$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: HE0+AFjHrsZUYP3WBUwQ3+BQoQzIZ8XAlG12v9RY3U4= Subject key identifier: A1:1F:B5:AD:02:A7:6B:18:AC:60:B7:E2:F4:7C:FA:43:50:3D:2D:EB Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 0110D4C291E215B62C557D24FAA5C7E3628B47BD Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Fri 17 Oct 2025 00:01:25 +0000 ROA not before: Fri 17 Oct 2025 00:01:25 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:10:d4:c2:91:e2:15:b6:2c:55:7d:24:fa:a5:c7:e3:62:8b:47:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Oct 17 00:01:25 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=d6c57779ba7396ab743d243361db7f2f5ac8cdd9d52aea3a20c57cfed667db1d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:06:73:59:00:21:a0:5e:22:3c:fb:37:8c:76: 9c:38:7a:11:43:ca:e2:18:c0:4b:22:e5:1b:2c:55: 8a:59:37:cd:71:17:b5:d8:2d:4f:21:ee:05:44:03: df:8c:60:8c:24:fd:09:ff:b1:04:1a:ee:ab:5b:30: 20:6f:b2:82:0d:6d:67:94:9a:f9:0f:f1:d8:e4:81: 13:c9:37:8a:01:71:29:5c:5b:a1:c5:e3:84:02:3d: 49:b9:d7:11:a9:94:c5:24:8c:19:1e:03:64:7c:77: cb:a7:2c:d7:d2:ed:fa:ed:15:41:51:88:d5:bf:2c: 6b:98:4c:c2:4a:db:3d:89:0e:2b:9d:de:dd:81:01: 35:e5:ef:e2:7f:d0:75:27:df:a0:7a:d9:5c:d4:c9: 6e:86:77:8d:19:59:b5:6b:ea:1b:eb:2f:1a:92:bd: 05:d4:03:27:c3:9d:89:32:9d:30:eb:27:da:ad:8b: a4:aa:1d:69:46:c4:31:d3:fe:e5:f4:2e:e5:c9:26: 40:7b:c5:86:bc:8f:d8:cb:6d:7f:21:66:98:2b:4e: 97:20:df:ad:d0:44:f5:10:d7:79:de:91:e3:09:b1: 14:05:5c:b7:cc:0e:7f:c6:44:75:ed:5c:d9:54:7b: a7:9e:c9:fb:80:79:c2:05:55:a0:0d:91:e4:48:e3: 35:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1F:B5:AD:02:A7:6B:18:AC:60:B7:E2:F4:7C:FA:43:50:3D:2D:EB X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:51:39:c7:cf:0b:22:68:37:da:ed:f6:6d:c0:dc:b4:fb:6a: 5c:c6:cd:00:dd:d2:a8:55:d0:26:32:18:c4:e9:01:6e:ec:62: 0c:e5:c7:9b:12:86:db:4a:e9:fd:49:25:dc:57:9f:35:be:31: 31:fd:66:01:7a:c2:19:6c:79:b3:23:08:20:e6:b7:a5:ab:b6: a8:76:b2:c2:f6:75:30:48:1c:6b:c3:fa:0c:65:00:49:bf:7b: a0:71:5f:f3:cb:97:5e:62:1e:5e:2f:9b:ca:23:58:2f:5e:46: 31:68:be:24:13:48:93:ea:6f:75:0d:9c:75:96:d0:c6:7c:f4: 07:6c:79:e7:03:84:a9:60:42:05:7b:21:e0:0c:77:ea:06:39: 0a:41:e4:2b:c5:59:7c:c9:06:72:16:ac:32:d2:1f:78:48:98: 4e:93:f5:ab:a9:ae:11:ee:e0:c6:b7:9b:c0:33:5a:2e:2a:08: 2d:bd:66:c4:fb:e6:75:e9:d6:5f:c3:fb:3f:22:4e:0d:16:a0: 81:c5:36:18:36:94:b9:8a:a8:0c:80:4e:a6:fc:34:93:ca:a5: f9:3b:69:96:d4:dd:83:34:6a:45:3c:48:71:4f:8c:eb:c2:9a: 75:0f:3c:d6:4f:82:0d:0c:65:1b:a6:02:c8:9f:b8:cd:84:0c: 5d:e9:8a:28 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUARDUwpHiFbYsVX0k+qXH42KLR70wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTAxNzAwMDEyNVoX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNAZDZjNTc3NzliYTczOTZhYjc0M2Qy NDMzNjFkYjdmMmY1YWM4Y2RkOWQ1MmFlYTNhMjBjNTdjZmVkNjY3ZGIxZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswZzWQAhoF4iPPs3jHacOHoRQ8ri GMBLIuUbLFWKWTfNcRe12C1PIe4FRAPfjGCMJP0J/7EEGu6rWzAgb7KCDW1nlJr5 D/HY5IETyTeKAXEpXFuhxeOEAj1JudcRqZTFJIwZHgNkfHfLpyzX0u367RVBUYjV vyxrmEzCSts9iQ4rnd7dgQE15e/if9B1J9+getlc1MluhneNGVm1a+ob6y8akr0F 1AMnw52JMp0w6yfarYukqh1pRsQx0/7l9C7lySZAe8WGvI/Yy21/IWaYK06XIN+t 0ET1ENd53pHjCbEUBVy3zA5/xkR17VzZVHunnsn7gHnCBVWgDZHkSOM1nwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKEfta0Cp2sYrGC34vR8+kNQPS3rMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQAMUTnHzwsiaDfa7fZtwNy0 +2pcxs0A3dKoVdAmMhjE6QFu7GIM5cebEobbSun9SSXcV581vjEx/WYBesIZbHmz Iwgg5relq7aodrLC9nUwSBxrw/oMZQBJv3ugcV/zy5deYh5eL5vKI1gvXkYxaL4k E0iT6m91DZx1ltDGfPQHbHnnA4SpYEIFeyHgDHfqBjkKQeQrxVl8yQZyFqwy0h94 SJhOk/Wrqa4R7uDGt5vAM1ouKggtvWbE++Z16dZfw/s/Ik4NFqCBxTYYNpS5iqgM gE6m/DSTyqX5O2mW1N2DNGpFPEhxT4zrwpp1DzzWT4INDGUbpgLIn7jNhAxd6Yoo -----END CERTIFICATE-----Generated at Sun Oct 26 10:42:06 2025 by rpki-client