$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa File: 7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa (raw, json) Hash identifier: 8tV20QeEVAzkGJad1NIqrWFinr84j7kbxc04PzIU2hA= Subject key identifier: F1:6D:D7:E5:1D:F9:01:66:95:4E:F8:59:E0:1E:5B:F1:20:28:9B:BB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 01221DD9905735A4850902131075E5B637E63A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa Signing time: Fri 31 Oct 2025 00:00:03 +0000 ROA not before: Fri 31 Oct 2025 00:00:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da22::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:22:1d:d9:90:57:35:a4:85:09:02:13:10:75:e5:b6:37:e6:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 31 00:00:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=5890fbbae4ad1821af5e02148a7f9ec93c0391881906d2db28d6530652a1d617, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ff:5a:54:18:ec:f6:19:eb:66:05:1f:93:9c: 6e:96:19:a8:63:46:ba:27:6f:67:72:ee:78:89:7a: d9:86:d9:01:d6:14:38:6e:e2:4b:f3:ae:37:4a:d4: f7:07:ae:f8:87:3d:0d:17:8d:ef:39:90:d9:d3:e9: d7:6c:d0:24:78:50:d8:f8:b3:69:75:63:95:3d:cb: ac:f3:ae:07:64:00:1d:8c:ae:53:9a:b1:ef:1b:cb: 73:36:5c:b7:ad:c7:90:38:a3:a3:ee:63:2a:d6:bd: ef:1c:5d:3b:d0:af:45:f4:66:9f:22:17:8d:19:a4: f6:2e:4a:14:d5:94:76:27:e6:5b:d5:72:64:39:84: fb:9c:95:a9:76:44:af:43:ca:10:e3:56:e2:9e:bc: 93:01:65:a0:37:7c:9b:f6:fe:bc:fc:73:31:b0:fb: 0f:1f:9b:d3:e2:ee:c3:90:fb:29:51:e9:af:37:a9: e9:96:b7:fc:5e:96:36:f2:c5:a0:cc:79:17:d4:e1: 6b:38:05:25:c2:42:35:0a:95:73:44:e5:03:e5:66: db:97:b1:98:8c:42:ac:2e:58:e1:18:9f:96:c7:c5: 17:be:de:fc:a5:89:68:08:0f:72:df:a2:0e:40:d7: 13:6c:e5:43:9e:30:ef:7a:b4:e4:d9:4a:e0:aa:af: 2b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6D:D7:E5:1D:F9:01:66:95:4E:F8:59:E0:1E:5B:F1:20:28:9B:BB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da22::/36 Signature Algorithm: sha256WithRSAEncryption c8:a4:1b:1e:c0:af:f2:c9:b7:96:d7:96:3c:74:0a:0d:98:2d: d9:0c:c2:53:4f:b5:c8:98:42:c5:f1:d1:b2:d3:5f:9e:1b:e0: b0:b9:76:ef:fc:b3:9b:39:d3:9c:62:97:b1:4b:94:76:60:a2: 89:92:8f:95:b0:4d:db:0f:86:cb:ba:c5:cd:b0:e4:9f:d9:79: 9a:32:cd:8e:1a:02:68:ae:fc:68:a1:56:0d:ae:95:b9:37:7c: 06:92:e7:84:15:0a:7a:27:e8:9b:06:d3:c3:af:be:ba:5e:72: f9:3f:68:ee:e3:ac:82:13:ad:7d:d4:60:8c:c9:8c:55:2a:a4: 53:d2:d1:db:fc:ae:c2:31:a7:8c:a5:c2:f2:82:e3:86:77:17: 46:ff:5a:4f:6c:a3:b7:60:89:86:9f:11:f2:63:7b:82:6c:e8: bb:79:1c:ab:fd:8b:ff:4c:0a:fe:af:3c:d1:bc:2b:79:03:02: 68:ea:4b:87:a1:b9:3d:25:2b:9a:58:87:8f:8d:8d:55:2e:5e: 34:18:e0:e9:c6:25:80:70:f5:bb:c3:2d:4f:71:1b:38:66:f0: f5:6e:f2:31:7f:4f:aa:b3:f9:be:77:9e:cb:5e:60:6a:62:53: c7:e5:c5:90:f5:5a:ee:10:c2:fd:f8:5c:a2:42:31:3e:f8:a5: 6c:58:5c:27 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgITASId2ZBXNaSFCQITEHXltjfmOjANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTFGNjM1RjAwMDAxMTAvBgNVBAUTKDQwNzY4MjU1MjRE MkM2NkQyRTEwNDM2RkU2NUU5M0U4QzFCRDRBMzcwHhcNMjUxMDMxMDAwMDAzWhcN MjUxMjA1MjM1OTU5WjB6MUkwRwYDVQQFE0A1ODkwZmJiYWU0YWQxODIxYWY1ZTAy MTQ4YTdmOWVjOTNjMDM5MTg4MTkwNmQyZGIyOGQ2NTMwNjUyYTFkNjE3MS0wKwYD VQQDEyRjMGJmMGZlOC03MTdjLTRmNzItOWI0NS1jOWM1MTkxMzJhODEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU/1pUGOz2GetmBR+TnG6WGahjRron b2dy7niJetmG2QHWFDhu4kvzrjdK1PcHrviHPQ0Xje85kNnT6dds0CR4UNj4s2l1 Y5U9y6zzrgdkAB2MrlOase8by3M2XLetx5A4o6PuYyrWve8cXTvQr0X0Zp8iF40Z pPYuShTVlHYn5lvVcmQ5hPuclal2RK9DyhDjVuKevJMBZaA3fJv2/rz8czGw+w8f m9Pi7sOQ+ylR6a83qemWt/xeljbyxaDMeRfU4Ws4BSXCQjUKlXNE5QPlZtuXsZiM QqwuWOEYn5bHxRe+3vyliWgID3Lfog5A1xNs5UOeMO96tOTZSuCqryuvAgMBAAGj ggJKMIICRjAdBgNVHQ4EFgQU8W3X5R35AWaVTvhZ4B5b8SAom7swHwYDVR0jBBgw FoAUQHaCVSTSxm0uEENv5l6T6MG9SjcwDgYDVR0PAQH/BAQDAgeAMH4GCCsGAQUF BwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBv c2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL1FIYUNWU1RT eG0wdUVFTnY1bDZUNk1HOVNqYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEv N2U0ZTcxMzctMTM4ZC00YmE4LThhMTctODFjM2Q2ZDNhOThiLnJvYTCBlQYDVR0f BIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFt YXpvbmF3cy5jb20vdm9sdW1lLzA4YzJmMjY0LTIzZjktNDlmYi05ZDQzLWY4YjUw YmVjOTI2MS83YmExNzg2My1hNjEzLTQxOTctOWVkNS1iZWRhNmE4OTg2OWYuY3Js MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQkBtoiADANBgkqhkiG9w0BAQsFAAOCAQEAyKQbHsCv8sm3lteWPHQK DZgt2QzCU0+1yJhCxfHRstNfnhvgsLl27/yzmznTnGKXsUuUdmCiiZKPlbBN2w+G y7rFzbDkn9l5mjLNjhoCaK78aKFWDa6VuTd8BpLnhBUKeifomwbTw6++ul5y+T9o 7uOsghOtfdRgjMmMVSqkU9LR2/yuwjGnjKXC8oLjhncXRv9aT2yjt2CJhp8R8mN7 gmzou3kcq/2L/0wK/q880bwreQMCaOpLh6G5PSUrmliHj42NVS5eNBjg6cYlgHD1 u8MtT3EbOGbw9W7yMX9PqrP5vneey15gamJTx+XFkPVa7hDC/fhcokIxPvilbFhc Jw== -----END CERTIFICATE-----Generated at Wed Nov 5 21:51:07 2025 by rpki-client