$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa File: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (raw, json) Hash identifier: Dypn3u4AGsQ+wJvUDx2nJMdgHBGOGzSlkbUL8yU/Ykw= Subject key identifier: 21:65:CA:30:AF:4D:31:F7:49:1B:F8:ED:62:BD:4E:46:BF:D6:7C:14 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 770F68AD9A408B1390FF4E2424CB22E997A06BC9 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa Signing time: Sat 18 Oct 2025 00:00:00 +0000 ROA not before: Sat 18 Oct 2025 00:00:00 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:0f:68:ad:9a:40:8b:13:90:ff:4e:24:24:cb:22:e9:97:a0:6b:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Oct 18 00:00:00 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=9f05100e3c5c52588568bb11bafc5ce1a9dad29a251109d8fd2a3142e2c14232, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:75:99:6c:93:67:52:65:91:d9:0f:ad:e6:52: b8:5e:d3:cc:f0:dd:e7:ea:dc:2e:d0:6a:0e:65:aa: da:d7:65:75:7e:c9:6e:cb:7e:dc:ff:40:35:04:63: 6f:b6:1d:32:6a:35:84:fa:00:07:07:c9:31:9a:dd: b3:74:a3:4c:d6:7e:b3:b8:d0:9f:ff:9f:69:a0:fa: a0:aa:0d:d3:8c:d3:a0:62:90:ae:5b:65:69:79:72: 48:32:a0:86:2b:20:42:df:66:5b:7d:1c:6c:d5:b2: b5:22:b2:7e:02:17:cf:1c:fc:a4:3d:88:2a:60:83: a4:64:d4:e2:a6:91:b5:f6:c7:2f:30:83:e8:2c:16: 98:42:67:a0:25:c9:f9:53:e4:56:e4:ee:5c:81:ee: 5a:73:7a:58:ca:36:1d:af:6e:c1:d1:46:83:4a:20: 12:91:19:46:91:f6:63:eb:68:ff:6d:5c:41:0e:57: 58:19:d9:28:41:cf:6c:3b:42:c8:b5:6e:15:54:f7: 2b:6c:9d:c6:1d:ed:a4:1b:90:3e:31:79:b7:b4:92: bf:6f:75:26:63:57:74:2a:91:fc:87:39:2b:37:f7: 61:f5:75:20:90:09:bd:ee:8a:e3:19:20:f6:21:53: 30:2f:c5:45:f2:5b:ff:39:28:43:67:3c:01:ec:0c: a5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:65:CA:30:AF:4D:31:F7:49:1B:F8:ED:62:BD:4E:46:BF:D6:7C:14 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700::/48 Signature Algorithm: sha256WithRSAEncryption 88:bf:cc:04:23:a5:14:c9:aa:f3:5a:e1:8e:7d:02:5c:24:f6: 02:11:08:6e:36:e7:90:c7:5c:d7:be:08:50:b3:c9:99:b6:ce: 05:15:5d:34:ad:1b:e2:58:c7:dc:64:55:96:00:47:80:d4:c9: 86:cb:04:7b:3d:24:6b:2c:9b:c9:a3:7a:d4:c3:34:04:7b:fa: 96:4f:75:83:4b:b0:2a:a2:d1:94:ad:55:46:93:68:05:1f:10: 2a:50:37:b4:e7:c1:30:12:a6:33:ad:2a:e8:72:78:7c:9a:1e: 75:05:39:92:b5:f7:21:41:d8:40:5d:d8:0b:90:7d:76:d0:19: f1:84:e7:47:aa:2b:f3:87:7d:ef:81:1b:a3:13:f5:a2:70:aa: 32:ad:7e:19:4e:67:8a:2d:00:ed:d4:20:b1:39:0b:9a:9e:47: cc:84:7a:2a:8b:02:6a:53:e7:78:63:1d:ee:28:21:b3:09:fc: f5:50:f4:9d:f6:c8:fb:f7:29:5f:ef:e5:bf:ba:6d:8a:15:e6: e7:f4:e1:bb:15:22:a1:5a:e2:dd:0f:ec:7d:3c:ec:7d:d5:09: 82:73:99:2e:49:9d:5d:ba:61:df:fd:aa:c4:51:89:98:70:8b: 08:75:0b:4e:8f:4b:2a:60:64:78:97:2f:8b:20:44:89:5d:0d: 8b:01:fd:ff -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdw9orZpAixOQ/04kJMsi6Zega8kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTAxODAwMDAwMFoX DTI1MTEyMjIzNTk1OVowejFJMEcGA1UEBRNAOWYwNTEwMGUzYzVjNTI1ODg1Njhi YjExYmFmYzVjZTFhOWRhZDI5YTI1MTEwOWQ4ZmQyYTMxNDJlMmMxNDIzMjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHWZbJNnUmWR2Q+t5lK4XtPM8N3n 6twu0GoOZara12V1fsluy37c/0A1BGNvth0yajWE+gAHB8kxmt2zdKNM1n6zuNCf /59poPqgqg3TjNOgYpCuW2VpeXJIMqCGKyBC32ZbfRxs1bK1IrJ+AhfPHPykPYgq YIOkZNTippG19scvMIPoLBaYQmegJcn5U+RW5O5cge5ac3pYyjYdr27B0UaDSiAS kRlGkfZj62j/bVxBDldYGdkoQc9sO0LItW4VVPcrbJ3GHe2kG5A+MXm3tJK/b3Um Y1d0KpH8hzkrN/dh9XUgkAm97orjGSD2IVMwL8VF8lv/OShDZzwB7AyljwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCFlyjCvTTH3SRv47WK9Tka/1nwUMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2MxNTY0NjU5LWYzYWEtNDAyMS1hN2E1LThmNGIxYzJjNDk2My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABnAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQCIv8wEI6UUyarzWuGO fQJcJPYCEQhuNueQx1zXvghQs8mZts4FFV00rRviWMfcZFWWAEeA1MmGywR7PSRr LJvJo3rUwzQEe/qWT3WDS7AqotGUrVVGk2gFHxAqUDe058EwEqYzrSrocnh8mh51 BTmStfchQdhAXdgLkH120BnxhOdHqivzh33vgRujE/WicKoyrX4ZTmeKLQDt1CCx OQuankfMhHoqiwJqU+d4Yx3uKCGzCfz1UPSd9sj79ylf7+W/um2KFebn9OG7FSKh WuLdD+x9POx91QmCc5kuSZ1dumHf/arEUYmYcIsIdQtOj0sqYGR4ly+LIESJXQ2L Af3/ -----END CERTIFICATE-----Generated at Mon Oct 20 04:31:08 2025 by rpki-client