$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa File: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (raw, json) Hash identifier: NLyEMar8Nbdt3tCQB3rrOz5Ml4Qv6xXZon+dfPbpswg= Subject key identifier: AD:2B:BE:64:3D:AC:74:67:A0:AD:27:76:E3:04:99:01:F1:71:B4:BA Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0C7B6059A94672990F0E65117866C4F6BC236354 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa Signing time: Fri 17 Oct 2025 00:01:26 +0000 ROA not before: Fri 17 Oct 2025 00:01:26 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 00:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:7b:60:59:a9:46:72:99:0f:0e:65:11:78:66:c4:f6:bc:23:63:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Oct 17 00:01:26 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=b63b22424643b91e9a65d8513fa2b8e5713d201c38edb8a11fab236e95cb4792, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3c:de:2b:13:d6:93:09:ba:6c:3f:fd:fc:99: af:9d:8f:ae:43:87:e0:ad:da:44:47:e2:d6:e2:02: 81:ab:a3:b7:89:bd:36:70:dc:04:52:8a:03:fd:92: 74:be:06:3a:ad:83:96:5f:ad:95:2b:4c:26:cb:ea: 5b:cd:d1:40:07:74:e3:1e:39:22:77:dd:7f:d3:10: f1:c3:3c:56:0f:0d:1a:e4:2e:e4:2d:66:04:bb:51: a4:d0:ca:fc:0d:fa:e0:5e:41:dc:c4:f1:11:87:80: 26:85:06:e7:55:56:0b:2a:ba:4b:53:6c:29:55:51: db:e9:cf:69:2a:cb:d0:7e:4c:3c:d6:b2:8b:01:86: dd:45:28:b9:7f:9e:79:11:2e:af:50:3f:a2:74:11: b2:a8:1c:6a:59:77:83:6b:74:ec:74:65:fd:fd:6a: 6c:16:59:0f:23:df:39:34:f1:fa:ff:48:8b:aa:77: 3d:2e:2d:29:bd:54:10:fc:8d:79:6a:d0:f3:b9:33: 6a:71:1a:9e:11:ed:90:01:a0:d8:54:13:4c:a9:ba: b3:ee:2b:37:91:af:1e:1e:44:d6:74:cf:af:2c:72: bf:c3:37:5f:20:05:d8:09:6d:f3:d5:bc:1f:5a:36: b2:90:31:bd:e0:45:77:57:a8:1b:d5:0e:10:c6:9a: 96:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:2B:BE:64:3D:AC:74:67:A0:AD:27:76:E3:04:99:01:F1:71:B4:BA X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 9d:a4:49:90:f0:27:4a:5c:98:78:96:d8:a3:17:73:e5:10:c5: 6d:e2:e7:d6:af:7f:3d:36:9f:40:54:84:fa:6a:cd:35:a7:70: 5b:53:90:dd:6f:96:b1:3b:ec:39:1a:ff:21:1b:45:a7:95:4e: a3:ce:3c:84:3d:0b:7f:d8:f9:b6:ea:60:23:cb:5d:e7:2a:1d: ce:98:33:c9:94:ae:63:bd:fe:87:69:7a:67:c4:d0:c9:a6:1f: cc:0f:55:86:4b:13:9a:df:8c:8a:d9:2b:69:a3:46:a7:1e:f2: de:51:0e:f1:d9:09:4b:b0:5c:9a:60:7b:a8:ee:86:68:83:c5: df:f7:87:f2:b3:8d:58:67:f1:5e:83:e5:29:1c:f7:e3:37:4c: 5f:0f:1b:57:b2:7d:2c:43:e8:76:1a:fb:0d:13:3a:76:09:cc: 23:61:1f:de:d8:3e:34:4e:69:0b:0b:02:6b:a6:98:b6:b3:65: 58:e2:64:d7:34:9d:67:e5:07:5f:49:d3:9b:44:b3:40:49:21: 32:81:b2:d0:b6:fe:d0:52:6f:f2:10:ad:84:08:ec:0f:26:ab: 75:16:23:68:17:6c:ad:f9:86:62:f9:54:69:c2:9c:ee:18:d2: 80:14:a8:b6:94:68:c8:8b:90:86:2f:61:c7:66:43:2f:e5:73: 54:ef:a9:7f -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUDHtgWalGcpkPDmUReGbE9rwjY1QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTAxNzAwMDEyNloX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNAYjYzYjIyNDI0NjQzYjkxZTlhNjVk ODUxM2ZhMmI4ZTU3MTNkMjAxYzM4ZWRiOGExMWZhYjIzNmU5NWNiNDc5MjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzzeKxPWkwm6bD/9/JmvnY+uQ4fg rdpER+LW4gKBq6O3ib02cNwEUooD/ZJ0vgY6rYOWX62VK0wmy+pbzdFAB3TjHjki d91/0xDxwzxWDw0a5C7kLWYEu1Gk0Mr8DfrgXkHcxPERh4AmhQbnVVYLKrpLU2wp VVHb6c9pKsvQfkw81rKLAYbdRSi5f555ES6vUD+idBGyqBxqWXeDa3TsdGX9/Wps FlkPI985NPH6/0iLqnc9Li0pvVQQ/I15atDzuTNqcRqeEe2QAaDYVBNMqbqz7is3 ka8eHkTWdM+vLHK/wzdfIAXYCW3z1bwfWjaykDG94EV3V6gb1Q4QxpqWGwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFK0rvmQ9rHRnoK0nduMEmQHxcbS6MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzllMzdmODU1LTQ4YmYtNDIwYS1hODZjLTVlZWI0ZmMxZjc5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQCdpEmQ8CdKXJh4ltijF3Pl EMVt4ufWr389Np9AVIT6as01p3BbU5Ddb5axO+w5Gv8hG0WnlU6jzjyEPQt/2Pm2 6mAjy13nKh3OmDPJlK5jvf6HaXpnxNDJph/MD1WGSxOa34yK2Stpo0anHvLeUQ7x 2QlLsFyaYHuo7oZog8Xf94fys41YZ/Feg+UpHPfjN0xfDxtXsn0sQ+h2GvsNEzp2 CcwjYR/e2D40TmkLCwJrppi2s2VY4mTXNJ1n5QdfSdObRLNASSEygbLQtv7QUm/y EK2ECOwPJqt1FiNoF2yt+YZi+VRpwpzuGNKAFKi2lGjIi5CGL2HHZkMv5XNU76l/ -----END CERTIFICATE-----Generated at Wed Nov 5 07:44:21 2025 by rpki-client