$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa File: 7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa (raw, json) Hash identifier: Zu+k7mVlPjvzrIsPcslCcj53BC58qP3YXpqX/xwHefs= Subject key identifier: 85:EC:87:CD:0A:84:5D:6C:7D:E8:D3:96:80:93:BE:DC:25:69:B2:EC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0A72C5CE3EC3435FB2DD004B931612B75BFD86AD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa Signing time: Wed 10 Sep 2025 00:00:54 +0000 ROA not before: Wed 10 Sep 2025 00:00:54 +0000 ROA not after: Wed 15 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da22::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 00:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:72:c5:ce:3e:c3:43:5f:b2:dd:00:4b:93:16:12:b7:5b:fd:86:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Sep 10 00:00:54 2025 GMT Not After : Oct 15 23:59:59 2025 GMT Subject: serialNumber=a84a92cbf6145e96541af610510f9aa8b51509ffe0ba1ce5a06255fbf8be6e50, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ee:51:fb:dd:ce:0c:6f:31:53:27:0a:5d:3d: 7d:fe:c3:76:fc:dd:7a:a1:05:42:fc:e8:b2:3b:8a: 6d:76:a0:2a:4a:d4:55:95:7c:a8:e0:59:c7:a9:6d: ed:00:38:af:3a:27:6b:57:fb:48:d8:a5:b8:bd:e6: 62:27:13:ea:68:d4:d4:06:31:7a:f5:68:e1:ae:54: 11:da:d3:ce:94:bb:b1:ac:01:34:3f:46:71:7c:db: ef:96:67:ff:32:c1:51:0a:19:42:89:40:25:6b:aa: 80:ec:97:19:a4:74:82:d8:b9:14:7c:dd:a3:fc:aa: b3:3b:f5:6a:5a:8f:a2:9e:00:45:97:57:7f:24:d8: f3:1a:19:09:a4:5a:c7:29:7f:f7:fa:aa:2f:4a:e0: 37:9a:44:6c:d2:24:b4:e1:b2:95:c4:a8:78:26:61: 38:29:2e:4f:cf:7f:b1:df:17:56:ad:15:4d:ab:a0: 02:e1:35:13:ab:92:47:12:d1:e1:ee:51:6d:48:db: 3b:e7:06:6e:25:e5:aa:77:04:1b:33:cf:bc:d1:35: 99:9c:df:f8:10:33:ed:07:a8:60:5d:bd:a9:22:72: 9b:d9:2b:ed:b3:18:62:7e:e2:a7:8e:b4:71:45:9a: c6:18:43:3a:89:46:6f:a7:42:8c:d9:44:c5:f8:16: 71:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:EC:87:CD:0A:84:5D:6C:7D:E8:D3:96:80:93:BE:DC:25:69:B2:EC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da22::/36 Signature Algorithm: sha256WithRSAEncryption af:c8:05:cc:4c:4f:14:84:2d:f2:c4:43:1e:f3:d6:25:26:6f: cb:61:44:3f:55:ae:57:3e:4d:81:34:18:e0:54:12:2b:3f:d2: 58:16:5a:cc:0a:2c:b9:00:c1:c1:71:5f:73:47:3f:ba:2c:65: 7d:a7:37:3a:46:97:58:dd:8d:af:46:cc:e1:33:93:43:6f:2a: bb:ae:e0:a3:fd:9c:32:4d:66:8e:46:fe:e2:6b:18:c5:9e:48: ee:88:3a:23:37:4f:9c:d4:7d:5f:1c:cd:60:a3:22:ce:7a:d9: 6e:39:37:03:b1:7c:7d:30:4c:0b:b7:23:1e:9f:24:f9:81:ad: d4:88:29:b0:d5:1a:5e:9e:e7:13:f2:26:63:54:99:08:07:83: c7:e4:d9:60:55:5d:22:47:e7:11:aa:d5:fc:f4:a1:68:47:63: d5:f8:ce:ae:38:2c:25:e6:9c:65:02:78:a0:f5:33:27:3f:68: 33:7e:7b:5d:cb:0f:f0:08:4c:04:f8:6b:85:75:aa:47:b9:61: 9e:6a:a5:a6:16:b4:47:19:74:1a:b3:ff:3d:52:26:57:b4:02: e1:eb:e5:3b:b2:05:ad:11:0a:22:55:14:4c:6f:c1:b2:a2:34: 4c:54:19:b2:6f:10:75:58:54:8a:c3:03:89:44:5f:61:01:11: 85:cc:73:77 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCnLFzj7DQ1+y3QBLkxYSt1v9hq0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDkxMDAwMDA1NFoX DTI1MTAxNTIzNTk1OVowejFJMEcGA1UEBRNAYTg0YTkyY2JmNjE0NWU5NjU0MWFm NjEwNTEwZjlhYThiNTE1MDlmZmUwYmExY2U1YTA2MjU1ZmJmOGJlNmU1MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+5R+93ODG8xUycKXT19/sN2/N16 oQVC/OiyO4ptdqAqStRVlXyo4FnHqW3tADivOidrV/tI2KW4veZiJxPqaNTUBjF6 9WjhrlQR2tPOlLuxrAE0P0ZxfNvvlmf/MsFRChlCiUAla6qA7JcZpHSC2LkUfN2j /KqzO/VqWo+ingBFl1d/JNjzGhkJpFrHKX/3+qovSuA3mkRs0iS04bKVxKh4JmE4 KS5Pz3+x3xdWrRVNq6AC4TUTq5JHEtHh7lFtSNs75wZuJeWqdwQbM8+80TWZnN/4 EDPtB6hgXb2pInKb2SvtsxhifuKnjrRxRZrGGEM6iUZvp0KM2UTF+BZxowIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIXsh80KhF1sfejTloCTvtwlabLsMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdlNGU3MTM3LTEzOGQtNGJhOC04YTE3LTgxYzNkNmQzYTk4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIgAwDQYJKoZIhvcNAQELBQADggEBAK/IBcxMTxSELfLEQx7z 1iUmb8thRD9Vrlc+TYE0GOBUEis/0lgWWswKLLkAwcFxX3NHP7osZX2nNzpGl1jd ja9GzOEzk0NvKruu4KP9nDJNZo5G/uJrGMWeSO6IOiM3T5zUfV8czWCjIs562W45 NwOxfH0wTAu3Ix6fJPmBrdSIKbDVGl6e5xPyJmNUmQgHg8fk2WBVXSJH5xGq1fz0 oWhHY9X4zq44LCXmnGUCeKD1Myc/aDN+e13LD/AITAT4a4V1qke5YZ5qpaYWtEcZ dBqz/z1SJle0AuHr5TuyBa0RCiJVFExvwbKiNExUGbJvEHVYVIrDA4lEX2EBEYXM c3c= -----END CERTIFICATE-----Generated at Thu Sep 18 11:36:21 2025 by rpki-client