$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa File: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (raw, json) Hash identifier: cqqQoQ/M3hwn6DLBlCub0i4G72F4dtLwD5xkqnhzIAs= Subject key identifier: EA:3A:0B:64:62:DE:D2:A7:E1:9D:EE:AD:81:53:D6:FA:63:DC:6E:05 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 36046F689E942B2AB58CD32644208B195A4FE109 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa Signing time: Sat 18 Oct 2025 00:00:35 +0000 ROA not before: Sat 18 Oct 2025 00:00:35 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:04:6f:68:9e:94:2b:2a:b5:8c:d3:26:44:20:8b:19:5a:4f:e1:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Oct 18 00:00:35 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=ebd19aec782b73908082a0e13ffdffa90cdec9a9321fce9b70393f8c6ed4b0ac, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ff:a0:e0:89:9a:5a:af:6e:8a:cd:76:8a:2a: 31:f3:f9:1b:e0:f3:43:85:ab:6a:da:71:71:d5:d1: 2d:b2:82:05:74:bc:18:13:af:7a:e5:e0:3d:ea:9f: f4:88:2f:16:a4:3f:86:1a:cf:23:41:d4:64:ae:8f: d1:02:06:1e:28:41:60:e8:3f:bb:f6:69:2c:ae:e8: b6:5d:51:a7:b1:f4:11:0b:82:04:5d:c2:d8:d3:4c: e7:ad:1b:56:14:3a:82:9f:b7:8e:a1:57:d9:eb:02: a4:dc:dc:02:d1:06:fd:14:c1:24:36:64:3c:81:70: 5c:d0:3a:33:61:87:67:5a:bb:d7:1c:a7:3e:b9:5b: fd:d0:60:75:5c:eb:15:05:08:39:c0:6b:68:2a:e9: 35:0e:76:de:4d:17:37:03:32:b4:ae:1e:a6:03:99: ba:3c:95:35:22:18:ab:e5:fd:e7:26:f0:cf:73:18: cc:8e:14:0b:1c:f2:4e:1b:94:8c:53:ad:14:47:d5: 13:38:b8:1b:00:6c:8a:6c:af:ca:ae:37:5f:47:e3: 6f:10:6a:16:64:e0:44:7c:a0:63:dd:a2:51:1f:3c: 64:9c:32:e0:4b:3f:8d:cc:ef:18:72:46:dc:77:53: 25:78:21:96:0d:84:cc:0b:28:8b:4f:61:9e:85:5d: 5b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:3A:0B:64:62:DE:D2:A7:E1:9D:EE:AD:81:53:D6:FA:63:DC:6E:05 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018::/36 Signature Algorithm: sha256WithRSAEncryption 5f:a8:dc:42:32:f6:8c:bd:0c:3c:38:e9:44:43:17:e9:fd:71: f4:5c:26:7d:29:1e:be:78:8b:cb:a3:6f:9b:a2:41:1a:55:13: 4d:88:d6:1d:43:a7:fc:a7:99:52:94:4e:1e:2a:c6:4d:f8:49: 0f:fa:e5:a3:31:4d:00:bc:45:39:70:66:05:78:70:ec:fe:6a: 3e:75:f1:28:4a:e0:38:ee:c4:d8:49:fa:8c:8d:fc:62:e2:7f: ba:5e:22:67:d6:2a:26:55:cc:d9:c8:7c:02:32:8d:f4:3e:e1: 1c:d4:59:e3:a1:aa:aa:b8:71:08:c2:3c:a3:7c:2f:e3:c2:7f: 6b:55:a6:54:63:29:cf:c2:6f:0b:ed:84:6e:49:e4:61:84:05: af:b7:5d:93:b9:db:65:aa:77:52:b4:57:c1:95:24:11:8a:0e: e9:f8:43:1f:93:41:c0:7c:d1:29:57:20:34:4f:88:38:8e:ed: 61:94:84:02:8c:f9:b3:e6:8c:6e:55:8c:de:34:e3:2e:c6:ca: 3b:f1:0e:30:ee:7c:e8:7d:8d:be:31:40:e9:e5:93:ee:23:69: cd:c0:8d:6d:4d:38:c4:61:3d:52:01:c4:bd:d0:61:de:97:c0: bf:75:f4:73:f3:aa:9a:d7:d4:85:76:1b:0b:10:63:b1:da:ef: 06:76:63:10 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNgRvaJ6UKyq1jNMmRCCLGVpP4QkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTAxODAwMDAzNVoX DTI1MTEyMjIzNTk1OVowejFJMEcGA1UEBRNAZWJkMTlhZWM3ODJiNzM5MDgwODJh MGUxM2ZmZGZmYTkwY2RlYzlhOTMyMWZjZTliNzAzOTNmOGM2ZWQ0YjBhYzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyv+g4ImaWq9uis12iiox8/kb4PND hatq2nFx1dEtsoIFdLwYE6965eA96p/0iC8WpD+GGs8jQdRkro/RAgYeKEFg6D+7 9mksrui2XVGnsfQRC4IEXcLY00znrRtWFDqCn7eOoVfZ6wKk3NwC0Qb9FMEkNmQ8 gXBc0DozYYdnWrvXHKc+uVv90GB1XOsVBQg5wGtoKuk1DnbeTRc3AzK0rh6mA5m6 PJU1Ihir5f3nJvDPcxjMjhQLHPJOG5SMU60UR9UTOLgbAGyKbK/KrjdfR+NvEGoW ZOBEfKBj3aJRHzxknDLgSz+NzO8Yckbcd1MleCGWDYTMCyiLT2GehV1bZQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOo6C2Ri3tKn4Z3urYFT1vpj3G4FMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIwNWFmOWQ4LTM3OTktNGQzOC1iMWZiLWRhODQwZTM2MmZmMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AGAAwDQYJKoZIhvcNAQELBQADggEBAF+o3EIy9oy9DDw46URD F+n9cfRcJn0pHr54i8ujb5uiQRpVE02I1h1Dp/ynmVKUTh4qxk34SQ/65aMxTQC8 RTlwZgV4cOz+aj518ShK4DjuxNhJ+oyN/GLif7peImfWKiZVzNnIfAIyjfQ+4RzU WeOhqqq4cQjCPKN8L+PCf2tVplRjKc/CbwvthG5J5GGEBa+3XZO522Wqd1K0V8GV JBGKDun4Qx+TQcB80SlXIDRPiDiO7WGUhAKM+bPmjG5VjN404y7GyjvxDjDufOh9 jb4xQOnlk+4jac3AjW1NOMRhPVIBxL3QYd6XwL919HPzqprX1IV2GwsQY7Ha7wZ2 YxA= -----END CERTIFICATE-----Generated at Mon Oct 20 18:00:32 2025 by rpki-client