$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa File: 78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa (raw, json) Hash identifier: UX4FQMIID7OdG1XJ5rBkr1DWryBv43FGjbMqqdW2Bgg= Subject key identifier: 86:06:54:2D:EC:39:B2:A7:84:D5:48:0C:57:FC:B9:E1:4F:5D:C4:39 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 46621931570830CCA94A0BCC6BB0DCED8C5CA7D9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa Signing time: Wed 10 Sep 2025 00:00:49 +0000 ROA not before: Wed 10 Sep 2025 00:00:49 +0000 ROA not after: Wed 15 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 00:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:62:19:31:57:08:30:cc:a9:4a:0b:cc:6b:b0:dc:ed:8c:5c:a7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Sep 10 00:00:49 2025 GMT Not After : Oct 15 23:59:59 2025 GMT Subject: serialNumber=e464dab06c744ee09dc74ae4555f61ffd00bb3faadcca13e001e4267aeabfea8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:42:b7:38:48:d8:18:71:39:ae:ea:72:d9:a4: ef:52:75:ae:26:62:f2:9e:91:31:56:d9:5f:98:0b: e6:f9:32:58:8b:b0:0a:86:48:ff:78:4d:e3:0c:92: 86:a5:b5:5c:c9:48:1b:37:1e:5d:75:a6:62:f9:b2: 0d:26:c0:8b:3a:6a:a0:2f:ea:84:f5:f0:60:16:85: 0e:d3:45:da:f6:64:fc:d5:2f:ce:e4:ad:83:67:06: 93:96:db:47:c1:e8:9f:3a:81:b6:4d:e3:e6:95:76: 24:a4:5c:a3:93:20:a0:c7:38:2e:a7:1a:64:bf:30: 7e:54:e5:cb:00:32:64:dd:6e:50:6d:96:55:c6:bd: b7:5d:1b:71:2d:a3:95:89:00:f3:43:54:2d:91:7a: 81:d6:0e:d5:fb:c8:ab:ec:ef:3b:11:f1:4d:10:0b: 92:bb:1a:0d:fb:6c:23:96:39:82:b8:e4:aa:7b:94: bd:9a:25:95:3a:d7:cf:d3:73:fc:5d:2f:7c:ce:57: bb:a4:49:d9:59:32:a9:f1:29:fc:23:0b:64:ab:bc: 7e:af:83:83:92:1d:ef:f6:64:bd:c1:47:5f:26:7f: 64:25:dd:3d:6a:f2:92:a9:69:71:d5:46:a9:e5:25: 1d:a4:b7:7e:fb:5c:20:93:df:d6:28:57:9f:af:be: 5f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:06:54:2D:EC:39:B2:A7:84:D5:48:0C:57:FC:B9:E1:4F:5D:C4:39 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:9000::/40 Signature Algorithm: sha256WithRSAEncryption c6:59:6d:a8:99:6f:23:89:c2:b4:1e:a6:3c:68:5a:ff:b2:8f: 6b:b8:10:fe:86:f4:40:84:7b:c0:c1:7f:74:15:ea:c4:44:5f: c1:f4:cc:3a:53:c6:ea:93:6d:74:be:31:b1:90:45:00:ce:12: 44:76:29:5e:af:58:50:51:5e:bc:de:5f:4e:cc:4d:b9:9e:10: 09:39:1a:b6:ba:a5:49:fb:bb:91:ac:9f:83:5b:da:9c:e5:41: ff:c7:86:1e:97:83:40:50:b2:36:5a:f2:a6:4a:58:68:35:96: 40:64:45:08:11:0c:d8:e4:f3:84:f9:72:c3:39:4a:93:58:77: 0e:65:7f:39:81:f9:06:5d:07:92:86:72:b3:9a:e7:04:c2:d2: b8:1d:b4:16:11:2a:c4:f4:a3:34:f8:20:2a:a7:61:38:c4:e7: bd:af:7d:d0:79:e6:27:94:0a:49:d2:f1:13:51:90:41:19:76: 80:e6:eb:f9:f2:fe:49:c1:45:c3:1c:4d:3b:a0:18:07:21:3c: fe:ca:59:ed:60:b1:8c:b4:4d:34:a5:c1:7d:69:d9:25:3b:84: c2:c9:1d:70:82:3c:c8:44:08:e6:a8:53:75:e1:0f:f1:74:ca: 21:27:73:06:f3:a8:c5:e6:a1:49:08:2a:1f:eb:05:0e:3e:3f: 8a:2b:d4:ff -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURmIZMVcIMMypSgvMa7Dc7Yxcp9kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDkxMDAwMDA0OVoX DTI1MTAxNTIzNTk1OVowejFJMEcGA1UEBRNAZTQ2NGRhYjA2Yzc0NGVlMDlkYzc0 YWU0NTU1ZjYxZmZkMDBiYjNmYWFkY2NhMTNlMDAxZTQyNjdhZWFiZmVhODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0K3OEjYGHE5rupy2aTvUnWuJmLy npExVtlfmAvm+TJYi7AKhkj/eE3jDJKGpbVcyUgbNx5ddaZi+bINJsCLOmqgL+qE 9fBgFoUO00Xa9mT81S/O5K2DZwaTlttHweifOoG2TePmlXYkpFyjkyCgxzgupxpk vzB+VOXLADJk3W5QbZZVxr23XRtxLaOViQDzQ1QtkXqB1g7V+8ir7O87EfFNEAuS uxoN+2wjljmCuOSqe5S9miWVOtfP03P8XS98zle7pEnZWTKp8Sn8Iwtkq7x+r4OD kh3v9mS9wUdfJn9kJd09avKSqWlx1Uap5SUdpLd++1wgk9/WKFefr75fvwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIYGVC3sObKnhNVIDFf8ueFPXcQ5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc4MzQzNzU0LTVkNmUtNGRlZC05YjRjLWQ5ZDcwYjZjY2FjOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9ZAwDQYJKoZIhvcNAQELBQADggEBAMZZbaiZbyOJwrQepjxo Wv+yj2u4EP6G9ECEe8DBf3QV6sREX8H0zDpTxuqTbXS+MbGQRQDOEkR2KV6vWFBR XrzeX07MTbmeEAk5Gra6pUn7u5Gsn4Nb2pzlQf/Hhh6Xg0BQsjZa8qZKWGg1lkBk RQgRDNjk84T5csM5SpNYdw5lfzmB+QZdB5KGcrOa5wTC0rgdtBYRKsT0ozT4ICqn YTjE572vfdB55ieUCknS8RNRkEEZdoDm6/ny/knBRcMcTTugGAchPP7KWe1gsYy0 TTSlwX1p2SU7hMLJHXCCPMhECOaoU3XhD/F0yiEncwbzqMXmoUkIKh/rBQ4+P4or 1P8= -----END CERTIFICATE-----Generated at Thu Sep 18 07:51:51 2025 by rpki-client