$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa File: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (raw, json) Hash identifier: YLQMN7Z3nUmBI19bUaX89a9dPbY1t5zKEwTMwe12/zM= Subject key identifier: 85:C9:28:EC:CA:8E:FD:8E:BE:6E:B0:61:32:20:7E:05:97:63:8E:A0 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 10ABDE50260D3FB931DDDDD7EBF93A154D357144 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa Signing time: Fri 17 Oct 2025 00:01:26 +0000 ROA not before: Fri 17 Oct 2025 00:01:26 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ab:de:50:26:0d:3f:b9:31:dd:dd:d7:eb:f9:3a:15:4d:35:71:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Oct 17 00:01:26 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=67104a3c994131f7c42c84b80d3b402c3a1e9ad9e3ad3df61bcc07b3c8cd5ff8, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:39:83:d6:02:06:b2:95:cb:99:94:96:f0:af: d0:59:3a:0c:89:31:2c:86:8b:ac:91:14:0d:66:3c: 3f:10:8f:98:68:df:1d:18:ee:87:ea:44:9f:68:e1: d8:02:e1:8e:c7:48:45:e7:f2:48:63:f7:54:7f:3d: 3c:4b:a3:f8:6a:14:69:2f:94:93:d0:6b:1a:2e:8f: 40:4b:7b:3a:12:09:ec:4f:68:07:34:9c:c3:19:35: 07:fd:49:06:ed:06:dc:bf:56:63:93:3f:f8:80:c1: 60:19:d9:d0:ec:a6:c9:cf:e6:12:18:f1:d0:b9:82: 26:a6:7d:77:7a:5d:c4:e7:4c:f6:e5:87:97:28:f7: 90:f2:14:ce:4e:8c:9d:0b:6b:52:ca:82:b9:68:46: a2:19:c5:14:96:cc:74:de:aa:27:b5:ac:83:e0:4f: 11:80:b1:48:b4:69:a9:bf:d6:b2:6e:2b:58:31:fe: 1c:57:a2:c9:43:83:1a:3c:06:be:ca:6d:81:e2:e7: fe:fe:a3:1f:26:f3:4e:29:3f:8b:ef:d3:79:b0:ec: b4:b9:62:2f:05:01:25:4a:55:2a:1f:76:f4:1e:30: 04:ad:5a:a9:fc:1a:06:99:9d:65:38:8e:6d:9b:fa: 97:76:62:98:04:c8:71:ce:1c:8b:f3:81:1e:02:76: 0f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C9:28:EC:CA:8E:FD:8E:BE:6E:B0:61:32:20:7E:05:97:63:8E:A0 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.236.0/23 Signature Algorithm: sha256WithRSAEncryption 95:7f:8d:c1:9b:aa:71:12:5b:f8:6e:1d:28:5a:f0:9b:7a:7f: d7:4c:3f:cd:e6:9a:82:10:2a:84:65:6f:ef:7e:bc:73:75:79: b5:ab:3d:ac:29:e4:42:90:31:57:c1:31:79:1a:f7:f5:7b:a6: 2e:5f:0a:90:2f:58:83:c2:6c:3f:53:c7:3d:0c:64:05:73:48: 22:ad:5e:d2:64:96:ca:b4:cb:c1:21:4e:04:40:8d:55:82:4f: 8e:6f:a9:91:de:db:0e:f9:5b:4c:06:69:31:b7:c9:4f:8e:e7: 97:91:4f:78:26:73:8d:67:72:5b:f1:46:57:aa:0e:31:71:ea: 4e:3b:b2:1b:ff:bb:5b:c1:cd:b8:8c:65:65:1d:6b:25:21:62: 72:40:79:a8:d0:45:29:35:db:51:c3:08:55:45:02:fe:a0:16: b7:bc:cd:95:01:5c:08:f2:79:ce:63:0d:cc:f9:02:49:95:6e: 7b:8a:f3:9a:7a:2c:33:c2:e0:c4:77:db:f2:7a:23:fe:4d:e6: 1d:b3:28:b9:b0:fa:5c:75:a3:68:0a:32:ad:0e:0c:de:a8:e7: b6:ba:27:78:82:0d:3e:69:70:46:fc:0f:94:12:a2:b6:ae:b5: 50:04:71:dd:72:c4:03:6c:6d:5c:15:43:17:b5:b4:4d:50:d4: 9c:02:f9:bf -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUEKveUCYNP7kx3d3X6/k6FU01cUQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTAxNzAwMDEyNloX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNANjcxMDRhM2M5OTQxMzFmN2M0MmM4 NGI4MGQzYjQwMmMzYTFlOWFkOWUzYWQzZGY2MWJjYzA3YjNjOGNkNWZmODEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTmD1gIGspXLmZSW8K/QWToMiTEs houskRQNZjw/EI+YaN8dGO6H6kSfaOHYAuGOx0hF5/JIY/dUfz08S6P4ahRpL5ST 0GsaLo9AS3s6EgnsT2gHNJzDGTUH/UkG7Qbcv1Zjkz/4gMFgGdnQ7KbJz+YSGPHQ uYImpn13el3E50z25YeXKPeQ8hTOToydC2tSyoK5aEaiGcUUlsx03qontayD4E8R gLFItGmpv9aybitYMf4cV6LJQ4MaPAa+ym2B4uf+/qMfJvNOKT+L79N5sOy0uWIv BQElSlUqH3b0HjAErVqp/BoGmZ1lOI5tm/qXdmKYBMhxzhyL84EeAnYPIwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIXJKOzKjv2Ovm6wYTIgfgWXY46gMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2E3OGI5MGRmLTIzM2ItNGVjNi04OWQyLWRlMjdhYzJkYzA0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynsMA0GCSqGSIb3DQEBCwUAA4IBAQCVf43Bm6pxElv4bh0oWvCb en/XTD/N5pqCECqEZW/vfrxzdXm1qz2sKeRCkDFXwTF5Gvf1e6YuXwqQL1iDwmw/ U8c9DGQFc0girV7SZJbKtMvBIU4EQI1Vgk+Ob6mR3tsO+VtMBmkxt8lPjueXkU94 JnONZ3Jb8UZXqg4xcepOO7Ib/7tbwc24jGVlHWslIWJyQHmo0EUpNdtRwwhVRQL+ oBa3vM2VAVwI8nnOYw3M+QJJlW57ivOaeiwzwuDEd9vyeiP+TeYdsyi5sPpcdaNo CjKtDgzeqOe2uid4gg0+aXBG/A+UEqK2rrVQBHHdcsQDbG1cFUMXtbRNUNScAvm/ -----END CERTIFICATE-----Generated at Mon Oct 20 09:46:50 2025 by rpki-client