$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e22e8ea-542f-4e00-9946-45b52a3a47c4.roa File: 9e22e8ea-542f-4e00-9946-45b52a3a47c4.roa (raw, json) Hash identifier: eUgmsrAl4V6pjWkkgjk+RHVpyB6thv3Nl5w30NgfYFA= Subject key identifier: BC:F2:AC:29:A9:F4:68:67:5D:ED:7F:A0:32:FC:CC:90:30:75:91:99 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 030C0FA9C0D1A96429CAD2076724FED42428477E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e22e8ea-542f-4e00-9946-45b52a3a47c4.roa Signing time: Mon 13 Oct 2025 15:01:02 +0000 ROA not before: Mon 13 Oct 2025 15:01:02 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 103.246.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:0c:0f:a9:c0:d1:a9:64:29:ca:d2:07:67:24:fe:d4:24:28:47:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 13 15:01:02 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=6ac47a75300ee2c7d07f827fac04c8b33fb5b1b44ef58d73909ac8b93b919699, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:56:f0:d2:7b:0f:9d:53:d1:4d:0b:64:8c:c6: 88:23:64:18:c9:15:51:fa:0e:c5:a6:71:7b:b7:6f: 6d:c7:c2:b9:bf:6f:2c:eb:d4:8b:76:56:5c:2d:7c: 3f:38:76:5e:f6:66:cc:6d:c7:1f:98:c7:81:88:55: 15:f7:62:0c:8d:71:22:77:9e:de:0a:90:a6:41:f5: ba:34:bb:ca:9d:3a:8d:0c:71:ea:90:9d:6f:a4:c8: 7c:3b:37:c6:68:48:88:22:08:87:ed:f8:a1:3f:3e: 1f:7e:1d:ed:7a:4f:ae:d2:70:52:ee:e0:aa:46:6e: a3:9f:38:1f:17:07:79:00:68:00:aa:e7:5a:30:dc: e2:42:d8:5e:c1:80:3e:ff:f9:5c:27:83:88:72:8f: a5:bb:7a:29:56:1c:11:ee:97:f4:50:a5:9a:5a:d1: 54:d5:53:1b:12:b6:f4:c5:6c:66:69:ed:f3:54:22: 8d:98:88:00:f5:33:fa:8d:f6:05:bf:13:5a:85:ec: cf:e1:9c:94:46:7f:87:73:11:6f:76:a5:8c:80:03: df:34:f6:6e:cf:f6:c0:9d:af:88:64:d5:e8:ce:f5: 15:43:e9:c3:8b:7b:99:e7:95:22:df:c2:ab:d2:1b: 32:da:9a:d4:f3:5c:12:2c:bf:85:15:6f:24:23:d0: b1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F2:AC:29:A9:F4:68:67:5D:ED:7F:A0:32:FC:CC:90:30:75:91:99 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e22e8ea-542f-4e00-9946-45b52a3a47c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.148.0/22 Signature Algorithm: sha256WithRSAEncryption 63:c7:a8:c0:96:d7:db:83:c2:bb:51:be:4b:b1:32:b3:c7:b3: bc:1e:f8:cf:06:4c:66:d2:44:5d:ad:76:f7:ee:7a:ae:61:7f: 68:7f:8c:cc:a0:6c:e0:16:a0:84:3e:20:f5:b4:c8:f4:24:df: 7e:9a:21:f2:52:22:9c:d1:58:9c:11:af:ba:30:4d:2c:a6:15: f2:a0:41:a5:e8:9c:89:04:b6:d7:5f:e4:fd:95:a4:09:8c:c6: 29:2a:96:aa:f3:5c:55:61:b2:13:42:11:ad:f2:0d:f5:5b:08: 8b:e7:4d:1f:33:32:69:2b:3d:72:3f:d6:ab:b7:6d:24:ea:71: 10:77:aa:7e:1c:2b:d1:30:0f:8e:2b:d2:67:98:89:94:ad:0d: 08:af:ea:48:dc:19:d7:8b:9e:6f:fe:a7:90:83:bf:82:c3:e8: 8a:02:2b:e5:39:1d:e4:39:80:0c:e3:18:e6:d1:5f:33:27:e5: 69:44:fa:c4:29:72:bb:a3:53:96:fd:fc:e2:af:a3:1f:16:39: 08:2e:ec:ee:e8:ef:5c:09:ac:5a:89:d4:2f:61:d2:0f:6e:cd: 0c:23:05:90:4f:de:5f:40:1a:52:06:b8:57:1e:06:c9:93:84: ba:45:9d:42:9b:9c:8a:eb:8a:61:db:81:9c:b7:09:d5:8e:2f: c1:15:e2:ee -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUAwwPqcDRqWQpytIHZyT+1CQoR34wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAxMzE1MDEwMloX DTI1MTExNzIzNTk1OVowejFJMEcGA1UEBRNANmFjNDdhNzUzMDBlZTJjN2QwN2Y4 MjdmYWMwNGM4YjMzZmI1YjFiNDRlZjU4ZDczOTA5YWM4YjkzYjkxOTY5OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFbw0nsPnVPRTQtkjMaII2QYyRVR +g7FpnF7t29tx8K5v28s69SLdlZcLXw/OHZe9mbMbccfmMeBiFUV92IMjXEid57e CpCmQfW6NLvKnTqNDHHqkJ1vpMh8OzfGaEiIIgiH7fihPz4ffh3tek+u0nBS7uCq Rm6jnzgfFwd5AGgAqudaMNziQthewYA+//lcJ4OIco+lu3opVhwR7pf0UKWaWtFU 1VMbErb0xWxmae3zVCKNmIgA9TP6jfYFvxNahezP4ZyURn+HcxFvdqWMgAPfNPZu z/bAna+IZNXozvUVQ+nDi3uZ55Ui38Kr0hsy2prU81wSLL+FFW8kI9Cx5QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLzyrCmp9GhnXe1/oDL8zJAwdZGZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzllMjJlOGVhLTU0MmYtNGUwMC05OTQ2LTQ1YjUyYTNhNDdjNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ/aUMA0GCSqGSIb3DQEBCwUAA4IBAQBjx6jAltfbg8K7Ub5LsTKz x7O8HvjPBkxm0kRdrXb37nquYX9of4zMoGzgFqCEPiD1tMj0JN9+miHyUiKc0Vic Ea+6ME0sphXyoEGl6JyJBLbXX+T9laQJjMYpKpaq81xVYbITQhGt8g31WwiL500f MzJpKz1yP9art20k6nEQd6p+HCvRMA+OK9JnmImUrQ0Ir+pI3BnXi55v/qeQg7+C w+iKAivlOR3kOYAM4xjm0V8zJ+VpRPrEKXK7o1OW/fzir6MfFjkILuzu6O9cCaxa idQvYdIPbs0MIwWQT95fQBpSBrhXHgbJk4S6RZ1Cm5yK64ph24GctwnVji/BFeLu -----END CERTIFICATE-----Generated at Wed Nov 5 07:45:27 2025 by rpki-client