$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa File: b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa (raw, json) Hash identifier: WMTDSQuiL9Lj5uokme7N17zvfARDEgubRCXtU/zUknE= Subject key identifier: E6:E1:8A:D9:CA:4C:45:F4:F6:5C:B9:9C:B0:98:87:F4:51:CD:B5:5C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 596025731F88C20EC17BC64D298CA5F479BA4481 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa Signing time: Sun 02 Nov 2025 00:00:11 +0000 ROA not before: Sun 02 Nov 2025 00:00:11 +0000 ROA not after: Sun 07 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:7000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:60:25:73:1f:88:c2:0e:c1:7b:c6:4d:29:8c:a5:f4:79:ba:44:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 2 00:00:11 2025 GMT Not After : Dec 7 23:59:59 2025 GMT Subject: serialNumber=e8dff91fa0685736eb26d7434aa2531afbad4db72151a1ffa3cb1a3b1802ec33, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:aa:85:5f:bf:72:82:0c:46:42:8d:e1:5a:17: 2d:41:3d:c6:78:94:4b:bb:0b:17:2a:15:b4:2e:1a: 54:58:e7:ab:df:a7:e8:88:74:5d:84:4b:36:78:67: ee:f9:79:c1:58:30:61:bf:bf:f8:c2:18:ec:7c:b2: d2:9f:7d:73:b1:60:fc:03:1b:fd:79:64:b7:66:29: 81:fe:24:aa:3e:fe:b0:58:7e:0c:dd:b3:ca:14:59: a7:39:a8:dd:0e:03:94:e5:bf:bd:35:f6:a6:95:5a: 62:d0:14:fc:6d:62:bf:b2:03:63:96:10:8b:09:2e: 80:31:29:42:c4:4a:fd:ea:62:a5:4a:36:03:81:de: a6:96:c2:f3:25:ca:e9:f9:90:52:6a:be:3e:34:5d: af:89:80:e8:6d:76:fc:de:09:a6:e7:3e:d6:3d:38: 73:3f:1e:b0:9b:73:cf:27:06:30:17:a9:64:40:26: 30:d2:25:d3:e6:ca:97:a1:15:b0:e1:bd:20:13:b3: 0c:3a:b3:14:da:66:d7:1b:49:3c:ab:f8:ec:9b:d5: f5:e0:db:47:0d:43:ad:e6:cc:a8:7b:1e:42:53:d7: 2e:5f:62:ca:90:e5:08:3d:2d:80:92:fc:aa:7d:a5: 6a:3f:7f:22:28:11:73:e1:9d:29:b2:df:d8:b2:45: f9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E1:8A:D9:CA:4C:45:F4:F6:5C:B9:9C:B0:98:87:F4:51:CD:B5:5C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:7000::/48 Signature Algorithm: sha256WithRSAEncryption 7c:e8:75:b8:58:f1:ef:3c:80:5f:5a:d9:57:11:f8:9e:80:17: 69:3b:79:ec:46:b8:b3:42:7a:af:7c:c1:be:3d:6e:09:4e:7f: 38:2d:04:d1:2b:4e:d9:8b:1b:6c:ca:75:90:50:14:68:33:2a: 32:aa:c6:42:a8:84:04:b6:b9:ba:8d:34:34:76:6e:40:15:8a: 3d:72:75:4c:1d:a3:6d:3a:cc:0d:f2:68:13:32:d9:2b:b7:8c: c6:61:5f:e7:40:48:9f:4a:dd:43:ef:3a:1a:1c:81:fd:60:73: 38:48:fb:c7:85:67:db:26:36:d6:e6:e6:b6:f0:14:6f:24:4b: e9:2b:fc:f4:89:23:32:ff:ce:01:c1:6c:95:0b:76:af:74:77: 7d:13:b4:82:e2:47:6c:d0:70:6b:27:35:f2:c1:4b:ed:0d:db: b6:59:d4:89:44:bd:62:6d:b7:f6:c3:9b:0d:21:a6:a7:1d:04: 10:7c:d7:43:d0:ff:00:0b:0f:64:db:92:f1:d7:35:1b:25:f1: 84:6f:5d:32:90:f8:20:60:37:ca:ee:ce:7c:0f:0c:f1:07:4f: 8e:7e:5d:9c:57:56:e1:a4:9d:65:3b:5f:39:19:a0:9d:90:a6: bc:17:9d:b2:a4:93:d6:ba:af:40:19:5a:e1:f4:f8:fe:b6:29: 7d:5e:20:c1 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUWWAlcx+Iwg7Be8ZNKYyl9Hm6RIEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwMjAwMDAxMVoX DTI1MTIwNzIzNTk1OVowejFJMEcGA1UEBRNAZThkZmY5MWZhMDY4NTczNmViMjZk NzQzNGFhMjUzMWFmYmFkNGRiNzIxNTFhMWZmYTNjYjFhM2IxODAyZWMzMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2qqFX79yggxGQo3hWhctQT3GeJRL uwsXKhW0LhpUWOer36foiHRdhEs2eGfu+XnBWDBhv7/4whjsfLLSn31zsWD8Axv9 eWS3ZimB/iSqPv6wWH4M3bPKFFmnOajdDgOU5b+9NfamlVpi0BT8bWK/sgNjlhCL CS6AMSlCxEr96mKlSjYDgd6mlsLzJcrp+ZBSar4+NF2viYDobXb83gmm5z7WPThz Px6wm3PPJwYwF6lkQCYw0iXT5sqXoRWw4b0gE7MMOrMU2mbXG0k8q/jsm9X14NtH DUOt5syoex5CU9cuX2LKkOUIPS2AkvyqfaVqP38iKBFz4Z0pst/YskX5xQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFObhitnKTEX09ly5nLCYh/RRzbVcMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I3NzJmNDU5LTcyZmUtNGM3ZC04ZjhjLTYxY2NlNWE5NDRjMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9nAAMA0GCSqGSIb3DQEBCwUAA4IBAQB86HW4WPHvPIBfWtlX EfiegBdpO3nsRrizQnqvfMG+PW4JTn84LQTRK07ZixtsynWQUBRoMyoyqsZCqIQE trm6jTQ0dm5AFYo9cnVMHaNtOswN8mgTMtkrt4zGYV/nQEifSt1D7zoaHIH9YHM4 SPvHhWfbJjbW5ua28BRvJEvpK/z0iSMy/84BwWyVC3avdHd9E7SC4kds0HBrJzXy wUvtDdu2WdSJRL1ibbf2w5sNIaanHQQQfNdD0P8ACw9k25Lx1zUbJfGEb10ykPgg YDfK7s58DwzxB0+Ofl2cV1bhpJ1lO185GaCdkKa8F52ypJPWuq9AGVrh9Pj+til9 XiDB -----END CERTIFICATE-----Generated at Wed Nov 5 09:49:44 2025 by rpki-client