$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f704d7c-8714-47ad-ab1e-df728b87b2a4.roa File: 1f704d7c-8714-47ad-ab1e-df728b87b2a4.roa (raw, json) Hash identifier: M+5ikd3+VQ/t9Ds1IUkYhYHbeGotuoyroesFcW2a8Cs= Subject key identifier: 30:57:83:88:05:88:52:6F:4A:0D:88:D9:41:75:D0:EB:5E:E0:FB:45 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 21193D59979D46156595544A8360EFA4A1D52A08 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f704d7c-8714-47ad-ab1e-df728b87b2a4.roa Signing time: Sun 09 Nov 2025 00:40:04 +0000 ROA not before: Sun 09 Nov 2025 00:40:04 +0000 ROA not after: Sun 14 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf8:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Nov 2025 00:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:19:3d:59:97:9d:46:15:65:95:54:4a:83:60:ef:a4:a1:d5:2a:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 9 00:40:04 2025 GMT Not After : Dec 14 23:59:59 2025 GMT Subject: serialNumber=24ab9dc2a00572c144987a7112d322c64b5945f6acfff9481c3c1344de31c69e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f3:a5:3a:1f:d6:32:b7:c7:c8:21:52:d7:92: 12:db:4b:a1:dc:36:e4:ba:74:18:17:f1:da:8a:9f: a6:27:67:d4:d2:ae:6a:32:b7:4a:53:63:d9:0d:3f: 1c:ef:16:78:ea:ad:64:dc:b7:3a:1a:4d:72:39:d6: 65:f8:f0:d7:52:c4:f1:d5:99:fb:89:1e:c2:2e:5a: 37:72:95:6d:cf:e8:d0:6e:78:0f:7d:a8:ba:4b:36: 99:f3:ea:71:dc:da:58:04:44:6a:c3:a7:93:4c:8e: 35:02:cb:d1:85:b1:6f:23:99:c7:b2:4b:75:d7:86: 80:73:3d:92:c8:0c:55:8b:b1:9f:e2:bd:46:a9:e8: d2:7f:7e:ac:e4:e5:fd:ad:7c:9b:b8:f9:dd:8d:16: 0d:5a:c4:c9:a7:dc:41:82:41:4f:a0:1d:5c:e2:87: da:c3:18:8f:dd:37:ef:9b:24:54:62:29:eb:2d:8f: 83:a2:db:07:69:5b:08:50:39:62:2c:9f:18:8c:8f: 93:93:92:00:ce:4b:97:97:11:72:cb:ff:51:b0:7e: 83:9e:09:46:64:6b:29:95:6a:63:22:50:40:92:09: c2:56:89:8e:78:5b:cc:ed:3f:2c:7b:11:f5:cf:a2: 46:0f:c8:c0:04:3e:cc:63:d0:86:f0:eb:3c:f0:1a: 39:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:57:83:88:05:88:52:6F:4A:0D:88:D9:41:75:D0:EB:5E:E0:FB:45 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f704d7c-8714-47ad-ab1e-df728b87b2a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf8:7000::/40 Signature Algorithm: sha256WithRSAEncryption 48:ce:a8:c3:e8:df:ab:ac:3d:aa:52:b8:2e:fb:d4:68:3f:10: 38:59:cf:ad:64:c9:93:38:a9:dd:06:42:f8:2b:54:5a:26:a6: 55:d5:e9:6f:22:62:68:bb:d0:91:3a:ea:35:85:8f:f4:8e:5d: ac:7e:e4:e2:5c:6d:b6:8c:d8:a9:44:55:70:41:3e:8b:a2:2f: 39:59:26:3e:73:77:e1:0b:76:ef:54:54:0f:75:5c:8d:b7:c8: 12:7c:d0:f2:c6:d7:91:5b:c8:1d:90:c8:53:a1:ae:3b:da:eb: d0:38:55:68:d1:19:2e:6b:92:e4:90:fa:6d:5e:84:e1:fc:0e: 1c:15:6c:dd:b6:49:41:67:20:d9:01:b5:e5:86:3c:62:7f:5a: 7a:f9:cc:34:b2:1b:ff:0c:99:d4:9a:62:e0:bb:65:8b:2c:d3: 69:1c:68:c5:29:cd:a1:32:db:4b:49:4f:73:69:3b:7a:d3:d3: 7a:d3:50:2c:e6:20:c4:f7:b7:bf:a4:14:1f:8c:e1:6e:c0:62: 9e:09:58:c5:f8:3a:21:c1:53:e6:7b:ee:6d:22:fc:6e:c8:78: 8f:dd:fb:30:55:b3:f7:37:d1:09:54:12:12:5b:6f:7b:ac:e9: 52:38:1f:68:78:50:6e:92:18:8e:9f:2c:91:99:2b:db:00:96: 19:32:56:7d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUIRk9WZedRhVllVRKg2DvpKHVKggwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwOTAwNDAwNFoX DTI1MTIxNDIzNTk1OVowejFJMEcGA1UEBRNAMjRhYjlkYzJhMDA1NzJjMTQ0OTg3 YTcxMTJkMzIyYzY0YjU5NDVmNmFjZmZmOTQ4MWMzYzEzNDRkZTMxYzY5ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfOlOh/WMrfHyCFS15IS20uh3Dbk unQYF/Haip+mJ2fU0q5qMrdKU2PZDT8c7xZ46q1k3Lc6Gk1yOdZl+PDXUsTx1Zn7 iR7CLlo3cpVtz+jQbngPfai6SzaZ8+px3NpYBERqw6eTTI41AsvRhbFvI5nHskt1 14aAcz2SyAxVi7Gf4r1GqejSf36s5OX9rXybuPndjRYNWsTJp9xBgkFPoB1c4ofa wxiP3TfvmyRUYinrLY+DotsHaVsIUDliLJ8YjI+Tk5IAzkuXlxFyy/9RsH6DnglG ZGsplWpjIlBAkgnCVomOeFvM7T8sexH1z6JGD8jABD7MY9CG8Os88Bo5DQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDBXg4gFiFJvSg2I2UF10Ote4PtFMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFmNzA0ZDdjLTg3MTQtNDdhZC1hYjFlLWRmNzI4Yjg3YjJhNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+HAwDQYJKoZIhvcNAQELBQADggEBAEjOqMPo36usPapSuC77 1Gg/EDhZz61kyZM4qd0GQvgrVFomplXV6W8iYmi70JE66jWFj/SOXax+5OJcbbaM 2KlEVXBBPouiLzlZJj5zd+ELdu9UVA91XI23yBJ80PLG15FbyB2QyFOhrjva69A4 VWjRGS5rkuSQ+m1ehOH8DhwVbN22SUFnINkBteWGPGJ/Wnr5zDSyG/8MmdSaYuC7 ZYss02kcaMUpzaEy20tJT3NpO3rT03rTUCzmIMT3t7+kFB+M4W7AYp4JWMX4OiHB U+Z77m0i/G7IeI/d+zBVs/c30QlUEhJbb3us6VI4H2h4UG6SGI6fLJGZK9sAlhky Vn0= -----END CERTIFICATE-----Generated at Wed Nov 12 17:58:14 2025 by rpki-client