$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa File: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (raw, json) Hash identifier: PyXXgF7jZeeI/jfjgoOYCYtIgznbSNqjPe65PJg8GyQ= Subject key identifier: C1:7C:10:B2:B0:5C:F6:98:D7:DA:11:18:0D:79:2C:37:54:BB:F4:F3 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3DC2DC7E0F3F3877839ED389230374A2535904CA Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa Signing time: Fri 17 Oct 2025 00:10:06 +0000 ROA not before: Fri 17 Oct 2025 00:10:06 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c2:dc:7e:0f:3f:38:77:83:9e:d3:89:23:03:74:a2:53:59:04:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Oct 17 00:10:06 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=db1b9a18e355837ec09a529f9187342f95f17fd3c35312d40553a8382b2561ba, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:22:19:a8:50:59:7f:e6:b6:db:97:d4:7c:c1: a9:ce:19:2e:ad:91:b2:87:e1:19:38:31:34:f0:17: 0d:8e:8f:1b:bf:3f:d7:0b:49:c4:38:f1:4b:f6:d3: b8:84:0a:dc:c6:2f:4d:58:01:4c:a4:fc:0a:9e:de: d4:84:2d:b1:ca:4a:92:99:13:f7:79:5a:ea:e0:11: d9:89:a2:56:5c:79:3e:03:19:76:f9:f3:aa:69:38: 49:70:ac:1d:52:9b:5e:04:d2:1e:da:82:ad:c5:3f: ab:97:a6:fd:42:ea:82:5c:7d:93:18:b2:e1:50:31: 9b:e1:d6:5e:25:34:ab:14:29:8d:e1:1b:4b:a1:c6: 9b:31:36:53:c6:79:2a:db:d4:93:7f:79:52:43:45: 5a:ab:09:95:72:e3:e6:bb:85:49:24:5f:c6:2c:f6: fe:3e:67:ee:48:98:0e:58:20:5b:5c:ac:91:c8:ee: 7d:73:00:80:36:28:95:4b:26:b3:a1:65:ce:b2:a3: f0:f4:a1:93:a9:78:89:b1:bb:3e:7a:fc:30:a6:f2: e9:9b:3c:14:16:19:4e:5c:7b:f0:f8:7c:06:29:0d: d3:77:38:06:6b:a8:45:29:ac:42:4d:6f:ef:e1:66: 00:d6:db:e1:47:d8:1d:2a:f8:b7:84:96:f0:02:e1: 7e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7C:10:B2:B0:5C:F6:98:D7:DA:11:18:0D:79:2C:37:54:BB:F4:F3 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:8000::/40 Signature Algorithm: sha256WithRSAEncryption 0b:6b:a7:c9:cc:c6:8b:f3:df:fd:0c:ae:8b:aa:5a:88:54:5a: 6c:0a:13:ac:4a:ac:7c:5e:31:57:a3:d9:4d:64:8c:ca:de:29: 94:b2:28:aa:5a:7a:a9:62:64:82:b5:75:3a:4f:ff:1c:0c:10: 44:29:8d:02:f8:27:f0:8f:88:04:c6:49:e0:74:5d:f3:57:56: 3c:2b:bc:53:23:85:00:64:5f:4b:cd:57:62:75:eb:93:55:1c: bf:c9:3d:0b:d3:ff:a7:ec:0e:92:18:4d:2f:c4:05:93:e2:e2: 5d:00:08:94:6c:0b:d2:ae:38:51:e5:26:2c:70:be:8a:27:07: b5:96:b6:94:18:be:05:43:2b:54:88:79:1c:89:fc:c7:8a:4b: 21:ea:34:1e:d9:c0:78:bb:bc:b8:c6:6d:43:f3:e8:1c:d2:70: 5b:be:2a:e0:52:d0:96:ae:04:3b:55:ff:c1:54:ab:79:a1:26: d8:9a:0f:13:44:71:c1:08:b5:94:4d:1c:d8:c4:ac:57:fc:55: a7:68:9b:77:f5:a8:5b:65:12:65:9d:0e:24:8e:f7:e0:35:81: 55:81:e5:ed:7d:d9:48:02:3f:57:6f:f7:54:1f:bd:c0:c2:9d: c4:e3:02:38:54:10:e5:d6:61:e2:c0:5e:db:dd:b7:a7:72:d3: 01:1f:cc:54 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPcLcfg8/OHeDntOJIwN0olNZBMowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTAxNzAwMTAwNloX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNAZGIxYjlhMThlMzU1ODM3ZWMwOWE1 MjlmOTE4NzM0MmY5NWYxN2ZkM2MzNTMxMmQ0MDU1M2E4MzgyYjI1NjFiYTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjyIZqFBZf+a225fUfMGpzhkurZGy h+EZODE08BcNjo8bvz/XC0nEOPFL9tO4hArcxi9NWAFMpPwKnt7UhC2xykqSmRP3 eVrq4BHZiaJWXHk+Axl2+fOqaThJcKwdUpteBNIe2oKtxT+rl6b9QuqCXH2TGLLh UDGb4dZeJTSrFCmN4RtLocabMTZTxnkq29STf3lSQ0VaqwmVcuPmu4VJJF/GLPb+ PmfuSJgOWCBbXKyRyO59cwCANiiVSyazoWXOsqPw9KGTqXiJsbs+evwwpvLpmzwU FhlOXHvw+HwGKQ3TdzgGa6hFKaxCTW/v4WYA1tvhR9gdKvi3hJbwAuF+MQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMF8ELKwXPaY19oRGA15LDdUu/TzMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M2YzhjMmM4LTI2MTAtNGI0Ni05ZTU1LTY3YzEyY2VjY2JiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/oAwDQYJKoZIhvcNAQELBQADggEBAAtrp8nMxovz3/0Mrouq WohUWmwKE6xKrHxeMVej2U1kjMreKZSyKKpaeqliZIK1dTpP/xwMEEQpjQL4J/CP iATGSeB0XfNXVjwrvFMjhQBkX0vNV2J165NVHL/JPQvT/6fsDpIYTS/EBZPi4l0A CJRsC9KuOFHlJixwvoonB7WWtpQYvgVDK1SIeRyJ/MeKSyHqNB7ZwHi7vLjGbUPz 6BzScFu+KuBS0JauBDtV/8FUq3mhJtiaDxNEccEItZRNHNjErFf8Vadom3f1qFtl EmWdDiSO9+A1gVWB5e192UgCP1dv91QfvcDCncTjAjhUEOXWYeLAXtvdt6dy0wEf zFQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:44:16 2025 by rpki-client