$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa File: 55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa (raw, json) Hash identifier: UIiTp83Sj3y3uXEG2NnTWJIytcW1YBUvSx+H7b8Y/Wg= Subject key identifier: 57:D8:06:C2:22:11:DA:15:63:5E:39:0F:B7:EC:5B:98:32:26:9C:08 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1AB0C202D7EF0D3DDEF5926E630E5D79A7ECF25A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa Signing time: Sun 09 Nov 2025 00:10:23 +0000 ROA not before: Sun 09 Nov 2025 00:10:23 +0000 ROA not after: Sun 14 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Nov 2025 00:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:b0:c2:02:d7:ef:0d:3d:de:f5:92:6e:63:0e:5d:79:a7:ec:f2:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 9 00:10:23 2025 GMT Not After : Dec 14 23:59:59 2025 GMT Subject: serialNumber=e22d7c2db7dc2884592024d532bce1b2695a04a0ca466928c12c31596dc3a44c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1d:1d:28:b4:2a:c3:fa:ac:4b:68:1e:35:e6: f7:8d:3c:26:83:fb:3e:a4:c3:58:1f:77:bb:8d:a2: f3:09:6a:10:dc:7a:9d:b2:a2:1c:b2:14:b4:f8:95: c4:80:f3:d7:ca:f9:a0:b2:86:44:79:2c:01:a9:3d: 29:af:9e:eb:15:5e:eb:fb:17:73:ae:3c:f2:b1:05: ba:56:bd:f5:b8:8e:59:68:1c:00:e8:03:e7:1a:88: 9d:f3:17:dc:be:c8:1a:69:71:6f:b0:45:95:61:a7: 22:9d:67:00:0b:ee:9a:9f:e6:85:a4:26:e3:e6:15: 3e:68:12:90:38:4e:0a:b8:75:f6:3b:29:6f:c6:a7: e0:28:22:dd:e6:4c:db:5c:88:ed:20:e9:aa:73:10: 12:2b:e7:73:df:64:d1:9d:f5:89:19:71:14:9b:dc: 7f:bc:55:04:53:67:a0:32:63:bf:dd:b3:75:e0:73: 3f:a7:a5:3e:21:4d:76:90:ad:ef:3f:49:27:3a:77: 9d:59:72:cf:46:5b:8e:8d:cd:c8:96:6c:d9:b0:ff: 93:a3:81:24:80:e3:17:12:81:74:f3:83:7f:ab:be: 25:cc:e2:ec:f3:3e:03:96:a1:f8:a5:d7:99:d2:dd: 23:da:95:8d:08:9f:12:49:e6:1f:4e:c9:d2:07:27: ca:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D8:06:C2:22:11:DA:15:63:5E:39:0F:B7:EC:5B:98:32:26:9C:08 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:800::/40 Signature Algorithm: sha256WithRSAEncryption 6c:ab:5e:10:84:d6:53:94:3d:70:88:da:c4:67:fe:db:d9:ad: 1c:7b:4e:ec:b7:80:05:5b:61:64:83:28:69:79:80:b7:fe:6d: 34:36:4f:64:fe:50:da:a1:04:8d:57:93:ee:f3:6c:39:5d:e5: c8:c0:87:09:cb:68:ae:8e:4b:f0:0d:90:55:72:53:e9:88:30: 85:63:aa:6f:df:28:af:62:e9:ff:b6:f5:2d:5c:65:d9:25:a0: 80:ce:db:62:0b:97:2a:02:6d:f7:88:11:da:13:56:ca:64:34: ca:73:41:92:3a:dd:61:a3:ca:e6:8f:d1:7c:33:30:76:dd:48: bf:16:41:88:fc:a7:f0:68:72:27:38:54:25:27:aa:80:65:ad: 30:63:c8:79:0f:47:23:c4:94:03:b3:9e:f1:6a:07:2a:11:8c: bf:88:87:bc:e9:e3:1e:60:2d:ac:e3:09:7e:ab:0c:2e:05:a8: 1f:70:57:e9:ee:c4:1d:2b:8a:f8:81:cb:34:66:94:89:01:74: 2c:35:41:5f:19:84:c5:f9:7e:26:0c:8e:3d:a1:d6:bf:41:02: 97:9d:2e:b1:bb:46:93:cf:d3:97:7c:e9:39:63:87:c9:51:ad: 6f:38:ae:51:e2:7b:db:3e:22:4b:03:49:87:1f:f4:84:0a:a4: 4d:82:b8:25 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUGrDCAtfvDT3e9ZJuYw5deafs8lowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwOTAwMTAyM1oX DTI1MTIxNDIzNTk1OVowejFJMEcGA1UEBRNAZTIyZDdjMmRiN2RjMjg4NDU5MjAy NGQ1MzJiY2UxYjI2OTVhMDRhMGNhNDY2OTI4YzEyYzMxNTk2ZGMzYTQ0YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmx0dKLQqw/qsS2geNeb3jTwmg/s+ pMNYH3e7jaLzCWoQ3HqdsqIcshS0+JXEgPPXyvmgsoZEeSwBqT0pr57rFV7r+xdz rjzysQW6Vr31uI5ZaBwA6APnGoid8xfcvsgaaXFvsEWVYacinWcAC+6an+aFpCbj 5hU+aBKQOE4KuHX2OylvxqfgKCLd5kzbXIjtIOmqcxASK+dz32TRnfWJGXEUm9x/ vFUEU2egMmO/3bN14HM/p6U+IU12kK3vP0knOnedWXLPRluOjc3IlmzZsP+To4Ek gOMXEoF084N/q74lzOLs8z4DlqH4pdeZ0t0j2pWNCJ8SSeYfTsnSByfKTQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFfYBsIiEdoVY145D7fsW5gyJpwIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1ZGU0ZDNjLWMyNjItNDRlMi05YjRiLTRkYjZiZWRjOGM2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaAgwDQYJKoZIhvcNAQELBQADggEBAGyrXhCE1lOUPXCI2sRn /tvZrRx7Tuy3gAVbYWSDKGl5gLf+bTQ2T2T+UNqhBI1Xk+7zbDld5cjAhwnLaK6O S/ANkFVyU+mIMIVjqm/fKK9i6f+29S1cZdkloIDO22ILlyoCbfeIEdoTVspkNMpz QZI63WGjyuaP0XwzMHbdSL8WQYj8p/Bocic4VCUnqoBlrTBjyHkPRyPElAOznvFq ByoRjL+Ih7zp4x5gLazjCX6rDC4FqB9wV+nuxB0riviByzRmlIkBdCw1QV8ZhMX5 fiYMjj2h1r9BApedLrG7RpPP05d86Tljh8lRrW84rlHie9s+IksDSYcf9IQKpE2C uCU= -----END CERTIFICATE-----Generated at Thu Nov 13 20:32:29 2025 by rpki-client