$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: yjfHB3gzDYUuo5RNUgjnXbVLR7hGdw0zEk5fHZVmHHQ= Subject key identifier: 9B:62:0D:66:A9:D7:C6:13:61:20:F6:C7:25:6A:49:C9:92:1D:0F:04 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6B896C60A61EE2232A6DE72BFB4F7F63CC8E8BC1 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Sat 18 Oct 2025 00:00:38 +0000 ROA not before: Sat 18 Oct 2025 00:00:38 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:89:6c:60:a6:1e:e2:23:2a:6d:e7:2b:fb:4f:7f:63:cc:8e:8b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Oct 18 00:00:38 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=2b8045758a8b4640d6eb69b916cf770e5ab5aea477a4f9ab66d4e4873bcd7ae4, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c2:62:64:9d:eb:52:f6:18:3d:cc:1d:21:80: a0:a3:2b:bc:22:b5:bb:55:f6:bf:6a:40:a0:fb:44: 96:8e:4c:7b:0d:a6:fb:42:bf:18:79:28:e8:ba:ed: 55:9b:0f:bd:3c:37:ae:b2:8f:8b:df:10:c7:d5:0c: 6d:e1:5e:94:57:ca:da:83:09:fa:cd:cc:89:52:54: 45:08:89:a3:34:2d:00:a4:5a:84:38:1f:44:d5:6f: be:bf:4c:1c:24:56:c3:33:0e:4c:f2:c7:bd:23:43: cf:4a:21:28:1d:e8:67:04:c8:0d:0c:73:d7:b1:36: 16:ab:34:a2:12:52:0f:c4:eb:ab:80:b4:2a:0d:c9: ec:a8:13:7f:65:8c:93:59:d3:b2:be:94:15:be:bf: 4e:24:59:48:57:1e:b7:22:87:7d:75:66:96:35:84: 86:eb:48:a7:c9:b5:7b:d9:f6:c8:69:05:30:aa:9f: 86:33:c2:93:b1:29:9e:d4:8a:3b:3c:04:2c:e5:d1: 41:3e:99:76:eb:4c:ba:f9:91:4f:70:74:0f:ea:48: 97:cf:4c:66:ce:59:a8:62:e0:ee:a1:93:0f:cb:31: 99:df:93:83:00:f7:db:86:99:9c:09:e5:17:f9:1b: 0d:7d:2f:38:e9:1e:19:96:9a:f6:73:47:7e:a3:69: 01:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:62:0D:66:A9:D7:C6:13:61:20:F6:C7:25:6A:49:C9:92:1D:0F:04 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 44:61:d6:68:08:45:a7:98:d2:a8:e5:b4:ac:59:d1:7c:97:9f: 41:d6:4c:c6:9d:c0:a8:12:0a:a4:98:92:36:9e:be:18:54:47: 0a:0f:2a:f4:b9:e3:f2:7e:e7:c4:6d:1a:c2:2e:05:28:fa:ee: 53:d3:45:62:43:2e:ef:ea:d0:08:56:ea:ec:e4:0f:26:eb:47: 53:bd:55:a2:4b:bd:33:99:9c:e5:9b:a4:c5:17:07:c6:a5:7b: 40:15:1a:46:0c:a1:9d:83:75:22:bb:fb:a3:a5:57:1d:d3:77: f7:e2:5e:49:5e:fe:dd:26:85:1c:e2:be:90:da:0c:f8:5c:4b: 90:f1:8f:29:66:fc:36:92:9f:97:b6:a4:d6:d8:3f:51:94:32: 5b:5b:93:ed:69:14:38:ac:e4:96:ac:71:24:50:ec:64:72:6e: da:b4:6c:af:f6:d1:83:0d:21:0c:30:f7:3e:4b:db:25:06:5b: 48:c2:32:26:6b:3d:18:80:71:0d:80:34:eb:0a:85:63:30:25: dc:8c:f1:ca:ab:1c:e7:cd:cc:96:5c:8f:a2:dd:c6:e1:0d:3c: 7b:57:45:af:e1:77:81:3f:44:58:af:59:18:e7:f2:82:c2:28: 42:4f:42:2d:ca:48:f5:c6:62:07:59:9e:e7:80:00:d2:c9:59: 05:1e:b0:8d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUa4lsYKYe4iMqbecr+09/Y8yOi8EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTAxODAwMDAzOFoX DTI1MTEyMjIzNTk1OVowejFJMEcGA1UEBRNAMmI4MDQ1NzU4YThiNDY0MGQ2ZWI2 OWI5MTZjZjc3MGU1YWI1YWVhNDc3YTRmOWFiNjZkNGU0ODczYmNkN2FlNDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMJiZJ3rUvYYPcwdIYCgoyu8IrW7 Vfa/akCg+0SWjkx7Dab7Qr8YeSjouu1Vmw+9PDeuso+L3xDH1Qxt4V6UV8ragwn6 zcyJUlRFCImjNC0ApFqEOB9E1W++v0wcJFbDMw5M8se9I0PPSiEoHehnBMgNDHPX sTYWqzSiElIPxOurgLQqDcnsqBN/ZYyTWdOyvpQVvr9OJFlIVx63Iod9dWaWNYSG 60inybV72fbIaQUwqp+GM8KTsSme1Io7PAQs5dFBPpl260y6+ZFPcHQP6kiXz0xm zlmoYuDuoZMPyzGZ35ODAPfbhpmcCeUX+RsNfS846R4Zlpr2c0d+o2kBhQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJtiDWap18YTYSD2xyVqScmSHQ8EMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQBEYdZoCEWnmNKo5bSs WdF8l59B1kzGncCoEgqkmJI2nr4YVEcKDyr0uePyfufEbRrCLgUo+u5T00ViQy7v 6tAIVurs5A8m60dTvVWiS70zmZzlm6TFFwfGpXtAFRpGDKGdg3Uiu/ujpVcd03f3 4l5JXv7dJoUc4r6Q2gz4XEuQ8Y8pZvw2kp+XtqTW2D9RlDJbW5PtaRQ4rOSWrHEk UOxkcm7atGyv9tGDDSEMMPc+S9slBltIwjImaz0YgHENgDTrCoVjMCXcjPHKqxzn zcyWXI+i3cbhDTx7V0Wv4XeBP0RYr1kY5/KCwihCT0Itykj1xmIHWZ7ngADSyVkF HrCN -----END CERTIFICATE-----Generated at Mon Oct 20 18:03:59 2025 by rpki-client