$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78c73c91-1977-4091-b393-5358d5bcfdd5.roa File: 78c73c91-1977-4091-b393-5358d5bcfdd5.roa (raw, json) Hash identifier: OXaugPEAWoGuUpvFRVz/e2V8nCm71NoRbb/aqYngNkc= Subject key identifier: CA:F2:07:B3:05:B6:82:5E:8E:82:54:9E:21:08:AB:A1:85:10:1A:5F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 78E02C858713C0CFA2467CF3EE414A2AB863F259 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78c73c91-1977-4091-b393-5358d5bcfdd5.roa Signing time: Sun 02 Nov 2025 00:00:12 +0000 ROA not before: Sun 02 Nov 2025 00:00:12 +0000 ROA not after: Sun 07 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e0:2c:85:87:13:c0:cf:a2:46:7c:f3:ee:41:4a:2a:b8:63:f2:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 2 00:00:12 2025 GMT Not After : Dec 7 23:59:59 2025 GMT Subject: serialNumber=668dc0bd169c92cde5799dbe60c6b8a7a35d48ac966d8b8aab752c0d253262ae, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:00:bc:0d:13:7e:31:e9:3b:60:03:0d:b3:27: b5:b3:d8:3f:b0:b6:35:86:14:e9:84:e4:01:1b:08: 3b:cf:a6:68:39:8c:04:20:02:0a:65:e6:04:ce:e0: a9:cb:3b:8a:cf:ef:4f:80:97:93:63:1e:02:7c:06: 63:6b:d3:01:1e:a8:f4:a8:91:92:78:7d:aa:bc:bf: e4:1d:e6:6d:15:3a:d2:10:3a:b1:0b:73:5e:44:f0: 2a:bd:9a:87:14:bc:26:6b:3a:78:8d:76:be:40:d7: a1:21:dd:69:b3:d0:d9:6d:cc:d4:29:ef:10:b5:2f: fd:14:82:78:3a:5f:91:50:a5:21:27:09:20:4a:6b: cf:8e:83:10:2e:88:a0:01:f2:de:e1:de:77:81:f2: 0a:19:c0:4e:28:18:c2:9d:79:62:af:77:5e:86:88: bb:98:7d:87:d8:33:2b:eb:f9:e9:90:e0:34:b5:4b: d4:de:3f:56:6f:dd:ae:43:0c:ff:9f:58:17:41:04: 7d:54:88:b3:88:c2:d4:be:f3:d9:77:94:c0:13:5d: 71:db:95:94:fc:f9:9a:10:f4:19:a9:d5:b3:e9:a4: 1a:86:ba:ab:62:c8:e9:f5:90:89:33:31:f6:9c:06: ce:75:c4:a6:60:45:56:97:fa:d6:12:ef:0a:2b:15: 83:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F2:07:B3:05:B6:82:5E:8E:82:54:9E:21:08:AB:A1:85:10:1A:5F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78c73c91-1977-4091-b393-5358d5bcfdd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:9000::/48 Signature Algorithm: sha256WithRSAEncryption 32:d8:7b:58:8f:a5:a4:77:3b:7d:3a:01:a2:57:fe:e7:fe:43: 8d:83:28:85:4c:ce:8d:df:97:33:04:cc:73:95:51:fb:da:35: 58:bc:77:30:aa:2f:f2:6f:1c:62:71:84:34:94:bc:a2:24:64: 9e:bb:40:53:8d:60:28:46:ef:f2:23:fb:61:1f:a3:5b:13:0f: 06:66:03:40:47:4c:c2:f2:86:d4:9f:74:79:e7:49:af:56:75: 75:5e:a0:96:2c:cc:ea:a0:26:2a:e4:df:09:bf:0d:84:66:cd: 36:52:01:3a:1b:52:d8:a7:cd:ec:df:90:4a:e1:c4:c5:43:8f: b1:47:dd:5f:40:e2:ad:d2:e5:dd:78:5c:79:aa:fd:22:d3:1d: a2:76:ac:66:8f:16:f9:ce:19:dd:ee:65:e1:53:e5:a8:3d:f0: e8:71:4c:03:b9:2e:bf:fd:a0:80:0b:ee:38:18:bf:b9:b3:a0: 46:64:f6:dc:6f:60:96:5b:23:d3:ef:1d:89:02:eb:e5:d9:be: c7:94:dc:1b:a7:af:1b:d3:41:14:4a:8f:09:fa:25:6e:b3:0a: 95:84:cc:e3:4e:cb:fb:81:b7:2f:fc:9f:b9:d4:e9:7a:c8:a8: fc:53:94:f5:ff:7f:b7:13:42:9c:61:20:03:e5:59:53:ab:31: 10:f9:ea:dd -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUeOAshYcTwM+iRnzz7kFKKrhj8lkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwMjAwMDAxMloX DTI1MTIwNzIzNTk1OVowejFJMEcGA1UEBRNANjY4ZGMwYmQxNjljOTJjZGU1Nzk5 ZGJlNjBjNmI4YTdhMzVkNDhhYzk2NmQ4YjhhYWI3NTJjMGQyNTMyNjJhZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAC8DRN+Mek7YAMNsye1s9g/sLY1 hhTphOQBGwg7z6ZoOYwEIAIKZeYEzuCpyzuKz+9PgJeTYx4CfAZja9MBHqj0qJGS eH2qvL/kHeZtFTrSEDqxC3NeRPAqvZqHFLwmazp4jXa+QNehId1ps9DZbczUKe8Q tS/9FIJ4Ol+RUKUhJwkgSmvPjoMQLoigAfLe4d53gfIKGcBOKBjCnXlir3dehoi7 mH2H2DMr6/npkOA0tUvU3j9Wb92uQwz/n1gXQQR9VIiziMLUvvPZd5TAE11x25WU /PmaEPQZqdWz6aQahrqrYsjp9ZCJMzH2nAbOdcSmYEVWl/rWEu8KKxWDkwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMryB7MFtoJejoJUniEIq6GFEBpfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc4YzczYzkxLTE5NzctNDA5MS1iMzkzLTUzNThkNWJjZmRkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9pAAMA0GCSqGSIb3DQEBCwUAA4IBAQAy2HtYj6Wkdzt9OgGi V/7n/kONgyiFTM6N35czBMxzlVH72jVYvHcwqi/ybxxicYQ0lLyiJGSeu0BTjWAo Ru/yI/thH6NbEw8GZgNAR0zC8obUn3R550mvVnV1XqCWLMzqoCYq5N8Jvw2EZs02 UgE6G1LYp83s35BK4cTFQ4+xR91fQOKt0uXdeFx5qv0i0x2idqxmjxb5zhnd7mXh U+WoPfDocUwDuS6//aCAC+44GL+5s6BGZPbcb2CWWyPT7x2JAuvl2b7HlNwbp68b 00EUSo8J+iVuswqVhMzjTsv7gbcv/J+51Ol6yKj8U5T1/3+3E0KcYSAD5VlTqzEQ +erd -----END CERTIFICATE-----Generated at Wed Nov 5 17:56:54 2025 by rpki-client