$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: qT12EAP+jq8LHE8JEewgD8q+T8Pr2NvNkP5iek7FQdI= Subject key identifier: 98:84:87:1F:61:1C:A9:D9:19:BB:4A:D3:70:D4:FC:63:01:69:D3:0A Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 7C7F8E32FD2939D3FE30C932D5E3C6B783823840 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Fri 17 Oct 2025 00:01:24 +0000 ROA not before: Fri 17 Oct 2025 00:01:24 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:7f:8e:32:fd:29:39:d3:fe:30:c9:32:d5:e3:c6:b7:83:82:38:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Oct 17 00:01:24 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=44b1bb14023293bf5bd3989e95c96d8dcef684875e3c3142f9c198975153b441, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4f:a8:ab:74:7a:f0:a7:aa:62:1b:16:3c:9b: 64:fa:30:b5:e7:2b:89:88:0d:19:1e:be:78:41:b2: 34:39:9a:bb:93:75:01:be:6b:d8:ea:fc:6f:f6:d2: e3:2e:ac:1a:bf:b9:7c:0d:6a:ad:9a:72:d5:6f:89: bb:b2:49:5c:a1:cd:03:13:5a:6e:27:f6:1b:84:fb: 5d:7b:62:35:70:02:8c:a1:a7:24:c2:7e:82:d9:93: 2b:47:0a:04:b5:bb:7e:56:e4:ae:b6:45:3d:55:a0: 78:8d:1e:10:6b:89:e7:87:fa:82:86:eb:33:82:da: 77:ff:86:9a:b8:2a:83:70:4c:93:bb:a7:f8:3b:82: 33:4a:b8:94:79:ee:92:5d:eb:c6:6a:78:ef:3c:4a: 1a:f7:e3:30:17:bf:ef:9b:29:dd:1b:2a:3c:10:a7: b3:7e:fd:c7:af:c6:49:96:92:cb:04:5c:8b:a6:35: 1c:eb:2d:08:f6:9a:5b:8b:11:d3:dc:a0:76:94:85: b4:41:9c:1e:4c:0f:fa:d4:0e:7a:31:00:97:13:9e: 87:cd:0e:3f:11:98:81:84:94:4a:e5:74:67:1c:d2: 15:76:18:08:cb:12:83:87:a0:9e:0e:7c:1d:d2:16: fc:66:9d:c8:87:c0:1d:a2:f6:f9:42:26:ec:d3:6a: b1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:84:87:1F:61:1C:A9:D9:19:BB:4A:D3:70:D4:FC:63:01:69:D3:0A X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 4e:87:1f:98:f0:97:ff:b0:fe:7b:e1:00:5b:50:80:83:e9:be: 6d:e5:f7:a5:90:96:de:80:d1:58:1a:bd:02:48:b1:31:1a:19: 15:a5:36:8f:43:ea:4b:72:29:5c:56:b1:ef:71:3b:ba:47:73: ea:e3:f4:6a:7e:15:dc:ab:af:02:1d:29:10:fb:dc:34:37:aa: e7:0c:ca:4e:c7:d4:5b:a4:f8:41:ca:ce:41:d7:c3:90:c5:0b: 6e:77:5d:88:11:c5:c3:47:5e:68:e1:eb:24:f9:58:33:78:ff: 80:fa:44:48:4a:d7:92:87:fc:a6:76:5d:b4:e6:eb:34:70:06: 93:3a:99:90:fc:96:42:03:73:d8:6b:70:10:71:d1:ac:2a:ef: 98:a7:52:9e:f5:23:c0:d7:1e:30:09:cf:69:dd:2e:6d:6a:7b: ff:c3:e4:00:01:2e:54:6e:c5:c5:ce:3d:c9:7f:13:89:2f:03: 3f:47:ca:6e:18:69:97:c4:25:c4:c3:5f:da:5c:90:1a:28:71: a8:68:8c:35:b9:6c:9a:c5:76:0c:d0:ac:10:de:09:69:54:95: bb:68:c8:a1:6d:9b:c7:99:c0:4d:56:4c:a6:34:f3:82:13:ee: e3:27:36:eb:a7:bb:13:3c:74:af:be:cf:91:42:67:77:c5:5a: 76:fe:a1:2f -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUfH+OMv0pOdP+MMky1ePGt4OCOEAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTAxNzAwMDEyNFoX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNANDRiMWJiMTQwMjMyOTNiZjViZDM5 ODllOTVjOTZkOGRjZWY2ODQ4NzVlM2MzMTQyZjljMTk4OTc1MTUzYjQ0MTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqU+oq3R68KeqYhsWPJtk+jC15yuJ iA0ZHr54QbI0OZq7k3UBvmvY6vxv9tLjLqwav7l8DWqtmnLVb4m7sklcoc0DE1pu J/YbhPtde2I1cAKMoackwn6C2ZMrRwoEtbt+VuSutkU9VaB4jR4Qa4nnh/qChusz gtp3/4aauCqDcEyTu6f4O4IzSriUee6SXevGanjvPEoa9+MwF7/vmyndGyo8EKez fv3Hr8ZJlpLLBFyLpjUc6y0I9ppbixHT3KB2lIW0QZweTA/61A56MQCXE56HzQ4/ EZiBhJRK5XRnHNIVdhgIyxKDh6CeDnwd0hb8Zp3Ih8Adovb5Qibs02qxywIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFJiEhx9hHKnZGbtK03DU/GMBadMKMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQBOhx+Y8Jf/sP574QBbUICD 6b5t5felkJbegNFYGr0CSLExGhkVpTaPQ+pLcilcVrHvcTu6R3Pq4/RqfhXcq68C HSkQ+9w0N6rnDMpOx9RbpPhBys5B18OQxQtud12IEcXDR15o4esk+VgzeP+A+kRI SteSh/ymdl205us0cAaTOpmQ/JZCA3PYa3AQcdGsKu+Yp1Ke9SPA1x4wCc9p3S5t anv/w+QAAS5UbsXFzj3JfxOJLwM/R8puGGmXxCXEw1/aXJAaKHGoaIw1uWyaxXYM 0KwQ3glpVJW7aMihbZvHmcBNVkymNPOCE+7jJzbrp7sTPHSvvs+RQmd3xVp2/qEv -----END CERTIFICATE-----Generated at Mon Oct 20 07:27:31 2025 by rpki-client