$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ad687119-97d7-4e73-b18b-f594dcc3c8b1.roa File: ad687119-97d7-4e73-b18b-f594dcc3c8b1.roa (raw, json) Hash identifier: c5tfL5x8JunAc2Q5IQ8XFuKi1ge/NPdj8PvrlqW6DcY= Subject key identifier: FC:6A:D9:7F:39:A9:0A:06:B6:3E:29:25:53:D7:4C:59:51:D4:29:9A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0EFAD11B844203B1905923DF42994B82FE07C43B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ad687119-97d7-4e73-b18b-f594dcc3c8b1.roa Signing time: Fri 10 Oct 2025 00:00:05 +0000 ROA not before: Fri 10 Oct 2025 00:00:05 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daf4:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fa:d1:1b:84:42:03:b1:90:59:23:df:42:99:4b:82:fe:07:c4:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 10 00:00:05 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=baf36ef44a4f0850d6801285c6722b670ce3496ca52a75874223b190b9696660, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bb:86:56:8d:3c:ac:59:43:ce:8b:66:0f:1f: c5:6d:d0:63:f6:f6:a2:80:f2:05:a5:03:77:f6:8c: 1a:3e:c9:91:fb:24:2d:63:f3:80:0c:66:8a:60:a0: 88:4c:0f:f2:75:97:38:a0:36:ca:13:57:ef:15:d1: 72:f7:e9:8f:21:e4:10:30:00:da:3d:66:dd:b3:18: 92:a4:25:11:26:87:b7:84:1b:f7:6b:78:e7:6f:7e: 25:6c:2e:ac:b0:c3:9b:85:e1:39:b0:5c:55:54:a0: 0f:a0:4f:c0:fc:b9:c2:95:0f:30:8b:eb:46:fd:6b: f2:ae:a1:48:6c:22:87:b8:1d:c2:32:f7:d9:75:c7: e7:37:ee:48:f4:e8:45:a0:dd:83:4b:f1:96:70:c2: 32:c3:69:7f:a4:99:8a:2d:30:a9:12:80:d5:ba:e9: db:2d:b0:6c:78:10:eb:c8:55:74:4c:de:08:60:12: 9c:52:f8:50:2b:72:9d:da:b3:2e:52:57:a0:95:f2: 74:f1:b6:16:77:06:25:3e:6c:4a:8f:08:25:dc:fd: e1:6a:f6:e5:93:7e:2e:07:6f:3c:1a:38:92:92:94: bc:a6:84:b8:51:95:2d:bc:a1:dd:69:c1:1f:c1:a7: 0e:67:91:71:2a:fe:1f:d5:cb:3a:33:96:a2:80:7a: e3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6A:D9:7F:39:A9:0A:06:B6:3E:29:25:53:D7:4C:59:51:D4:29:9A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ad687119-97d7-4e73-b18b-f594dcc3c8b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:8000::/40 Signature Algorithm: sha256WithRSAEncryption 92:d3:07:e0:c6:a1:53:2a:f3:72:fd:43:13:4c:b0:ca:29:b8: 95:61:4a:b9:7a:8c:c0:92:64:fe:52:73:10:c8:af:4a:e6:43: 4e:e5:65:d5:94:81:4f:82:c3:be:f7:d1:a9:fb:90:f7:d1:54: 22:f9:0c:d1:76:2e:56:65:81:af:9b:e2:77:84:b6:42:57:70: ff:8c:1f:f8:d1:8b:64:5c:93:72:31:e2:4d:42:62:8f:ec:c0: 9f:45:37:ca:68:51:8a:24:ee:84:6e:c8:0d:5a:67:2a:dd:af: 6c:87:f5:3a:69:99:1d:b6:2e:62:e2:d6:ed:ae:99:a5:5d:46: 1a:14:80:7d:14:aa:ea:31:21:4e:69:d3:c6:61:fa:57:63:b9: 5d:b7:96:7c:cc:e5:f5:cf:ff:65:91:c1:5a:64:67:42:08:49: b1:a9:fc:af:ff:c8:8f:6b:bb:94:17:88:4a:e5:4e:a0:74:b7: 23:88:e3:88:02:75:f8:85:09:b8:88:1f:7e:62:77:87:ed:80: 85:9f:12:83:a4:7a:03:52:5a:6f:d9:12:31:29:56:d4:6f:4e: 72:97:76:6b:c9:1e:96:52:1a:f0:79:33:91:bb:c0:92:84:98: 21:a7:07:ad:0a:08:81:59:a3:d5:de:2e:d6:83:8e:ea:a4:b0: a0:7c:a5:15 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDvrRG4RCA7GQWSPfQplLgv4HxDswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAxMDAwMDAwNVoX DTI1MTExNDIzNTk1OVowejFJMEcGA1UEBRNAYmFmMzZlZjQ0YTRmMDg1MGQ2ODAx Mjg1YzY3MjJiNjcwY2UzNDk2Y2E1MmE3NTg3NDIyM2IxOTBiOTY5NjY2MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17uGVo08rFlDzotmDx/FbdBj9vai gPIFpQN39owaPsmR+yQtY/OADGaKYKCITA/ydZc4oDbKE1fvFdFy9+mPIeQQMADa PWbdsxiSpCURJoe3hBv3a3jnb34lbC6ssMObheE5sFxVVKAPoE/A/LnClQ8wi+tG /WvyrqFIbCKHuB3CMvfZdcfnN+5I9OhFoN2DS/GWcMIyw2l/pJmKLTCpEoDVuunb LbBseBDryFV0TN4IYBKcUvhQK3Kd2rMuUleglfJ08bYWdwYlPmxKjwgl3P3havbl k34uB288GjiSkpS8poS4UZUtvKHdacEfwacOZ5FxKv4f1cs6M5aigHrjdwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPxq2X85qQoGtj4pJVPXTFlR1CmaMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FkNjg3MTE5LTk3ZDctNGU3My1iMThiLWY1OTRkY2MzYzhiMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9IAwDQYJKoZIhvcNAQELBQADggEBAJLTB+DGoVMq83L9QxNM sMopuJVhSrl6jMCSZP5ScxDIr0rmQ07lZdWUgU+Cw7730an7kPfRVCL5DNF2LlZl ga+b4neEtkJXcP+MH/jRi2Rck3Ix4k1CYo/swJ9FN8poUYok7oRuyA1aZyrdr2yH 9TppmR22LmLi1u2umaVdRhoUgH0UquoxIU5p08Zh+ldjuV23lnzM5fXP/2WRwVpk Z0IISbGp/K//yI9ru5QXiErlTqB0tyOI44gCdfiFCbiIH35id4ftgIWfEoOkegNS Wm/ZEjEpVtRvTnKXdmvJHpZSGvB5M5G7wJKEmCGnB60KCIFZo9XeLtaDjuqksKB8 pRU= -----END CERTIFICATE-----Generated at Sun Oct 19 23:04:24 2025 by rpki-client