$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa File: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (raw, json) Hash identifier: cpkgcAJl+R6mADCB/rSj//N606tKTsZRioN7n97giAc= Subject key identifier: D8:13:95:44:D2:DB:8C:B4:49:68:7E:87:DF:DD:92:18:B4:4D:7F:7E Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7C20BC68E8A3DB6E84B64702080594D381EEDE00 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa Signing time: Sat 18 Oct 2025 00:00:26 +0000 ROA not before: Sat 18 Oct 2025 00:00:26 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:20:bc:68:e8:a3:db:6e:84:b6:47:02:08:05:94:d3:81:ee:de:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Oct 18 00:00:26 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=bdd6c3d18f524cac8a415abee56784d5bb9f7f789e98b9be4d3269e19deb812e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:43:03:dd:50:ff:d4:c3:1d:84:da:7b:28:60: 7e:71:ad:0c:22:65:d1:6b:fd:db:2a:ce:a7:56:d2: fb:bc:fc:c6:56:63:46:76:48:f7:83:cd:c7:de:30: e1:ec:2e:05:28:2c:74:be:cd:1b:39:7e:8b:61:87: 2a:a1:52:2d:87:04:a8:38:b3:4d:47:43:e1:47:31: e1:6e:22:29:22:ee:21:0b:87:64:43:15:5f:8d:4c: c2:ba:df:61:f0:64:04:f1:97:7e:94:78:51:ac:bc: 59:9d:0c:f5:28:6f:f4:33:4a:7f:19:73:85:07:2f: 41:b9:4b:a0:23:c0:6d:ae:b2:11:52:1f:f7:1b:58: 34:60:df:70:49:6b:fd:53:fc:3a:5c:7e:bf:ff:db: 7a:cc:98:03:ec:32:10:52:57:3d:a7:64:bb:0d:c2: 96:b3:12:a6:c7:a5:65:44:94:9d:d2:08:06:2f:87: fa:30:e5:15:43:8f:7f:b2:e9:fc:87:60:e2:6f:0a: 03:3b:1d:8c:4c:62:20:3e:5a:a2:9a:a3:54:f6:11: 62:eb:9b:d6:70:3c:4a:99:a9:e8:e7:a5:ea:f4:4a: bd:25:cf:b9:79:67:0e:f9:33:28:99:12:13:17:32: f2:92:ac:d2:41:d0:b7:b9:31:52:bf:31:5a:e5:25: eb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:13:95:44:D2:DB:8C:B4:49:68:7E:87:DF:DD:92:18:B4:4D:7F:7E X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8020::/48 Signature Algorithm: sha256WithRSAEncryption 66:92:90:80:84:82:70:39:0a:c3:e0:4b:36:b9:d8:8b:fd:1b: 3c:39:59:23:29:0e:b6:6b:be:22:ea:61:18:3a:9b:c2:85:bb: 96:18:00:95:a9:5f:f7:85:6f:64:d0:b5:75:e3:92:f4:b4:a1: 32:4f:09:04:9e:f6:39:1c:66:38:5c:3f:02:c8:2f:67:10:3d: 16:69:a1:50:07:24:00:c7:c5:63:e3:05:3d:99:66:8e:06:d5: d7:0b:e5:10:8a:ad:a9:e4:43:9b:4a:bf:94:41:7d:8c:c0:05: d2:8e:fb:c5:93:c9:9d:8a:15:a7:ea:2c:5f:6a:d5:ac:3e:d3: 07:f2:be:5d:c4:9c:f8:9e:26:86:47:9e:9e:f6:9f:3e:a6:28: 33:92:f4:a1:b1:e4:e1:86:7d:aa:86:9a:52:63:c6:f8:50:68: e2:de:ad:ce:87:89:7f:ad:4f:0e:b6:fa:86:9b:e0:98:6b:5a: 53:49:46:64:b1:02:7a:ff:ba:53:37:bd:1a:6e:db:61:e0:09: 90:aa:22:fe:44:9d:1e:98:a4:59:c2:a0:1e:fb:d4:ef:cd:6c: 6a:61:66:9d:4d:45:4a:bc:52:81:da:ed:65:cc:0a:1c:f2:9d: 4a:97:e4:db:e6:c4:46:f4:34:db:bb:31:96:1d:22:45:42:76: bd:0e:a1:65 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfCC8aOij226EtkcCCAWU04Hu3gAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTAxODAwMDAyNloX DTI1MTEyMjIzNTk1OVowejFJMEcGA1UEBRNAYmRkNmMzZDE4ZjUyNGNhYzhhNDE1 YWJlZTU2Nzg0ZDViYjlmN2Y3ODllOThiOWJlNGQzMjY5ZTE5ZGViODEyZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUMD3VD/1MMdhNp7KGB+ca0MImXR a/3bKs6nVtL7vPzGVmNGdkj3g83H3jDh7C4FKCx0vs0bOX6LYYcqoVIthwSoOLNN R0PhRzHhbiIpIu4hC4dkQxVfjUzCut9h8GQE8Zd+lHhRrLxZnQz1KG/0M0p/GXOF By9BuUugI8BtrrIRUh/3G1g0YN9wSWv9U/w6XH6//9t6zJgD7DIQUlc9p2S7DcKW sxKmx6VlRJSd0ggGL4f6MOUVQ49/sun8h2DibwoDOx2MTGIgPlqimqNU9hFi65vW cDxKmano56Xq9Eq9Jc+5eWcO+TMomRITFzLykqzSQdC3uTFSvzFa5SXr4QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNgTlUTS24y0SWh+h9/dkhi0TX9+MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2FiNGFkMTg1LTJiZmItNDI4MS05ZTIzLTAwYTJhYjRiNmU4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4AgMA0GCSqGSIb3DQEBCwUAA4IBAQBmkpCAhIJwOQrD4Es2 udiL/Rs8OVkjKQ62a74i6mEYOpvChbuWGACVqV/3hW9k0LV145L0tKEyTwkEnvY5 HGY4XD8CyC9nED0WaaFQByQAx8Vj4wU9mWaOBtXXC+UQiq2p5EObSr+UQX2MwAXS jvvFk8mdihWn6ixfatWsPtMH8r5dxJz4niaGR56e9p8+pigzkvShseThhn2qhppS Y8b4UGji3q3Oh4l/rU8OtvqGm+CYa1pTSUZksQJ6/7pTN70abtth4AmQqiL+RJ0e mKRZwqAe+9TvzWxqYWadTUVKvFKB2u1lzAoc8p1Kl+Tb5sRG9DTbuzGWHSJFQna9 DqFl -----END CERTIFICATE-----Generated at Mon Oct 20 18:00:18 2025 by rpki-client