$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ec2f6208-6914-4802-9cae-8f5bdc6d9003.roa File: ec2f6208-6914-4802-9cae-8f5bdc6d9003.roa (raw, json) Hash identifier: NJbf5QayRNhUW78/qGkb6VyTiBhS6lUKvlVD/QOLGVg= Subject key identifier: 32:6A:AE:1C:F1:F8:01:1A:48:3F:D8:2A:4C:8D:88:33:EF:9F:58:F7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 275061CAF893AA5BAE9E77F18176039BC18462CF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ec2f6208-6914-4802-9cae-8f5bdc6d9003.roa Signing time: Mon 13 Oct 2025 15:10:05 +0000 ROA not before: Mon 13 Oct 2025 15:10:05 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:7080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:50:61:ca:f8:93:aa:5b:ae:9e:77:f1:81:76:03:9b:c1:84:62:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Oct 13 15:10:05 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=177f9b332a4469033ee2a5391582bf33975ecae8efef1213fcf05dd504327c13, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bc:70:a0:15:7e:cf:3c:84:34:dd:90:9a:5f: 23:93:8a:b6:51:57:b2:b6:50:db:3e:f5:cd:c9:a8: 01:e7:5f:8a:52:36:14:5b:0b:84:04:11:b8:7f:4c: c3:9f:90:2e:70:e1:e6:72:0d:d9:24:8f:80:c7:1e: a4:35:d2:a3:b8:ee:6b:0d:a7:fe:16:74:f8:f7:45: c1:53:5f:1c:12:63:09:63:48:84:f6:f1:91:0b:23: e4:ba:b7:ad:10:ae:97:3f:c3:1f:0c:c0:cf:9a:c7: 2d:78:9e:a2:ab:3f:2f:34:60:7d:f1:6b:25:05:b9: 1d:f4:b2:21:23:0d:5e:98:cc:13:83:31:a6:60:d2: a1:72:d5:c0:d9:f4:26:5e:41:19:8d:9e:6e:d1:46: 1a:8f:04:b4:a4:ec:cd:f5:46:a1:8e:38:cd:85:0b: 31:13:98:88:6a:e9:86:4c:09:76:3f:96:70:a6:00: 84:f9:68:77:f3:60:ae:84:7a:56:40:d5:6d:89:9b: b5:7b:30:8b:f5:03:58:ff:d9:5b:88:a0:df:fa:aa: 2d:83:37:b3:25:03:96:63:1e:08:60:be:41:9a:17: b8:29:ef:3b:7d:99:0a:86:4d:5f:4d:c3:6e:3b:87: 1d:e2:1c:12:5e:1e:3d:5c:96:3b:88:32:88:6b:49: 1f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:6A:AE:1C:F1:F8:01:1A:48:3F:D8:2A:4C:8D:88:33:EF:9F:58:F7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ec2f6208-6914-4802-9cae-8f5bdc6d9003.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:7080::/48 Signature Algorithm: sha256WithRSAEncryption 75:72:8d:80:c5:d3:e8:2e:e1:0e:0d:8a:54:de:7d:3b:d8:bd: 95:8d:19:b1:a5:80:6f:ae:4a:41:32:36:a8:fa:73:d2:ea:49: af:17:89:b1:90:8c:2f:44:ca:c5:be:b3:76:08:b1:b4:86:9f: 81:54:7f:00:19:b2:e6:39:93:77:b4:30:9d:11:3c:ac:4a:0d: 14:92:5e:ce:bd:30:35:4d:7b:38:8c:4f:ca:2a:13:c8:be:26: 5c:0f:9a:34:98:32:73:0d:94:78:7c:cb:25:40:fb:0d:6b:5c: f5:3b:98:84:9a:8b:1e:90:9f:68:c9:77:92:06:85:a3:29:a1: 53:ad:4a:82:de:f3:ce:4a:43:d6:bc:72:20:31:f8:29:e7:1d: 75:ca:89:b5:9e:ab:4e:41:e4:3e:10:ff:47:33:c5:b3:a1:bb: cd:6c:ee:aa:01:2e:48:b1:62:1e:b4:33:35:c7:9a:72:3e:2e: 84:0b:cc:bd:da:c0:5b:b2:ba:1b:b5:fe:b6:ab:b6:61:1b:be: 0a:3f:bb:72:04:d1:b7:82:7d:1d:bf:2f:17:91:06:81:85:50: 7b:c8:4e:54:62:22:4c:ff:cd:cd:9d:a0:cd:20:26:8e:c8:02: c4:b2:e8:cf:2f:60:a9:80:f0:9f:9b:c9:f9:49:b3:6c:91:d1: 01:43:1d:54 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUJ1BhyviTqluunnfxgXYDm8GEYs8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTAxMzE1MTAwNVoX DTI1MTExNzIzNTk1OVowejFJMEcGA1UEBRNAMTc3ZjliMzMyYTQ0NjkwMzNlZTJh NTM5MTU4MmJmMzM5NzVlY2FlOGVmZWYxMjEzZmNmMDVkZDUwNDMyN2MxMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17xwoBV+zzyENN2Qml8jk4q2UVey tlDbPvXNyagB51+KUjYUWwuEBBG4f0zDn5AucOHmcg3ZJI+Axx6kNdKjuO5rDaf+ FnT490XBU18cEmMJY0iE9vGRCyPkuretEK6XP8MfDMDPmscteJ6iqz8vNGB98Wsl Bbkd9LIhIw1emMwTgzGmYNKhctXA2fQmXkEZjZ5u0UYajwS0pOzN9UahjjjNhQsx E5iIaumGTAl2P5ZwpgCE+Wh382CuhHpWQNVtiZu1ezCL9QNY/9lbiKDf+qotgzez JQOWYx4IYL5Bmhe4Ke87fZkKhk1fTcNuO4cd4hwSXh49XJY7iDKIa0kfjwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDJqrhzx+AEaSD/YKkyNiDPvn1j3MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VjMmY2MjA4LTY5MTQtNDgwMi05Y2FlLThmNWJkYzZkOTAwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAHCAMA0GCSqGSIb3DQEBCwUAA4IBAQB1co2AxdPoLuEODYpU 3n072L2VjRmxpYBvrkpBMjao+nPS6kmvF4mxkIwvRMrFvrN2CLG0hp+BVH8AGbLm OZN3tDCdETysSg0Ukl7OvTA1TXs4jE/KKhPIviZcD5o0mDJzDZR4fMslQPsNa1z1 O5iEmosekJ9oyXeSBoWjKaFTrUqC3vPOSkPWvHIgMfgp5x11yom1nqtOQeQ+EP9H M8WzobvNbO6qAS5IsWIetDM1x5pyPi6EC8y92sBbsrobtf62q7ZhG74KP7tyBNG3 gn0dvy8XkQaBhVB7yE5UYiJM/83NnaDNICaOyALEsujPL2CpgPCfm8n5SbNskdEB Qx1U -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:01 2025 by rpki-client