$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f3b9a93-818c-4623-b024-ab1a75263cae.roa File: 7f3b9a93-818c-4623-b024-ab1a75263cae.roa (raw, json) Hash identifier: n+8prOAoIinOCQ4FGkDl8SJQUjMWRPYIG3z+283t6dY= Subject key identifier: A7:14:80:D8:B1:E3:5B:F1:6B:F0:60:13:41:50:5E:28:77:7E:B8:ED Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 723F60E713138A4F84450667D71828A1B73DD9D9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f3b9a93-818c-4623-b024-ab1a75263cae.roa Signing time: Wed 29 Oct 2025 00:00:06 +0000 ROA not before: Wed 29 Oct 2025 00:00:06 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:4880::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:3f:60:e7:13:13:8a:4f:84:45:06:67:d7:18:28:a1:b7:3d:d9:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 29 00:00:06 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=907f68bd1858c217cb079be4d5b083973b94ce4029a0af7f4d7f71a8f1c11e74, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:98:e8:6d:66:13:c0:45:ee:17:6d:20:1b:cb: 65:fa:0b:5f:c3:7a:0a:08:41:b7:70:ad:d4:d7:0e: 8d:80:50:5e:63:1d:df:17:2c:f6:1e:ec:e3:6d:8d: b1:58:38:f5:6a:83:e1:45:44:30:b3:e3:cb:0a:dd: ce:da:ed:14:b4:3d:e8:ed:c9:ac:11:8f:9b:25:6c: 1c:78:66:9a:3c:91:a7:26:3c:7b:26:78:bf:e3:0e: c5:dc:fd:d4:63:65:f9:c3:77:f7:bd:a7:f6:de:17: 52:42:f9:c7:a7:f1:52:71:37:f7:6b:a0:d4:de:e1: e5:91:48:15:b0:c4:90:79:84:06:d6:f0:4e:6b:85: b1:f7:07:95:35:91:fb:a2:bc:ca:0c:cb:01:50:34: 0f:68:01:8f:46:31:b3:95:98:79:b8:02:d9:54:80: 86:79:26:c0:1f:e3:9c:24:c7:a1:8b:d8:bd:bd:09: 5f:f5:30:67:e8:c4:d9:e7:88:b9:08:89:58:25:d8: 07:ae:10:a4:0d:cd:b4:ca:72:bd:e7:03:97:1a:17: 7e:f6:f6:d9:3c:40:62:14:a9:a1:02:00:39:d3:c3: 8e:b8:b7:84:4d:30:38:ad:4c:51:a4:c2:b5:f9:d2: 53:f0:5e:73:0f:d3:46:7f:d0:bb:ea:dc:a0:ad:dd: 16:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:14:80:D8:B1:E3:5B:F1:6B:F0:60:13:41:50:5E:28:77:7E:B8:ED X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f3b9a93-818c-4623-b024-ab1a75263cae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:4880::/46 Signature Algorithm: sha256WithRSAEncryption 1a:27:34:aa:68:c2:c3:b8:bb:33:5a:a5:08:56:f0:ec:a8:42: 5d:71:66:64:94:09:83:f7:ce:9c:6c:61:cf:94:05:f4:79:c5: 1b:89:de:f8:a3:44:e5:ce:c7:15:ed:ff:38:72:60:82:11:ec: 71:32:08:ad:d7:99:b8:d3:96:9c:42:73:99:b3:64:fb:37:a6: bf:a2:68:30:e2:7c:d5:19:8a:1d:92:14:97:bf:98:6c:4f:04: 02:64:98:86:02:6a:ae:e2:b8:c2:da:53:a9:78:e5:1b:5a:d5: 28:5a:52:32:ca:56:ae:11:1c:cd:54:d8:7d:db:4f:3e:e2:4e: 90:e9:26:f5:5d:98:ee:c8:c7:a5:c8:6a:2a:3e:6d:df:4d:03: 24:76:99:fd:0b:24:cf:a5:0c:3e:bb:07:a6:ea:08:44:50:8d: 51:16:4b:8c:55:9b:4d:ab:66:dc:7e:3c:e7:5c:f9:a7:08:b7: 85:6b:5d:f7:b3:e2:6c:ba:b1:b9:f1:42:4a:9b:3f:f9:73:04: 2b:6d:4a:72:6b:27:0c:9b:4c:14:34:fe:f5:4b:2d:16:71:9c: 7a:60:b6:32:1a:b1:f0:8c:81:41:cf:a6:80:2a:4a:bf:e6:43: 3b:43:de:19:37:ba:4d:aa:9d:3b:8f:c5:f5:e9:3f:07:03:e9: 9f:d2:07:c1 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUcj9g5xMTik+ERQZn1xgoobc92dkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAyOTAwMDAwNloX DTI1MTIwMzIzNTk1OVowejFJMEcGA1UEBRNAOTA3ZjY4YmQxODU4YzIxN2NiMDc5 YmU0ZDViMDgzOTczYjk0Y2U0MDI5YTBhZjdmNGQ3ZjcxYThmMWMxMWU3NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJjobWYTwEXuF20gG8tl+gtfw3oK CEG3cK3U1w6NgFBeYx3fFyz2HuzjbY2xWDj1aoPhRUQws+PLCt3O2u0UtD3o7cms EY+bJWwceGaaPJGnJjx7Jni/4w7F3P3UY2X5w3f3vaf23hdSQvnHp/FScTf3a6DU 3uHlkUgVsMSQeYQG1vBOa4Wx9weVNZH7orzKDMsBUDQPaAGPRjGzlZh5uALZVICG eSbAH+OcJMehi9i9vQlf9TBn6MTZ54i5CIlYJdgHrhCkDc20ynK95wOXGhd+9vbZ PEBiFKmhAgA508OOuLeETTA4rUxRpMK1+dJT8F5zD9NGf9C76tygrd0WWwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKcUgNix41vxa/BgE0FQXih3frjtMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdmM2I5YTkzLTgxOGMtNDYyMy1iMDI0LWFiMWE3NTI2M2NhZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba80iAMA0GCSqGSIb3DQEBCwUAA4IBAQAaJzSqaMLDuLszWqUI VvDsqEJdcWZklAmD986cbGHPlAX0ecUbid74o0TlzscV7f84cmCCEexxMgit15m4 05acQnOZs2T7N6a/omgw4nzVGYodkhSXv5hsTwQCZJiGAmqu4rjC2lOpeOUbWtUo WlIyylauERzNVNh9208+4k6Q6Sb1XZjuyMelyGoqPm3fTQMkdpn9CyTPpQw+uwem 6ghEUI1RFkuMVZtNq2bcfjznXPmnCLeFa133s+JsurG58UJKmz/5cwQrbUpyaycM m0wUNP71Sy0WcZx6YLYyGrHwjIFBz6aAKkq/5kM7Q94ZN7pNqp07j8X16T8HA+mf 0gfB -----END CERTIFICATE-----Generated at Wed Nov 5 05:40:02 2025 by rpki-client