:50:63:cf:e4:e5:5b:fc:9b:c8:2f:ae:49: 4f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3B:0B:A0:6F:60:43:49:03:98:34:FC:37:D6:AC:A8:09:A2:94:08 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e363607-e7c0-4093-a95f-81ec8e33d0fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:8080::/48 Signature Algorithm: sha256WithRSAEncryption 57:e6:ec:f8:78:cd:c5:4a:50:cf:8a:5a:97:80:b8:dc:01:68: 57:28:a1:de:c1:f5:88:1f:d3:a7:47:9b:28:56:81:0d:2f:49: 3a:d5:de:a1:40:4e:59:a5:fb:35:db:d6:20:f3:8c:20:4f:37: 0a:32:77:3f:63:fc:5c:e2:9a:7a:9b:11:a2:fe:05:57:31:e8: 5c:08:f9:36:f9:d0:3d:7f:57:56:57:7e:f3:4a:d5:76:4b:04: a7:df:15:33:13:63:02:3b:5b:75:41:ca:23:e7:22:cd:a0:9e: 02:58:06:81:52:e7:9b:60:8b:ca:20:4d:1e:62:99:8f:b1:62: e1:94:22:91:4a:f5:a3:35:18:78:57:35:21:1f:4c:5b:e3:35: 52:4b:b0:06:ba:23:ae:25:5a:dc:9a:42:b8:97:c9:68:6c:ca: 1e:c7:d5:79:91:4b:af:98:42:c6:46:23:77:fb:76:68:90:26: ea:2f:d7:2d:dc:98:85:f0:0b:16:a4:2d:ff:af:23:e5:5c:d6: e6:79:d8:b7:30:e5:20:e2:0e:43:44:3a:5d:a2:fe:5e:fb:77: f2:d1:be:f7:81:3c:95:db:0d:22:c0:67:24:a9:ae:02:f6:76: e8:46:ce:5e:83:8b:08:25:00:39:4e:b7:80:da:6b:49:12:62: bd:63:fe:88 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUDRbv+siS0FAN9zA3NfufZHeQcYkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAxMzE1MzgxM1oX DTI1MTExNzIzNTk1OVowejFJMEcGA1UEBRNAZmJhZDkyODgwZDA4ZmYyMTBkNDZk OGExMDNmZWE3Y2NhNTE1NjUxYjE0ZGM3NjU1M2FiM2Q5YjZmMzJmZDQ5YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzJZTKmH9GsEGO+9DcTH+om2j4Oq Lf/jMQNi0wpAc96HTnFYdp9rbFYvzd7jl4cr1BgPwh5sK7u6IGKlnvhzSTiUgNgV a5hez76zWrjz0yMErkYJ9C/Qocnp6QWo8tjjOSNATpzP9Qu5+Kr30FmQEqaypD6N 59kr0Zlx5XC1i/pIrvUIwqa/EO2lSxj9XWW1/+NX2crUHr+e6NY9NLvWpviJGZWc 3N4t29Tp/kghmJlTW1ZMs9TOC94P2OlBbqvmlTh5+iD6rinQbO5t5nMZInTRJt2Q MVWzQqD4sSgfwLxb3ukHAUWOJFw+5s5llNjDWZ5QY8/k5Vv8m8gvrklPKQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDA7C6BvYENJA5g0/DfWrKgJopQIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdlMzYzNjA3LWU3YzAtNDA5My1hOTVmLTgxZWM4ZTMzZDBmZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/4CAMA0GCSqGSIb3DQEBCwUAA4IBAQBX5uz4eM3FSlDPilqX gLjcAWhXKKHewfWIH9OnR5soVoENL0k61d6hQE5Zpfs129Yg84wgTzcKMnc/Y/xc 4pp6mxGi/gVXMehcCPk2+dA9f1dWV37zStV2SwSn3xUzE2MCO1t1Qcoj5yLNoJ4C WAaBUuebYIvKIE0eYpmPsWLhlCKRSvWjNRh4VzUhH0xb4zVSS7AGuiOuJVrcmkK4 l8lobMoex9V5kUuvmELGRiN3+3ZokCbqL9ct3JiF8AsWpC3/ryPlXNbmedi3MOUg 4g5DRDpdov5e+3fy0b73gTyV2w0iwGckqa4C9nboRs5eg4sIJQA5TreA2mtJEmK9 Y/6I -----END CERTIFICATE-----Generated at Mon Oct 20 07:26:18 2025 by rpki-client