$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa File: 197500e2-3802-44b2-a561-ca3dad01e209.roa (raw, json) Hash identifier: 9noVsp+SlXMaVtRYLZ2UsgHXOR8yBZrfK7uKc6w2RU0= Subject key identifier: AA:21:3B:54:55:8E:FA:5C:98:7C:95:46:4F:E0:5E:B2:21:1E:0C:98 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6D35ED80A6E845109831467E7735457D65F24029 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa Signing time: Fri 15 May 2026 00:00:16 +0000 ROA not before: Fri 15 May 2026 00:00:16 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:35:ed:80:a6:e8:45:10:98:31:46:7e:77:35:45:7d:65:f2:40:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:16 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=1a32c2a57e20c74b0c5aa12b9f2fbca4a5f0f2e468aff17ae8227373dcc03e31, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ac:61:eb:56:92:c2:4f:6c:58:8c:fe:e1:86: 4f:69:3b:8c:4d:a4:14:b8:e7:af:b3:44:7c:35:79: f1:f2:68:aa:95:fc:38:9a:d0:1b:e1:6b:28:76:0b: 5d:26:71:55:6a:b0:47:5a:8f:5e:e1:b9:64:4d:30: 29:8f:6a:e1:c6:47:ac:41:d5:4c:fd:db:ed:44:e0: d0:50:cc:86:f3:7a:68:60:d9:b2:0d:33:c3:8d:69: b0:a3:73:cd:b8:c2:d2:8a:b9:3b:75:18:a1:af:00: e0:a9:57:16:6f:37:c8:ae:8f:cd:e7:29:d8:6b:e9: 2a:84:7a:18:58:a7:f5:c9:86:91:96:40:ce:7e:2f: 79:60:73:d9:88:0e:df:af:1c:e9:f3:e0:39:8e:b3: 9d:47:13:74:34:a2:ac:2c:7d:93:3e:a0:a9:48:bc: 9a:5f:e1:a4:e6:9e:d0:29:6d:20:7d:30:87:0f:ca: 72:ea:cb:ac:41:8a:df:c8:bd:ff:59:c5:8d:d1:72: fc:37:d5:e5:9c:1c:af:df:60:9a:3d:52:f2:05:9f: 60:5d:26:9a:10:31:ba:37:eb:c1:c4:04:7e:31:c5: 86:bf:2a:d7:89:54:81:7f:22:f5:c8:6a:6b:8e:79: e4:81:78:f5:36:c8:f8:bb:f0:50:9f:fc:18:c9:56: 45:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:21:3B:54:55:8E:FA:5C:98:7C:95:46:4F:E0:5E:B2:21:1E:0C:98 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/24 Signature Algorithm: sha256WithRSAEncryption ed:0e:ad:a7:57:f3:0e:e8:5c:64:90:84:40:1d:67:e0:c9:38: 83:ad:8b:bd:1f:06:37:19:5c:91:6f:72:bc:32:83:a6:6d:66: 6e:20:ce:8c:28:e8:d4:4a:96:a4:2b:1a:6f:4b:00:57:98:f7: c9:c4:f5:9e:fa:bf:da:d1:ee:5b:e7:7f:35:76:25:29:47:4c: ef:a1:c6:d9:ce:bf:de:5a:11:f1:4f:8e:86:a5:46:4c:2d:56: 29:80:3d:e8:f5:28:60:8e:1f:4d:99:fc:95:3e:d6:01:60:88: d3:d6:18:73:fe:4e:22:6b:ed:7f:dc:9f:93:e0:b9:20:65:06: a4:ca:fa:09:5c:85:f9:24:40:ed:7a:7b:c0:99:27:47:47:0e: b2:a7:59:b0:3a:e7:69:30:71:2e:a3:ab:c6:1c:08:b9:4a:14: 07:92:4f:40:53:54:c2:46:36:ee:6b:cd:fb:59:72:df:c8:73: f6:a1:be:62:94:97:4b:08:1b:db:e3:68:d6:b6:75:e1:ba:77: cf:8c:28:3e:d1:db:fb:2f:a3:fc:82:d5:c2:2c:f3:e5:76:4a: ab:a2:64:df:6c:49:ee:72:76:6c:2c:16:59:e7:c4:e4:0c:19: 73:6c:e7:6a:9f:be:61:65:a8:30:35:f7:16:bf:47:c3:ed:83: a4:9a:4f:9a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUbTXtgKboRRCYMUZ+dzVFfWXyQCkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxNloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMWEzMmMyYTU3ZTIwYzc0YjBjNWFh MTJiOWYyZmJjYTRhNWYwZjJlNDY4YWZmMTdhZTgyMjczNzNkY2MwM2UzMTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKxh61aSwk9sWIz+4YZPaTuMTaQU uOevs0R8NXnx8miqlfw4mtAb4WsodgtdJnFVarBHWo9e4blkTTApj2rhxkesQdVM /dvtRODQUMyG83poYNmyDTPDjWmwo3PNuMLSirk7dRihrwDgqVcWbzfIro/N5ynY a+kqhHoYWKf1yYaRlkDOfi95YHPZiA7frxzp8+A5jrOdRxN0NKKsLH2TPqCpSLya X+Gk5p7QKW0gfTCHD8py6susQYrfyL3/WcWN0XL8N9XlnByv32CaPVLyBZ9gXSaa EDG6N+vBxAR+McWGvyrXiVSBfyL1yGprjnnkgXj1Nsj4u/BQn/wYyVZFKwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKohO1RVjvpcmHyVRk/gXrIhHgyYMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzE5NzUwMGUyLTM4MDItNDRiMi1hNTYxLWNhM2RhZDAxZTIwOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymAMA0GCSqGSIb3DQEBCwUAA4IBAQDtDq2nV/MO6FxkkIRAHWfg yTiDrYu9HwY3GVyRb3K8MoOmbWZuIM6MKOjUSpakKxpvSwBXmPfJxPWe+r/a0e5b 5381diUpR0zvocbZzr/eWhHxT46GpUZMLVYpgD3o9Shgjh9NmfyVPtYBYIjT1hhz /k4ia+1/3J+T4LkgZQakyvoJXIX5JEDtenvAmSdHRw6yp1mwOudpMHEuo6vGHAi5 ShQHkk9AU1TCRjbua837WXLfyHP2ob5ilJdLCBvb42jWtnXhunfPjCg+0dv7L6P8 gtXCLPPldkqromTfbEnucnZsLBZZ58TkDBlzbOdqn75hZagwNfcWv0fD7YOkmk+a -----END CERTIFICATE-----Generated at Fri Jun 19 08:12:13 2026 by rpki-client