$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80b7e005-6c19-4f9e-9cbc-448f4073dd0c.roa File: 80b7e005-6c19-4f9e-9cbc-448f4073dd0c.roa (raw, json) Hash identifier: E/k0PIgN/vKu8LqaCxsMgSzXSI1+u39uhZsJn5vw4JI= Subject key identifier: A5:36:04:55:E3:EA:E0:C1:9D:0E:E5:E7:A2:B5:D7:8F:21:E3:FA:F7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 19379A7D5F7700A29ABF0372D034BC34C9E8406A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80b7e005-6c19-4f9e-9cbc-448f4073dd0c.roa Signing time: Sat 01 Nov 2025 00:00:48 +0000 ROA not before: Sat 01 Nov 2025 00:00:48 +0000 ROA not after: Sat 06 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 43.212.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:37:9a:7d:5f:77:00:a2:9a:bf:03:72:d0:34:bc:34:c9:e8:40:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 1 00:00:48 2025 GMT Not After : Dec 6 23:59:59 2025 GMT Subject: serialNumber=e89afa2704c548a8ec882489009b6ed30221056d3c8d30dad4409826072694cc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7d:89:81:6f:ea:d7:47:01:12:e3:b4:a3:c4: 1a:01:a8:f1:d2:a0:44:94:fa:fd:86:80:6c:13:a9: 1a:20:3e:ee:f2:8a:9c:9e:48:e0:06:17:9e:5c:4c: 9b:0e:02:ec:fc:33:89:b9:63:6e:ea:5b:58:62:d7: 07:16:4b:7a:35:a1:72:28:fe:90:6d:3d:fb:bf:12: ce:91:b6:26:49:de:90:a0:11:c8:c9:42:73:29:d5: f9:6b:f7:f1:8e:64:04:a4:e6:2c:4b:a8:30:3c:e2: 5b:33:ec:9d:cb:e2:76:1f:4e:53:50:ff:55:19:5f: a0:65:f9:bb:88:2d:1a:81:d5:4d:b2:cf:77:69:f3: bd:76:58:b1:22:9d:ac:e8:eb:66:9e:36:52:0c:2a: 09:da:44:b5:ce:b6:30:57:dc:77:72:bb:20:61:09: 59:26:fa:ba:d5:ba:89:7d:4b:9c:5b:a4:16:63:f4: 5d:fe:2e:fa:da:a4:bc:51:b6:3e:77:9d:c0:5a:b6: f7:aa:65:4e:c8:7b:af:d6:1e:a1:9a:8a:1f:2a:41: 11:84:fd:db:fb:97:b6:a0:48:38:b8:30:01:1b:ae: 8e:bc:dc:0d:7b:46:de:23:22:45:36:bc:ad:29:6e: 70:0e:2e:3d:0d:de:4a:c9:0d:05:8d:6f:dc:bd:43: a3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:36:04:55:E3:EA:E0:C1:9D:0E:E5:E7:A2:B5:D7:8F:21:E3:FA:F7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80b7e005-6c19-4f9e-9cbc-448f4073dd0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.212.68.0/24 Signature Algorithm: sha256WithRSAEncryption 37:d3:b7:d8:91:e2:e6:02:9a:a3:16:b8:eb:05:c0:5a:71:47: de:9f:14:75:d5:71:ed:32:6f:fb:df:1e:8b:7f:ae:59:9a:a9: 54:36:72:7a:e6:81:97:ca:01:05:13:0d:dc:88:a5:dc:df:ed: 55:f1:3f:ba:1e:42:65:14:2f:4a:5b:78:6e:58:55:36:53:0f: 7d:f4:06:c9:4a:0a:2d:ea:1f:c8:09:75:5c:4b:0d:1a:8c:cf: 6b:9c:c6:11:af:b3:14:8e:f6:86:a8:f5:34:06:d2:93:63:7e: b6:05:cb:a1:58:24:c5:c2:10:01:95:ec:6b:67:dd:cc:e8:d6: cd:26:be:10:56:60:13:4b:db:f8:5b:f3:20:c3:87:2d:e4:3d: c3:bc:82:06:bd:87:9a:8e:bf:d7:47:de:c8:b2:99:77:98:3f: 2b:db:11:39:54:46:0a:b1:1a:a8:c5:98:02:a3:3c:10:d4:bc: 2b:e1:28:5c:a5:5a:06:13:e4:b9:f8:62:e0:2e:e4:66:bc:4e: 4b:86:ad:53:18:e8:f7:4d:b1:46:8a:6a:28:f8:fc:80:c9:8d: 4c:4a:01:69:cc:6c:65:4b:05:c1:e9:3a:71:df:73:a8:40:d1: d6:f8:be:dd:12:06:95:e3:e7:28:50:95:80:72:fe:20:00:9c: 28:84:60:67 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUGTeafV93AKKavwNy0DS8NMnoQGowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwMTAwMDA0OFoX DTI1MTIwNjIzNTk1OVowejFJMEcGA1UEBRNAZTg5YWZhMjcwNGM1NDhhOGVjODgy NDg5MDA5YjZlZDMwMjIxMDU2ZDNjOGQzMGRhZDQ0MDk4MjYwNzI2OTRjYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4X2JgW/q10cBEuO0o8QaAajx0qBE lPr9hoBsE6kaID7u8oqcnkjgBheeXEybDgLs/DOJuWNu6ltYYtcHFkt6NaFyKP6Q bT37vxLOkbYmSd6QoBHIyUJzKdX5a/fxjmQEpOYsS6gwPOJbM+ydy+J2H05TUP9V GV+gZfm7iC0agdVNss93afO9dlixIp2s6OtmnjZSDCoJ2kS1zrYwV9x3crsgYQlZ Jvq61bqJfUucW6QWY/Rd/i762qS8UbY+d53AWrb3qmVOyHuv1h6hmoofKkERhP3b +5e2oEg4uDABG66OvNwNe0beIyJFNrytKW5wDi49Dd5KyQ0FjW/cvUOjvwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKU2BFXj6uDBnQ7l56K1148h4/r3MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzgwYjdlMDA1LTZjMTktNGY5ZS05Y2JjLTQ0OGY0MDczZGQwYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9REMA0GCSqGSIb3DQEBCwUAA4IBAQA307fYkeLmApqjFrjrBcBa cUfenxR11XHtMm/73x6Lf65ZmqlUNnJ65oGXygEFEw3ciKXc3+1V8T+6HkJlFC9K W3huWFU2Uw999AbJSgot6h/ICXVcSw0ajM9rnMYRr7MUjvaGqPU0BtKTY362Bcuh WCTFwhABlexrZ93M6NbNJr4QVmATS9v4W/Mgw4ct5D3DvIIGvYeajr/XR97Ispl3 mD8r2xE5VEYKsRqoxZgCozwQ1Lwr4ShcpVoGE+S5+GLgLuRmvE5Lhq1TGOj3TbFG imoo+PyAyY1MSgFpzGxlSwXB6Tpx33OoQNHW+L7dEgaV4+coUJWAcv4gAJwohGBn -----END CERTIFICATE-----Generated at Wed Nov 5 12:36:47 2025 by rpki-client