$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa File: 55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa (raw, json) Hash identifier: GWFw0EKQXxL9jRuqqAYjVRXVPn5KKYZCx6eOCdGKugU= Subject key identifier: 4D:D7:19:72:EE:7E:76:77:AD:F9:D3:72:E2:27:95:98:5F:6B:18:ED Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4B1A47BE26CB4ED4BFF1F701A1EA887998175729 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa Signing time: Wed 15 Oct 2025 00:00:43 +0000 ROA not before: Wed 15 Oct 2025 00:00:43 +0000 ROA not after: Wed 19 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 00:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:1a:47:be:26:cb:4e:d4:bf:f1:f7:01:a1:ea:88:79:98:17:57:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 15 00:00:43 2025 GMT Not After : Nov 19 23:59:59 2025 GMT Subject: serialNumber=22a42ac3bffe10778376f5576ddd4e1932364a94e22eed6b3493d650f72e4ed1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:88:e5:b8:fb:11:3c:f6:87:7f:b1:ca:84:9d: 80:8f:96:a1:d3:de:46:ee:96:e3:65:7c:85:f1:4a: 97:3c:98:80:18:6e:db:f7:23:8e:b4:ad:05:aa:1a: c3:33:bf:a7:62:80:30:93:8e:98:56:c3:c0:52:ee: c5:f8:14:40:77:46:34:69:02:9d:51:46:ea:84:81: 35:d2:78:79:58:78:39:24:6f:c4:db:ba:0d:3d:1b: 05:ae:20:87:1a:a7:16:dd:98:e9:cb:83:6a:91:19: 3c:91:ed:15:3c:5c:f4:0c:9e:7d:0f:fc:f3:86:6c: 88:e6:4c:2e:b1:e0:58:56:bf:25:90:99:8e:8e:28: d1:c7:5e:67:dc:8b:dc:f9:e2:18:9b:18:ec:c7:ca: 75:4f:67:2f:40:ef:96:82:12:03:b7:b3:56:bd:f9: d9:35:47:19:b2:2a:03:66:53:9f:8a:2b:ae:54:4b: 1c:4d:c3:48:56:85:70:90:16:21:c3:53:33:06:54: 5b:e1:00:a7:9b:4f:09:6b:6d:63:2a:3b:cd:81:cf: 52:dd:f9:c3:d5:e2:8e:c0:8a:7a:0a:42:85:45:34: 96:c5:1e:8f:ba:66:52:69:12:f8:3f:20:bb:98:cb: 16:0d:aa:43:5c:2c:1d:52:0d:0f:37:cc:15:39:e4: 9a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D7:19:72:EE:7E:76:77:AD:F9:D3:72:E2:27:95:98:5F:6B:18:ED X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:800::/40 Signature Algorithm: sha256WithRSAEncryption cb:17:73:d0:82:42:9c:46:af:0f:dd:56:4c:c7:4d:6d:5c:95: 07:43:65:4a:0a:d7:7f:46:3e:4c:bf:1a:b8:7c:03:64:cc:50: 52:e7:2d:4f:99:05:ae:88:a1:6c:4f:ff:97:1a:1d:d2:04:2a: 4a:f7:20:7d:16:d8:af:5d:97:2c:cf:4f:19:d6:ae:82:ec:81: a2:ab:74:06:be:0a:94:49:15:84:1b:14:0b:a0:1e:89:60:1c: c9:83:ae:5f:92:f6:28:28:de:94:a1:33:ca:43:cc:02:50:0b: f2:b5:e3:79:1c:70:d5:41:a0:c5:79:5c:1a:7a:bd:b2:4d:d6: de:33:ff:77:d0:0e:d3:e4:23:c7:bb:21:0c:e6:6b:a9:7c:9f: 83:37:73:f8:6b:92:47:d3:36:95:04:2c:44:4e:1c:a6:69:2d: 84:14:ef:0b:99:fe:8e:74:5f:53:e8:de:87:1a:20:d1:7f:f3: c0:a8:93:f3:ec:46:47:f6:36:3a:97:4b:92:97:05:f7:78:36: 1e:96:08:69:f7:04:2b:86:2c:b4:1c:67:9c:85:5b:aa:82:3a: 03:86:0d:d5:bc:e0:a8:a1:f3:6d:df:a5:c0:f7:9e:19:36:f1: 48:c2:3a:88:d5:f6:96:95:95:82:df:81:ca:a9:68:4c:8f:e2: bb:14:23:67 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUSxpHvibLTtS/8fcBoeqIeZgXVykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAxNTAwMDA0M1oX DTI1MTExOTIzNTk1OVowejFJMEcGA1UEBRNAMjJhNDJhYzNiZmZlMTA3NzgzNzZm NTU3NmRkZDRlMTkzMjM2NGE5NGUyMmVlZDZiMzQ5M2Q2NTBmNzJlNGVkMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmojluPsRPPaHf7HKhJ2Aj5ah095G 7pbjZXyF8UqXPJiAGG7b9yOOtK0FqhrDM7+nYoAwk46YVsPAUu7F+BRAd0Y0aQKd UUbqhIE10nh5WHg5JG/E27oNPRsFriCHGqcW3Zjpy4NqkRk8ke0VPFz0DJ59D/zz hmyI5kwuseBYVr8lkJmOjijRx15n3Ivc+eIYmxjsx8p1T2cvQO+WghIDt7NWvfnZ NUcZsioDZlOfiiuuVEscTcNIVoVwkBYhw1MzBlRb4QCnm08Ja21jKjvNgc9S3fnD 1eKOwIp6CkKFRTSWxR6PumZSaRL4PyC7mMsWDapDXCwdUg0PN8wVOeSa6wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFE3XGXLufnZ3rfnTcuInlZhfaxjtMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1ZGU0ZDNjLWMyNjItNDRlMi05YjRiLTRkYjZiZWRjOGM2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaAgwDQYJKoZIhvcNAQELBQADggEBAMsXc9CCQpxGrw/dVkzH TW1clQdDZUoK139GPky/Grh8A2TMUFLnLU+ZBa6IoWxP/5caHdIEKkr3IH0W2K9d lyzPTxnWroLsgaKrdAa+CpRJFYQbFAugHolgHMmDrl+S9igo3pShM8pDzAJQC/K1 43kccNVBoMV5XBp6vbJN1t4z/3fQDtPkI8e7IQzma6l8n4M3c/hrkkfTNpUELERO HKZpLYQU7wuZ/o50X1Po3ocaINF/88Cok/PsRkf2NjqXS5KXBfd4Nh6WCGn3BCuG LLQcZ5yFW6qCOgOGDdW84Kih823fpcD3nhk28UjCOojV9paVlYLfgcqpaEyP4rsU I2c= -----END CERTIFICATE-----Generated at Thu Oct 16 06:27:34 2025 by rpki-client