$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa File: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (raw, json) Hash identifier: DeJPa1mAQawhImSUf4qZ3jwXzQZhvpILrhV3v1/Gwec= Subject key identifier: 74:19:3D:CF:5E:A8:C3:BE:D0:06:D3:11:28:A1:60:33:AD:71:8D:AA Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 51233AB047CEFF2FE33EC7B1B6CAABAB1A97CE15 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa Signing time: Fri 17 Oct 2025 00:10:04 +0000 ROA not before: Fri 17 Oct 2025 00:10:04 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:23:3a:b0:47:ce:ff:2f:e3:3e:c7:b1:b6:ca:ab:ab:1a:97:ce:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Oct 17 00:10:04 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=80e7fa65ac41175c23ea896ebf1d30d621098392ffcbb38346214e56c9885e39, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a1:ba:a4:e2:0b:59:4a:ac:7a:98:46:86:85: 46:cb:0d:38:92:66:66:93:34:a1:77:be:9c:6a:1b: d9:c6:71:89:10:c5:69:6c:96:1f:34:84:9b:3d:d7: 0a:24:73:cc:b6:07:31:02:ee:92:49:93:5a:aa:8a: c3:50:ef:a6:20:19:0c:83:23:af:1d:f4:8c:73:aa: 11:54:40:b2:55:d8:c2:48:90:9d:c3:df:73:e2:92: 74:d0:d4:71:c0:67:bf:ed:cf:b3:a5:c3:3f:48:23: a3:d8:27:4a:bd:5c:b6:d3:6b:97:4c:cd:b8:bf:92: c4:66:23:8f:4b:21:ff:a3:8f:01:83:4b:e0:dc:3c: ae:0d:1f:50:b3:32:1b:8b:6c:89:32:5a:98:7b:7e: d1:10:d1:50:d6:10:34:c1:67:94:d9:36:57:72:2b: 26:eb:4e:43:f7:f5:c6:f4:cc:d9:a1:b5:41:6d:be: 83:ce:b8:e7:4a:65:8d:07:d6:cb:6b:da:2a:f2:19: 0a:56:41:d3:e6:50:8e:8e:1e:67:4c:c7:72:80:03: a5:77:ac:97:e0:d9:80:8e:f8:ae:51:dc:47:f2:c5: be:8e:ae:cf:97:16:a0:f6:b5:a2:61:e2:b3:f2:46: ba:31:54:15:f4:15:d4:17:a9:f2:89:93:70:c4:5a: e7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:19:3D:CF:5E:A8:C3:BE:D0:06:D3:11:28:A1:60:33:AD:71:8D:AA X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:4000::/40 Signature Algorithm: sha256WithRSAEncryption a8:a5:0a:1a:7d:ec:97:d9:42:b6:fb:87:08:1c:e8:e1:89:ac: 08:1e:a5:aa:d1:77:12:99:da:cb:df:e5:05:5e:c5:9f:04:34: 79:68:82:cb:4a:47:f0:81:f3:ba:54:a4:f8:6c:a9:bf:dd:c3: 75:7a:1e:7e:0f:f2:e6:71:55:9c:95:c1:7d:07:86:2e:ea:3b: 0e:30:a3:62:a5:23:b5:99:26:f9:58:1a:83:4d:d0:d0:f3:e9: 02:7c:08:cb:06:3f:cd:07:c7:8a:89:2c:e7:86:86:6c:69:69: 18:f2:15:c6:9f:1d:ef:f4:2a:8a:3b:5c:66:bd:a4:f7:af:24: 98:c2:a6:e1:55:7a:d9:a0:ca:c4:c0:c2:97:5a:10:4e:a8:25: 7e:94:63:44:c8:b2:86:1d:d8:1d:11:3b:12:e4:d8:68:8c:2a: 55:81:07:9d:87:3b:f4:c4:a4:a1:45:37:5e:64:c0:8d:88:e4: b6:c9:1d:33:df:10:4f:57:2f:07:dc:ef:68:b7:aa:e9:27:83: 17:26:01:0e:7f:46:8a:5c:e6:96:fb:ee:8b:4c:bb:15:ea:c5: c8:b5:cc:d0:fb:9e:38:3c:f9:b7:20:f9:c1:e6:08:1f:0e:1d: 66:82:f8:0e:0a:bb:e4:40:bc:6f:81:8c:47:83:5f:d5:4a:b1: 41:4f:fe:4e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUSM6sEfO/y/jPsextsqrqxqXzhUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTAxNzAwMTAwNFoX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNAODBlN2ZhNjVhYzQxMTc1YzIzZWE4 OTZlYmYxZDMwZDYyMTA5ODM5MmZmY2JiMzgzNDYyMTRlNTZjOTg4NWUzOTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKG6pOILWUqsephGhoVGyw04kmZm kzShd76cahvZxnGJEMVpbJYfNISbPdcKJHPMtgcxAu6SSZNaqorDUO+mIBkMgyOv HfSMc6oRVECyVdjCSJCdw99z4pJ00NRxwGe/7c+zpcM/SCOj2CdKvVy202uXTM24 v5LEZiOPSyH/o48Bg0vg3DyuDR9QszIbi2yJMlqYe37RENFQ1hA0wWeU2TZXcism 605D9/XG9MzZobVBbb6DzrjnSmWNB9bLa9oq8hkKVkHT5lCOjh5nTMdygAOld6yX 4NmAjviuUdxH8sW+jq7Plxag9rWiYeKz8ka6MVQV9BXUF6nyiZNwxFrnTwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHQZPc9eqMO+0AbTESihYDOtcY2qMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBhZTA1ODg5LWViNmQtNDE0Yy04OGU5LWJjMjkzMTcxZjUzMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+UAwDQYJKoZIhvcNAQELBQADggEBAKilChp97JfZQrb7hwgc 6OGJrAgeparRdxKZ2svf5QVexZ8ENHlogstKR/CB87pUpPhsqb/dw3V6Hn4P8uZx VZyVwX0Hhi7qOw4wo2KlI7WZJvlYGoNN0NDz6QJ8CMsGP80Hx4qJLOeGhmxpaRjy FcafHe/0Koo7XGa9pPevJJjCpuFVetmgysTAwpdaEE6oJX6UY0TIsoYd2B0ROxLk 2GiMKlWBB52HO/TEpKFFN15kwI2I5LbJHTPfEE9XLwfc72i3qukngxcmAQ5/Ropc 5pb77otMuxXqxci1zND7njg8+bcg+cHmCB8OHWaC+A4Ku+RAvG+BjEeDX9VKsUFP /k4= -----END CERTIFICATE-----Generated at Mon Oct 20 15:36:54 2025 by rpki-client