$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/92dc1a64-e791-49e1-9f1f-bdbb374adfa6.roa File: 92dc1a64-e791-49e1-9f1f-bdbb374adfa6.roa (raw, json) Hash identifier: z2GZqVQw+QCJoW/7/zgXRhc5kFwxbTM6IpULYQII5aA= Subject key identifier: 8E:96:E6:C9:79:D9:FF:1D:55:E1:ED:2F:B0:34:DE:CF:68:D8:F8:4B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2C17C6DCBE63937C4342B7F46E03CE6AB142B799 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/92dc1a64-e791-49e1-9f1f-bdbb374adfa6.roa Signing time: Wed 13 May 2026 00:21:14 +0000 ROA not before: Wed 13 May 2026 00:21:14 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 43.198.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jun 2026 00:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:17:c6:dc:be:63:93:7c:43:42:b7:f4:6e:03:ce:6a:b1:42:b7:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:21:14 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=d9af976869a2611d12cd21eb126944622e2eec2a8d773f5b53ee0bcd9758a6d6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a6:40:9a:3a:39:1d:46:c8:65:ca:9e:63:6b: 75:e5:64:43:79:17:c1:a3:19:f5:11:0b:ae:d3:60: d3:b2:fb:fc:3b:0c:34:f2:a3:d7:2b:40:2e:27:30: 64:cf:29:c3:55:2b:54:ee:f1:22:f3:dd:fc:5a:a7: 23:de:bc:37:5f:f4:fa:f1:df:b9:d2:d8:6b:7b:42: 5c:2c:ea:5a:bc:45:b1:bc:70:10:a6:47:09:0d:80: 1e:1e:19:37:8c:b9:21:65:fd:52:32:5d:68:9d:37: 26:3c:ce:ae:79:17:2b:ee:57:70:0a:46:13:8f:78: 02:b1:71:e7:f9:ca:08:dd:7e:e9:e9:0a:97:11:a6: 59:55:3e:ab:d5:8c:ce:36:7b:e5:52:c8:1b:57:4f: 49:d8:ca:6c:dd:40:f5:23:3b:41:b4:b0:aa:09:ac: a0:74:2d:35:44:83:39:a0:df:22:78:a0:b9:af:3a: b1:cb:c9:21:c8:eb:5c:37:7f:3c:93:ab:fd:be:7d: 17:7d:6e:b0:6e:da:dc:dc:ed:81:0b:5d:ae:7f:b7: 18:5f:e5:ea:d2:c1:f5:56:76:8c:0a:66:18:c7:ad: d2:4e:75:fd:b3:66:74:31:b3:7a:df:d0:7a:b6:f1: 98:9f:7d:3c:f6:30:27:ec:fc:b5:84:eb:7e:b9:10: 0c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:96:E6:C9:79:D9:FF:1D:55:E1:ED:2F:B0:34:DE:CF:68:D8:F8:4B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/92dc1a64-e791-49e1-9f1f-bdbb374adfa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.198.0.0/15 Signature Algorithm: sha256WithRSAEncryption 21:4c:17:05:b9:11:8d:4c:d2:59:de:e9:78:c6:70:87:b8:33: 56:d4:b7:0d:c4:54:d5:65:a4:31:f7:40:16:2a:eb:d5:d0:09: 52:e5:5e:89:ce:8b:87:53:fd:66:8e:5b:18:d7:91:03:48:88: f5:55:fe:a7:db:cd:79:bd:e9:f3:4e:f2:de:29:c4:bc:2c:c8: 81:57:28:d3:08:d5:1c:20:ba:1c:87:08:ef:53:01:18:f6:8c: 8b:fc:8c:1d:38:99:86:59:e2:84:77:07:05:2a:23:0d:da:ae: 92:97:7a:03:53:96:4f:28:e3:74:89:b2:13:95:9a:9b:a3:a1: 34:fb:20:49:f5:d2:70:22:2f:a5:18:e5:b0:1d:23:e1:61:d2: 5b:93:de:65:26:44:86:70:bb:c4:01:b2:cb:4f:ec:71:b6:e2: b8:11:d9:49:b2:a1:87:48:67:e0:25:c1:34:83:6c:b8:c1:1d: 36:09:e8:0a:09:94:dd:e3:96:93:37:62:c8:56:54:4d:c1:22: 95:2d:53:1c:0f:47:ac:b5:c9:ca:66:c2:41:c7:69:c5:5f:34: 9c:49:b8:13:fd:af:03:dc:2e:93:84:57:ae:eb:2e:a5:2c:29: 76:b9:10:e3:7e:e4:44:d2:7e:fd:95:8c:6d:39:4b:14:5c:c6: 57:ee:5f:36 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIULBfG3L5jk3xDQrf0bgPOarFCt5kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjExNFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAZDlhZjk3Njg2OWEyNjExZDEyY2Qy MWViMTI2OTQ0NjIyZTJlZWMyYThkNzczZjViNTNlZTBiY2Q5NzU4YTZkNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6ZAmjo5HUbIZcqeY2t15WRDeRfB oxn1EQuu02DTsvv8Oww08qPXK0AuJzBkzynDVStU7vEi8938Wqcj3rw3X/T68d+5 0thre0JcLOpavEWxvHAQpkcJDYAeHhk3jLkhZf1SMl1onTcmPM6ueRcr7ldwCkYT j3gCsXHn+coI3X7p6QqXEaZZVT6r1YzONnvlUsgbV09J2Mps3UD1IztBtLCqCayg dC01RIM5oN8ieKC5rzqxy8khyOtcN388k6v9vn0XfW6wbtrc3O2BC12uf7cYX+Xq 0sH1VnaMCmYYx63STnX9s2Z0MbN639B6tvGYn3089jAn7Py1hOt+uRAMkwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFI6W5sl52f8dVeHtL7A03s9o2PhLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkyZGMxYTY0LWU3OTEtNDllMS05ZjFmLWJkYmIzNzRhZGZhNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMBK8YwDQYJKoZIhvcNAQELBQADggEBACFMFwW5EY1M0lne6XjGcIe4 M1bUtw3EVNVlpDH3QBYq69XQCVLlXonOi4dT/WaOWxjXkQNIiPVV/qfbzXm96fNO 8t4pxLwsyIFXKNMI1RwguhyHCO9TARj2jIv8jB04mYZZ4oR3BwUqIw3arpKXegNT lk8o43SJshOVmpujoTT7IEn10nAiL6UY5bAdI+Fh0luT3mUmRIZwu8QBsstP7HG2 4rgR2UmyoYdIZ+AlwTSDbLjBHTYJ6AoJlN3jlpM3YshWVE3BIpUtUxwPR6y1ycpm wkHHacVfNJxJuBP9rwPcLpOEV67rLqUsKXa5EON+5ETSfv2VjG05SxRcxlfuXzY= -----END CERTIFICATE-----Generated at Sat Jun 6 05:41:43 2026 by rpki-client