$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa File: 06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa (raw, json) Hash identifier: M6E1zoRw4+zGDt1aA08ETBosYvYP//1n90ieoYcUxrc= Subject key identifier: 9B:58:FE:ED:4A:CD:45:38:DB:C7:2B:34:41:D9:41:E0:BC:03:27:48 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6560FE19CEE8EE110B3BA62E2D217EBA27AC39D7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa Signing time: Wed 29 Oct 2025 00:00:25 +0000 ROA not before: Wed 29 Oct 2025 00:00:25 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:8080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:60:fe:19:ce:e8:ee:11:0b:3b:a6:2e:2d:21:7e:ba:27:ac:39:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 29 00:00:25 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=144dd1e3d2814ffba939a43cde89c39487b7ccd9930ae93720728c982c88d3e1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2f:44:cf:30:a2:cb:b6:0c:75:ba:ea:d9:39: 4e:9e:96:26:01:11:42:1b:8f:73:17:8c:9f:96:a5: b4:0d:a9:2c:46:47:e6:26:2e:ff:19:c3:b8:94:f2: 84:5b:03:98:b2:bd:68:0d:2b:f1:2e:7a:ef:23:0d: 16:a7:77:b2:69:73:58:07:07:06:23:d4:61:87:3d: e3:a0:92:ae:56:57:ac:0f:b0:b2:63:bf:d1:75:65: 3c:e8:61:12:43:34:8f:2b:9d:60:7c:fb:05:6e:3d: 8e:ad:26:c4:a7:d0:f8:af:56:24:29:91:cb:4d:7f: 22:85:8e:76:c1:57:51:a8:c4:46:7c:cc:30:43:ad: 61:60:ac:7d:e1:e0:60:9c:05:98:dd:4f:04:ef:c4: 2c:31:b9:dd:5d:a1:a2:60:12:30:1e:ca:10:cd:63: 64:df:1a:22:c0:23:57:1e:02:eb:96:0c:44:7a:6f: fc:5a:9a:e9:a1:25:35:d5:16:28:3f:85:b6:e9:82: 29:8c:5b:1e:66:d8:db:0c:30:6d:de:45:7b:ee:dd: cc:79:c3:a3:cb:81:9e:76:2d:54:f8:3b:5d:cf:ba: 9b:ec:44:af:20:40:fd:5a:05:cd:36:3f:3e:62:39: c5:ef:02:e2:30:07:09:35:4c:99:b0:0d:fe:ad:d4: 32:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:58:FE:ED:4A:CD:45:38:DB:C7:2B:34:41:D9:41:E0:BC:03:27:48 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:8080::/46 Signature Algorithm: sha256WithRSAEncryption a2:e9:50:c9:06:f3:4e:31:7f:e0:94:76:f5:18:1f:d8:e6:f1: 0a:ad:c1:ec:7f:e6:df:fc:5f:e3:d3:29:c8:e4:11:c6:48:3c: ce:cf:ef:7b:ed:46:57:00:91:02:b6:a9:58:a4:dd:17:80:6e: 3f:66:cb:7d:85:8f:cb:0a:76:fe:6c:4c:e3:21:2f:78:4a:2c: 25:14:6c:f6:02:d5:30:96:3b:0c:77:4e:81:45:1d:4e:76:8c: f1:bb:34:31:02:51:05:b8:99:71:5e:c1:46:e9:3d:81:ee:40: 29:e1:fe:f6:ea:ff:6d:5f:4d:ee:2d:1d:02:40:ae:76:c8:19: 56:ab:19:d7:c9:34:8b:c4:9a:1e:33:79:9a:36:28:0c:22:0f: d7:17:d7:c1:d8:1d:71:10:c7:76:d4:76:d4:fa:07:c5:57:43: 1a:8a:b3:45:9d:26:2d:f7:df:27:55:70:39:92:3e:9b:2a:84: 9f:c2:0a:53:9c:2a:8e:4e:af:fe:70:b8:f0:46:eb:b2:a0:f1: d5:38:da:a1:44:74:0c:0a:cc:a0:a3:48:7e:93:b8:dd:9a:2a: fa:42:8a:e2:13:3c:d2:90:59:aa:5f:d4:45:65:00:f1:ce:e9: 20:62:ae:3a:37:5b:0b:fe:96:d4:22:18:0e:94:c0:be:18:1e: e3:d6:8a:c9 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUZWD+Gc7o7hELO6YuLSF+uiesOdcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAyOTAwMDAyNVoX DTI1MTIwMzIzNTk1OVowejFJMEcGA1UEBRNAMTQ0ZGQxZTNkMjgxNGZmYmE5Mzlh NDNjZGU4OWMzOTQ4N2I3Y2NkOTkzMGFlOTM3MjA3MjhjOTgyYzg4ZDNlMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqy9EzzCiy7YMdbrq2TlOnpYmARFC G49zF4yflqW0DaksRkfmJi7/GcO4lPKEWwOYsr1oDSvxLnrvIw0Wp3eyaXNYBwcG I9Rhhz3joJKuVlesD7CyY7/RdWU86GESQzSPK51gfPsFbj2OrSbEp9D4r1YkKZHL TX8ihY52wVdRqMRGfMwwQ61hYKx94eBgnAWY3U8E78QsMbndXaGiYBIwHsoQzWNk 3xoiwCNXHgLrlgxEem/8WprpoSU11RYoP4W26YIpjFseZtjbDDBt3kV77t3MecOj y4Gedi1U+Dtdz7qb7ESvIED9WgXNNj8+YjnF7wLiMAcJNUyZsA3+rdQy8QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJtY/u1KzUU428crNEHZQeC8AydIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA2NzAwZjRhLTJlMWUtNGRhYi1iMzEyLTFkN2U4ZGM0YjVjMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba84CAMA0GCSqGSIb3DQEBCwUAA4IBAQCi6VDJBvNOMX/glHb1 GB/Y5vEKrcHsf+bf/F/j0ynI5BHGSDzOz+977UZXAJECtqlYpN0XgG4/Zst9hY/L Cnb+bEzjIS94SiwlFGz2AtUwljsMd06BRR1OdozxuzQxAlEFuJlxXsFG6T2B7kAp 4f726v9tX03uLR0CQK52yBlWqxnXyTSLxJoeM3maNigMIg/XF9fB2B1xEMd21HbU +gfFV0MairNFnSYt998nVXA5kj6bKoSfwgpTnCqOTq/+cLjwRuuyoPHVONqhRHQM Csygo0h+k7jdmir6QoriEzzSkFmqX9RFZQDxzukgYq46N1sL/pbUIhgOlMC+GB7j 1orJ -----END CERTIFICATE-----Generated at Wed Nov 5 11:04:36 2025 by rpki-client